192.185.106.252301 Moved Permanently 0 B URL User Request GET HTTP/2 IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?p=574204 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
x-pingback: https://www.vugla.com/xmlrpc.php
x-redirect-by: WordPress
content-security-policy: upgrade-insecure-requests;
location: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
cache-control: max-age=10800
expires: Thu, 30 Nov 2023 12:20:23 GMT
vary: User-Agent
referrer-policy:
content-length: 0
content-type: text/html; charset=UTF-8
date: Thu, 30 Nov 2023 09:20:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
192.185.106.252200 OK 398 B URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
Hash 4f140b946bdc4cb833896a992db68c6d
52d6c64f9c5478bb70604068a66f06283ecff968
f8f90d1cacc59cf90886948787ef5c723b8de9e41092285611f2f915b5996ef2
GET /wp-content/themes/vugla/style.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 24 Mar 2020 17:57:12 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 398
content-type: text/css
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.4.6
192.185.106.252200 OK 1.4 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.4.6
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (4310), with CRLF line terminators
Hash b236fbc68ad6824d6fd4be9501a56ea5
5147f5e6779b335a45771a6a9ec9f0a1db8079ef
d49c9ad378618e0a0eb8e6fca04c13f6005e13badf79e0c977d76d851f7aa60a
GET /wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.4.6 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 1410
content-type: text/css
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=6.4.1
192.185.106.252200 OK 320 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=6.4.1
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash 199decab27dd471d35814631e71e6fea
42c2847529b6859230bc2f4e8e6432805a06148b
7279594a46188e3246db42ffd4c609fc254c6fa06bfca8b72dd82e63fa4e6385
GET /wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 26 May 2014 20:39:02 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 320
content-type: text/css
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=6.4.1
192.185.106.252200 OK 89 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=6.4.1
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash b20aaffdf9d8e1f413b536edb9d1b649
0f3afd6ef6940700eb7f245629d1b79c52f45b47
9534982bd24eaa3205ac2e5a4dbd6a16a3129b70df981f422562ef3a30ade7cd
GET /wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:50:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 89
content-type: text/css
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/vn-video-player/style/theme-city.css?ver=6.4.1
192.185.106.252200 OK 733 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/vn-video-player/style/theme-city.css?ver=6.4.1
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (2553), with no line terminators
Hash 229bf132659b3607e05296743613ecca
2f498516b73ae5f087904669ccd6b3eb57054711
73214adfea5dc8d2ab7aae66baec56aab47e70224557c08f424b80909d1acd7c
GET /wp-content/plugins/vn-video-player/style/theme-city.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 733
content-type: text/css
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
192.185.106.252200 OK 5.4 kB URL GET HTTP/2 www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (13479)
Hash 9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 5422
content-type: application/javascript
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/vn-video-player/style/video-js.css?ver=6.4.1
192.185.106.252200 OK 14 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/vn-video-player/style/video-js.css?ver=6.4.1
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type Unicode text, UTF-8 text, with very long lines (5844)
Hash 514fccb15bdc95ea2c2b6fddaded8ecc
4c999194bb19b83cc85f40621fa1c74cd1a4cbf7
d86730f73982f170cb0943d0d47c3c2520743d6a3d6cf5330cde12667df675ca
GET /wp-content/plugins/vn-video-player/style/video-js.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 13761
content-type: text/css
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-7NCJ73THPT
142.250.74.168200 OK 85 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-7NCJ73THPT
IP 142.250.74.168:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3034)
Hash df066817cd33a0aaa8627794a63461e6
235cc52f8d381c9fe68a82f89aafda555b42c365
1f98fb63ce905d3f4a66d4860ce864919b52fb8dd2098cd90ca8e6e76709cb2b
GET /gtag/js?id=G-7NCJ73THPT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 30 Nov 2023 09:20:24 GMT
expires: Thu, 30 Nov 2023 09:20:24 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 85081
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
apis.google.com/js/plusone.js
142.250.74.78200 OK 22 kB URL GET HTTP/2 apis.google.com/js/plusone.js
IP 142.250.74.78:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint06:87:C0:63:02:21:98:02:BD:FC:A0:11:93:E9:3A:9F:51:21:06:D8
ValidityMon, 23 Oct 2023 11:25:10 GMT - Mon, 15 Jan 2024 11:25:09 GMT
File type ASCII text, with very long lines (2664)
Hash 12476fdc6b8599d03eac729748337611
7a15dc04ad6e77026bf45927b78247411e3e0466
c5be6532f19ca90fb5966ed89be694f2bc2cded1e443d3489467cb28cd69af43
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 21930
date: Thu, 30 Nov 2023 09:20:25 GMT
expires: Thu, 30 Nov 2023 09:20:25 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "b82ec1e6cb6f99ed"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=oob2VR_gVlqfb5zLsztenssu3Hec0Uvv1lSfZu2TAlTIjoj1RIBjqFcI1yo6v6cV3zawXKtPch4TyEpPzdSnjJFnswxCuKjoycUOyPhZgWf8vY3smhx6Bck2NAkyNzsZkGP96i69ZmCDBeGvvz2LqvWzfsxYWzd6jC3plDXMht8; expires=Fri, 31-May-2024 09:20:25 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1
192.185.106.252200 OK 7.0 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text, with very long lines (14641), with CRLF line terminators
Hash ad955f14cdcc21d58014f25ab7c8d46d
8915b95d672d54be6fb01a239088aba305d4798e
d6304e162f8fe5054a4c5430d2f1d78ea2ad54c1ff61ea708d148bf385312407
GET /wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 12:00:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 6964
content-type: application/javascript
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/images/logo.png
192.185.106.252200 OK 7.9 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/logo.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 254 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash f8e78d7eed20f4d77ca41cbf9700c0fa
9c40c7c5ae212e070b2aceda05b7e34de143a670
cf314f8938fb5d378e49a7e09683a206e244024b7ca3a7ec1676f22804285ca7
GET /wp-content/themes/vugla/images/logo.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 18 Nov 2013 11:35:09 GMT
accept-ranges: bytes
content-length: 7870
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.3
192.185.106.252409 Conflict 83 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.3
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 409 Conflict
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/hull-rotherham-golovi-28-11-2023-150x150.jpg
192.185.106.252200 OK 4.4 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/hull-rotherham-golovi-28-11-2023-150x150.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 9afe1ba0662dc788a464703209d65e34
f47d8d114a89339dcb45228ba54b3220a68ec61c
0988dfb4e2095949865f7f40537309ed174ab0deabbb130815a206e0d0ea3946
GET /wp-content/uploads/2023/11/hull-rotherham-golovi-28-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 29 Nov 2023 13:07:42 GMT
accept-ranges: bytes
content-length: 4392
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6
192.185.106.252200 OK 8.6 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type Unicode text, UTF-8 text, with very long lines (629), with CRLF line terminators
Hash 68f8af044f685b84c7d49ac2356acabf
585889874b36224e980f4d285044ec0fb478dc7c
9fe6a07f596d507305d1480e6bb301d04cbf5ef8660b24b9fa411e39607a7ab5
GET /wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 8560
content-type: application/javascript
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6
192.185.106.252200 OK 4.7 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (12917), with CRLF line terminators
Hash 416d2c5e5425c640a7d63f25e0376fd6
a95b218161d94bdb148d108aedf065b4a4762045
b875bead01dfa1b02a553e8efda0f3a65d39da24f19ad37af95f06795eee76dc
GET /wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 4708
content-type: application/javascript
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1
192.185.106.252200 OK 8.7 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (17739), with CRLF line terminators
Hash 3229aa93c44fa4628707e80959a97bc1
5a2d4dbc4d1df02e7a386489e7b5c5a9e22dd40f
095834cc86bd018fdb4a9e31c99f9f96904b819be2b9dc16b3390383288d4d90
GET /wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 8747
content-type: application/javascript
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/twitter.png
192.185.106.252200 OK 1.8 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/twitter.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 9cb3d67f468539abb72395dc73934190
9928de37e21649c1799e3287a13f897a34aab5e1
04a457e988270cb1dc76bd57ac8e62fddf02c02b618a1ac6cb0880b93633f5e0
GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/twitter.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 1762
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2021/11/siena-piaza-di-paradiso-webcam-150x150.jpg
192.185.106.252200 OK 5.5 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2021/11/siena-piaza-di-paradiso-webcam-150x150.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash dd09e343a96187e9d8f3d70656ffbb87
ee20578e6431af1f0f82ace247a6c80ea4c1af15
bbf157f8a642d8848f838477bd12e007c6dbd80a07beb3e785f70621b3e8b2c1
GET /wp-content/uploads/2021/11/siena-piaza-di-paradiso-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 27 Nov 2021 11:20:42 GMT
accept-ranges: bytes
content-length: 5524
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/coventry-plymouth-golovi-28-11-2023-150x150.jpg
192.185.106.252200 OK 5.4 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/coventry-plymouth-golovi-28-11-2023-150x150.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash e4f21248a15211e162f267a244373f2b
e64c6b68cc26a5b22f613ee3a0beab97e9b5f335
2a29cda8c360acff07ef3575adb9a149edf40a68aa3f54909a5edca2fbff8bac
GET /wp-content/uploads/2023/11/coventry-plymouth-golovi-28-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 29 Nov 2023 13:07:41 GMT
accept-ranges: bytes
content-length: 5410
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/images/mobile-share/whatsapp-64x64.png
192.185.106.252200 OK 5.9 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/mobile-share/whatsapp-64x64.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 616a93e26f2d9261cd8412a8741f7be8
5fbfd88e502bcc766a9c9ef1d1751ed16ce1197c
306accb5ad46635aeb9481a9bc934c14ae474e924ec52b6673141c5acacd800d
GET /wp-content/themes/vugla/images/mobile-share/whatsapp-64x64.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 22 Dec 2016 10:00:28 GMT
accept-ranges: bytes
content-length: 5880
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/linkedin.png
192.185.106.252200 OK 725 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/linkedin.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash 5da9fb18cfc9264a6e95b4a8bf4d2fcb
7bb78a36bc621ea268a0dad519c9c5c539e751ce
c6e399926b1aeb3634681cf7eb6af4e355325a6b2b6f8a89ad65ece3523fab18
GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/linkedin.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 725
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/images/mobile-share/viber-64x64.png
192.185.106.252200 OK 7.1 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/mobile-share/viber-64x64.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash de186be4358ae6892385bcb78cc79b01
d933c306c857b9e84e321c4756d384a6e8093da2
c912b95fc0e537dbd5d103172a9ad3df2a3c8ad4ce5e6d6cebbaf31d7f6d58be
GET /wp-content/themes/vugla/images/mobile-share/viber-64x64.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 22 Dec 2016 10:00:29 GMT
accept-ranges: bytes
content-length: 7120
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2021/11/venice-hotel-la-fenice-webcam-150x150.jpg
192.185.106.252200 OK 9.5 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2021/11/venice-hotel-la-fenice-webcam-150x150.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash db610183cdeef9d7dec04ebdf0f9b7d6
ac3089c59da6f5d53b6c845841546158ce575ddb
9a7192adbb6c0d45a443253e55d7fa19e265282c299bf6e73134a643970be31f
GET /wp-content/uploads/2021/11/venice-hotel-la-fenice-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sun, 28 Nov 2021 10:45:01 GMT
accept-ranges: bytes
content-length: 9468
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/cardiff-west-brom-golovi-28-11-2023-150x150.jpg
192.185.106.252200 OK 6.4 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/cardiff-west-brom-golovi-28-11-2023-150x150.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash df88b8766d82c4ee80311a980384a4ab
a6e14f6a04ca1dd0cba699c28a97461205602204
877626b0fe73729181d4c261c66c831b77ee318418a4de15f5733992f88df55d
GET /wp-content/uploads/2023/11/cardiff-west-brom-golovi-28-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 29 Nov 2023 13:07:39 GMT
accept-ranges: bytes
content-length: 6390
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/qpr-stoke-golovi-28-11-2023-150x150.jpg
192.185.106.252200 OK 6.4 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/qpr-stoke-golovi-28-11-2023-150x150.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 8665f4f93cac637e384b4526423677e7
1de1d141905845cdcae19f861682efdacccc02d2
1460f4f0f55bdfb0157d9f4de43c0e37f7261b4e780f646c412f94b08f5a228b
GET /wp-content/uploads/2023/11/qpr-stoke-golovi-28-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 29 Nov 2023 01:57:18 GMT
accept-ranges: bytes
content-length: 6359
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/pazljivo-s-cetvrtim-zidom-620x350.jpg
192.185.106.252200 OK 46 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/pazljivo-s-cetvrtim-zidom-620x350.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 620x350, components 3\012- data
Hash 3ec3884b813e2971aec090c5e57eb600
0ae2933f3c810f9fa991af259874314020a643e1
dd8064c373fea9096a745c6ef5b45f333d46bc2d719354f0ea1df428b9ae9543
GET /wp-content/uploads/2023/11/pazljivo-s-cetvrtim-zidom-620x350.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 30 Nov 2023 07:18:35 GMT
accept-ranges: bytes
content-length: 46162
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/watford-norwich-golovi-28-11-2023-150x150.jpg
192.185.106.252200 OK 7.0 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/watford-norwich-golovi-28-11-2023-150x150.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 345dee5be3ce4b7b18802fff4e49b158
9c50bcd0707400b35aeedf5d14962d5f57da6633
335f4881d3e8b8af4821390ee26345cd8ca8fcf4b86c402aac75e8592949ef58
GET /wp-content/uploads/2023/11/watford-norwich-golovi-28-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 29 Nov 2023 01:57:19 GMT
accept-ranges: bytes
content-length: 7033
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-includes/js/underscore.min.js?ver=1.13.4
192.185.106.252200 OK 8.3 kB URL GET HTTP/2 www.vugla.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (18798)
Hash f88d5720bb454ed5d204cbdb56901f6b
f1952292fde4b15936e9aac16b2b9896684db95b
726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 8305
content-type: application/javascript
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1
192.185.106.252200 OK 106 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash 64829824ee643f09fb3821dc49b3089a
446608ff9f4128b9503476135a8c28599f8d5c2e
0b967c52b8e899c4266110c97fa50018d61ccf1365144d16f09f901523d48c95
GET /wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:31 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 106
content-type: application/javascript
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1
192.185.106.252200 OK 1.4 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text
Hash 6755415003869bd599c3fae8e9792027
57946a22c79654014eb00fb548f727d302221873
07f79fbda35a2bf03f2940978670a2a53cf21e490ecce887bf92fc2e3f359293
GET /wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:28 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 1389
content-type: application/javascript
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3
192.185.106.252409 Conflict 83 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 409 Conflict
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3
192.185.106.252409 Conflict 83 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 409 Conflict
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/facebook.png
192.185.106.252200 OK 584 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/facebook.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash 114d84e23ab95df71589ab5e67b93b85
2270334f4b83486ceaab53133e4706537c16f38a
1353c448068301ee8534bd1d3c8eb214863afa0b9f716222dfe93e2739cffac2
GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/facebook.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 584
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2021/11/cinque-terre-manarola-webcam-150x150.jpg
192.185.106.252200 OK 8.6 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2021/11/cinque-terre-manarola-webcam-150x150.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 11e3744e35c5f4398770111a91cd24a8
f411894b1ec06ecf188fd102bdc56db3e279c5a6
bf6876e54e8b201d903850f129cd6c144aee8aa7c785fecd9a3cc764833ec61a
GET /wp-content/uploads/2021/11/cinque-terre-manarola-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 27 Nov 2021 11:36:14 GMT
accept-ranges: bytes
content-length: 8642
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2021/11/hvar-webcam-150x150.jpg
192.185.106.252200 OK 7.7 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2021/11/hvar-webcam-150x150.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 62774f92064e395fda65b50793c90f6d
9f53f11b2a92302becdcc5f0f46ac07468ea7510
2f86b046ac5c1148f0e69510d44889d7ddb1bbaa1d3f2d4606e9fd93e4c0de82
GET /wp-content/uploads/2021/11/hvar-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 25 Nov 2021 11:02:45 GMT
accept-ranges: bytes
content-length: 7651
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/pazljivo-s-cetvrtim-zidom.html
192.185.106.252200 OK 76 kB URL User Request GET HTTP/2 www.vugla.com/pazljivo-s-cetvrtim-zidom.html
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type gzip compressed data, from Unix\012- data
Hash fb4454208f713c5ae5f986e999613f77
663de28b00fe6735999d38ffce4c86e4a3af66d4
5e01cdb083b43aa5c6d39260da74fe8ede06eb3ab6d5c1c7da92607ac0f7f5cf
GET /pazljivo-s-cetvrtim-zidom.html HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-pingback: https://www.vugla.com/xmlrpc.php
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/", <https://www.vugla.com/wp-json/wp/v2/posts/574204>; rel="alternate"; type="application/json", <https://www.vugla.com/?p=574204>; rel=shortlink
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=10800
expires: Thu, 30 Nov 2023 12:20:23 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-type: text/html; charset=UTF-8
date: Thu, 30 Nov 2023 09:20:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/mail.png
