www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.4.6
200 OK 1.4 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.4.6
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (4310), with CRLF line terminators
Hash b236fbc68ad6824d6fd4be9501a56ea5
5147f5e6779b335a45771a6a9ec9f0a1db8079ef
d49c9ad378618e0a0eb8e6fca04c13f6005e13badf79e0c977d76d851f7aa60a
GET /wp-content/plugins/responsive-lightbox/assets/swipebox/swipebox.min.css?ver=2.4.6 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 1410
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/vn-video-player/style/video-js.css?ver=6.4.1
200 OK 14 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/vn-video-player/style/video-js.css?ver=6.4.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type Unicode text, UTF-8 text, with very long lines (5844)
Hash 514fccb15bdc95ea2c2b6fddaded8ecc
4c999194bb19b83cc85f40621fa1c74cd1a4cbf7
d86730f73982f170cb0943d0d47c3c2520743d6a3d6cf5330cde12667df675ca
GET /wp-content/plugins/vn-video-player/style/video-js.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:35 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 13761
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=6.4.1
200 OK 89 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=6.4.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash b20aaffdf9d8e1f413b536edb9d1b649
0f3afd6ef6940700eb7f245629d1b79c52f45b47
9534982bd24eaa3205ac2e5a4dbd6a16a3129b70df981f422562ef3a30ade7cd
GET /wp-content/plugins/vn-video-player/style/vn_player_container.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:50:56 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 89
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/tag/bologna-torino-golovi
200 OK 64 kB URL HEAD HTTP/2 www.vugla.com/tag/bologna-torino-golovi
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (42956), with CRLF, LF line terminators
Hash bfe4363adba2365ef846bdfb53dc5c0d
a20f5117b043cbd96625ff7ffa1fd23b0431a036
5880882011887cad0c8f5811369b4a7c5e1bfbdf8b78a18477615e5226ec717d
GET /tag/bologna-torino-golovi HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/", <https://www.vugla.com/wp-json/wp/v2/tags/11121>; rel="alternate"; type="application/json"
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=10800
expires: Tue, 28 Nov 2023 06:11:45 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-type: text/html; charset=UTF-8
date: Tue, 28 Nov 2023 03:11:45 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=6.4.1
200 OK 320 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=6.4.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash 199decab27dd471d35814631e71e6fea
42c2847529b6859230bc2f4e8e6432805a06148b
7279594a46188e3246db42ffd4c609fc254c6fa06bfca8b72dd82e63fa4e6385
GET /wp-content/plugins/vn-featured-image-gallery/css/style.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 26 May 2014 20:39:02 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 320
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
200 OK 398 B URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
Hash 4f140b946bdc4cb833896a992db68c6d
52d6c64f9c5478bb70604068a66f06283ecff968
f8f90d1cacc59cf90886948787ef5c723b8de9e41092285611f2f915b5996ef2
GET /wp-content/themes/vugla/style.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 24 Mar 2020 17:57:12 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 398
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
200 OK 5.4 kB URL GET HTTP/2 www.vugla.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (13479)
Hash 9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 5422
content-type: application/javascript
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1
200 OK 8.7 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (17739), with CRLF line terminators
Hash 3229aa93c44fa4628707e80959a97bc1
5a2d4dbc4d1df02e7a386489e7b5c5a9e22dd40f
095834cc86bd018fdb4a9e31c99f9f96904b819be2b9dc16b3390383288d4d90
GET /wp-content/plugins/responsive-lightbox/assets/infinitescroll/infinite-scroll.pkgd.min.js?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 8747
content-type: application/javascript
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2021/11/chicago-harbor-webcam-150x150.jpg
200 OK 5.8 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2021/11/chicago-harbor-webcam-150x150.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 49b9b000462aa96f1d3b57aada9cfa48
6e8e61275eed0dd7f5691ac46fddb3c9375d5389