192.185.106.252200 OK 1.7 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/mail.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash 42bec42b54ef1bb6bb9596efa815973d
88145ca02b72936eb430e818cd7a80f189ca9166
154a5b712eedff5cdee156292d8795dd139a350c7ed09982e5faec55a0ab2f42
GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/mail.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 1659
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/tumblr.png
192.185.106.252200 OK 861 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/tumblr.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash 1d8dab6f1066b94b74f5611a8c918681
4e0edc7ba1ada49418772d8d581cd3d38518d490
bac6d2c8418e543d967d6e57710eda1ca4318ddd917c19a28fd63b4240e8d150
GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/tumblr.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 861
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2021/11/beograd-most-miladina-zivica-webcam-150x150.jpg
192.185.106.252200 OK 5.5 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2021/11/beograd-most-miladina-zivica-webcam-150x150.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 3fddda90683b7416f197bf988102840f
267cd52c70c992251e044b48ac04dcae61114c93
669bd143aeb2909494a8efa6031423535f6d79c5c0ed0c4f820ec6a064b3ef90
GET /wp-content/uploads/2021/11/beograd-most-miladina-zivica-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 25 Nov 2021 11:05:33 GMT
accept-ranges: bytes
content-length: 5510
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/fulham-wolves-golovi-27-11-2023-150x150.jpg
192.185.106.252200 OK 5.7 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/fulham-wolves-golovi-27-11-2023-150x150.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash d95216917fae65c894cd7649239a9090
b27f6785d611b46dd4ed4cc0df62e52bdd241b13
1def568a6640a04c76c44304b1d24c2483f87338e3242a91f777d337811ea5e7
GET /wp-content/uploads/2023/11/fulham-wolves-golovi-27-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 29 Nov 2023 13:07:37 GMT
accept-ranges: bytes
content-length: 5688
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/images/mobile-share/fb-messenger-64x64.png
192.185.106.252200 OK 2.6 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/mobile-share/fb-messenger-64x64.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 56735b8135d0a3b1db1b1e1a34945e85
dc604b4e7030d9fe583393b94f1811fe69628107
7ef39fd53ffb21c300f78615faa8eab8eb1163ad1b70843efa4550a0bda364bc
GET /wp-content/themes/vugla/images/mobile-share/fb-messenger-64x64.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 26 Jul 2017 12:44:40 GMT
accept-ranges: bytes
content-length: 2562
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2021/11/djakovo-korzo-webcam-150x150.jpg
192.185.106.252200 OK 8.0 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2021/11/djakovo-korzo-webcam-150x150.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 491bc44885de43de6071eee78682d862
aca540855708b45025a6aa4a9786397f025ee110
c4cc24d42db085bbdddc345a38e7557f0dca057b489c638cb7858d8f3f65578f
GET /wp-content/uploads/2021/11/djakovo-korzo-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 30 Nov 2021 14:12:27 GMT
accept-ranges: bytes
content-length: 8046
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js
192.243.61.225200 OK 9.3 kB URL GET HTTP/1.1 pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js
IP 192.243.61.225:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectalternativecpmgate.com
FingerprintC9:1F:74:2C:C9:F2:3A:E6:2D:4F:6C:DC:DD:18:6E:93:10:75:9E:24
ValidityFri, 20 Oct 2023 06:02:37 GMT - Thu, 18 Jan 2024 06:02:36 GMT
File type Unicode text, UTF-8 text, with very long lines (25071), with no line terminators
Hash 68a020593a31e3d0802927b2748c121e
c6710463278851e4b6d4f3850c0b4ab054c9adef
156dd9c0abc5460b68f5f83b762bb10d7fb782ccf96e955a0ace59c125b4c5cd
GET /c9123167a2366d360cd4d80dad2ac358/invoke.js HTTP/1.1
Host: pl16411290.alternativecpmgate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 09:20:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 68d25c890928fefc3c11757539dc391c
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js
173.233.137.44200 OK 15 kB URL GET HTTP/1.1 pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js
IP 173.233.137.44:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectpasstechusa.com
FingerprintF4:5F:CD:11:B9:E4:E0:B6:E3:01:2A:A2:FB:0E:11:26:44:B4:D0:9D
ValidityFri, 13 Oct 2023 07:12:41 GMT - Thu, 11 Jan 2024 07:12:40 GMT
File type ASCII text, with very long lines (42826), with no line terminators
Hash aa4a487b22322593e9c132dc87c36daa
4db320e44a51c71c5c165effc2fc8ae09893c45d
696a3c41a16a0830311f50464b44c57d2ba5321a86145e9a49206fffda92e822
GET /d1/37/02/d137022925bcc2a680f8a4476ff94144.js HTTP/1.1
Host: pl15560907.passtechusa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 09:20:25 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b6f9ac0cf1e52e19db8e3805b576e75b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700
142.250.74.106200 OK 3.2 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700
IP 142.250.74.106:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with CRLF, LF line terminators
Hash 6f8f8df24f902f291ae6540f4cd6e6a8
fa2b23339c144e8a5a5bd766bba7f1c3f63127d0
67ff76e2e8c068874e0c060b6956f16bf47931409fd81dcc1111d50a7f2168d2
GET /css?family=Open+Sans:400italic,700italic,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 30 Nov 2023 09:20:24 GMT
date: Thu, 30 Nov 2023 09:20:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/elastislide.css
192.185.106.252200 OK 674 B URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/elastislide.css
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash fac0ce1d7bcbe2001f963e204b03b3a4
fe650403bcbc74567e384eb3762c874835f6cad1
d8dcd83dfb6275b55ae8e495f6924dcfc52024a52f5639446a00de846ec7c7b9
GET /wp-content/themes/vugla/css/elastislide.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:21 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 674
content-type: text/css
date: Thu, 30 Nov 2023 09:20:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/flexslider.css
192.185.106.252200 OK 1.5 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/flexslider.css
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash aed0d9c2792c1ca777bfce04eb08ae7a
64e98271e4539dbf8819fa9d801017423c9bc30b
7f7b09426068a9bacddeefcf29f89063307fdc903ac45a569853b8c452d9b62d
GET /wp-content/themes/vugla/css/flexslider.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 08 May 2014 09:18:47 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 1526
content-type: text/css
date: Thu, 30 Nov 2023 09:20:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/wpp.css
192.185.106.252200 OK 357 B URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/wpp.css
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash 6b44660f121f565e2aab91b7b321ff28
62628718b7edeaccc74d1943d36bc1e0c9d16512
467aa063b813fd2fc1b3ebabc45d6e840d807dad90c169f0ee12f93bcf667851
GET /wp-content/themes/vugla/css/wpp.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 357
content-type: text/css
date: Thu, 30 Nov 2023 09:20:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/style_768.css
192.185.106.252200 OK 2.5 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/style_768.css
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (408), with CRLF line terminators
Hash 14b717ed0c77c605f84b5b9a6b9892e9
5723bca38e18b8155b26f923590a05657911a377
6f37f5624b7bc60317a9c37a473fdf7dc34474d5f52cf169a7d52b35ca1dc0dd
GET /wp-content/themes/vugla/css/style_768.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:32 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 2538
content-type: text/css
date: Thu, 30 Nov 2023 09:20:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/style_320.css
192.185.106.252200 OK 2.4 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/style_320.css
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash cc437b9ea4ed072bf7636ec9013f026d
df8db436e5193d474b97364dc0cd532a9b390fe5
4e92c5bc2c3f90209e1bec52f50461d8c04d82a539296918f0db0c61af63aab2
GET /wp-content/themes/vugla/css/style_320.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:29 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 2413
content-type: text/css
date: Thu, 30 Nov 2023 09:20:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/style_reset.css
192.185.106.252200 OK 1.2 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/style_reset.css
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash b5ae6c0ccd961d29a2924b03b0cbdd6e
3293dc40aa870c1cf79180eb7bd5c2ff28f3bd0a
0838fff76cfa3bad87963e64a610ea8d60b2dc8d0781a7531a2385f65de1ab2f
GET /wp-content/themes/vugla/css/style_reset.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:34 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 1152
content-type: text/css
date: Thu, 30 Nov 2023 09:20:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/tabber.css
192.185.106.252200 OK 1.7 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/tabber.css
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash a3e36a4db7b488bd984dd17c6e17cf63
33e7b11f7e1f149f954b6d938db9e36599816e8a
3609900b90f9835e1525c38bb6b1bcbffea0a14894799e54a07c2a9df09cb03d
GET /wp-content/themes/vugla/css/tabber.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 1710
content-type: text/css
date: Thu, 30 Nov 2023 09:20:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/style_1024.css
192.185.106.252200 OK 2.3 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/style_1024.css
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash 7f4d3aa769cc8bb0e3c77745ff5c9d64
2da3458d48663a397a5a42c3bb52777bc5889dc0
7a6c4ca634ef663c6a3887df843fc04c40632ff46c53eb9f7d35bfcde21453b4
GET /wp-content/themes/vugla/css/style_1024.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:28 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 2267
content-type: text/css
date: Thu, 30 Nov 2023 09:20:25 GMT
server: Apache
X-Firefox-Spdy: h2
www.kursnalista.co/banners/banners.js
192.185.106.47200 OK 1.3 kB URL GET HTTP/2 www.kursnalista.co/banners/banners.js
IP 192.185.106.47:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.kursnalista.co
Fingerprint1C:D4:9B:DE:4F:51:D3:F0:32:B2:6C:A1:1C:03:E2:3E:18:FC:D4:2A
ValidityMon, 20 Nov 2023 10:01:16 GMT - Sun, 18 Feb 2024 10:01:15 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (394), with CRLF line terminators
Hash 0fa58c243ecc9c6ff829da27563c78c4
771e757dcaddc90a127b557e6a8a69b9dfe4767d
4631955f687225007a1227be7e662f1f45798c13a573f70670e748ff50aa194b
GET /banners/banners.js HTTP/1.1
Host: www.kursnalista.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Sun, 10 Jul 2022 10:44:43 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1261
content-type: application/javascript
date: Thu, 30 Nov 2023 09:20:26 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
142.250.74.131200 OK 35 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP 142.250.74.131:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 35120, version 1.0\012- data
Hash dd986ff1050050613be051863773d677
51a12487fd51cc02ca54a984f82d63318807ca2e
d9784dbf11886ea032ffbd00f499d333519babe001eacc19df7ab89de17bec47
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Nov 2023 21:36:44 GMT
expires: Wed, 27 Nov 2024 21:36:44 GMT
cache-control: public, max-age=31536000
age: 128622
last-modified: Thu, 14 Sep 2023 01:03:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.131200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.131:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 14:58:12 GMT
expires: Thu, 28 Nov 2024 14:58:12 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
age: 66134
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
142.250.74.131200 OK 35 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP 142.250.74.131:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 35120, version 1.0\012- data
Hash dd986ff1050050613be051863773d677
51a12487fd51cc02ca54a984f82d63318807ca2e
d9784dbf11886ea032ffbd00f499d333519babe001eacc19df7ab89de17bec47
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 28 Nov 2023 21:36:44 GMT
expires: Wed, 27 Nov 2024 21:36:44 GMT
cache-control: public, max-age=31536000
age: 128622
last-modified: Thu, 14 Sep 2023 01:03:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tobaltoyon.com/pfe/current/tag.min.js?z=1548391
139.45.197.251200 OK 54 kB URL GET HTTP/2 tobaltoyon.com/pfe/current/tag.min.js?z=1548391
IP 139.45.197.251:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecttobaltoyon.com
Fingerprint0B:06:51:6D:9B:70:A5:52:62:81:6E:8C:BB:F4:C5:79:81:70:53:7A
ValidityMon, 06 Nov 2023 05:04:47 GMT - Sun, 04 Feb 2024 05:04:46 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 9eac7161655cc2f52a4996536fd03289
d621aabff265f889f69e65c550bdbfe0b056252f
555f33c43024f05f881683da0ba3626fd212c13d41fbc2246de721204d5306de
GET /pfe/current/tag.min.js?z=1548391 HTTP/1.1
Host: tobaltoyon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:25 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 17:44:23 GMT
etag: W/"6564d577-33f4"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.131200 OK 50 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.131:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 50368, version 1.0\012- data
Hash 4facfd6ff39e147b7e39c4b1abe4117d
0f7c0d978c209d21eb3f55950fc43e77c196ec3b
a246c4de8a0f1f1fdb6ee52565018dc341063aa9efe8481034bc3ef7d697e334
GET /s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:08 GMT
expires: Fri, 29 Nov 2024 04:57:08 GMT
cache-control: public, max-age=31536000
age: 15798
last-modified: Thu, 14 Sep 2023 01:04:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/images/search-arrow.png
192.185.106.252200 OK 3.1 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/search-arrow.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 75 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f8933cdf4d27e317eb59959257f8c7a
b16e414fcb1561603cbf4ac404ec8b6fae1563ff
167925a8f225d7fc340317265409496b2d90e4313bd7d70bca4262bb1477eaf0
GET /wp-content/themes/vugla/images/search-arrow.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:13 GMT
accept-ranges: bytes
content-length: 3075
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:26 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:26 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/images/preloader.gif
192.185.106.252200 OK 1.7 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/preloader.gif
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type GIF image data, version 89a, 16 x 16\012- data
Hash dd6b7b0bf5c3af22499abc0a9ee1e1b2
e8c0018145d616fac4deb460d9c1d9c9dd4d3302
0eddaab3b8cb0b15d81d62e5ae5960329c3e576ea78dc321b20734ab20271847
GET /wp-content/themes/vugla/images/preloader.gif HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:08 GMT
accept-ranges: bytes
content-length: 1737
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:26 GMT
referrer-policy:
pragma: public
content-type: image/gif
date: Thu, 30 Nov 2023 09:20:26 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/pazljivo-s-cetvrtim-zidom.html
192.185.106.252200 OK 0 B URL User Request GET HTTP/2 www.vugla.com/pazljivo-s-cetvrtim-zidom.html
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pazljivo-s-cetvrtim-zidom.html HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-pingback: https://www.vugla.com/xmlrpc.php
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/", <https://www.vugla.com/wp-json/wp/v2/posts/574204>; rel="alternate"; type="application/json", <https://www.vugla.com/?p=574204>; rel=shortlink
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=10800
expires: Thu, 30 Nov 2023 12:20:26 GMT
vary: User-Agent
referrer-policy:
content-type: text/html; charset=UTF-8
date: Thu, 30 Nov 2023 09:20:26 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1
192.185.106.252200 OK 21 kB URL GET HTTP/2 www.vugla.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type gzip compressed data, from Unix\012- data
Hash 5864fb0dade1110cae0f520cdd2f7ff9
77141961cb6780ef4536aec17402d6dff4e6be4d
73db0ff487c3a08df518062a79c5a77bbc7c2bfbe4bdbe7569e2321aafd64863
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-type: text/css
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/pazljivo-s-cetvrtim-zidom.html
192.185.106.252200 OK 0 B URL User Request GET HTTP/2 www.vugla.com/pazljivo-s-cetvrtim-zidom.html
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /pazljivo-s-cetvrtim-zidom.html HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-pingback: https://www.vugla.com/xmlrpc.php
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/", <https://www.vugla.com/wp-json/wp/v2/posts/574204>; rel="alternate"; type="application/json", <https://www.vugla.com/?p=574204>; rel=shortlink
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=10800
expires: Thu, 30 Nov 2023 12:20:26 GMT
vary: User-Agent
referrer-policy:
content-type: text/html; charset=UTF-8
date: Thu, 30 Nov 2023 09:20:26 GMT
server: Apache
X-Firefox-Spdy: h2
my.rtmark.net/gid.js
139.45.195.8200 OK 65 B IP 139.45.195.8:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT
File type JSON data\012- , ASCII text
Hash abaed1cbad583f1e73b9c64103f8c7c9
3a2a544a18d369f576357f9e1338461660a434f0
d007d29306211ddac11caf7f62bb1ac495fc00dfd63f5763e77d7f84f1e8524d
GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:27 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=17c8d60688d94b8a82b59e3d46682cf2; expires=Fri, 29 Nov 2024 09:20:27 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
www.vugla.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
192.185.106.252200 OK 39 kB URL GET HTTP/2 www.vugla.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type gzip compressed data, from Unix\012- data
Hash 68081590f1aa5e1aa02cafc9187ed928
bbd97d4ae535b9874f06326a2fdbc697a8f979da
14381c625db7d28c859bd3cb5d06d1458a80da8fe8825360a80302da2a47c442
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-type: application/javascript
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
139.45.195.254200 OK 12 B URL POST HTTP/1.1 fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP 139.45.195.254:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerSectigo Limited
Subjectfleraprt.com
FingerprintA4:AF:A0:00:99:C9:85:E5:30:F6:F3:F2:B5:4F:AE:4F:D0:46:74:A9
ValidityMon, 09 Jan 2023 00:00:00 GMT - Sun, 14 Jan 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1689
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Thu, 30 Nov 2023 09:21:04 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
eehuzaih.com/500/5005565?excludes=&oaid=17c8d60688d94b8a82b59e3d46682cf2&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0
139.45.197.237200 OK 0 B URL OPTIONS HTTP/2 eehuzaih.com/500/5005565?excludes=&oaid=17c8d60688d94b8a82b59e3d46682cf2&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0
IP 139.45.197.237:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/5005565?excludes=&oaid=17c8d60688d94b8a82b59e3d46682cf2&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:27 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
www.variouscreativeformats.com/c3b6bab9a3e6c622d733121998e0014d/invoke.js
192.243.59.12200 OK 11 kB URL GET HTTP/1.1 www.variouscreativeformats.com/c3b6bab9a3e6c622d733121998e0014d/invoke.js
IP 192.243.59.12:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.variouscreativeformats.com
Fingerprint8B:21:A3:61:01:C7:2D:29:AF:11:C7:A7:A5:5E:E5:FD:AF:0E:05:43
ValidityMon, 27 Nov 2023 07:10:34 GMT - Sun, 25 Feb 2024 07:10:33 GMT
File type exported SGML document, ASCII text, with very long lines (29643), with no line terminators
Hash 223406d9dbf6d31ee7d9236d1c95ea29
8a45024df7b5013212b1fd369c5670655bd55b66
8eb1cd23b38e67fb1ec812debb06ff9f68891aeecaf2edeba8c0a73081c27ed0
GET /c3b6bab9a3e6c622d733121998e0014d/invoke.js HTTP/1.1
Host: www.variouscreativeformats.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 30 Nov 2023 09:20:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d1fa331edd8a0278525e9289d12dccea
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
region1.analytics.google.com/g/collect?v=2&tid=G-7NCJ73THPT>m=45je3b60v879882835&_p=1701336030632&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=490757387.1701336031&ul=en-us&sr=1280x1024&_s=1&sid=1701336030&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&dt=Pa%C5%BEljivo%20s%20%C4%8Detvrtim%20zidom!%20-%20Vugla&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3786
216.239.34.36204 No Content 0 B URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-7NCJ73THPT>m=45je3b60v879882835&_p=1701336030632&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=490757387.1701336031&ul=en-us&sr=1280x1024&_s=1&sid=1701336030&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&dt=Pa%C5%BEljivo%20s%20%C4%8Detvrtim%20zidom!%20-%20Vugla&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3786
IP 216.239.34.36:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7NCJ73THPT>m=45je3b60v879882835&_p=1701336030632&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=490757387.1701336031&ul=en-us&sr=1280x1024&_s=1&sid=1701336030&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&dt=Pa%C5%BEljivo%20s%20%C4%8Detvrtim%20zidom!%20-%20Vugla&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3786 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.vugla.com
date: Thu, 30 Nov 2023 09:20:27 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
eehuzaih.com/400/5005565
139.45.197.237200 OK 42 kB IP 139.45.197.237:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash d7abf279500956d3dbdc866f38c77454
5346b44dc2b4ae64f880bbb3ba9cf753a3778af2
c0fc95fcd0678499f63cf8492e26dd015e874a38ac4b355d5cbbc6c8b2fa38e3
GET /400/5005565 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:26 GMT
content-type: application/javascript
x-trace-id: 91c556e4ffa6a701a7e61fa75c2b239c
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=05e5d908c82a41e49d0a8f2e22b0ca56; expires=Fri, 29 Nov 2024 09:20:26 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.131200 OK 50 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.131:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 50368, version 1.0\012- data
Hash 4facfd6ff39e147b7e39c4b1abe4117d
0f7c0d978c209d21eb3f55950fc43e77c196ec3b
a246c4de8a0f1f1fdb6ee52565018dc341063aa9efe8481034bc3ef7d697e334
GET /s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:57:08 GMT
expires: Fri, 29 Nov 2024 04:57:08 GMT
cache-control: public, max-age=31536000
age: 15799
last-modified: Thu, 14 Sep 2023 01:04:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
proftrafficcounter.com/stats
18.185.191.211200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP 18.185.191.211:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 6ff2b07bec9e290697e893403d795f8b
135dcf855d2554dd1f5ad7f4fbcb040e966090dd
d9592a39d83194a51d2cb95aaee63218d463d580c8d05830aa1a39b507421c84
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:27 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.vugla.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=083c4dad-cf8d-4f03-b03f-1de1bfda2a25:2:1; expires=Sun, 27 Nov 2033 09:20:27 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3
192.185.106.252409 Conflict 83 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701336030.1.0.1701336031.59.0.0; _ga=GA1.1.490757387.1701336031
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 409 Conflict
date: Thu, 30 Nov 2023 09:20:27 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
proftrafficcounter.com/stats
18.185.191.211200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP 18.185.191.211:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 6ff2b07bec9e290697e893403d795f8b
135dcf855d2554dd1f5ad7f4fbcb040e966090dd
d9592a39d83194a51d2cb95aaee63218d463d580c8d05830aa1a39b507421c84
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: uid_id2=083c4dad-cf8d-4f03-b03f-1de1bfda2a25:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:27 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.vugla.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
tobaltoyon.com/zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0&sw=3.1.471
139.45.197.251200 OK 972 B URL GET HTTP/2 tobaltoyon.com/zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0&sw=3.1.471
IP 139.45.197.251:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecttobaltoyon.com
Fingerprint0B:06:51:6D:9B:70:A5:52:62:81:6E:8C:BB:F4:C5:79:81:70:53:7A
ValidityMon, 06 Nov 2023 05:04:47 GMT - Sun, 04 Feb 2024 05:04:46 GMT
File type JSON data\012- , ASCII text, with very long lines (971)
Hash 64f047fe127c40083700b04d3811ca27
8f6e71715f3ae8766c33ae08d590fdc202bd865d
0dd4bfd4e574ecf2df30bcd49a6afbc84ffe9a14227f17502561dfca63a51ac7
GET /zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0&sw=3.1.471 HTTP/1.1
Host: tobaltoyon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:27 GMT
content-type: application/json; charset=utf-8
content-length: 972
x-trace-id: 5d530eefcdc490c33e76b80db12c5312
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/images/small-social-sprite.png
192.185.106.252200 OK 3.8 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/small-social-sprite.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 272 x 95, 8-bit/color RGBA, non-interlaced\012- data
Hash 1aabf6dabc51ca6168aa98fbecbf79e2
0e4cb499aff16fedb2097658da7d2baa1bdafaa8
09ac67d0b81afe77f52b59ee9abc68ba2dd7cf0ebbc85703c75a76c2586e93aa
GET /wp-content/themes/vugla/images/small-social-sprite.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: _ga_7NCJ73THPT=GS1.1.1701336030.1.0.1701336031.59.0.0; _ga=GA1.1.490757387.1701336031
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:16 GMT
accept-ranges: bytes
content-length: 3812
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:27 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:27 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/images/top-arrow.png
192.185.106.252200 OK 305 B URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/top-arrow.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 50 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1fe20be2c98304e84623d10905435835
7ba0264f96984d92cfe0750c802f9af1ee7cb88b
1c3cbd61a972428028066c1e9abcfa7c0ef37d3b1de39d7b09455177a94eec52
GET /wp-content/themes/vugla/images/top-arrow.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: _ga_7NCJ73THPT=GS1.1.1701336030.1.0.1701336031.59.0.0; _ga=GA1.1.490757387.1701336031
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:25 GMT
accept-ranges: bytes
content-length: 305
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:27 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:27 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/stogodisnjica-velikog-arhitekte-jubilej-akademika-ivana-antica-u-sanu-i-na-arhitektonskom-fakultetu-290x166.jpg
192.185.106.252200 OK 9.6 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/stogodisnjica-velikog-arhitekte-jubilej-akademika-ivana-antica-u-sanu-i-na-arhitektonskom-fakultetu-290x166.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 85", baseline, precision 8, 290x166, components 3\012- data
Hash c3a52c766e5459c1cc80b94863c1b484
d0739686bc0b9da7c78e0fb92fa59bc84bf36535
de7583ae3760cb487e61560e41a35aa8b05f0c13b9a1a7b22f7cf0cb409b7483
GET /wp-content/uploads/2023/11/stogodisnjica-velikog-arhitekte-jubilej-akademika-ivana-antica-u-sanu-i-na-arhitektonskom-fakultetu-290x166.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701336030.1.0.1701336031.59.0.0; _ga=GA1.1.490757387.1701336031
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 30 Nov 2023 07:54:03 GMT
accept-ranges: bytes
content-length: 9555
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:27 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:27 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/zeljko-hubac-predstava-34-sanjao-sam-da-sam-se-probudio-34-govori-o-pozoristu-290x166.jpg
192.185.106.252200 OK 5.6 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/zeljko-hubac-predstava-34-sanjao-sam-da-sam-se-probudio-34-govori-o-pozoristu-290x166.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 290x166, components 3\012- data
Hash 7684e2bf962c5d6964d4bad7f6474bbe
4eff059302a86cf68be10c21ac799ee4c7439022
9553786dbb37f9641bd5ad5f9c8d1a701f8e0bc1bfc917d8ad6a85d64b457c94
GET /wp-content/uploads/2023/11/zeljko-hubac-predstava-34-sanjao-sam-da-sam-se-probudio-34-govori-o-pozoristu-290x166.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701336030.1.0.1701336031.59.0.0; _ga=GA1.1.490757387.1701336031
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 30 Nov 2023 07:54:09 GMT
accept-ranges: bytes
content-length: 5623
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:27 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:27 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/premijera-predstave-34-vanja-sonja-masa-i-ostali-34-u-ateljeu-212-1-decembra-u-20h-290x166.jpg
192.185.106.252200 OK 12 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/premijera-predstave-34-vanja-sonja-masa-i-ostali-34-u-ateljeu-212-1-decembra-u-20h-290x166.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 290x166, components 3\012- data
Hash 2c6d48de655e0b84c8267874b408f68e
71978f70a29d9bec5a6438de135dc5c1773666fd
327f110946a384290ce2e94d53b085095bd5634af2be27f03bacb91397e510cf
GET /wp-content/uploads/2023/11/premijera-predstave-34-vanja-sonja-masa-i-ostali-34-u-ateljeu-212-1-decembra-u-20h-290x166.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701336030.1.0.1701336031.59.0.0; _ga=GA1.1.490757387.1701336031
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 30 Nov 2023 07:18:44 GMT
accept-ranges: bytes
content-length: 11838
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:27 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:27 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/uliks-fehmiu-je-osvojio-jednu-od-nasih-najlepsih-glumica-u-braku-su-tri-decenije-zive-u-njujorku-i-tamo-su-razvili-biznis-290x166.jpg
192.185.106.252200 OK 11 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/uliks-fehmiu-je-osvojio-jednu-od-nasih-najlepsih-glumica-u-braku-su-tri-decenije-zive-u-njujorku-i-tamo-su-razvili-biznis-290x166.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 150x150, segment length 16, baseline, precision 8, 290x166, components 3\012- data
Hash f95078cd6cee4a33ab063ea41fd7e7f8
32abd1afe63faa5135bce77ebf551d5646360681
f649c0db170058b5c13ce68e80f41e909bed17de8f91960c50c4ba41ffc77376
GET /wp-content/uploads/2023/11/uliks-fehmiu-je-osvojio-jednu-od-nasih-najlepsih-glumica-u-braku-su-tri-decenije-zive-u-njujorku-i-tamo-su-razvili-biznis-290x166.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701336030.1.0.1701336031.59.0.0; _ga=GA1.1.490757387.1701336031
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 30 Nov 2023 07:18:39 GMT
accept-ranges: bytes
content-length: 10969
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:27 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:27 GMT
server: Apache
X-Firefox-Spdy: h2
offerimage.com/www/images/b89a854cfb66584b3f5fef24e571e8b5.png
172.67.22.216200 OK 93 kB URL GET HTTP/2 offerimage.com/www/images/b89a854cfb66584b3f5fef24e571e8b5.png
IP 172.67.22.216:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash b89a854cfb66584b3f5fef24e571e8b5
9bb5f94bcc641c8cfbc2e24f0a2af5bd07a3a1ea
7228a1274993f4e608b4f0952b2197db136917df3d8ae95ea16a9a34769945e7
GET /www/images/b89a854cfb66584b3f5fef24e571e8b5.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:27 GMT
content-type: image/png
content-length: 92662
last-modified: Thu, 03 Jun 2021 06:45:06 GMT
etag: "60b87a72-169f6"
expires: Thu, 30 Nov 2023 16:10:07 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 61817
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e203bbeba81c02-OSL
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3
192.185.106.252409 Conflict 83 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701336030.1.0.1701336031.59.0.0; _ga=GA1.1.490757387.1701336031; prefetchAd_1316441=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 409 Conflict
date: Thu, 30 Nov 2023 09:20:27 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.kursnalista.co/banners/it-servis/it-servis-300x600-2.jpg
192.185.106.47200 OK 124 kB URL GET HTTP/2 www.kursnalista.co/banners/it-servis/it-servis-300x600-2.jpg
IP 192.185.106.47:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.kursnalista.co
Fingerprint1C:D4:9B:DE:4F:51:D3:F0:32:B2:6C:A1:1C:03:E2:3E:18:FC:D4:2A
ValidityMon, 20 Nov 2023 10:01:16 GMT - Sun, 18 Feb 2024 10:01:15 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x600, components 3\012- data
Size 124 kB (123820 bytes)
Hash e71b4edcde774c6af3b26df2f366abe9
ab409535626af65b2c499f3311455f59fc62c97b
070c30332d949e9975add2a3306611c6072d77fecfd73b74c04195e23861e173
GET /banners/it-servis/it-servis-300x600-2.jpg HTTP/1.1
Host: www.kursnalista.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 10 Jul 2022 10:44:29 GMT
accept-ranges: bytes
content-length: 123820
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:27 GMT
server: Apache
X-Firefox-Spdy: h2
tobaltoyon.com/pfe/current/universal.min.js?v=3.1.471
139.45.197.251200 OK 33 kB URL GET HTTP/2 tobaltoyon.com/pfe/current/universal.min.js?v=3.1.471
IP 139.45.197.251:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecttobaltoyon.com
Fingerprint0B:06:51:6D:9B:70:A5:52:62:81:6E:8C:BB:F4:C5:79:81:70:53:7A
ValidityMon, 06 Nov 2023 05:04:47 GMT - Sun, 04 Feb 2024 05:04:46 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash d46d2997ab218d1dba1ab614422ed53f
3f1f6b9847c8ad209835db366c62fcb209b83a67
09e8ce2dfeac0ad09cd24788931b38ea7e7592f2c28eecc324b2dd1cd69d1b42
GET /pfe/current/universal.min.js?v=3.1.471 HTTP/1.1
Host: tobaltoyon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:27 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 17:44:23 GMT
etag: W/"6564d577-1572c"
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
142.250.74.78 226 B URL apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP 142.250.74.78:0
Certificate IssuerGoogle Trust Services LLC
Subject*.apis.google.com
Fingerprint06:87:C0:63:02:21:98:02:BD:FC:A0:11:93:E9:3A:9F:51:21:06:D8
ValidityMon, 23 Oct 2023 11:25:10 GMT - Mon, 15 Jan 2024 11:25:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 4df07581948280a6e769a24c5d99d775
843a2c95362347eb8894a6acb607f139be65ded4
3561b93a48d81fac116ccd6e60163bd382abb1d594c81240f5718feb1f197f73
GET /u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 301 Moved Permanently
location: http://developers.google.com/
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 30 Nov 2023 09:20:27 GMT
expires: Thu, 30 Nov 2023 09:50:27 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tobaltoyon.com/custom
139.45.197.251200 OK 0 B IP 139.45.197.251:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecttobaltoyon.com
Fingerprint0B:06:51:6D:9B:70:A5:52:62:81:6E:8C:BB:F4:C5:79:81:70:53:7A
ValidityMon, 06 Nov 2023 05:04:47 GMT - Sun, 04 Feb 2024 05:04:46 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: tobaltoyon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:27 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?pub=0&userId=5a33ef50a30a4074b48667e687afb50b&zoneId=1548391&checkDuplicate=true&ymid=&var=
139.45.195.8200 OK 65 B URL GET HTTP/2 my.rtmark.net/gid.js?pub=0&userId=5a33ef50a30a4074b48667e687afb50b&zoneId=1548391&checkDuplicate=true&ymid=&var=
IP 139.45.195.8:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT
File type JSON data\012- , ASCII text
Hash abaed1cbad583f1e73b9c64103f8c7c9
3a2a544a18d369f576357f9e1338461660a434f0
d007d29306211ddac11caf7f62bb1ac495fc00dfd63f5763e77d7f84f1e8524d
GET /gid.js?pub=0&userId=5a33ef50a30a4074b48667e687afb50b&zoneId=1548391&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Cookie: ID=17c8d60688d94b8a82b59e3d46682cf2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:27 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=17c8d60688d94b8a82b59e3d46682cf2; expires=Fri, 29 Nov 2024 09:20:27 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
tobaltoyon.com/custom
139.45.197.251200 OK 39 B IP 139.45.197.251:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecttobaltoyon.com
Fingerprint0B:06:51:6D:9B:70:A5:52:62:81:6E:8C:BB:F4:C5:79:81:70:53:7A
ValidityMon, 06 Nov 2023 05:04:47 GMT - Sun, 04 Feb 2024 05:04:46 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: tobaltoyon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 389
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:28 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 2b92febb6dc6d5bff9de1e1a7b9b6f6e
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
tharbadir.com/11?rnd=234677390&z=2892323&b=19427765&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=mBbFpRSgky5UGK5XmP3JDwXMcZOUaNYYAW-P492cbK490EB0oFJrpRQ3So8fvQuUsPfKt3HdxJ4irKnj1jAFxAAByOj9ySsp-hT92tKjkWgJtXFAtLHNGIDvZxK8ItVJDHfUeZgHu8vgukUElGdvlQiYLBtZUOD-pdUmLXL1gjmYc7C2Hi3wj-JG_8_Vm8--6x4VgMYZr9k_tT2vUTG2BJ5Rik4FyN2K8b-kidgDrhKYTcnAnTxYPK9IN1URzpDOA4JZIVgN4wbLJspmjt3EF6Vg4wLYcMLiGHRNkIfn31CiBb7TXOnemKh3gUC3G15H7HLXy_zi63td870ixbUKNNvixlCEWYEsPMYmg8v-LHeyiSevlbzwSJcqMh9txsdTtXC0X9tnimIscIgxMSpeDR0N3OCdngtYkqpKf8k3ohXTVvuPDZC8jWrsd_wZ8oEcw4ZWefF_bTOkvH1YpA49BYgOQbldA2G0_u-UhYIn-AdPH_EX8MqByr-aG076P1cxqv-adbtXTyPxYy4-ybrWbYvM-znpqiBCuqhNdD8hoYE96GPCnkbXxj9rjq9oGgtYqILnj77XSs03n6BYJfV_jxNRa61yVdWBhN8v5UktJFL8krdajC4cMPZtiNg7nBtsvr4SDN7cJUKFvF6ZZaGaRmtgLJMK-bCU3pBOOg==&ruid=da074ae2-71bd-44db-8959-9031e6224175&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ot=250
139.45.197.238200 OK 0 B URL GET HTTP/2 tharbadir.com/11?rnd=234677390&z=2892323&b=19427765&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=mBbFpRSgky5UGK5XmP3JDwXMcZOUaNYYAW-P492cbK490EB0oFJrpRQ3So8fvQuUsPfKt3HdxJ4irKnj1jAFxAAByOj9ySsp-hT92tKjkWgJtXFAtLHNGIDvZxK8ItVJDHfUeZgHu8vgukUElGdvlQiYLBtZUOD-pdUmLXL1gjmYc7C2Hi3wj-JG_8_Vm8--6x4VgMYZr9k_tT2vUTG2BJ5Rik4FyN2K8b-kidgDrhKYTcnAnTxYPK9IN1URzpDOA4JZIVgN4wbLJspmjt3EF6Vg4wLYcMLiGHRNkIfn31CiBb7TXOnemKh3gUC3G15H7HLXy_zi63td870ixbUKNNvixlCEWYEsPMYmg8v-LHeyiSevlbzwSJcqMh9txsdTtXC0X9tnimIscIgxMSpeDR0N3OCdngtYkqpKf8k3ohXTVvuPDZC8jWrsd_wZ8oEcw4ZWefF_bTOkvH1YpA49BYgOQbldA2G0_u-UhYIn-AdPH_EX8MqByr-aG076P1cxqv-adbtXTyPxYy4-ybrWbYvM-znpqiBCuqhNdD8hoYE96GPCnkbXxj9rjq9oGgtYqILnj77XSs03n6BYJfV_jxNRa61yVdWBhN8v5UktJFL8krdajC4cMPZtiNg7nBtsvr4SDN7cJUKFvF6ZZaGaRmtgLJMK-bCU3pBOOg==&ruid=da074ae2-71bd-44db-8959-9031e6224175&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ot=250
IP 139.45.197.238:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /11?rnd=234677390&z=2892323&b=19427765&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=mBbFpRSgky5UGK5XmP3JDwXMcZOUaNYYAW-P492cbK490EB0oFJrpRQ3So8fvQuUsPfKt3HdxJ4irKnj1jAFxAAByOj9ySsp-hT92tKjkWgJtXFAtLHNGIDvZxK8ItVJDHfUeZgHu8vgukUElGdvlQiYLBtZUOD-pdUmLXL1gjmYc7C2Hi3wj-JG_8_Vm8--6x4VgMYZr9k_tT2vUTG2BJ5Rik4FyN2K8b-kidgDrhKYTcnAnTxYPK9IN1URzpDOA4JZIVgN4wbLJspmjt3EF6Vg4wLYcMLiGHRNkIfn31CiBb7TXOnemKh3gUC3G15H7HLXy_zi63td870ixbUKNNvixlCEWYEsPMYmg8v-LHeyiSevlbzwSJcqMh9txsdTtXC0X9tnimIscIgxMSpeDR0N3OCdngtYkqpKf8k3ohXTVvuPDZC8jWrsd_wZ8oEcw4ZWefF_bTOkvH1YpA49BYgOQbldA2G0_u-UhYIn-AdPH_EX8MqByr-aG076P1cxqv-adbtXTyPxYy4-ybrWbYvM-znpqiBCuqhNdD8hoYE96GPCnkbXxj9rjq9oGgtYqILnj77XSs03n6BYJfV_jxNRa61yVdWBhN8v5UktJFL8krdajC4cMPZtiNg7nBtsvr4SDN7cJUKFvF6ZZaGaRmtgLJMK-bCU3pBOOg==&ruid=da074ae2-71bd-44db-8959-9031e6224175&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ot=250 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=17c8d60688d94b8a82b59e3d46682cf2; oaidts=1701336025
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:28 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 12e2d8f5f675dc00ced53df9709b9832
access-control-expose-headers: X-Sc
set-cookie: OAID=17c8d60688d94b8a82b59e3d46682cf2; expires=Fri, 29 Nov 2024 09:20:28 GMT; secure; SameSite=None
oaidts=1701336025; expires=Fri, 29 Nov 2024 09:20:28 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
amunfezanttor.com/event
139.45.197.250200 OK 0 B IP 139.45.197.250:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
OPTIONS /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:28 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
amunfezanttor.com/event
139.45.197.250200 OK 94 B IP 139.45.197.250:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT
File type JSON data\012- , ASCII text
Hash 6b4f57d02d6eac5af8cdf68eb367285a
836c79d75a730b31ce773cc354f98851ac2e661f
d83ad3d4d1cb2faa912e0a1625815e1b26d9e77a1f76eaf78a70fdb5a7084ee9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 528
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:28 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
linearsubdued.com/ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3
192.243.59.20200 OK 13 kB URL GET HTTP/1.1 linearsubdued.com/ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectlinearsubdued.com
Fingerprint69:28:D3:FA:B8:3E:5F:1E:98:DE:D9:C4:45:4D:0C:BB:C3:40:19:21
ValidityTue, 28 Nov 2023 07:52:02 GMT - Mon, 26 Feb 2024 07:52:01 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (12696), with no line terminators
Hash 5f9adc6d9110d50a145f0486c100edea
5d2867df5d981e7c41263b28b6ec6969ad740254
0f72206ecc6299febdfdc4cfb3020877aff8a6825f331c67a77e2488e052769c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3 HTTP/1.1
Host: linearsubdued.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 30 Nov 2023 09:20:27 GMT
Content-Type: application/json
Content-Length: 12697
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16310791; expires=Fri, 01 Dec 2023 09:20:27 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 01 Dec 2023 09:20:27 GMT; secure; SameSite=None
uncs=1; expires=Fri, 01 Dec 2023 09:20:27 GMT; secure; SameSite=None
pdhtkv49=true; expires=Fri, 01 Dec 2023 09:20:27 GMT; secure; SameSite=None
uncs49=1; expires=Fri, 01 Dec 2023 09:20:27 GMT; secure; SameSite=None
nlecc9123167a2366d360cd4d80dad2ac358=[2106764,2229215,3637745]; expires=Thu, 30 Nov 2023 09:20:32 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 00a6b5280a21debcc6fea033c435790a
Strict-Transport-Security: max-age=0; includeSubdomains
amunfezanttor.com/event
139.45.197.250200 OK 94 B IP 139.45.197.250:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT
File type JSON data\012- , ASCII text
Hash 8d3fc36d7ae5f3fb7b14eddf63b19230
d4997b567d2f4d627f0631f4ef3770710fc85bf1
a1f54bc252befc7b0e91c22804522542ab1b5be3a78f2b5658788a614c02c2b5
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 528
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:28 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.profitabledisplaycontent.com/watch.1570667450936.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22pa%C5%BEljivo%22%2C%22s%22%2C%22%C4%8Detvrtim%22%2C%22zidom%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&tz=0&dev=e&res=14.3095&uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25%3A2%3A1
192.243.61.227307 Temporary Redirect 0 B URL GET HTTP/1.1 www.profitabledisplaycontent.com/watch.1570667450936.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22pa%C5%BEljivo%22%2C%22s%22%2C%22%C4%8Detvrtim%22%2C%22zidom%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&tz=0&dev=e&res=14.3095&uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25%3A2%3A1
IP 192.243.61.227:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
FingerprintBC:B2:C0:16:AD:03:A4:DB:B0:5F:7C:62:AD:82:14:75:59:70:3C:26
ValidityMon, 02 Oct 2023 06:56:19 GMT - Sun, 31 Dec 2023 06:56:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.1570667450936.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22pa%C5%BEljivo%22%2C%22s%22%2C%22%C4%8Detvrtim%22%2C%22zidom%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&tz=0&dev=e&res=14.3095&uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25%3A2%3A1 HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 09:20:28 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Location: https://www.profitabledisplaycontent.com/watch.1570667450936.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22pa%C5%BEljivo%22%2C%22s%22%2C%22%C4%8Detvrtim%22%2C%22zidom%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&tz=0&dev=e&res=14.3095&uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25%3A2%3A1&shu=addb10f97df2e2b1ae02cf49f9cea9870c459877bb243546157111c8f0513886d6f6fe04f50e86216f90decdb7f67e05185cbf5aafad5041269429f603f63b36702d74e30526a5d7fc7050a1b988c890f1f4c0027082cda63d124ff8ce32f4f808c9dd&pst=1701336088&rmtc=t
Set-Cookie: u_pl=14611544; expires=Fri, 01 Dec 2023 09:20:28 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNDYxMTU0NCwiayI6ImMzYjZiYWI5YTNlNmM2MjJkNzMzMTIxOTk4ZTAwMTRkIiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxMDcwMTYsInBpZCI6ODU0ODQsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MjEsImFpZCI6MjcsInB0Ijo0LCJwayI6ImUydHg4d3EydHciLCJ0IjoxfSwidSI6eyJ1IjoxLCJhdSI6MSwiZCI6eyJpZCI6OTA3NTM0NTcsImlkcyI6IiIsImljIjpmYWxzZSwibiI6IkRlc2t0b3AsRW11bGF0b3IiLCJ2IjoiVW5rbm93biIsIm0iOiJVbmtub3duIiwiZiI6MSwiZm4iOiJEZXNrdG9wIiwib2lkIjozODkxNCwib24iOiJXaW5kb3dzIiwib3YiOiIxMC4wIiwiYmlkIjoxMjA2MjUsImJuIjoiRmlyZWZveCIsImJ2IjoiMTA1LjAiLCJ3diI6ZmFsc2UsImUiOnRydWUsImFiIjpmYWxzZX0sImMiOnsiaWQiOjE2MiwiYyI6Ik5PIiwibiI6Ik5vcndheSJ9LCJhIjpmYWxzZSwiY3IiOnsibiI6IkJsaXggU29sdXRpb25zIn0sInhmIjoiIiwiaXhmIjpmYWxzZSwiaWd4ZiI6ZmFsc2UsInVwIjp0cnVlLCJyIjoiaHR0cHM6Ly93d3cudnVnbGEuY29tL3BhemxqaXZvLXMtY2V0dnJ0aW0temlkb20uaHRtbCJ9fQ.lF9VshP0LUfp0ehDBqs3vRVggP25lD0UEheaYuPaSL4; expires=Thu, 30 Nov 2023 09:21:28 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 690ed741dd8d5eb5685eab2786c1e77e
Strict-Transport-Security: max-age=0; includeSubdomains
linearsubdued.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3snHt%2BhBXLwIHhpBUZBJ9%2Fwe97C4rivBbBI3KzlXV1VPylR3NVXd05Ocsi7IHjyMeFFPnWeSDbuGxf0DFJl4WQJC5iJBjOBN8CLCskfp2YHRF6re96nnPTzP%2B9ane9k58ZDRs7UbekcqRRebVc99Y0PGXOfWXbnl%2Bl7Vu%2BxuyLjVuOwOysv03%2Fa9ZtV7031fsC29WPN8z%2FM9370ujQj1YHHKQiZHXb%2Fa9aqNWtVvNjAw%2F8U2c2CpA94%2FJ5cg%2BeR%2Fm48fQbIx4ujba8JupTp5670oUzTVBn1%2B%2BFG8Fes8RjQvQ%2BMgjA9n3dB2QsiXF6Djw5kD6P5%2B6QCBnBDnZx9BfDiTiaB%2F8ExpoCBiBPx55P0xhBpD0jGYvgPJTwnAOFZWEUf3VrTJ6fYzlpbshCw8%2BRsyn5CFX19CHD28quTAXdcqS6WOLQZhATkYQ%2FbGSLJjpDsOZH4Mln4CyX8ii0%2BWEUf7q1ZpSF5M3Us5hgzHUGIIah1k5ZEOstBBljiI%2BJlLm93Q89phENbrnQZjrF5nrNlp8SavNzqhh4yV8oZIkyGYGoKZXSRmF1vy89PmJZjsB9jNApY7sOmEOB%2Fuos8L5IIgtwQ5JcglQZ4S5P3igCtbs8U9rmwW%2BLNcm%2BV6MdJpb48e6LQnYrKXnJMXp6N5%2Bvv%2FsSXOXNb1a3W%2F1aa1eqvF6y2P8QbveJzyGmX1ZgdWFpD2wtTtTrknXERS5ht%2FIqDHsOoYTFZAMx80H7VrHujmqNHxsBPf72c9RatMR%2BC6QJIuIN129tQ5eXkqwn3tMwh2cuXBK0cX%2Fdf%2FADMFElPgY%2FkjQU%2FdHd3UOdm%2FqXNLHq0mqYzkDi13t57SVFQefCC2c2340jU7vP8OK4myPLolbLpMYy7jniXfXJWcC3NdGybId0t2QwRrmd28mpk4S5bX3r2%2BFCVGWCt1PAaVp6tPweSELNz%2BfvorX5g8hDRjmKxAlJ2QWUDqY7BkFzaZq7eawKh5T5A4yLNiZGrB%2FFFJAiXmmAYF7L9wMK%2F37F30TAU0vYM4KtA3BfqqAFVD2Oy5UZqYkyuPvyrjawSqMgqUqewHyqgvpqOdkFcrv01I%2B%2FZfsPLMFc3QC4VXE0HYDcI29Xg3bHQD2vVFO2hSH6mdiM31X%2F4BAAD%2F%2FwEAAP%2F%2FV%2BlhPncEAAA%3D
192.243.59.20200 OK 7 B URL GET HTTP/1.1 linearsubdued.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3snHt%2BhBXLwIHhpBUZBJ9%2Fwe97C4rivBbBI3KzlXV1VPylR3NVXd05Ocsi7IHjyMeFFPnWeSDbuGxf0DFJl4WQJC5iJBjOBN8CLCskfp2YHRF6re96nnPTzP%2B9ane9k58ZDRs7UbekcqRRebVc99Y0PGXOfWXbnl%2Bl7Vu%2BxuyLjVuOwOysv03%2Fa9ZtV7031fsC29WPN8z%2FM9370ujQj1YHHKQiZHXb%2Fa9aqNWtVvNjAw%2F8U2c2CpA94%2FJ5cg%2BeR%2Fm48fQbIx4ujba8JupTp5670oUzTVBn1%2B%2BFG8Fes8RjQvQ%2BMgjA9n3dB2QsiXF6Djw5kD6P5%2B6QCBnBDnZx9BfDiTiaB%2F8ExpoCBiBPx55P0xhBpD0jGYvgPJTwnAOFZWEUf3VrTJ6fYzlpbshCw8%2BRsyn5CFX19CHD28quTAXdcqS6WOLQZhATkYQ%2FbGSLJjpDsOZH4Mln4CyX8ii0%2BWEUf7q1ZpSF5M3Us5hgzHUGIIah1k5ZEOstBBljiI%2BJlLm93Q89phENbrnQZjrF5nrNlp8SavNzqhh4yV8oZIkyGYGoKZXSRmF1vy89PmJZjsB9jNApY7sOmEOB%2Fuos8L5IIgtwQ5JcglQZ4S5P3igCtbs8U9rmwW%2BLNcm%2BV6MdJpb48e6LQnYrKXnJMXp6N5%2Bvv%2FsSXOXNb1a3W%2F1aa1eqvF6y2P8QbveJzyGmX1ZgdWFpD2wtTtTrknXERS5ht%2FIqDHsOoYTFZAMx80H7VrHujmqNHxsBPf72c9RatMR%2BC6QJIuIN129tQ5eXkqwn3tMwh2cuXBK0cX%2Fdf%2FADMFElPgY%2FkjQU%2FdHd3UOdm%2FqXNLHq0mqYzkDi13t57SVFQefCC2c2340jU7vP8OK4myPLolbLpMYy7jniXfXJWcC3NdGybId0t2QwRrmd28mpk4S5bX3r2%2BFCVGWCt1PAaVp6tPweSELNz%2BfvorX5g8hDRjmKxAlJ2QWUDqY7BkFzaZq7eawKh5T5A4yLNiZGrB%2FFFJAiXmmAYF7L9wMK%2F37F30TAU0vYM4KtA3BfqqAFVD2Oy5UZqYkyuPvyrjawSqMgqUqewHyqgvpqOdkFcrv01I%2B%2FZfsPLMFc3QC4VXE0HYDcI29Xg3bHQD2vVFO2hSH6mdiM31X%2F4BAAD%2F%2FwEAAP%2F%2FV%2BlhPncEAAA%3D
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectlinearsubdued.com
Fingerprint69:28:D3:FA:B8:3E:5F:1E:98:DE:D9:C4:45:4D:0C:BB:C3:40:19:21
ValidityTue, 28 Nov 2023 07:52:02 GMT - Mon, 26 Feb 2024 07:52:01 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRuu3snHt%2BhBXLwIHhpBUZBJ9%2Fwe97C4rivBbBI3KzlXV1VPylR3NVXd05Ocsi7IHjyMeFFPnWeSDbuGxf0DFJl4WQJC5iJBjOBN8CLCskfp2YHRF6re96nnPTzP%2B9ane9k58ZDRs7UbekcqRRebVc99Y0PGXOfWXbnl%2Bl7Vu%2BxuyLjVuOwOysv03%2Fa9ZtV7031fsC29WPN8z%2FM9370ujQj1YHHKQiZHXb%2Fa9aqNWtVvNjAw%2F8U2c2CpA94%2FJ5cg%2BeR%2Fm48fQbIx4ujba8JupTp5670oUzTVBn1%2B%2BFG8Fes8RjQvQ%2BMgjA9n3dB2QsiXF6Djw5kD6P5%2B6QCBnBDnZx9BfDiTiaB%2F8ExpoCBiBPx55P0xhBpD0jGYvgPJTwnAOFZWEUf3VrTJ6fYzlpbshCw8%2BRsyn5CFX19CHD28quTAXdcqS6WOLQZhATkYQ%2FbGSLJjpDsOZH4Mln4CyX8ii0%2BWEUf7q1ZpSF5M3Us5hgzHUGIIah1k5ZEOstBBljiI%2BJlLm93Q89phENbrnQZjrF5nrNlp8SavNzqhh4yV8oZIkyGYGoKZXSRmF1vy89PmJZjsB9jNApY7sOmEOB%2Fuos8L5IIgtwQ5JcglQZ4S5P3igCtbs8U9rmwW%2BLNcm%2BV6MdJpb48e6LQnYrKXnJMXp6N5%2Bvv%2FsSXOXNb1a3W%2F1aa1eqvF6y2P8QbveJzyGmX1ZgdWFpD2wtTtTrknXERS5ht%2FIqDHsOoYTFZAMx80H7VrHujmqNHxsBPf72c9RatMR%2BC6QJIuIN129tQ5eXkqwn3tMwh2cuXBK0cX%2Fdf%2FADMFElPgY%2FkjQU%2FdHd3UOdm%2FqXNLHq0mqYzkDi13t57SVFQefCC2c2340jU7vP8OK4myPLolbLpMYy7jniXfXJWcC3NdGybId0t2QwRrmd28mpk4S5bX3r2%2BFCVGWCt1PAaVp6tPweSELNz%2BfvorX5g8hDRjmKxAlJ2QWUDqY7BkFzaZq7eawKh5T5A4yLNiZGrB%2FFFJAiXmmAYF7L9wMK%2F37F30TAU0vYM4KtA3BfqqAFVD2Oy5UZqYkyuPvyrjawSqMgqUqewHyqgvpqOdkFcrv01I%2B%2FZfsPLMFc3QC4VXE0HYDcI29Xg3bHQD2vVFO2hSH6mdiM31X%2F4BAAD%2F%2FwEAAP%2F%2FV%2BlhPncEAAA%3D HTTP/1.1
Host: linearsubdued.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 30 Nov 2023 09:20:28 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2e4803506b2424e99bc00d17a4b53318
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/cti/4e/61/98/4e619871efbab123abb0e0121e08e11d/1628586907.jpg
45.133.44.9200 OK 23 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/4e/61/98/4e619871efbab123abb0e0121e08e11d/1628586907.jpg
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash c6f19781c79ff746b99178f813cfbff2
5c307e43c63001535aa3a3683777dbb1a7f0775b
816b5a5d078f27271fa2d7c210d708f386a6f9fbd9242531b07f0b051382870d
GET /cti/4e/61/98/4e619871efbab123abb0e0121e08e11d/1628586907.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:28 GMT
content-type: image/jpeg
content-length: 22883
server: nginx/1.21.6
last-modified: Tue, 10 Aug 2021 09:15:16 GMT
etag: "611243a4-5963"
expires: Sat, 02 Dec 2023 09:20:28 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
interbuzznews.com/contents/s/1c/09/63/75a534c6a2bf3b7f1ca702d1c7/0114732544225.jpeg
139.45.197.154200 OK 9.3 kB URL GET HTTP/2 interbuzznews.com/contents/s/1c/09/63/75a534c6a2bf3b7f1ca702d1c7/0114732544225.jpeg
IP 139.45.197.154:443
Requested by https://interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D4054976349%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DmBbFpRSgky5UGK5XmP3JDwXMcZOUaNYYAW-P492cbK490EB0oFJrpRQ3So8fvQuUsPfKt3HdxJ4irKnj1jAFxAAByOj9ySsp-hT92tKjkWgJtXFAtLHNGIDvZxK8ItVJDHfUeZgHu8vgukUElGdvlQiYLBtZUOD-pdUmLXL1gjmYc7C2Hi3wj-JG_8_Vm8--6x4VgMYZr9k_tT2vUTG2BJ5Rik4FyN2K8b-kidgDrhKYTcnAnTxYPK9IN1URzpDOA4JZIVgN4wbLJspmjt3EF6Vg4wLYcMLiGHRNkIfn31CiBb7TXOnemKh3gUC3G15H7HLXy_zi63td870ixbUKNNvixlCEWYEsPMYmg8v-LHeyiSevlbzwSJcqMh9txsdTtXC0X9tnimIscIgxMSpeDR0N3OCdngtYkqpKf8k3ohXTVvuPDZC8jWrsd_wZ8oEcw4ZWefF_bTOkvH1YpA49BYgOQbldA2G0_u-UhYIn-AdPH_EX8MqByr-aG076P1cxqv-adbtXTyPxYy4-ybrWbYvM-znpqiBCuqhNdD8hoYE96GPCnkbXxj9rjq9oGgtYqILnj77XSs03n6BYJfV_jxNRa61yVdWBhN8v5UktJFL8krdajC4cMPZtiNg7nBtsvr4SDN7cJUKFvF6ZZaGaRmtgLJMK-bCU3pBOOg%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3Dda074ae2-71bd-44db-8959-9031e6224175%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fpazljivo-s-cetvrtim-zidom.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Certificate IssuerLet's Encrypt
Subjectinterbuzznews.com
FingerprintB5:C4:C7:F0:3F:BC:50:A9:21:50:39:B8:F8:2E:7E:72:56:62:E7:33
ValidityFri, 22 Sep 2023 05:18:00 GMT - Thu, 21 Dec 2023 05:17:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 1c096375a534c6a2bf3b7f1ca702d1c7
99b923326a9c71c15a252c43e47d586a8936bfb1
e9f457f6e6a31b5e1a741d024c107d10a58df50a62707c7883da864ce7191cc2
GET /contents/s/1c/09/63/75a534c6a2bf3b7f1ca702d1c7/0114732544225.jpeg HTTP/1.1
Host: interbuzznews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D4054976349%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DmBbFpRSgky5UGK5XmP3JDwXMcZOUaNYYAW-P492cbK490EB0oFJrpRQ3So8fvQuUsPfKt3HdxJ4irKnj1jAFxAAByOj9ySsp-hT92tKjkWgJtXFAtLHNGIDvZxK8ItVJDHfUeZgHu8vgukUElGdvlQiYLBtZUOD-pdUmLXL1gjmYc7C2Hi3wj-JG_8_Vm8--6x4VgMYZr9k_tT2vUTG2BJ5Rik4FyN2K8b-kidgDrhKYTcnAnTxYPK9IN1URzpDOA4JZIVgN4wbLJspmjt3EF6Vg4wLYcMLiGHRNkIfn31CiBb7TXOnemKh3gUC3G15H7HLXy_zi63td870ixbUKNNvixlCEWYEsPMYmg8v-LHeyiSevlbzwSJcqMh9txsdTtXC0X9tnimIscIgxMSpeDR0N3OCdngtYkqpKf8k3ohXTVvuPDZC8jWrsd_wZ8oEcw4ZWefF_bTOkvH1YpA49BYgOQbldA2G0_u-UhYIn-AdPH_EX8MqByr-aG076P1cxqv-adbtXTyPxYy4-ybrWbYvM-znpqiBCuqhNdD8hoYE96GPCnkbXxj9rjq9oGgtYqILnj77XSs03n6BYJfV_jxNRa61yVdWBhN8v5UktJFL8krdajC4cMPZtiNg7nBtsvr4SDN7cJUKFvF6ZZaGaRmtgLJMK-bCU3pBOOg%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3Dda074ae2-71bd-44db-8959-9031e6224175%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fpazljivo-s-cetvrtim-zidom.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:28 GMT
content-type: image/jpeg
content-length: 9303
last-modified: Tue, 31 Oct 2023 04:03:52 GMT
vary: Accept-Encoding
etag: "65407ca8-2457"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
linearsubdued.com/65/aa/28/65aa283021630dfd9030555c4c61a78c.js
192.243.59.20200 OK 23 kB URL GET HTTP/1.1 linearsubdued.com/65/aa/28/65aa283021630dfd9030555c4c61a78c.js
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectlinearsubdued.com
Fingerprint69:28:D3:FA:B8:3E:5F:1E:98:DE:D9:C4:45:4D:0C:BB:C3:40:19:21
ValidityTue, 28 Nov 2023 07:52:02 GMT - Mon, 26 Feb 2024 07:52:01 GMT
File type ASCII text, with very long lines (59647), with no line terminators
Hash d8373a275a5a72d5da90f7db4558f057
50c1facea031fd7684f8e83542557a2c9d1f8e10
8730cd2ac274aafb27bd451c69dbac3bb3b33b266e94e030c65f5b2499e4820b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /65/aa/28/65aa283021630dfd9030555c4c61a78c.js HTTP/1.1
Host: linearsubdued.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 30 Nov 2023 09:20:28 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fb57c9d6e480b5f9f95a914c6aa13ddd
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg
45.133.44.9200 OK 29 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash 76f54f42b70d14a6d6bfe2f8b1945265
197daa3737be8968bf39ff28000663c1c17deeb2
c864fde3026e05a2cc34b4348fa4888d3ae44202179277877d082cadd9971abc
GET /cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:28 GMT
content-type: image/jpeg
content-length: 28852
server: nginx/1.21.6
last-modified: Tue, 10 Aug 2021 09:18:59 GMT
etag: "61124483-70b4"
expires: Sat, 02 Dec 2023 09:20:28 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.profitabledisplaycontent.com/watch.1570667450936.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22pa%C5%BEljivo%22%2C%22s%22%2C%22%C4%8Detvrtim%22%2C%22zidom%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&tz=0&dev=e&res=14.3095&uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25%3A2%3A1&shu=addb10f97df2e2b1ae02cf49f9cea9870c459877bb243546157111c8f0513886d6f6fe04f50e86216f90decdb7f67e05185cbf5aafad5041269429f603f63b36702d74e30526a5d7fc7050a1b988c890f1f4c0027082cda63d124ff8ce32f4f808c9dd&pst=1701336088&rmtc=t
192.243.61.227200 OK 2.1 kB URL GET HTTP/1.1 www.profitabledisplaycontent.com/watch.1570667450936.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22pa%C5%BEljivo%22%2C%22s%22%2C%22%C4%8Detvrtim%22%2C%22zidom%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&tz=0&dev=e&res=14.3095&uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25%3A2%3A1&shu=addb10f97df2e2b1ae02cf49f9cea9870c459877bb243546157111c8f0513886d6f6fe04f50e86216f90decdb7f67e05185cbf5aafad5041269429f603f63b36702d74e30526a5d7fc7050a1b988c890f1f4c0027082cda63d124ff8ce32f4f808c9dd&pst=1701336088&rmtc=t
IP 192.243.61.227:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.profitabledisplaycontent.com
FingerprintBC:B2:C0:16:AD:03:A4:DB:B0:5F:7C:62:AD:82:14:75:59:70:3C:26
ValidityMon, 02 Oct 2023 06:56:19 GMT - Sun, 31 Dec 2023 06:56:18 GMT
File type HTML document text\012- HTML document, ASCII text, with very long lines (2664)
Hash 652efc9a24dbbd81d4586e1dbfb0cc15
6468a88dc669044f5c7eb9e7ec4b32a81853704e
3c17ee7787f0a58011af2e199621c98ae8a4ad64479dd07594d0ab47a6baa26a
GET /watch.1570667450936.js?key=c3b6bab9a3e6c622d733121998e0014d&kw=%5B%22pa%C5%BEljivo%22%2C%22s%22%2C%22%C4%8Detvrtim%22%2C%22zidom%22%2C%22-%22%2C%22vugla%22%5D&refer=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&tz=0&dev=e&res=14.3095&uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25%3A2%3A1&shu=addb10f97df2e2b1ae02cf49f9cea9870c459877bb243546157111c8f0513886d6f6fe04f50e86216f90decdb7f67e05185cbf5aafad5041269429f603f63b36702d74e30526a5d7fc7050a1b988c890f1f4c0027082cda63d124ff8ce32f4f808c9dd&pst=1701336088&rmtc=t HTTP/1.1
Host: www.profitabledisplaycontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
Referer: https://www.vugla.com/
DNT: 1
Connection: keep-alive
Cookie: u_pl=14611544; ain=eyJhbGciOiJIUzI1NiJ9.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.lF9VshP0LUfp0ehDBqs3vRVggP25lD0UEheaYuPaSL4
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 09:20:28 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=083c4dad-cf8d-4f03-b03f-1de1bfda2a25:2:1; expires=Thu, 07 Dec 2023 09:20:28 GMT; secure; SameSite=None
iprc10836d9a37b8bda3de148d2796fd26c2=3569807; expires=Thu, 30 Nov 2023 13:20:28 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 01 Dec 2023 09:20:28 GMT; secure; SameSite=None
uncs=1; expires=Fri, 01 Dec 2023 09:20:28 GMT; secure; SameSite=None
pdhtkv27=true; expires=Fri, 01 Dec 2023 09:20:28 GMT; secure; SameSite=None
uncs27=1; expires=Fri, 01 Dec 2023 09:20:28 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 48334e3893e1f29d162f56b5e264f667
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
interbuzznews.com/contents/s/ce/c1/ce/fae62b87ac8ffd152fb67c62f3/01133900792764.jpeg
139.45.197.154200 OK 76 kB URL GET HTTP/2 interbuzznews.com/contents/s/ce/c1/ce/fae62b87ac8ffd152fb67c62f3/01133900792764.jpeg
IP 139.45.197.154:443
Requested by https://interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D4054976349%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DmBbFpRSgky5UGK5XmP3JDwXMcZOUaNYYAW-P492cbK490EB0oFJrpRQ3So8fvQuUsPfKt3HdxJ4irKnj1jAFxAAByOj9ySsp-hT92tKjkWgJtXFAtLHNGIDvZxK8ItVJDHfUeZgHu8vgukUElGdvlQiYLBtZUOD-pdUmLXL1gjmYc7C2Hi3wj-JG_8_Vm8--6x4VgMYZr9k_tT2vUTG2BJ5Rik4FyN2K8b-kidgDrhKYTcnAnTxYPK9IN1URzpDOA4JZIVgN4wbLJspmjt3EF6Vg4wLYcMLiGHRNkIfn31CiBb7TXOnemKh3gUC3G15H7HLXy_zi63td870ixbUKNNvixlCEWYEsPMYmg8v-LHeyiSevlbzwSJcqMh9txsdTtXC0X9tnimIscIgxMSpeDR0N3OCdngtYkqpKf8k3ohXTVvuPDZC8jWrsd_wZ8oEcw4ZWefF_bTOkvH1YpA49BYgOQbldA2G0_u-UhYIn-AdPH_EX8MqByr-aG076P1cxqv-adbtXTyPxYy4-ybrWbYvM-znpqiBCuqhNdD8hoYE96GPCnkbXxj9rjq9oGgtYqILnj77XSs03n6BYJfV_jxNRa61yVdWBhN8v5UktJFL8krdajC4cMPZtiNg7nBtsvr4SDN7cJUKFvF6ZZaGaRmtgLJMK-bCU3pBOOg%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3Dda074ae2-71bd-44db-8959-9031e6224175%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fpazljivo-s-cetvrtim-zidom.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Certificate IssuerLet's Encrypt
Subjectinterbuzznews.com
FingerprintB5:C4:C7:F0:3F:BC:50:A9:21:50:39:B8:F8:2E:7E:72:56:62:E7:33
ValidityFri, 22 Sep 2023 05:18:00 GMT - Thu, 21 Dec 2023 05:17:59 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 492x328, components 3\012- data
Hash cec1cefae62b87ac8ffd152fb67c62f3
5ad9ab10582d18882a0460169b8bc163297cfd9b
6b911a21ac38a27da56d277be7c268886f1adc52d6e68bd5169feaf2a76f863c
GET /contents/s/ce/c1/ce/fae62b87ac8ffd152fb67c62f3/01133900792764.jpeg HTTP/1.1
Host: interbuzznews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D4054976349%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DmBbFpRSgky5UGK5XmP3JDwXMcZOUaNYYAW-P492cbK490EB0oFJrpRQ3So8fvQuUsPfKt3HdxJ4irKnj1jAFxAAByOj9ySsp-hT92tKjkWgJtXFAtLHNGIDvZxK8ItVJDHfUeZgHu8vgukUElGdvlQiYLBtZUOD-pdUmLXL1gjmYc7C2Hi3wj-JG_8_Vm8--6x4VgMYZr9k_tT2vUTG2BJ5Rik4FyN2K8b-kidgDrhKYTcnAnTxYPK9IN1URzpDOA4JZIVgN4wbLJspmjt3EF6Vg4wLYcMLiGHRNkIfn31CiBb7TXOnemKh3gUC3G15H7HLXy_zi63td870ixbUKNNvixlCEWYEsPMYmg8v-LHeyiSevlbzwSJcqMh9txsdTtXC0X9tnimIscIgxMSpeDR0N3OCdngtYkqpKf8k3ohXTVvuPDZC8jWrsd_wZ8oEcw4ZWefF_bTOkvH1YpA49BYgOQbldA2G0_u-UhYIn-AdPH_EX8MqByr-aG076P1cxqv-adbtXTyPxYy4-ybrWbYvM-znpqiBCuqhNdD8hoYE96GPCnkbXxj9rjq9oGgtYqILnj77XSs03n6BYJfV_jxNRa61yVdWBhN8v5UktJFL8krdajC4cMPZtiNg7nBtsvr4SDN7cJUKFvF6ZZaGaRmtgLJMK-bCU3pBOOg%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3Dda074ae2-71bd-44db-8959-9031e6224175%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fpazljivo-s-cetvrtim-zidom.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:28 GMT
content-type: image/jpeg
content-length: 75924
last-modified: Thu, 23 Feb 2023 08:55:31 GMT
vary: Accept-Encoding
etag: "63f72a03-12894"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
accept-ranges: bytes
X-Firefox-Spdy: h2
linearsubdued.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzkSMPy4GL4JCIygJyGz3%2FB5zCMa4EkyyazayFy%2FVVdUz5VZ3NVXd07N7Wg1IDoIjXtRT7ze7WRIXMX%2BAIL1ewoKwc5FFXMGb4EXE4FFmdmD1QdV7X33v8H3v1cdb2THxkNGj5Rt6QypFF5pVz72wKmOuc%2BvevO36XtW75K7KuNW45A6nlxm87nvNqnfRfVuwNb1Q83zP8z3fXZRGhHq4MGMhk72uX%2B161Uat6jcbGJr%2FY5s5sNQBHxyT85B88kT%2F0UNIViKOvr0q7Fqqk9feijJFU20w4LvvxWuxzmNEp2VoHITx7rwb2k4I%2BeIMdLw7dwA92J46QCAnxPnJRxDvzmUiGOycKA0URIyAP4N8UEKoEpKWYPoOJD8kAOO4uYQ4undTm5yun7B0yk7I2cd%2FQeYTcvaX5xFH31xRcuiuaJWlUscWw7CAHJaQvRJJto90w4HM98HSjyD5j2Th8XXE0faSVRqSFzP3UpaQYQklRqDWQTY90kEWOsgSBxE%2FcmmzG3peOwzCer3TYIzV64w1Oy3e5PVGJ%2FSQsam8EdJkBKZGYGYTidnEmvzssHkeJvsetl%2FAcgc2nRDn3U0MeIFcEOSWIKcEuSTIU4J8UOxwZWu2uMeVzQJ%2FnmvzXC%2FGOu1t0R2d9kRMtpJj8txsNP%2F89iTWxJHLun6t7rfatFZvtXi95THe4B2PU16jrN7swMoC0p6Zud2Y7gnnkEzzjT8Q0H1YtQ8mK6CZD5qP2zUPtD9udDxsxPcHWU%2FRKtMRuC6QpGeRrjtb6pi8MBPR%2FvBPCHZwee%2FC3%2BWn718EMwUSU%2BAD%2BQNBT90d39I52b6lc0seLiWpjOQGne5uJaWpqDx4R6zn2vBrV%2B3o%2FhtsSkzLvdvCptdpzGXcs%2BTrK5JzYRa1YYJ8d82uimA5s%2F0rmYmz5Prym4vXosQIa6WOS1B5%2BGwJJifkqYOrs1%2F50mIf0pQwWYEoOyDzgNT7YMkmbHJw%2BcGLe%2Bf8V3%2BH1QRGnfYESQV5VoxNLTh9VJJAiVNMgwL2Pzg4rbfsXfRMBTS9gzgqMDAFBqoAVSPY7OlxmpiDy4%2B%2BnMZXCFRlHChT2Q6UUZ9PiPvKJxPycuXXkyFbeeSKZuiFwquJIOwGYZt6vBs2ugHt%2BqIdNKmP1E5Ef%2BXnfwEAAP%2F%2FAQAA%2F%2F9pIifUdwQAAA%3D%3D
173.233.137.44200 OK 7 B URL GET HTTP/1.1 linearsubdued.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzkSMPy4GL4JCIygJyGz3%2FB5zCMa4EkyyazayFy%2FVVdUz5VZ3NVXd07N7Wg1IDoIjXtRT7ze7WRIXMX%2BAIL1ewoKwc5FFXMGb4EXE4FFmdmD1QdV7X33v8H3v1cdb2THxkNGj5Rt6QypFF5pVz72wKmOuc%2BvevO36XtW75K7KuNW45A6nlxm87nvNqnfRfVuwNb1Q83zP8z3fXZRGhHq4MGMhk72uX%2B161Uat6jcbGJr%2FY5s5sNQBHxyT85B88kT%2F0UNIViKOvr0q7Fqqk9feijJFU20w4LvvxWuxzmNEp2VoHITx7rwb2k4I%2BeIMdLw7dwA92J46QCAnxPnJRxDvzmUiGOycKA0URIyAP4N8UEKoEpKWYPoOJD8kAOO4uYQ4undTm5yun7B0yk7I2cd%2FQeYTcvaX5xFH31xRcuiuaJWlUscWw7CAHJaQvRJJto90w4HM98HSjyD5j2Th8XXE0faSVRqSFzP3UpaQYQklRqDWQTY90kEWOsgSBxE%2FcmmzG3peOwzCer3TYIzV64w1Oy3e5PVGJ%2FSQsam8EdJkBKZGYGYTidnEmvzssHkeJvsetl%2FAcgc2nRDn3U0MeIFcEOSWIKcEuSTIU4J8UOxwZWu2uMeVzQJ%2FnmvzXC%2FGOu1t0R2d9kRMtpJj8txsNP%2F89iTWxJHLun6t7rfatFZvtXi95THe4B2PU16jrN7swMoC0p6Zud2Y7gnnkEzzjT8Q0H1YtQ8mK6CZD5qP2zUPtD9udDxsxPcHWU%2FRKtMRuC6QpGeRrjtb6pi8MBPR%2FvBPCHZwee%2FC3%2BWn718EMwUSU%2BAD%2BQNBT90d39I52b6lc0seLiWpjOQGne5uJaWpqDx4R6zn2vBrV%2B3o%2FhtsSkzLvdvCptdpzGXcs%2BTrK5JzYRa1YYJ8d82uimA5s%2F0rmYmz5Prym4vXosQIa6WOS1B5%2BGwJJifkqYOrs1%2F50mIf0pQwWYEoOyDzgNT7YMkmbHJw%2BcGLe%2Bf8V3%2BH1QRGnfYESQV5VoxNLTh9VJJAiVNMgwL2Pzg4rbfsXfRMBTS9gzgqMDAFBqoAVSPY7OlxmpiDy4%2B%2BnMZXCFRlHChT2Q6UUZ9PiPvKJxPycuXXkyFbeeSKZuiFwquJIOwGYZt6vBs2ugHt%2BqIdNKmP1E5Ef%2BXnfwEAAP%2F%2FAQAA%2F%2F9pIifUdwQAAA%3D%3D
IP 173.233.137.44:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectlinearsubdued.com
Fingerprint69:28:D3:FA:B8:3E:5F:1E:98:DE:D9:C4:45:4D:0C:BB:C3:40:19:21
ValidityTue, 28 Nov 2023 07:52:02 GMT - Mon, 26 Feb 2024 07:52:01 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzkSMPy4GL4JCIygJyGz3%2FB5zCMa4EkyyazayFy%2FVVdUz5VZ3NVXd07N7Wg1IDoIjXtRT7ze7WRIXMX%2BAIL1ewoKwc5FFXMGb4EXE4FFmdmD1QdV7X33v8H3v1cdb2THxkNGj5Rt6QypFF5pVz72wKmOuc%2BvevO36XtW75K7KuNW45A6nlxm87nvNqnfRfVuwNb1Q83zP8z3fXZRGhHq4MGMhk72uX%2B161Uat6jcbGJr%2FY5s5sNQBHxyT85B88kT%2F0UNIViKOvr0q7Fqqk9feijJFU20w4LvvxWuxzmNEp2VoHITx7rwb2k4I%2BeIMdLw7dwA92J46QCAnxPnJRxDvzmUiGOycKA0URIyAP4N8UEKoEpKWYPoOJD8kAOO4uYQ4undTm5yun7B0yk7I2cd%2FQeYTcvaX5xFH31xRcuiuaJWlUscWw7CAHJaQvRJJto90w4HM98HSjyD5j2Th8XXE0faSVRqSFzP3UpaQYQklRqDWQTY90kEWOsgSBxE%2FcmmzG3peOwzCer3TYIzV64w1Oy3e5PVGJ%2FSQsam8EdJkBKZGYGYTidnEmvzssHkeJvsetl%2FAcgc2nRDn3U0MeIFcEOSWIKcEuSTIU4J8UOxwZWu2uMeVzQJ%2FnmvzXC%2FGOu1t0R2d9kRMtpJj8txsNP%2F89iTWxJHLun6t7rfatFZvtXi95THe4B2PU16jrN7swMoC0p6Zud2Y7gnnkEzzjT8Q0H1YtQ8mK6CZD5qP2zUPtD9udDxsxPcHWU%2FRKtMRuC6QpGeRrjtb6pi8MBPR%2FvBPCHZwee%2FC3%2BWn718EMwUSU%2BAD%2BQNBT90d39I52b6lc0seLiWpjOQGne5uJaWpqDx4R6zn2vBrV%2B3o%2FhtsSkzLvdvCptdpzGXcs%2BTrK5JzYRa1YYJ8d82uimA5s%2F0rmYmz5Prym4vXosQIa6WOS1B5%2BGwJJifkqYOrs1%2F50mIf0pQwWYEoOyDzgNT7YMkmbHJw%2BcGLe%2Bf8V3%2BH1QRGnfYESQV5VoxNLTh9VJJAiVNMgwL2Pzg4rbfsXfRMBTS9gzgqMDAFBqoAVSPY7OlxmpiDy4%2B%2BnMZXCFRlHChT2Q6UUZ9PiPvKJxPycuXXkyFbeeSKZuiFwquJIOwGYZt6vBs2ugHt%2BqIdNKmP1E5Ef%2BXnfwEAAP%2F%2FAQAA%2F%2F9pIifUdwQAAA%3D%3D HTTP/1.1
Host: linearsubdued.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 09:20:28 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 49cc68cfc1d894d213b14ff05b8b88d3
Strict-Transport-Security: max-age=0; includeSubdomains
linearsubdued.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzkRc9KKLF8FDIygKMume3%2BMeFuMaCWaTuFnJubqqelKmuqup6p6e5JR1QffgYcSLeup8k2zYNYj7Bygy8bIEhcxFghjBm%2BBFhGWPMrMDow%2Bq3vvqe4fve68%2B3s8uiIeMnq9f17tSKbpQL3vua5sy5jq37upN1%2FfK3hV3U8aN2hW3N75M903fq5e91913BdvWCxXP9zzf890laUSoewsTFjI5bvvltleuVcp%2BvYae%2BT%2B2mQNLHfDuBbkMyUdPbT18AMmGiKNvrwm7nerkjXeiTNFUG3T50QfxdqzzGNGsDI2DMD6adkPbESFfzEHHR1MH0N2DsQMEckScX3wE8dFUJoLu4ROlgYKIEfBnkXeHEGoISYdg%2BjYkPyMA41hdQxzdXdUmpztPWDpmR2T%2B0T%2BQ%2BYjM%2F%2FYC4uibRSV77oZWWSp1bNELC8jeELIzRJKdIN11IPMTsPQjSP4zWXi0gjg6WLNKQ%2FJi4l7KIWQ4hBJ9UOsgGx%2FpIAsdZImDiJ%2B7tN4OPa8ZBmG12qoxxqpVxuqtBq%2Fzaq0VesjYWF4fadIHU30ws4fE7GFbfnZWvwyT%2FQC7VcByBzYdEef9PXR5gVwQ5JYgpwS5JMhTgrxbHHJlK7a4y5XNAn%2BaK9NcLQY67ezTQ512REz2kwvy%2FGQ0j%2F94Gtvi3GVtv1L1G01aqTYavNrwGK%2Fxlscpr1BWrbdgZQFp5yZud8d7wiUk43z9LwT0BFadgMkSaOaD5oNmxQPdGtRaHnbje92so2iZ6QhcF0jSeaQ7zr66IC9ORLxc%2Bh2CnV69%2F9LxJf%2FVP8FMgcQU%2BFD%2BSNBRdwY3dE4ObujckgdrSSojuUvHu9tIaSpK998TO7k2fPma7d97i42JcXl8U9h0hcZcxh1Lvl6UnAuzpA0T5LtluymC9cxuLWYmzpKV9beXlqPECGuljoeg8mztMZgckflb309%2B5XM%2FfQJphjBZgSg7JdOA1CdgyR5sMlNvNYFRs54gmUOeFQNTCWaPShIoMcM0KGD%2Fg4NZvW%2FvoGNKoOltxFGBrinQVQWo6sNmzwzSxJxeffjlOL5CoEqDQJnSQaCM%2BnxE3Fc%2Bncx3RJq3%2FoaV566oh14ovIoIwnYQNqnH22GtHdC2L5pBnfpI7Uhsbfz6LwAAAP%2F%2FAQAA%2F%2F9uyw4mdwQAAA%3D%3D
173.233.137.44200 OK 7 B URL GET HTTP/1.1 linearsubdued.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzkRc9KKLF8FDIygKMume3%2BMeFuMaCWaTuFnJubqqelKmuqup6p6e5JR1QffgYcSLeup8k2zYNYj7Bygy8bIEhcxFghjBm%2BBFhGWPMrMDow%2Bq3vvqe4fve68%2B3s8uiIeMnq9f17tSKbpQL3vua5sy5jq37upN1%2FfK3hV3U8aN2hW3N75M903fq5e91913BdvWCxXP9zzf890laUSoewsTFjI5bvvltleuVcp%2BvYae%2BT%2B2mQNLHfDuBbkMyUdPbT18AMmGiKNvrwm7nerkjXeiTNFUG3T50QfxdqzzGNGsDI2DMD6adkPbESFfzEHHR1MH0N2DsQMEckScX3wE8dFUJoLu4ROlgYKIEfBnkXeHEGoISYdg%2BjYkPyMA41hdQxzdXdUmpztPWDpmR2T%2B0T%2BQ%2BYjM%2F%2FYC4uibRSV77oZWWSp1bNELC8jeELIzRJKdIN11IPMTsPQjSP4zWXi0gjg6WLNKQ%2FJi4l7KIWQ4hBJ9UOsgGx%2FpIAsdZImDiJ%2B7tN4OPa8ZBmG12qoxxqpVxuqtBq%2Fzaq0VesjYWF4fadIHU30ws4fE7GFbfnZWvwyT%2FQC7VcByBzYdEef9PXR5gVwQ5JYgpwS5JMhTgrxbHHJlK7a4y5XNAn%2BaK9NcLQY67ezTQ512REz2kwvy%2FGQ0j%2F94Gtvi3GVtv1L1G01aqTYavNrwGK%2Fxlscpr1BWrbdgZQFp5yZud8d7wiUk43z9LwT0BFadgMkSaOaD5oNmxQPdGtRaHnbje92so2iZ6QhcF0jSeaQ7zr66IC9ORLxc%2Bh2CnV69%2F9LxJf%2FVP8FMgcQU%2BFD%2BSNBRdwY3dE4ObujckgdrSSojuUvHu9tIaSpK998TO7k2fPma7d97i42JcXl8U9h0hcZcxh1Lvl6UnAuzpA0T5LtluymC9cxuLWYmzpKV9beXlqPECGuljoeg8mztMZgckflb309%2B5XM%2FfQJphjBZgSg7JdOA1CdgyR5sMlNvNYFRs54gmUOeFQNTCWaPShIoMcM0KGD%2Fg4NZvW%2FvoGNKoOltxFGBrinQVQWo6sNmzwzSxJxeffjlOL5CoEqDQJnSQaCM%2BnxE3Fc%2Bncx3RJq3%2FoaV566oh14ovIoIwnYQNqnH22GtHdC2L5pBnfpI7Uhsbfz6LwAAAP%2F%2FAQAA%2F%2F9uyw4mdwQAAA%3D%3D
IP 173.233.137.44:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectlinearsubdued.com
Fingerprint69:28:D3:FA:B8:3E:5F:1E:98:DE:D9:C4:45:4D:0C:BB:C3:40:19:21
ValidityTue, 28 Nov 2023 07:52:02 GMT - Mon, 26 Feb 2024 07:52:01 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz2skRRSuzkRc9KKLF8FDIygKMume3%2BMeFuMaCWaTuFnJubqqelKmuqup6p6e5JR1QffgYcSLeup8k2zYNYj7Bygy8bIEhcxFghjBm%2BBFhGWPMrMDow%2Bq3vvqe4fve68%2B3s8uiIeMnq9f17tSKbpQL3vua5sy5jq37upN1%2FfK3hV3U8aN2hW3N75M903fq5e91913BdvWCxXP9zzf890laUSoewsTFjI5bvvltleuVcp%2BvYae%2BT%2B2mQNLHfDuBbkMyUdPbT18AMmGiKNvrwm7nerkjXeiTNFUG3T50QfxdqzzGNGsDI2DMD6adkPbESFfzEHHR1MH0N2DsQMEckScX3wE8dFUJoLu4ROlgYKIEfBnkXeHEGoISYdg%2BjYkPyMA41hdQxzdXdUmpztPWDpmR2T%2B0T%2BQ%2BYjM%2F%2FYC4uibRSV77oZWWSp1bNELC8jeELIzRJKdIN11IPMTsPQjSP4zWXi0gjg6WLNKQ%2FJi4l7KIWQ4hBJ9UOsgGx%2FpIAsdZImDiJ%2B7tN4OPa8ZBmG12qoxxqpVxuqtBq%2Fzaq0VesjYWF4fadIHU30ws4fE7GFbfnZWvwyT%2FQC7VcByBzYdEef9PXR5gVwQ5JYgpwS5JMhTgrxbHHJlK7a4y5XNAn%2BaK9NcLQY67ezTQ512REz2kwvy%2FGQ0j%2F94Gtvi3GVtv1L1G01aqTYavNrwGK%2Fxlscpr1BWrbdgZQFp5yZud8d7wiUk43z9LwT0BFadgMkSaOaD5oNmxQPdGtRaHnbje92so2iZ6QhcF0jSeaQ7zr66IC9ORLxc%2Bh2CnV69%2F9LxJf%2FVP8FMgcQU%2BFD%2BSNBRdwY3dE4ObujckgdrSSojuUvHu9tIaSpK998TO7k2fPma7d97i42JcXl8U9h0hcZcxh1Lvl6UnAuzpA0T5LtluymC9cxuLWYmzpKV9beXlqPECGuljoeg8mztMZgckflb309%2B5XM%2FfQJphjBZgSg7JdOA1CdgyR5sMlNvNYFRs54gmUOeFQNTCWaPShIoMcM0KGD%2Fg4NZvW%2FvoGNKoOltxFGBrinQVQWo6sNmzwzSxJxeffjlOL5CoEqDQJnSQaCM%2BnxE3Fc%2Bncx3RJq3%2FoaV566oh14ovIoIwnYQNqnH22GtHdC2L5pBnfpI7Uhsbfz6LwAAAP%2F%2FAQAA%2F%2F9uyw4mdwQAAA%3D%3D HTTP/1.1
Host: linearsubdued.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 09:20:28 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: deace3e3a5d1b2d658b34319d9ae3f66
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.cloudimagesb.com/si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg
45.133.44.9200 OK 21 kB URL GET HTTP/2 cdn.cloudimagesb.com/si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash 8f4953c1b8baece7bb7d226247561ce2
da5d440970606602026d7900a55ae2fd27a3f170
8fd9df7d8e48ff2519631e82e01519d4f1c65abd41ec977c18abb58df9832919
GET /si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:28 GMT
content-type: image/jpeg
content-length: 20566
server: nginx/1.21.6
last-modified: Thu, 01 Sep 2022 12:51:28 GMT
etag: "6310aad0-5056"
expires: Sat, 02 Dec 2023 09:20:28 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2013/11/bckg-vugla-dark.jpg
192.185.106.252200 OK 267 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2013/11/bckg-vugla-dark.jpg
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2000x1200, components 3\012- data
Size 267 kB (267247 bytes)
Hash 11e97d76a4b329319978b9da6f46b5b0
ae03d14a5b568ed59c1772ee2065e160e93428ae
9fbe33f0e52a532495bb5d56584e250e0d3cf1acc5a04acb7cbb2e39bb6c6a42
GET /wp-content/uploads/2013/11/bckg-vugla-dark.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701336030.1.0.1701336031.59.0.0; _ga=GA1.1.490757387.1701336031; prefetchAd_1316441=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=083c4dad-cf8d-4f03-b03f-1de1bfda2a25%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 20 Nov 2013 16:40:33 GMT
accept-ranges: bytes
content-length: 267247
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:27 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Thu, 30 Nov 2023 09:20:27 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/images/pattern-filter.png
192.185.106.252200 OK 2.8 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/pattern-filter.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 2 x 2, 8-bit/color RGBA, non-interlaced\012- data
Hash 6d6f2d483736ba6f70063740ddf2841b
3b9dee704da0bf19a56b46584a55226a137504a9
dca9f66f2ff2d735f415080def56d34e60cf13cc65668bf9b422103cd3bee2a5
GET /wp-content/themes/vugla/images/pattern-filter.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: _ga_7NCJ73THPT=GS1.1.1701336030.1.0.1701336031.59.0.0; _ga=GA1.1.490757387.1701336031; prefetchAd_1316441=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=083c4dad-cf8d-4f03-b03f-1de1bfda2a25%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:06 GMT
accept-ranges: bytes
content-length: 2804
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:28 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:28 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/56/ef/55/56ef55f6ef3bc03e69b8d66da27f0cd1/1658920055.png
45.133.44.9200 OK 67 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/56/ef/55/56ef55f6ef3bc03e69b8d66da27f0cd1/1658920055.png
IP 45.133.44.9:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type PNG image data, 468 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash a98b4585db1c6db06d6857c73bb75fcb
02a896b08a79e873b2dd26200ee1f0665dc1c80a
fc08e863ffafe25aa63fe8b60c2d5135fc5f52caf0abae4da3f1a90e0f8ed96c
GET /cti/56/ef/55/56ef55f6ef3bc03e69b8d66da27f0cd1/1658920055.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:28 GMT
content-type: image/png
content-length: 67174
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 11:07:43 GMT
etag: "62e11c7f-10666"
expires: Sat, 02 Dec 2023 09:20:28 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
boundsinflectioncustom.com/sbar.json?key=d137022925bcc2a680f8a4476ff94144&uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25%3A2%3A1
192.243.61.225200 OK 4.3 kB URL GET HTTP/1.1 boundsinflectioncustom.com/sbar.json?key=d137022925bcc2a680f8a4476ff94144&uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25%3A2%3A1
IP 192.243.61.225:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectboundsinflectioncustom.com
FingerprintA6:53:9B:E3:1B:0A:C8:5C:D1:39:D7:56:14:14:6A:EC:C2:6D:13:6B
ValidityTue, 28 Nov 2023 08:06:28 GMT - Mon, 26 Feb 2024 08:06:27 GMT
File type JSON data\012- , ASCII text, with very long lines (6100), with no line terminators
Hash 791ad93c5f87efb9596e59de021424ee
5ad179180fb15a08c1393a317d53eeeb0ac6a30f
29a065c8feec6926dc189490b0b84dd8a88f7c9cccb4ace0b64015cc707ac86e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sbar.json?key=d137022925bcc2a680f8a4476ff94144&uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25%3A2%3A1 HTTP/1.1
Host: boundsinflectioncustom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 09:20:28 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15460408; expires=Fri, 01 Dec 2023 09:20:28 GMT; secure; SameSite=None
uid_id2=083c4dad-cf8d-4f03-b03f-1de1bfda2a25:2:1; expires=Thu, 07 Dec 2023 09:20:28 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 01 Dec 2023 09:20:28 GMT; secure; SameSite=None
uncs=1; expires=Fri, 01 Dec 2023 09:20:28 GMT; secure; SameSite=None
pdhtkv29=true; expires=Fri, 01 Dec 2023 09:20:28 GMT; secure; SameSite=None
uncs29=1; expires=Fri, 01 Dec 2023 09:20:28 GMT; secure; SameSite=None
slecd137022925bcc2a680f8a4476ff94144=[4691073]; expires=Thu, 30 Nov 2023 09:20:33 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ccbe482d46ba2ce184d3889608828719
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
skiofficerdemote.com/pixel/purst?dl=0&th=0&sc=0&rs=5694&rd=5694&fd=258&bv=23.11.v.8&tmpl=136
192.243.61.225200 OK 0 B URL GET HTTP/1.1 skiofficerdemote.com/pixel/purst?dl=0&th=0&sc=0&rs=5694&rd=5694&fd=258&bv=23.11.v.8&tmpl=136
IP 192.243.61.225:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectskiofficerdemote.com
FingerprintB4:6F:3A:BD:FF:FE:15:51:53:8C:D2:EB:9B:13:BE:14:D1:BC:BD:EE
ValidityTue, 28 Nov 2023 11:02:22 GMT - Mon, 26 Feb 2024 11:02:21 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=5694&rd=5694&fd=258&bv=23.11.v.8&tmpl=136 HTTP/1.1
Host: skiofficerdemote.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 09:20:28 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
boundsinflectioncustom.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3uzvh6AeDIIoCHMIqOjOVvf07M6Yw2KMCYv5ZxLJTayuqp4tt7qrqeqenuwpMSA5TsCDF6H3zSZrNIjxGJDIrAoyIGQ8yIJZr0IEhUDOMrMDi9%2Bhvq%2FqvcN776tPNos9QlGw3XOnzYbSmi0267T26iWVClO62pmLNZ%2FW6dHaJZUuhUdrvclhu2%2F6tFmnr9VOSr5uFgPqU%2BpTv3ZCWRmb3uIUhcrutP16m9bDoO43Q%2FTsf%2B%2Bu8OCYB9HdI4ehxPh%2Faz%2FfheJDpMk3x6Vbz032xjtJoVluLLpi%2B%2F10PTVliuRgjK2HON2esWHcmJDP5mDS7ZkDmO7WxAEiNSbebz6idHsmE1H35r7SSEOmiMTTKLtDSD2EYkNwcw1KPCAAFzhzFmly64yxJbu8j7IJOibzTx5DlWMy%2F%2FB5pMnXx7Tq1S4YXeTKpA69uILqDaE6Q2TFDvIND6rcAc8%2FhhK%2FkMUnp5AmW2edNlBi9whtNXgomFjgcUsshDFtLES0ES%2F4QvpRLFjAguY0IqWGUPEQWvbB3BwK56FQHorYQ5F5SMRujTXbMaXLcRQ3Gq2Qc95ocN5sLYmmaIStmKLgEw995FkfXPfB7RVk9grW1Y0HzcOwxfdwaxWcmIPLx8R7r4euqFBKgtIRlIygVARlTlB2q5tCu8BVt4R2ReTPejDrjWpg8s4mu2nyjkzJZrZHnpvm9%2BjPFtblbk34jWUaBO2gGXEesKUWjVssDJeX4rgd%2BmEIpyooNwfmPGxMlomnkE366b8QsR04vQOuDoEVL4OVg%2BWAgq0NwhbFRnq7W3Q0q3OTQJgKWT6P%2FLK3qffIi1MRJz%2B9CslHK49%2B2v77828XwG2FzFb4SP1A0NHXB%2BdNSbbOm9KRu2ezXCVqg00WfCFnuZz%2F8l15uTRWrB53%2Fdtv8QkwGe9clC4%2FxVKh0o4jXx1TQkh7wlguyXer7pKMzhVu7Vhh0yI7de7tE6tJZqVzyqRDMPXgw%2FvgakyevbUy%2FbqvfHEPyg5hiwpJMSKzgjI74NkVuGy08sfrc8%2Bs3vsAzhBYfcCJMg9lUQ1sEB08ajUmweMXoOVo5cer%2Fz%2FycPElsKiCkwcxRHJ0%2F599%2Fqa7jo71wPJrSJMKXVuhqysw3YcrDg3yzI5Wfm1MC5H2BpG23lakrb6xH69TuzXZjGksaSCjuB3Fy4yKdhy2I9b25XLUZD5yN5ZrF37%2FFwAA%2F%2F8BAAD%2F%2Fx6htT2WBAAA
192.243.61.225200 OK 7 B URL GET HTTP/1.1 boundsinflectioncustom.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3uzvh6AeDIIoCHMIqOjOVvf07M6Yw2KMCYv5ZxLJTayuqp4tt7qrqeqenuwpMSA5TsCDF6H3zSZrNIjxGJDIrAoyIGQ8yIJZr0IEhUDOMrMDi9%2Bhvq%2FqvcN776tPNos9QlGw3XOnzYbSmi0267T26iWVClO62pmLNZ%2FW6dHaJZUuhUdrvclhu2%2F6tFmnr9VOSr5uFgPqU%2BpTv3ZCWRmb3uIUhcrutP16m9bDoO43Q%2FTsf%2B%2Bu8OCYB9HdI4ehxPh%2Faz%2FfheJDpMk3x6Vbz032xjtJoVluLLpi%2B%2F10PTVliuRgjK2HON2esWHcmJDP5mDS7ZkDmO7WxAEiNSbebz6idHsmE1H35r7SSEOmiMTTKLtDSD2EYkNwcw1KPCAAFzhzFmly64yxJbu8j7IJOibzTx5DlWMy%2F%2FB5pMnXx7Tq1S4YXeTKpA69uILqDaE6Q2TFDvIND6rcAc8%2FhhK%2FkMUnp5AmW2edNlBi9whtNXgomFjgcUsshDFtLES0ES%2F4QvpRLFjAguY0IqWGUPEQWvbB3BwK56FQHorYQ5F5SMRujTXbMaXLcRQ3Gq2Qc95ocN5sLYmmaIStmKLgEw995FkfXPfB7RVk9grW1Y0HzcOwxfdwaxWcmIPLx8R7r4euqFBKgtIRlIygVARlTlB2q5tCu8BVt4R2ReTPejDrjWpg8s4mu2nyjkzJZrZHnpvm9%2BjPFtblbk34jWUaBO2gGXEesKUWjVssDJeX4rgd%2BmEIpyooNwfmPGxMlomnkE366b8QsR04vQOuDoEVL4OVg%2BWAgq0NwhbFRnq7W3Q0q3OTQJgKWT6P%2FLK3qffIi1MRJz%2B9CslHK49%2B2v77828XwG2FzFb4SP1A0NHXB%2BdNSbbOm9KRu2ezXCVqg00WfCFnuZz%2F8l15uTRWrB53%2Fdtv8QkwGe9clC4%2FxVKh0o4jXx1TQkh7wlguyXer7pKMzhVu7Vhh0yI7de7tE6tJZqVzyqRDMPXgw%2FvgakyevbUy%2FbqvfHEPyg5hiwpJMSKzgjI74NkVuGy08sfrc8%2Bs3vsAzhBYfcCJMg9lUQ1sEB08ajUmweMXoOVo5cer%2Fz%2FycPElsKiCkwcxRHJ0%2F599%2Fqa7jo71wPJrSJMKXVuhqysw3YcrDg3yzI5Wfm1MC5H2BpG23lakrb6xH69TuzXZjGksaSCjuB3Fy4yKdhy2I9b25XLUZD5yN5ZrF37%2FFwAA%2F%2F8BAAD%2F%2Fx6htT2WBAAA
IP 192.243.61.225:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectboundsinflectioncustom.com
FingerprintA6:53:9B:E3:1B:0A:C8:5C:D1:39:D7:56:14:14:6A:EC:C2:6D:13:6B
ValidityTue, 28 Nov 2023 08:06:28 GMT - Mon, 26 Feb 2024 08:06:27 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3uzvh6AeDIIoCHMIqOjOVvf07M6Yw2KMCYv5ZxLJTayuqp4tt7qrqeqenuwpMSA5TsCDF6H3zSZrNIjxGJDIrAoyIGQ8yIJZr0IEhUDOMrMDi9%2Bhvq%2FqvcN776tPNos9QlGw3XOnzYbSmi0267T26iWVClO62pmLNZ%2FW6dHaJZUuhUdrvclhu2%2F6tFmnr9VOSr5uFgPqU%2BpTv3ZCWRmb3uIUhcrutP16m9bDoO43Q%2FTsf%2B%2Bu8OCYB9HdI4ehxPh%2Faz%2FfheJDpMk3x6Vbz032xjtJoVluLLpi%2B%2F10PTVliuRgjK2HON2esWHcmJDP5mDS7ZkDmO7WxAEiNSbebz6idHsmE1H35r7SSEOmiMTTKLtDSD2EYkNwcw1KPCAAFzhzFmly64yxJbu8j7IJOibzTx5DlWMy%2F%2FB5pMnXx7Tq1S4YXeTKpA69uILqDaE6Q2TFDvIND6rcAc8%2FhhK%2FkMUnp5AmW2edNlBi9whtNXgomFjgcUsshDFtLES0ES%2F4QvpRLFjAguY0IqWGUPEQWvbB3BwK56FQHorYQ5F5SMRujTXbMaXLcRQ3Gq2Qc95ocN5sLYmmaIStmKLgEw995FkfXPfB7RVk9grW1Y0HzcOwxfdwaxWcmIPLx8R7r4euqFBKgtIRlIygVARlTlB2q5tCu8BVt4R2ReTPejDrjWpg8s4mu2nyjkzJZrZHnpvm9%2BjPFtblbk34jWUaBO2gGXEesKUWjVssDJeX4rgd%2BmEIpyooNwfmPGxMlomnkE366b8QsR04vQOuDoEVL4OVg%2BWAgq0NwhbFRnq7W3Q0q3OTQJgKWT6P%2FLK3qffIi1MRJz%2B9CslHK49%2B2v77828XwG2FzFb4SP1A0NHXB%2BdNSbbOm9KRu2ezXCVqg00WfCFnuZz%2F8l15uTRWrB53%2Fdtv8QkwGe9clC4%2FxVKh0o4jXx1TQkh7wlguyXer7pKMzhVu7Vhh0yI7de7tE6tJZqVzyqRDMPXgw%2FvgakyevbUy%2FbqvfHEPyg5hiwpJMSKzgjI74NkVuGy08sfrc8%2Bs3vsAzhBYfcCJMg9lUQ1sEB08ajUmweMXoOVo5cer%2Fz%2FycPElsKiCkwcxRHJ0%2F599%2Fqa7jo71wPJrSJMKXVuhqysw3YcrDg3yzI5Wfm1MC5H2BpG23lakrb6xH69TuzXZjGksaSCjuB3Fy4yKdhy2I9b25XLUZD5yN5ZrF37%2FFwAA%2F%2F8BAAD%2F%2Fx6htT2WBAAA HTTP/1.1
Host: boundsinflectioncustom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=083c4dad-cf8d-4f03-b03f-1de1bfda2a25:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 09:20:29 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 95e7d116d2783b9e85f670b2df6875e6
Strict-Transport-Security: max-age=0; includeSubdomains
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_1?le=scs
142.250.74.78200 OK 34 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_1?le=scs
IP 142.250.74.78:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (1586)
Hash e0fbc84518a1bab9c8bad9f76463d338
ecce9ef563bc5170ebcfcfd35e0dd5b17bc0b874
d99dd3891be0d37edbcc13fdaad780f164a758be5d0c8a71f66596e6cda04f70
GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=auth/exm=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_1?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 34324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:23:52 GMT
expires: Fri, 29 Nov 2024 05:23:52 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 14197
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
142.250.74.78200 OK 56 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
IP 142.250.74.78:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (1505)
Hash 4a256001cbbe7af37c71afbd89ba1656
4760f1dee9f6ff6db6f33eeee3dc7ec76155f7dd
5b683a525a2a814b27fc09152ee8030b6d542cd24a61de371bbe5e8815e9d0b1
GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=plusone/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 55751
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:12:01 GMT
expires: Fri, 29 Nov 2024 04:12:01 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 18508
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7NCJ73THPT&cid=490757387.1701336031>m=45je3b60v879882835&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=472239876
142.250.74.163200 OK 42 B URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7NCJ73THPT&cid=490757387.1701336031>m=45je3b60v879882835&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=472239876
IP 142.250.74.163:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32
ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7NCJ73THPT&cid=490757387.1701336031>m=45je3b60v879882835&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=472239876 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Thu, 30 Nov 2023 09:20:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.vugla.com/favicon.ico
192.185.106.252302 Found 0 B URL GET HTTP/2 www.vugla.com/favicon.ico
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Cookie: _ga_7NCJ73THPT=GS1.1.1701336030.1.0.1701336031.59.0.0; _ga=GA1.1.490757387.1701336031; prefetchAd_1316441=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=083c4dad-cf8d-4f03-b03f-1de1bfda2a25%3A2%3A1; sb_main_d137022925bcc2a680f8a4476ff94144=1; sb_count_d137022925bcc2a680f8a4476ff94144=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=linearsubdued.com; pbpr0tpuw4isk85t8yg3jb2lj5vqf=boundsinflectioncustom.com; pp_main_65aa283021630dfd9030555c4c61a78c=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
content-security-policy: upgrade-insecure-requests;
location: https://www.vugla.com/wp-includes/images/w-logo-blue-white-bg.png
cache-control: max-age=10800
expires: Thu, 30 Nov 2023 12:20:29 GMT
vary: User-Agent
referrer-policy:
content-length: 0
content-type: text/html; charset=UTF-8
date: Thu, 30 Nov 2023 09:20:29 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/close.png
172.64.109.10200 OK 9.0 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/close.png
IP 172.64.109.10:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type PNG image data, 497 x 496, 8-bit/color RGBA, non-interlaced\012- data
Hash b080cbdd5cc827b5a659a45676c079d4
3502ad6743a3a42dd92ee3cea142616356f47359
c89d28b4be45a7af77493e8f6c76894a7ba86469e5b6733e6ca3cb33eaabcd8f
GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:29 GMT
content-type: image/png
content-length: 8952
last-modified: Thu, 19 Oct 2023 15:25:30 GMT
etag: "65314a6a-22f8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1723879
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GMPtHxJCicC6yyxO25HmqBZRTVwMp9Ag2aWZxXofSuLKcW96ODQ6kQQMgRX9A39iu1z9460P6flVbsPbNnCUq%2BgYZEYJ0YMO%2F4g%2FR08O%2BMQtqpfGaTL3RBI4rQbZH%2BTUl239lMMaExES"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e203c7cbe17692-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/bg.jpg
172.64.109.10200 OK 197 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/img/bg.jpg
IP 172.64.109.10:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size 197 kB (196572 bytes)
Hash 0f268ac97ce309645d705ae25e03383b
4c1462adfe8488d6f43f5a56a36b6302a29ac054
9d809e2358a07890e0a8683526070118f7c1056f25e30aee0fdfd020d6377bad
GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/img/bg.jpg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:29 GMT
content-type: image/jpeg
content-length: 196572
last-modified: Thu, 19 Oct 2023 15:25:32 GMT
etag: "65314a6c-2ffdc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1575933
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=a7LYI9KegKyfWpmGeue68UUNs%2BKh8VoASi2kX2F%2BeffgqaEFa2MmhEnGQFmq1rlcla7FhG7626ZlRb%2B5FVdM0IYowC1TPa9%2F7xJ1cgXj%2Bb0Z%2FNlUzynwWznWWZqlXbhAVVSUnZYh98JM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e203c7cbe67692-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.yourwebbars.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/index.html
104.26.7.19200 OK 7.5 kB URL GET HTTP/2 cdn.yourwebbars.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/index.html
IP 104.26.7.19:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49
ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
File type HTML document text\012- HTML document, ASCII text
Hash 0b31b4787428aed1758340498c5adc2d
099eeca7d57afb5f7da277ed67501452af84038a
7fa2dfa1fa8324a91aefb94372941496775b5da5060ca503565fea68dbec69e6
GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:29 GMT
content-type: text/html
last-modified: Thu, 19 Oct 2023 15:25:25 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 303180
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z%2BnFfCgMZlGLoF0BldMUItNJbQaSYq6bfDG16fNBxENo1VwtgSUd96icTPrYpPTRWTlRjpl3bV1A2n7RjubtCDQ3RinV3IDpbXG%2BeDP5YlWx9dxr%2BiiImkyCQQ7Cry7MgogLAys%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e203c55845b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
ssl.gstatic.com/accounts/o/478691279-postmessagerelay.js
142.250.74.3200 OK 5.2 kB URL GET HTTP/2 ssl.gstatic.com/accounts/o/478691279-postmessagerelay.js
IP 142.250.74.3:443
Requested by https://accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#rpctoken=339400854&forcesecure=1
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (3496)
Hash 92169c8a0fbf6e404267d0705cdbdf42
a5cd88b74ca5ced239cdbfb458fe25540d671f46
dba668b49a111527aac8f616b9053ea57c944e01a84ebdcd02a13da921223384
GET /accounts/o/478691279-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 5186
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 14:29:40 GMT
expires: Thu, 28 Nov 2024 14:29:40 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 17 Nov 2023 17:06:44 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 67849
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/js/script.js
172.64.109.10200 OK 5.7 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/js/script.js
IP 172.64.109.10:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
Hash b64985705b68c11b9b30d7ca43e1f095
8b5d6dc7edce43d08791bbf7aec72e15dabe528d
29ad23b2ed8670b41c45429c724b7939b4b0643db9d555b79868337aaa8afca0
GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:29 GMT
content-type: application/javascript
last-modified: Thu, 19 Oct 2023 15:25:32 GMT
etag: W/"65314a6c-f3c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FifTuZu3C5XRQji%2FFdyFEk9KT5I3xQdOeaDmb8Ee4ttcamLBzCW4EOsNpo045LW1cQnVwYsm6nDVVefCBSXw1mvZCHjFGq9AyyhsBap9sWdJR2%2FpjimZ%2FYkzuKr03%2F9Nqtmf%2BU%2BfesaC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e203c7fc607692-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
142.250.74.78200 OK 23 kB URL GET HTTP/3 apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs
IP 142.250.74.78:443
Requested by https://accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#rpctoken=339400854&forcesecure=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (1505)
Hash 009832d077d8fc42d725066c2b774fd6
0994f8575917c4eeb66f6bdb0a65609aa8902cac
b1e012aaab4e65462b456ff6a07a6512c7b11d1682d228531d66b132dcf3d364
GET /_/scs/abc-static/_/js/k=gapi.lb.en.coKrc9A11Ng.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw/cb=gapi.loaded_0?le=scs HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/social-frontend-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="social-frontend-mpm-access"
report-to: {"group":"social-frontend-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/social-frontend-mpm-access"}]}
content-length: 23431
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 02:51:23 GMT
expires: Fri, 29 Nov 2024 02:51:23 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 08 Nov 2023 22:37:21 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 23346
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tobaltoyon.com/custom
139.45.197.251200 OK 39 B IP 139.45.197.251:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecttobaltoyon.com
Fingerprint0B:06:51:6D:9B:70:A5:52:62:81:6E:8C:BB:F4:C5:79:81:70:53:7A
ValidityMon, 06 Nov 2023 05:04:47 GMT - Sun, 04 Feb 2024 05:04:46 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: tobaltoyon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 736
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:29 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 0ee62bbe7f18bd3df50134b956bfa4af
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.131200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.131:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 23:43:03 GMT
expires: Tue, 26 Nov 2024 23:43:03 GMT
cache-control: public, max-age=31536000
age: 207447
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.131200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.131:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:52:12 GMT
expires: Thu, 28 Nov 2024 21:52:12 GMT
cache-control: public, max-age=31536000
age: 41298
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
boundsinflectioncustom.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3uzvh6AeDIIoCHMIqOjO9r%2FZ6TGHxRgTFvPPJJKbWF1VPVtudVdT1T092VNiQHLcgAcvQu%2BbTdZoEOMxIJFZFWRAyHiQBbNehQgKgZxlZgcWv0N9X9V7h%2FfeV59slnvERUl3z53W61Iputhquo1XL8mM68o2zlxseG7TPdq4JLOl8GijPzlM703PbTXd1xonBVvTi77rua7neo0T0ohE9xenKGR%2Bp%2BM1O24z9JteK0Tf%2FPduSweWOuC9PXIYko%2F%2Ft%2FrzXUg2RJZ%2Bc1zYtULnb7yTlooW2qDHt9%2FP1jJdZUgPxsQ4SLLtGRvajgn5bA462545gO5tTRwglmPi%2FOYhzrZnMhH3bu4rjRVEhpg%2Fjao3hFBDSDoE09cg%2BQMCMI4zZ5Glt85oU9HL%2ByidoGMy%2F%2BQxZDUm8w%2BfR5Z%2BfUzJfuOCVmUhdWbRT2rI%2FhCyO0Re7qBYdyCrHbDiY0j%2BC1l8cgpZunXWKg3Jd4%2B4UcBCTvkCSyK%2BECZusBC7QbLgceHFCac%2B9VvTiKQcQiZDKLEBaudQWgeldFAmDsrcQcp3G7TVSVy3ncRJEEQhYywIGGtFS7zFgzBKXJRs4mEDRb4BpjbAzBXk5grW5I0HrcMw5fewqzUsn4MtxsR5r48er1EJgsoSVJSgkgRVQVD16ptcWd%2FWt7iyZezNuj%2FrQT3QRXeT3tRFV2RkM98jz03ze%2FRnhDWx2%2BBe0HZ9v%2BO3YsZ8uhS5SUTDsL2UJJ3QC0NYWUPaOVDrYH2yTDyFfNJP%2F4WY7sCqHTB5CLR8GbQatH0XdHUQRi7Ws9u9sqtok%2BkUXNfIi3kUl51NtUdenIo4%2BelVCDZafvTT9t%2Bff7sAZmrkpsZH8geCrro%2BOK8rsnVeV5bcPZsXMpXrdLLgCwUtxPyX74rLlTZ85bjduP0WmwCT8c5FYYtTNOMy61ry1THJuTAntGGCfLdiL4n4XGlXj5UmK%2FNT594%2BsZLmRlgrdTYElQ8%2BvA8mx%2BTZW8vTr%2FvKF%2FcgzRCmrJGWIzIrSL0Dll%2BBzUfLf7w%2B98zKvQ9gNYFRB5w4d1CV9cD48cGjkmPiP34BSoyWf7z6%2FyMPF18CjWtYcRBDLEb3%2F9nnb9rr6BoHtLiGLK3RMzV6qgZVG7DloUGRm9Hyr8G0ECtnECvjbMXKqBv78Vq522h5oYjiqM04jwXjXtsPosB1fc7Ddkd4HRR2LFYv%2FP4vAAAA%2F%2F8BAAD%2F%2FwqpO9uWBAAA
192.243.61.225200 OK 7 B URL GET HTTP/1.1 boundsinflectioncustom.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3uzvh6AeDIIoCHMIqOjO9r%2FZ6TGHxRgTFvPPJJKbWF1VPVtudVdT1T092VNiQHLcgAcvQu%2BbTdZoEOMxIJFZFWRAyHiQBbNehQgKgZxlZgcWv0N9X9V7h%2FfeV59slnvERUl3z53W61Iputhquo1XL8mM68o2zlxseG7TPdq4JLOl8GijPzlM703PbTXd1xonBVvTi77rua7neo0T0ohE9xenKGR%2Bp%2BM1O24z9JteK0Tf%2FPduSweWOuC9PXIYko%2F%2Ft%2FrzXUg2RJZ%2Bc1zYtULnb7yTlooW2qDHt9%2FP1jJdZUgPxsQ4SLLtGRvajgn5bA462545gO5tTRwglmPi%2FOYhzrZnMhH3bu4rjRVEhpg%2Fjao3hFBDSDoE09cg%2BQMCMI4zZ5Glt85oU9HL%2ByidoGMy%2F%2BQxZDUm8w%2BfR5Z%2BfUzJfuOCVmUhdWbRT2rI%2FhCyO0Re7qBYdyCrHbDiY0j%2BC1l8cgpZunXWKg3Jd4%2B4UcBCTvkCSyK%2BECZusBC7QbLgceHFCac%2B9VvTiKQcQiZDKLEBaudQWgeldFAmDsrcQcp3G7TVSVy3ncRJEEQhYywIGGtFS7zFgzBKXJRs4mEDRb4BpjbAzBXk5grW5I0HrcMw5fewqzUsn4MtxsR5r48er1EJgsoSVJSgkgRVQVD16ptcWd%2FWt7iyZezNuj%2FrQT3QRXeT3tRFV2RkM98jz03ze%2FRnhDWx2%2BBe0HZ9v%2BO3YsZ8uhS5SUTDsL2UJJ3QC0NYWUPaOVDrYH2yTDyFfNJP%2F4WY7sCqHTB5CLR8GbQatH0XdHUQRi7Ws9u9sqtok%2BkUXNfIi3kUl51NtUdenIo4%2BelVCDZafvTT9t%2Bff7sAZmrkpsZH8geCrro%2BOK8rsnVeV5bcPZsXMpXrdLLgCwUtxPyX74rLlTZ85bjduP0WmwCT8c5FYYtTNOMy61ry1THJuTAntGGCfLdiL4n4XGlXj5UmK%2FNT594%2BsZLmRlgrdTYElQ8%2BvA8mx%2BTZW8vTr%2FvKF%2FcgzRCmrJGWIzIrSL0Dll%2BBzUfLf7w%2B98zKvQ9gNYFRB5w4d1CV9cD48cGjkmPiP34BSoyWf7z6%2FyMPF18CjWtYcRBDLEb3%2F9nnb9rr6BoHtLiGLK3RMzV6qgZVG7DloUGRm9Hyr8G0ECtnECvjbMXKqBv78Vq522h5oYjiqM04jwXjXtsPosB1fc7Ddkd4HRR2LFYv%2FP4vAAAA%2F%2F8BAAD%2F%2FwqpO9uWBAAA
IP 192.243.61.225:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectboundsinflectioncustom.com
FingerprintA6:53:9B:E3:1B:0A:C8:5C:D1:39:D7:56:14:14:6A:EC:C2:6D:13:6B
ValidityTue, 28 Nov 2023 08:06:28 GMT - Mon, 26 Feb 2024 08:06:27 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRut3uzvh6AeDIIoCHMIqOjO9r%2FZ6TGHxRgTFvPPJJKbWF1VPVtudVdT1T092VNiQHLcgAcvQu%2BbTdZoEOMxIJFZFWRAyHiQBbNehQgKgZxlZgcWv0N9X9V7h%2FfeV59slnvERUl3z53W61Iputhquo1XL8mM68o2zlxseG7TPdq4JLOl8GijPzlM703PbTXd1xonBVvTi77rua7neo0T0ohE9xenKGR%2Bp%2BM1O24z9JteK0Tf%2FPduSweWOuC9PXIYko%2F%2Ft%2FrzXUg2RJZ%2Bc1zYtULnb7yTlooW2qDHt9%2FP1jJdZUgPxsQ4SLLtGRvajgn5bA462545gO5tTRwglmPi%2FOYhzrZnMhH3bu4rjRVEhpg%2Fjao3hFBDSDoE09cg%2BQMCMI4zZ5Glt85oU9HL%2ByidoGMy%2F%2BQxZDUm8w%2BfR5Z%2BfUzJfuOCVmUhdWbRT2rI%2FhCyO0Re7qBYdyCrHbDiY0j%2BC1l8cgpZunXWKg3Jd4%2B4UcBCTvkCSyK%2BECZusBC7QbLgceHFCac%2B9VvTiKQcQiZDKLEBaudQWgeldFAmDsrcQcp3G7TVSVy3ncRJEEQhYywIGGtFS7zFgzBKXJRs4mEDRb4BpjbAzBXk5grW5I0HrcMw5fewqzUsn4MtxsR5r48er1EJgsoSVJSgkgRVQVD16ptcWd%2FWt7iyZezNuj%2FrQT3QRXeT3tRFV2RkM98jz03ze%2FRnhDWx2%2BBe0HZ9v%2BO3YsZ8uhS5SUTDsL2UJJ3QC0NYWUPaOVDrYH2yTDyFfNJP%2F4WY7sCqHTB5CLR8GbQatH0XdHUQRi7Ws9u9sqtok%2BkUXNfIi3kUl51NtUdenIo4%2BelVCDZafvTT9t%2Bff7sAZmrkpsZH8geCrro%2BOK8rsnVeV5bcPZsXMpXrdLLgCwUtxPyX74rLlTZ85bjduP0WmwCT8c5FYYtTNOMy61ry1THJuTAntGGCfLdiL4n4XGlXj5UmK%2FNT594%2BsZLmRlgrdTYElQ8%2BvA8mx%2BTZW8vTr%2FvKF%2FcgzRCmrJGWIzIrSL0Dll%2BBzUfLf7w%2B98zKvQ9gNYFRB5w4d1CV9cD48cGjkmPiP34BSoyWf7z6%2FyMPF18CjWtYcRBDLEb3%2F9nnb9rr6BoHtLiGLK3RMzV6qgZVG7DloUGRm9Hyr8G0ECtnECvjbMXKqBv78Vq522h5oYjiqM04jwXjXtsPosB1fc7Ddkd4HRR2LFYv%2FP4vAAAA%2F%2F8BAAD%2F%2FwqpO9uWBAAA HTTP/1.1
Host: boundsinflectioncustom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=083c4dad-cf8d-4f03-b03f-1de1bfda2a25:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 30 Nov 2023 09:20:30 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1ebc6e71e5a8eb66b046677107776e03
Strict-Transport-Security: max-age=0; includeSubdomains
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/style.css
172.64.109.10200 OK 1.5 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/style.css
IP 172.64.109.10:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
Hash d33c62ba093179032ae454a879d99dd8
e6695c9d7c20dd4c70af4591eeab323013b10793
41e38913ec982b1d9f0c7f756b640f7320249b78a4a942e691380a678b6d72f4
GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:29 GMT
content-type: text/css
last-modified: Thu, 19 Oct 2023 15:30:48 GMT
etag: W/"65314ba8-d55"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=p1phc%2FKfiR1lu3XwldPw2w%2FDbmefhF8R986iGPQ%2B48Yvhm22o4Bq5X5xxPRlM2XA70XNYnX8lmlyLuEW25Y6bMXoqERc1QJZKT5b0UkXJ3wMmdFoks9L4O9zbhxAguJQKZ%2Fr8QkXYC7%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e203c7bbd17692-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/fonts/gP1RrxsjcxVyin9l9nj2hTd52.woff2
172.64.109.10200 OK 17 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/fonts/gP1RrxsjcxVyin9l9nj2hTd52.woff2
IP 172.64.109.10:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type Web Open Font Format (Version 2), TrueType, length 17360, version 1.0\012- data
Hash 70322c317b1f4e2e17dbc6b672f95f5f
f3dff7c50e1aea33814c6aeeca177ae3ff900bfc
3877b522181765adf66ba89bd68d288ecb9f2483b441baab3424646b0c7aaa0a
GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/fonts/gP1RrxsjcxVyin9l9nj2hTd52.woff2 HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:30 GMT
content-type: application/octet-stream
content-length: 17360
last-modified: Thu, 19 Oct 2023 15:25:28 GMT
etag: "65314a68-43d0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YWVirnu0UxL37xf1BDbbSjiM8w3jjMBkJC1KD8Ns4YKHGFAM8r5omk0lsJ2Uw%2B1NuVnFFD7008R43MB5jxqnX5aPBuVy6z8EPSVOVAn1Bej2th9iDpZHLa9eXra0cnN8L22MdwmPp1%2Fj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e203cd693f7692-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
boundsinflectioncustom.com/pixel/sbs?c=1
192.243.59.20200 OK 0 B URL GET HTTP/1.1 boundsinflectioncustom.com/pixel/sbs?c=1
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectboundsinflectioncustom.com
FingerprintA6:53:9B:E3:1B:0A:C8:5C:D1:39:D7:56:14:14:6A:EC:C2:6D:13:6B
ValidityTue, 28 Nov 2023 08:06:28 GMT - Mon, 26 Feb 2024 08:06:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: boundsinflectioncustom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; uid_id2=083c4dad-cf8d-4f03-b03f-1de1bfda2a25:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 30 Nov 2023 09:20:30 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
unseenreport.com/pxf.gif?uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=9
192.243.59.20200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=9
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=9 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 30 Nov 2023 09:20:30 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d22fdd36918fc3c8aa63e1390edb85fb
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=9
192.243.59.20200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=9
IP 192.243.59.20:443
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=083c4dad-cf8d-4f03-b03f-1de1bfda2a25&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=9 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 30 Nov 2023 09:20:30 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 109a4e0fb31a0f709bbb0c60a9517d8c
Strict-Transport-Security: max-age=0; includeSubdomains
eehuzaih.com/impression/qXpJK6AXG8Tyj8WMG0I4W3iOI9FC9Pejc-H0ivF5YHXW5syJWvGn2EeUS1fGblgW51CD8MUkC1vwNRGW_CuZNYP_yKMDc7POUz-S-RQZNI350NCMmQwWYuBOaKz8eNdB3QxoK0AmQs4pkj8NasHbIOKeWXitjrRchWtGeWcPO1nhUuz343xZK0tdVwUqZ6y1ynPSwgQZ9PNaKCIqRquY6c_ZUjxQ-4V_vy57ZarP6GKvRFk49rol0dKztte6k7HOXpC2IdU-PqUsAVekiasgD1jxV_zAssYDgs_Z4hdaQIWgBLsWLMo6nZsYH2eisDvVW_RnggPu5XxSYDa1zFZdT99v63qH-TqNFcGe7NWAynrHRE7D7lcchGB1Tv93FQNvg5-R1ZQq5tKS8LcdXCdcBnuv1m1t5fERkaDy1VNha2cA2208arsnVLtao6cQ32EcW8BJ0Aw2lFx1a9EZ61vQ_-fkYfvNo5V11nDOf29f0NNbPEOGgFCUN9pKREfQ_syeAnF-RmSKV__vzDNiEYwDf4ur4p0veOxBsAFkbcZ7kwZy5BkBj1V9MFmgR1AuT3lvxXzspNCtqCkE4JM9DvvNnImswALPO18hWQPiGp-_CurWRZZt94iLI-UFukX9yTYf186ebQ==?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=9&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0
139.45.197.237200 OK 43 B URL GET HTTP/2 eehuzaih.com/impression/qXpJK6AXG8Tyj8WMG0I4W3iOI9FC9Pejc-H0ivF5YHXW5syJWvGn2EeUS1fGblgW51CD8MUkC1vwNRGW_CuZNYP_yKMDc7POUz-S-RQZNI350NCMmQwWYuBOaKz8eNdB3QxoK0AmQs4pkj8NasHbIOKeWXitjrRchWtGeWcPO1nhUuz343xZK0tdVwUqZ6y1ynPSwgQZ9PNaKCIqRquY6c_ZUjxQ-4V_vy57ZarP6GKvRFk49rol0dKztte6k7HOXpC2IdU-PqUsAVekiasgD1jxV_zAssYDgs_Z4hdaQIWgBLsWLMo6nZsYH2eisDvVW_RnggPu5XxSYDa1zFZdT99v63qH-TqNFcGe7NWAynrHRE7D7lcchGB1Tv93FQNvg5-R1ZQq5tKS8LcdXCdcBnuv1m1t5fERkaDy1VNha2cA2208arsnVLtao6cQ32EcW8BJ0Aw2lFx1a9EZ61vQ_-fkYfvNo5V11nDOf29f0NNbPEOGgFCUN9pKREfQ_syeAnF-RmSKV__vzDNiEYwDf4ur4p0veOxBsAFkbcZ7kwZy5BkBj1V9MFmgR1AuT3lvxXzspNCtqCkE4JM9DvvNnImswALPO18hWQPiGp-_CurWRZZt94iLI-UFukX9yTYf186ebQ==?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=9&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0
IP 139.45.197.237:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /impression/qXpJK6AXG8Tyj8WMG0I4W3iOI9FC9Pejc-H0ivF5YHXW5syJWvGn2EeUS1fGblgW51CD8MUkC1vwNRGW_CuZNYP_yKMDc7POUz-S-RQZNI350NCMmQwWYuBOaKz8eNdB3QxoK0AmQs4pkj8NasHbIOKeWXitjrRchWtGeWcPO1nhUuz343xZK0tdVwUqZ6y1ynPSwgQZ9PNaKCIqRquY6c_ZUjxQ-4V_vy57ZarP6GKvRFk49rol0dKztte6k7HOXpC2IdU-PqUsAVekiasgD1jxV_zAssYDgs_Z4hdaQIWgBLsWLMo6nZsYH2eisDvVW_RnggPu5XxSYDa1zFZdT99v63qH-TqNFcGe7NWAynrHRE7D7lcchGB1Tv93FQNvg5-R1ZQq5tKS8LcdXCdcBnuv1m1t5fERkaDy1VNha2cA2208arsnVLtao6cQ32EcW8BJ0Aw2lFx1a9EZ61vQ_-fkYfvNo5V11nDOf29f0NNbPEOGgFCUN9pKREfQ_syeAnF-RmSKV__vzDNiEYwDf4ur4p0veOxBsAFkbcZ7kwZy5BkBj1V9MFmgR1AuT3lvxXzspNCtqCkE4JM9DvvNnImswALPO18hWQPiGp-_CurWRZZt94iLI-UFukX9yTYf186ebQ==?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=9&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: OAID=17c8d60688d94b8a82b59e3d46682cf2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:31 GMT
content-type: image/gif
content-length: 43
x-trace-id: d4a3f6b76f9eac383a0773407df4ffd2
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
offerimage.com/www/images/b89a854cfb66584b3f5fef24e571e8b5.png
172.67.22.216200 OK 93 kB URL GET HTTP/2 offerimage.com/www/images/b89a854cfb66584b3f5fef24e571e8b5.png
IP 172.67.22.216:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash b89a854cfb66584b3f5fef24e571e8b5
9bb5f94bcc641c8cfbc2e24f0a2af5bd07a3a1ea
7228a1274993f4e608b4f0952b2197db136917df3d8ae95ea16a9a34769945e7
GET /www/images/b89a854cfb66584b3f5fef24e571e8b5.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:32 GMT
content-type: image/png
content-length: 92662
last-modified: Thu, 03 Jun 2021 06:45:06 GMT
etag: "60b87a72-169f6"
expires: Thu, 30 Nov 2023 16:10:07 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 61822
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e203d819e11c02-OSL
X-Firefox-Spdy: h2
offerimage.com/www/images/b89a854cfb66584b3f5fef24e571e8b5.png
172.67.22.216200 OK 93 kB URL GET HTTP/2 offerimage.com/www/images/b89a854cfb66584b3f5fef24e571e8b5.png
IP 172.67.22.216:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash b89a854cfb66584b3f5fef24e571e8b5
9bb5f94bcc641c8cfbc2e24f0a2af5bd07a3a1ea
7228a1274993f4e608b4f0952b2197db136917df3d8ae95ea16a9a34769945e7
GET /www/images/b89a854cfb66584b3f5fef24e571e8b5.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:32 GMT
content-type: image/png
content-length: 92662
last-modified: Thu, 03 Jun 2021 06:45:06 GMT
etag: "60b87a72-169f6"
expires: Thu, 30 Nov 2023 16:10:07 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 61822
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e203d85a0f1c02-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.131200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.131:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:52:12 GMT
expires: Thu, 28 Nov 2024 21:52:12 GMT
cache-control: public, max-age=31536000
age: 41300
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.131200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.131:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 23:43:03 GMT
expires: Tue, 26 Nov 2024 23:43:03 GMT
cache-control: public, max-age=31536000
age: 207449
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.131200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.131:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:52:12 GMT
expires: Thu, 28 Nov 2024 21:52:12 GMT
cache-control: public, max-age=31536000
age: 41300
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.131200 OK 16 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.131:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 27 Nov 2023 23:43:03 GMT
expires: Tue, 26 Nov 2024 23:43:03 GMT
cache-control: public, max-age=31536000
age: 207449
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
region1.analytics.google.com/g/collect?v=2&tid=G-7NCJ73THPT>m=45je3b60v879882835&_p=1701336030632&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=490757387.1701336031&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701336030&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&dt=Pa%C5%BEljivo%20s%20%C4%8Detvrtim%20zidom!%20-%20Vugla&en=scroll&epn.percent_scrolled=90&tfd=8802
216.239.34.36204 No Content 0 B URL POST HTTP/3 region1.analytics.google.com/g/collect?v=2&tid=G-7NCJ73THPT>m=45je3b60v879882835&_p=1701336030632&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=490757387.1701336031&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701336030&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&dt=Pa%C5%BEljivo%20s%20%C4%8Detvrtim%20zidom!%20-%20Vugla&en=scroll&epn.percent_scrolled=90&tfd=8802
IP 216.239.34.36:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7NCJ73THPT>m=45je3b60v879882835&_p=1701336030632&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=490757387.1701336031&ul=en-us&sr=1280x1024&_eu=AEA&_s=2&sid=1701336030&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&dt=Pa%C5%BEljivo%20s%20%C4%8Detvrtim%20zidom!%20-%20Vugla&en=scroll&epn.percent_scrolled=90&tfd=8802 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers
HTTP/3 204 No Content
access-control-allow-origin: https://www.vugla.com
date: Thu, 30 Nov 2023 09:20:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tharbadir.com/11?rnd=234677390&z=2892323&b=19427765&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=mBbFpRSgky5UGK5XmP3JDwXMcZOUaNYYAW-P492cbK490EB0oFJrpRQ3So8fvQuUsPfKt3HdxJ4irKnj1jAFxAAByOj9ySsp-hT92tKjkWgJtXFAtLHNGIDvZxK8ItVJDHfUeZgHu8vgukUElGdvlQiYLBtZUOD-pdUmLXL1gjmYc7C2Hi3wj-JG_8_Vm8--6x4VgMYZr9k_tT2vUTG2BJ5Rik4FyN2K8b-kidgDrhKYTcnAnTxYPK9IN1URzpDOA4JZIVgN4wbLJspmjt3EF6Vg4wLYcMLiGHRNkIfn31CiBb7TXOnemKh3gUC3G15H7HLXy_zi63td870ixbUKNNvixlCEWYEsPMYmg8v-LHeyiSevlbzwSJcqMh9txsdTtXC0X9tnimIscIgxMSpeDR0N3OCdngtYkqpKf8k3ohXTVvuPDZC8jWrsd_wZ8oEcw4ZWefF_bTOkvH1YpA49BYgOQbldA2G0_u-UhYIn-AdPH_EX8MqByr-aG076P1cxqv-adbtXTyPxYy4-ybrWbYvM-znpqiBCuqhNdD8hoYE96GPCnkbXxj9rjq9oGgtYqILnj77XSs03n6BYJfV_jxNRa61yVdWBhN8v5UktJFL8krdajC4cMPZtiNg7nBtsvr4SDN7cJUKFvF6ZZaGaRmtgLJMK-bCU3pBOOg==&ruid=da074ae2-71bd-44db-8959-9031e6224175&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
139.45.197.238200 OK 0 B URL GET HTTP/2 tharbadir.com/11?rnd=234677390&z=2892323&b=19427765&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=mBbFpRSgky5UGK5XmP3JDwXMcZOUaNYYAW-P492cbK490EB0oFJrpRQ3So8fvQuUsPfKt3HdxJ4irKnj1jAFxAAByOj9ySsp-hT92tKjkWgJtXFAtLHNGIDvZxK8ItVJDHfUeZgHu8vgukUElGdvlQiYLBtZUOD-pdUmLXL1gjmYc7C2Hi3wj-JG_8_Vm8--6x4VgMYZr9k_tT2vUTG2BJ5Rik4FyN2K8b-kidgDrhKYTcnAnTxYPK9IN1URzpDOA4JZIVgN4wbLJspmjt3EF6Vg4wLYcMLiGHRNkIfn31CiBb7TXOnemKh3gUC3G15H7HLXy_zi63td870ixbUKNNvixlCEWYEsPMYmg8v-LHeyiSevlbzwSJcqMh9txsdTtXC0X9tnimIscIgxMSpeDR0N3OCdngtYkqpKf8k3ohXTVvuPDZC8jWrsd_wZ8oEcw4ZWefF_bTOkvH1YpA49BYgOQbldA2G0_u-UhYIn-AdPH_EX8MqByr-aG076P1cxqv-adbtXTyPxYy4-ybrWbYvM-znpqiBCuqhNdD8hoYE96GPCnkbXxj9rjq9oGgtYqILnj77XSs03n6BYJfV_jxNRa61yVdWBhN8v5UktJFL8krdajC4cMPZtiNg7nBtsvr4SDN7cJUKFvF6ZZaGaRmtgLJMK-bCU3pBOOg==&ruid=da074ae2-71bd-44db-8959-9031e6224175&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP 139.45.197.238:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /11?rnd=234677390&z=2892323&b=19427765&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=mBbFpRSgky5UGK5XmP3JDwXMcZOUaNYYAW-P492cbK490EB0oFJrpRQ3So8fvQuUsPfKt3HdxJ4irKnj1jAFxAAByOj9ySsp-hT92tKjkWgJtXFAtLHNGIDvZxK8ItVJDHfUeZgHu8vgukUElGdvlQiYLBtZUOD-pdUmLXL1gjmYc7C2Hi3wj-JG_8_Vm8--6x4VgMYZr9k_tT2vUTG2BJ5Rik4FyN2K8b-kidgDrhKYTcnAnTxYPK9IN1URzpDOA4JZIVgN4wbLJspmjt3EF6Vg4wLYcMLiGHRNkIfn31CiBb7TXOnemKh3gUC3G15H7HLXy_zi63td870ixbUKNNvixlCEWYEsPMYmg8v-LHeyiSevlbzwSJcqMh9txsdTtXC0X9tnimIscIgxMSpeDR0N3OCdngtYkqpKf8k3ohXTVvuPDZC8jWrsd_wZ8oEcw4ZWefF_bTOkvH1YpA49BYgOQbldA2G0_u-UhYIn-AdPH_EX8MqByr-aG076P1cxqv-adbtXTyPxYy4-ybrWbYvM-znpqiBCuqhNdD8hoYE96GPCnkbXxj9rjq9oGgtYqILnj77XSs03n6BYJfV_jxNRa61yVdWBhN8v5UktJFL8krdajC4cMPZtiNg7nBtsvr4SDN7cJUKFvF6ZZaGaRmtgLJMK-bCU3pBOOg==&ruid=da074ae2-71bd-44db-8959-9031e6224175&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=17c8d60688d94b8a82b59e3d46682cf2; oaidts=1701336025
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:33 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 42f00d20b3e467b19b6e45ad6a176d3b
access-control-expose-headers: X-Sc
set-cookie: OAID=17c8d60688d94b8a82b59e3d46682cf2; expires=Fri, 29 Nov 2024 09:20:33 GMT; secure; SameSite=None
oaidts=1701336025; expires=Fri, 29 Nov 2024 09:20:33 GMT; secure; SameSite=None
oaidvc=1; expires=Fri, 29 Nov 2024 09:20:33 GMT; secure; SameSite=None
CNT=1_v1_tXEoAQEAAADrTAAA; expires=Thu, 30 Nov 2023 10:20:33 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
tobaltoyon.com/custom
139.45.197.251200 OK 39 B IP 139.45.197.251:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecttobaltoyon.com
Fingerprint0B:06:51:6D:9B:70:A5:52:62:81:6E:8C:BB:F4:C5:79:81:70:53:7A
ValidityMon, 06 Nov 2023 05:04:47 GMT - Sun, 04 Feb 2024 05:04:46 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: tobaltoyon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 391
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:33 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 373ff003f42a244999048110404266d4
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
35.244.181.201 444 B URL aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
IP 35.244.181.201:0
File type XML 1.0 document text\012- XML document, ASCII text, with very long lines (332)
Hash 3b324dec137a87ef7e24a30a65b13dd0
c0faa95b2f1018e264b3a14aaf50d1003e6c27b3
6cd0b591d9239fc8564627e92a804fc261951b1cbaf5fa58a8ada3cc13f51463
GET /update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2023-12-29-19-51-25.chain; p384ecdsa=wr-9I3wFRfPxSzhf2SSKfwNOHnCF3aLsdIwsoV67bu_3ciCiL2D7WZCkQXi1p4POv18vc0ucPJW_TGrDMGacjmrhjy4n95u3wObgVfTMSjyOnt_2ZKRKjN4z2ZN89G2V
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
date: Thu, 30 Nov 2023 09:18:41 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
content-length: 444
age: 120
cache-control: public,max-age=90
alt-svc: clear
X-Firefox-Spdy: h2
ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
2.18.121.73 512 kB URL ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
IP 2.18.121.73:0
File type Zip archive data, at least v2.0 to extract, compression method=deflate\012- data
Size 512 kB (511815 bytes)
Hash 152eda253e242e18443ef3282495bc7c
ff0fa85565f21ec4931baad4573b4c0bd08c4019
8e03090fee16f6e0ee2e436af8e51d0c3deed6d9f0db80dec048e668fc009a48
GET /openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip HTTP/1.1
Host: ciscobinary.openh264.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Last-Modified: Thu, 16 Nov 2023 07:38:15 GMT
ETag: 152eda253e242e18443ef3282495bc7c
Content-Length: 511815
Accept-Ranges: bytes
X-Timestamp: 1700120294.87662
Content-Type: application/zip
X-Trans-Id: tx8c0ef9e37b1a4ab29193d-0065580fd1dfw1
Cache-Control: public, max-age=101211
Expires: Fri, 01 Dec 2023 13:27:32 GMT
Date: Thu, 30 Nov 2023 09:20:41 GMT
Connection: keep-alive
interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D4054976349%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DmBbFpRSgky5UGK5XmP3JDwXMcZOUaNYYAW-P492cbK490EB0oFJrpRQ3So8fvQuUsPfKt3HdxJ4irKnj1jAFxAAByOj9ySsp-hT92tKjkWgJtXFAtLHNGIDvZxK8ItVJDHfUeZgHu8vgukUElGdvlQiYLBtZUOD-pdUmLXL1gjmYc7C2Hi3wj-JG_8_Vm8--6x4VgMYZr9k_tT2vUTG2BJ5Rik4FyN2K8b-kidgDrhKYTcnAnTxYPK9IN1URzpDOA4JZIVgN4wbLJspmjt3EF6Vg4wLYcMLiGHRNkIfn31CiBb7TXOnemKh3gUC3G15H7HLXy_zi63td870ixbUKNNvixlCEWYEsPMYmg8v-LHeyiSevlbzwSJcqMh9txsdTtXC0X9tnimIscIgxMSpeDR0N3OCdngtYkqpKf8k3ohXTVvuPDZC8jWrsd_wZ8oEcw4ZWefF_bTOkvH1YpA49BYgOQbldA2G0_u-UhYIn-AdPH_EX8MqByr-aG076P1cxqv-adbtXTyPxYy4-ybrWbYvM-znpqiBCuqhNdD8hoYE96GPCnkbXxj9rjq9oGgtYqILnj77XSs03n6BYJfV_jxNRa61yVdWBhN8v5UktJFL8krdajC4cMPZtiNg7nBtsvr4SDN7cJUKFvF6ZZaGaRmtgLJMK-bCU3pBOOg%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3Dda074ae2-71bd-44db-8959-9031e6224175%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fpazljivo-s-cetvrtim-zidom.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
139.45.197.154200 OK 9.8 kB URL GET HTTP/2 interbuzznews.com/?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D4054976349%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DmBbFpRSgky5UGK5XmP3JDwXMcZOUaNYYAW-P492cbK490EB0oFJrpRQ3So8fvQuUsPfKt3HdxJ4irKnj1jAFxAAByOj9ySsp-hT92tKjkWgJtXFAtLHNGIDvZxK8ItVJDHfUeZgHu8vgukUElGdvlQiYLBtZUOD-pdUmLXL1gjmYc7C2Hi3wj-JG_8_Vm8--6x4VgMYZr9k_tT2vUTG2BJ5Rik4FyN2K8b-kidgDrhKYTcnAnTxYPK9IN1URzpDOA4JZIVgN4wbLJspmjt3EF6Vg4wLYcMLiGHRNkIfn31CiBb7TXOnemKh3gUC3G15H7HLXy_zi63td870ixbUKNNvixlCEWYEsPMYmg8v-LHeyiSevlbzwSJcqMh9txsdTtXC0X9tnimIscIgxMSpeDR0N3OCdngtYkqpKf8k3ohXTVvuPDZC8jWrsd_wZ8oEcw4ZWefF_bTOkvH1YpA49BYgOQbldA2G0_u-UhYIn-AdPH_EX8MqByr-aG076P1cxqv-adbtXTyPxYy4-ybrWbYvM-znpqiBCuqhNdD8hoYE96GPCnkbXxj9rjq9oGgtYqILnj77XSs03n6BYJfV_jxNRa61yVdWBhN8v5UktJFL8krdajC4cMPZtiNg7nBtsvr4SDN7cJUKFvF6ZZaGaRmtgLJMK-bCU3pBOOg%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3Dda074ae2-71bd-44db-8959-9031e6224175%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fpazljivo-s-cetvrtim-zidom.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0
IP 139.45.197.154:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectinterbuzznews.com
FingerprintB5:C4:C7:F0:3F:BC:50:A9:21:50:39:B8:F8:2E:7E:72:56:62:E7:33
ValidityFri, 22 Sep 2023 05:18:00 GMT - Thu, 21 Dec 2023 05:17:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (10075), with no line terminators
Hash a25291c2be3bd979658c0595738a628e
112e7d8b607d9cb4926ec21eb4a2dbddc6758b13
11e7f2443f1793bf5cad4f7c4e977a466dab6179858b654921de1309f05e18f9
GET /?l=kzHKSWcZinJTibQ&cd_meta_crid=50535&trkintimp&target_url=https%3A%2F%2Ftharbadir.com%2F12%3Frnd%3D4054976349%26z%3D2892323%26b%3D19427765%26c%3D7595353%26var%3D%26varid%3D0%26d%3Dhttp%253A%252F%252Fsinglewomenmeet.com%252Fbase.php%253Fc%253D3576%2526key%253D6878efbd7e6d318c378b17a4469f5644%2526zoneid%253D%257Bzoneid%257D%2526banner%253D%257Bbannerid%257D%26cln%3D1%26btp%3D7%26rb%3DmBbFpRSgky5UGK5XmP3JDwXMcZOUaNYYAW-P492cbK490EB0oFJrpRQ3So8fvQuUsPfKt3HdxJ4irKnj1jAFxAAByOj9ySsp-hT92tKjkWgJtXFAtLHNGIDvZxK8ItVJDHfUeZgHu8vgukUElGdvlQiYLBtZUOD-pdUmLXL1gjmYc7C2Hi3wj-JG_8_Vm8--6x4VgMYZr9k_tT2vUTG2BJ5Rik4FyN2K8b-kidgDrhKYTcnAnTxYPK9IN1URzpDOA4JZIVgN4wbLJspmjt3EF6Vg4wLYcMLiGHRNkIfn31CiBb7TXOnemKh3gUC3G15H7HLXy_zi63td870ixbUKNNvixlCEWYEsPMYmg8v-LHeyiSevlbzwSJcqMh9txsdTtXC0X9tnimIscIgxMSpeDR0N3OCdngtYkqpKf8k3ohXTVvuPDZC8jWrsd_wZ8oEcw4ZWefF_bTOkvH1YpA49BYgOQbldA2G0_u-UhYIn-AdPH_EX8MqByr-aG076P1cxqv-adbtXTyPxYy4-ybrWbYvM-znpqiBCuqhNdD8hoYE96GPCnkbXxj9rjq9oGgtYqILnj77XSs03n6BYJfV_jxNRa61yVdWBhN8v5UktJFL8krdajC4cMPZtiNg7nBtsvr4SDN7cJUKFvF6ZZaGaRmtgLJMK-bCU3pBOOg%3D%3D%26bag%3DsoD61sIXZfLmZDdfa4zliA%3D%3D%26ruid%3Dda074ae2-71bd-44db-8959-9031e6224175%26ng%3D1%26ix%3D0%26pt%3D0%26np%3D0%26gp%3D5%26bp%3D4%26nw%3D1%26nb%3D1%26sw%3D1280%26sh%3D1024%26pl%3Dhttps%253A%252F%252Fwww.vugla.com%252Fpazljivo-s-cetvrtim-zidom.html%26wy%3D0%26wx%3D0%26ww%3D1280%26wh%3D1024%26cw%3D1280%26wiw%3D1280%26wih%3D1024%26wfc%3D4%26sah%3D1024%26drf%3D%26hil%3D1%26ist%3D0%26tbc%3D0 HTTP/1.1
Host: interbuzznews.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:28 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
x-powered-by: PHP/7.4.33
set-cookie: reverse=r3rXtCSg2WwMSS2nEMDNuZVdFNGAKOIqJ9wxhi6L-kk; expires=Thu, 30-Nov-2023 10:20:28 GMT; Max-Age=3600; path=/
OAID=e6befb9d434ec80e062df0289cf627dc; expires=Sat, 29-Oct-2078 18:40:56 GMT; Max-Age=1732958428; path=/
oaidts=1701336028; expires=Sat, 29-Oct-2078 18:40:56 GMT; Max-Age=1732958428; path=/
syncedCookie=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS, HEAD
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
access-control-expose-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Content-Range,Range
content-encoding: br
X-Firefox-Spdy: h2
atservineor.com/5/1316441
139.45.197.244200 OK 72 kB URL GET HTTP/2 atservineor.com/5/1316441
IP 139.45.197.244:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectatservineor.com
Fingerprint7F:A6:D8:C6:07:B2:43:13:77:39:5A:91:57:E3:4C:1C:7A:E3:EF:51
ValidityWed, 11 Oct 2023 05:20:30 GMT - Tue, 09 Jan 2024 05:20:29 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 10b18b9eebef2be961445b3f63179c0a
69fec280c201bf5b90d66439e9547c2c33dea654
cc64d362b8829cc364a7f56ee348c8fe7fa41a9d9b71d7094ded8c02e46af831
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /5/1316441 HTTP/1.1
Host: atservineor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:25 GMT
content-type: application/javascript
x-trace-id: b3dbe2e797e6e351f365e5d31aaeb481
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=308118d066834a29a9ee3c9946471abd; expires=Fri, 29 Nov 2024 09:20:25 GMT; path=/; secure; SameSite=None
oaidts=1701336025; expires=Fri, 29 Nov 2024 09:20:25 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
104.21.11.245200 OK 19 kB IP 104.21.11.245:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint52:B8:ED:73:BB:55:6F:9C:F8:97:7C:04:34:2B:AD:DB:55:0A:C9:6A
ValidityThu, 05 Oct 2023 17:59:18 GMT - Wed, 03 Jan 2024 17:59:17 GMT
File type ASCII text, with very long lines (18369)
Hash 89e89aea544ea2785d49cc4cd9cf26f6
7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b
86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:26 GMT
content-type: application/javascript
last-modified: Thu, 07 Sep 2023 08:19:52 GMT
etag: W/"64f987a8-4a4b"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 3146
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P3Ly8Ki0IPKMAscp02kCy7LkSi9H8RMVeVDUtPHgSvJKdMJ1DnE%2FbRxIRroJlLOP7IX1v56qW1SmWA6iSwqOiuU5Lq%2FD%2BqXHYm%2BGlcNNH3IIOzlXnPjNz3gr4%2FC3bA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e203b72d76b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/animate.css
172.64.109.10200 OK 79 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/global/custom-banner/1/css/animate.css
IP 172.64.109.10:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
Hash e1d8acd5ee9d1a90ea09313cbd8f2b02
8a8327b115d1356715e63270d1ce6d46124c7b1a
3028c87fc798ac3741f02079034e6c23462afc0c5e6c8d321188ce3716c8472a
GET /sb/notifications/games/hentai-heroes/global/custom-banner/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:29 GMT
content-type: text/css
last-modified: Thu, 19 Oct 2023 15:30:49 GMT
etag: W/"65314ba9-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pPgp%2BWUyB%2BTrxOz6MHxhovoh%2FiKPdC18cY7UK23ZLEQxxhvayGnqeF%2F8tZSlumbuA5g4LKognKyqShzsBm11YOyNF1Mf3Rm339IJ02SFr3iA8L%2B9nAiUWjbswT6bc35mPWz5SUFKk1Pd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e203c7cbda7692-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1
192.185.106.252200 OK 571 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
Size 571 kB (571247 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:30 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-type: application/javascript
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
142.250.74.106200 OK 6.8 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP 142.250.74.106:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (7013), with no line terminators
Hash 49475c425d6c00477bb339179326c49b
bd97deeb753f44f43a21feafa92d98239fa511bd
598841a98ad357d2896d2f093ea3e4e1d44e24b3351268ffd45e61ff8c1d0e09
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 30 Nov 2023 09:20:29 GMT
date: Thu, 30 Nov 2023 09:20:29 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.vugla.com/wp-content/themes/vugla/css/style_400.css
192.185.106.252200 OK 6.8 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/style_400.css
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (7567), with no line terminators
Hash a2e3b81f3e16b3193b1c8fc00102fedf
df930bde1ae851c79267d921d19f39a06444ddb9
b2af7a7e308eceb8396d2b75f72dca8c6a0e2f1d0f441ac3d26158e9f78abbf0
GET /wp-content/themes/vugla/css/style_400.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:30 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 2412
content-type: text/css
date: Thu, 30 Nov 2023 09:20:25 GMT
server: Apache
X-Firefox-Spdy: h2
tharbadir.com/9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&oaid=17c8d60688d94b8a82b59e3d46682cf2
139.45.197.238200 OK 6.5 kB URL POST HTTP/2 tharbadir.com/9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&oaid=17c8d60688d94b8a82b59e3d46682cf2
IP 139.45.197.238:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (7015), with no line terminators
Hash 0ee0f806f3c002df93516096c75edee4
7d48e62d92cb35ded02aa08df5f43dae3b98f229
15d674221d12fe03b483efa0761aa1de251e948566ccc7767db108d42efd783a
POST /9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&oaid=17c8d60688d94b8a82b59e3d46682cf2 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 139
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=fb06995de546440fa9afff6e51976068; oaidts=1701336025
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:27 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 71ed52077278801998503b02b3dd979c
access-control-expose-headers: X-Sc
set-cookie: OAID=17c8d60688d94b8a82b59e3d46682cf2; expires=Fri, 29 Nov 2024 09:20:27 GMT; secure; SameSite=None
oaidts=1701336025; expires=Fri, 29 Nov 2024 09:20:27 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=6.4.1
192.185.106.252200 OK 104 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=6.4.1
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text, with very long lines (1754), with CRLF line terminators
Size 104 kB (103652 bytes)
Hash ef9b7abbc5670902d89c6d20af50b7c3
2593f7764d07fecf938574d3d93693f1974759d2
17cadc0ae5ff07b667c2150bce71007b771bcc75ce070fd2a697ee2e60109535
GET /wp-content/themes/vugla/js/scripts.js?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 12:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-type: application/javascript
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
104.21.234.32200 OK 86 kB URL GET HTTP/2 friendshipmale.com/sfp.js
IP 104.21.234.32:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 30 Nov 2023 09:20:27 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 4c6063c2a889665766f1fea67b50f4a7
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 30 Nov 2023 09:20:27 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MKXbCyR6P4LS7ElFiG0U5aDMWO10emGhqzLjiT06Tr%2B6BY9g8jpYwICEQeK7097bLBfN%2BzI3LFB1D8o3W%2FiwKLByIoqHCvLY%2FHhORBFOpbqRPzPn3e3wExXDPH2bKPIHErsM8Nk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e203bd49b756ab-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/reddit.png
192.185.106.252200 OK 2.3 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/reddit.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 91d33236832e22fe9743606623bd001a
d7101e60e49e86dbe1f34876228aa6831ad568f7
5571cdc5e0d90001474bf488c142929a02a39e55a4a7f61c44d1f94a4087eda1
GET /wp-content/plugins/social-media-feather/synved-social/image/social/regular/64x64/reddit.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:26:48 GMT
accept-ranges: bytes
content-length: 2328
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:24 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:24 GMT
server: Apache
X-Firefox-Spdy: h2
tobaltoyon.com/pfe/current/defaultSkin.min.js
139.45.197.251200 OK 57 kB URL GET HTTP/2 tobaltoyon.com/pfe/current/defaultSkin.min.js
IP 139.45.197.251:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecttobaltoyon.com
Fingerprint0B:06:51:6D:9B:70:A5:52:62:81:6E:8C:BB:F4:C5:79:81:70:53:7A
ValidityMon, 06 Nov 2023 05:04:47 GMT - Sun, 04 Feb 2024 05:04:46 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: tobaltoyon.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:33 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 17:44:23 GMT
etag: W/"6564d577-df63"
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
142.250.74.78301 Moved Permanently 0 B URL GET HTTP/3 apis.google.com/u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP 142.250.74.78:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /u/0/se/0/_/+1/fastbutton?usegapi=1&data-size=standard&origin=https%3A%2F%2Fwww.vugla.com&url=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 301 Moved Permanently
location: http://developers.google.com/
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Thu, 30 Nov 2023 09:20:27 GMT
expires: Thu, 30 Nov 2023 09:50:27 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 226
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tharbadir.com/2?z=1347951
139.45.197.238200 OK 43 kB URL GET HTTP/2 tharbadir.com/2?z=1347951
IP 139.45.197.238:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT
File type ASCII text, with very long lines (41880)
Hash 441e3bef82af85e8f46091f3d541c06a
d7625bc5621f12cf5bc7fbe32bf3f9187bdfbf7e
f4531065768812df39133e4cba99012a51996524654452c2de50abac26ca3ef9
GET /2?z=1347951 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:25 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: f9e422d46cc314d6234e9ac9478aceb3
access-control-expose-headers: X-Sc
x-sc: U6WClxE8drXZBB9rXliFvNxWdxmw-F6tVTrrWoT15JFqTIC7wuqpyfxfziG3yn6UI0Ykgwv71da6T-x2BJWM1lC4-hM=
set-cookie: scm=1; expires=Fri, 29 Nov 2024 09:20:25 GMT; secure; SameSite=None
OAID=fb06995de546440fa9afff6e51976068; expires=Fri, 29 Nov 2024 09:20:25 GMT; secure; SameSite=None
oaidts=1701336025; expires=Fri, 29 Nov 2024 09:20:25 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
104.21.234.32200 OK 86 kB URL GET HTTP/3 friendshipmale.com/sfp.js
IP 104.21.234.32:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 30 Nov 2023 09:20:28 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 8a38ab50cbb383006276fe222fe51aa4
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 30 Nov 2023 09:20:28 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=izZEmvAZ%2BIPVKE2GAgnut7ph%2FBaVEIebu3MKF274tn9OfI%2BLyUiVX8w5Sgp91zHOkmSmUrAgsA6WPIxinbmS8ykwRSxqbG%2BHo%2FvwccZ5z3WExsnEYV0AFPQZhMRO6RVFnckM1%2BY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82e203c28a6c0b49-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
64.233.161.84200 OK 565 B URL GET HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__
IP 64.233.161.84:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerGoogle Trust Services LLC
Subjectaccounts.google.com
Fingerprint1E:A9:E1:96:78:1D:08:FC:96:C8:C2:34:4F:02:D3:3D:FA:9A:D2:6B
ValidityMon, 23 Oct 2023 11:25:04 GMT - Mon, 15 Jan 2024 11:25:03 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (585), with no line terminators
Hash 30a6f53d8b67d488e7e06450d8a968e0
33740f74326361c7d65790fd580dd38a5a1be130
f870da164b26c4a2b37c3f98b036658d954234aa64831650157111e7d3e7af01
GET /o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 30 Nov 2023 09:20:29 GMT
content-security-policy: script-src 'nonce-SMM0OQwJaMMssypjmgrRwg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport, require-trusted-types-for 'script';report-uri /o/cspreport
cross-origin-resource-policy: same-site
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.vugla.com/wp-includes/images/w-logo-blue-white-bg.png
192.185.106.252200 OK 4.1 kB URL GET HTTP/2 www.vugla.com/wp-includes/images/w-logo-blue-white-bg.png
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
DNT: 1
Connection: keep-alive
Cookie: _ga_7NCJ73THPT=GS1.1.1701336030.1.0.1701336031.59.0.0; _ga=GA1.1.490757387.1701336031; prefetchAd_1316441=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=083c4dad-cf8d-4f03-b03f-1de1bfda2a25%3A2%3A1; sb_main_d137022925bcc2a680f8a4476ff94144=1; sb_count_d137022925bcc2a680f8a4476ff94144=1; m5a4xojbcp2nx3gptmm633qal3gzmadn=linearsubdued.com; pbpr0tpuw4isk85t8yg3jb2lj5vqf=boundsinflectioncustom.com; pp_main_65aa283021630dfd9030555c4c61a78c=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
content-length: 4119
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Fri, 29 Nov 2024 09:20:29 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Thu, 30 Nov 2023 09:20:29 GMT
server: Apache
X-Firefox-Spdy: h2
tharbadir.com/27/b7af9eee900df9a8aa2af9ad8ee46174
139.45.197.238200 OK 413 kB URL GET HTTP/2 tharbadir.com/27/b7af9eee900df9a8aa2af9ad8ee46174
IP 139.45.197.238:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT
File type ASCII text, with very long lines (65523)
Size 413 kB (412914 bytes)
Hash 1dc3ebe1459db3cde0597b21156f2665
0e5a8c7b79a34f4fffaeab7c7eb4f3a19b0d75f6
1a3f7f2cfe5fba958e9df1a38c0980aab5bb21225601ea849f9e6df4afe09f2e
GET /27/b7af9eee900df9a8aa2af9ad8ee46174 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=fb06995de546440fa9afff6e51976068; oaidts=1701336025
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:27 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 5da13f527afc7d0d0801370a24c2973c
cache-control: max-age:290304000, public
last-modified: Fri, 24 Nov 2023 06:46:08 GMT
expires: Fri, 24 Dec 2083 06:46:08 GMT
access-control-expose-headers: X-Sc
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
tharbadir.com/9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&oaid=17c8d60688d94b8a82b59e3d46682cf2
139.45.197.238204 No Content 0 B URL OPTIONS HTTP/2 tharbadir.com/9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&oaid=17c8d60688d94b8a82b59e3d46682cf2
IP 139.45.197.238:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=4&sah=1024&drf=&hil=1&ist=0&oaid=17c8d60688d94b8a82b59e3d46682cf2 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
server: nginx
date: Thu, 30 Nov 2023 09:20:27 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/style_main.css
192.185.106.252200 OK 85 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/style_main.css
IP 192.185.106.252:443
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (6104), with CRLF line terminators
Hash 1d85fc3a503a0f77b0f029ad44e4ddd4
5b1212871267b4eba6f2d0628ce678890cefbd8e
df3db153ea5d4b5fdd494569edaa7513e12c7520282d6926628bee4e93c18187
GET /wp-content/themes/vugla/css/style_main.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 23 May 2014 15:19:09 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-type: text/css
date: Thu, 30 Nov 2023 09:20:25 GMT
server: Apache
X-Firefox-Spdy: h2
apis.google.com/js/rpc:shindig_random.js?onload=init
142.250.74.78200 OK 18 kB URL GET HTTP/3 apis.google.com/js/rpc:shindig_random.js?onload=init
IP 142.250.74.78:443
Requested by https://accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.vugla.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.coKrc9A11Ng.O%2Fd%3D1%2Frs%3DAHpOoo_J8xjByIzBlcB6zLaAkxsUwdPdIw%2Fm%3D__features__#rpctoken=339400854&forcesecure=1
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint4C:0D:17:8C:F1:30:7C:3A:6F:9B:8E:B4:83:0E:5C:BD:ED:17:3E:95
ValidityMon, 23 Oct 2023 11:18:24 GMT - Mon, 15 Jan 2024 11:18:23 GMT
File type ASCII text, with very long lines (2056)
Hash 84a5ff7df274c2aa0f5db3d0db8deb60
fe9d4e60961ea15195134fa043256585a3956984
0d3c50c1af81534edee9a430edb5d09c6068348173496657982a4546ff2ee231
GET /js/rpc:shindig_random.js?onload=init HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
content-length: 7121
date: Thu, 30 Nov 2023 09:20:29 GMT
expires: Thu, 30 Nov 2023 09:20:29 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "14543ead6f363f55"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
set-cookie: NID=511=eAo6eNIXnD5pLLzDxrytLPczU3OMYVrSssg6HcZ3BWi9076G-ZKa1vmr4MWEwWpLGXPO_FIogaUAYduybDoVZrodC8RcWG8c7dg9C5SmaEYl7gstMt7hnwWM0w8va-kJjIFRgFck9AFm8dvSmSWWzACig-NugGgcbkHXN7nuvWo; expires=Fri, 31-May-2024 09:20:29 GMT; path=/; domain=.google.com; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
atservineor.com/?rb=uaEXbcQGI42vMTWvD0HfHa9c1j7m5hmF8ZuM02TE7a1S4SLDRyDOUfm8eYFKJZZXrSkE1OzeN-ZYWDjJC-HN0UhBJ814PxhULLmg3GopUpYWvUjY6Yc26ptw7o995Ypj2dMylfNdyz82ZYWhMU-Trj8k4489qk43SsusggoyM1vtUoGVfKtgnLnL0KA3Lj7t5bGbp5Ckk0INkZqEyoNGze5g5-CgVN7VZcHWPoUZWOU%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.635.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=4&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.635.0&bs=fcc51fbd-c09a-4290-b5bb-089a85476909&userId=17c8d60688d94b8a82b59e3d46682cf2&m=link
139.45.197.244200 OK 1.9 kB URL GET HTTP/2 atservineor.com/?rb=uaEXbcQGI42vMTWvD0HfHa9c1j7m5hmF8ZuM02TE7a1S4SLDRyDOUfm8eYFKJZZXrSkE1OzeN-ZYWDjJC-HN0UhBJ814PxhULLmg3GopUpYWvUjY6Yc26ptw7o995Ypj2dMylfNdyz82ZYWhMU-Trj8k4489qk43SsusggoyM1vtUoGVfKtgnLnL0KA3Lj7t5bGbp5Ckk0INkZqEyoNGze5g5-CgVN7VZcHWPoUZWOU%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.635.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=4&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.635.0&bs=fcc51fbd-c09a-4290-b5bb-089a85476909&userId=17c8d60688d94b8a82b59e3d46682cf2&m=link
IP 139.45.197.244:443
Requested by https://www.vugla.com/pazljivo-s-cetvrtim-zidom.html
Certificate IssuerLet's Encrypt
Subjectatservineor.com
Fingerprint7F:A6:D8:C6:07:B2:43:13:77:39:5A:91:57:E3:4C:1C:7A:E3:EF:51
ValidityWed, 11 Oct 2023 05:20:30 GMT - Tue, 09 Jan 2024 05:20:29 GMT
File type troff or preprocessor input, ASCII text, with very long lines (1886), with no line terminators
Hash 979d51263f7adcda07cf47a812276be9
2ef9fdc63d5bec2642b689a5414da48e84aaa7a2
d6c4236acc67464e42da8a0e93524ed45226238205610655aaf86173a8fb734a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /?rb=uaEXbcQGI42vMTWvD0HfHa9c1j7m5hmF8ZuM02TE7a1S4SLDRyDOUfm8eYFKJZZXrSkE1OzeN-ZYWDjJC-HN0UhBJ814PxhULLmg3GopUpYWvUjY6Yc26ptw7o995Ypj2dMylfNdyz82ZYWhMU-Trj8k4489qk43SsusggoyM1vtUoGVfKtgnLnL0KA3Lj7t5bGbp5Ckk0INkZqEyoNGze5g5-CgVN7VZcHWPoUZWOU%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.635.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=4&pl=https%3A%2F%2Fwww.vugla.com%2Fpazljivo-s-cetvrtim-zidom.html&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.635.0&bs=fcc51fbd-c09a-4290-b5bb-089a85476909&userId=17c8d60688d94b8a82b59e3d46682cf2&m=link HTTP/1.1
Host: atservineor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Cookie: OAID=308118d066834a29a9ee3c9946471abd; oaidts=1701336025
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 30 Nov 2023 09:20:27 GMT
content-type: application/json
x-trace-id: 988711b32305fbbfe10e89ab69f3ee62
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=17c8d60688d94b8a82b59e3d46682cf2; expires=Fri, 29 Nov 2024 09:20:27 GMT; path=/; secure; SameSite=None
oaidts=1701336027; expires=Fri, 29 Nov 2024 09:20:27 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Thu, 07 Dec 2023 09:20:27 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2