eec3f57e33c51ce4330241bfa98c07aea93e1e82e566ace734a02598805a281b
GET /wp-content/uploads/2021/11/chicago-harbor-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 21:12:35 GMT
accept-ranges: bytes
content-length: 5766
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:48 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6
200 OK 4.7 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (12917), with CRLF line terminators
Hash 416d2c5e5425c640a7d63f25e0376fd6
a95b218161d94bdb148d108aedf065b4a4762045
b875bead01dfa1b02a553e8efda0f3a65d39da24f19ad37af95f06795eee76dc
GET /wp-content/plugins/responsive-lightbox/assets/swipebox/jquery.swipebox.min.js?ver=2.4.6 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 4708
content-type: application/javascript
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1
200 OK 7.0 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text, with very long lines (14641), with CRLF line terminators
Hash ad955f14cdcc21d58014f25ab7c8d46d
8915b95d672d54be6fb01a239088aba305d4798e
d6304e162f8fe5054a4c5430d2f1d78ea2ad54c1ff61ea708d148bf385312407
GET /wp-content/themes/vugla/js/libs/modernizr-2.0.6.min.js?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 12:00:08 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 6964
content-type: application/javascript
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/bologna-torino-golovi-27-11-2023-290x166.jpg
200 OK 15 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/bologna-torino-golovi-27-11-2023-290x166.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 290x166, components 3\012- data
Hash 5aa6da5bd47e30fb00299de0ebafe2b5
6a5341d2fbdb460254263f1c3eacd492ed1af86e
273b7dd2a601695466d5d039906d4bded847bcb83aca0286bd4351f8c4d4657e
GET /wp-content/uploads/2023/11/bologna-torino-golovi-27-11-2023-290x166.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 28 Nov 2023 00:10:19 GMT
accept-ranges: bytes
content-length: 14998
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:48 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-7NCJ73THPT
200 OK 85 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-7NCJ73THPT
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3034)
Hash e1967616245d3d75efeeb0d5a53683d4
bf3c9b0b32ed891d2f0b863db41f79d81110516d
fda8c7711cea86c39f58b08737a3dfb41482622287aff2cc34c51138fad92033
GET /gtag/js?id=G-7NCJ73THPT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 28 Nov 2023 03:11:48 GMT
expires: Tue, 28 Nov 2023 03:11:48 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 85251
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/helas-verona-lecce-golovi-27-11-2023-150x150.jpg
200 OK 7.2 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/helas-verona-lecce-golovi-27-11-2023-150x150.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 2308a47f1fd7b3a31494400dcf569324
a56afa98a45d40ad0f45db7ea08e4816af1f862e
fd770d145ae4a98a870c804091a772b565817e7f78fc56c1dd2973316ec852f4
GET /wp-content/uploads/2023/11/helas-verona-lecce-golovi-27-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 21:27:13 GMT
accept-ranges: bytes
content-length: 7167
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:48 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/images/logo.png
200 OK 7.9 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/logo.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 254 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash f8e78d7eed20f4d77ca41cbf9700c0fa
9c40c7c5ae212e070b2aceda05b7e34de143a670
cf314f8938fb5d378e49a7e09683a206e244024b7ca3a7ec1676f22804285ca7
GET /wp-content/themes/vugla/images/logo.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 18 Nov 2013 11:35:09 GMT
accept-ranges: bytes
content-length: 7870
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:48 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2021/11/subotica-palic-webcam-150x150.jpg
200 OK 5.6 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2021/11/subotica-palic-webcam-150x150.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash c6ede4cbc4e8bbb84901f9107c030e6e
224a6be43d2fcf43039157be2620e5b6c6d64a79
de02048892e8fde9ec6562f086cd6d373eb4168c779897aa9f19d1786d23e645
GET /wp-content/uploads/2021/11/subotica-palic-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sun, 28 Nov 2021 10:35:38 GMT
accept-ranges: bytes
content-length: 5633
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:48 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2021/11/siena-piaza-di-paradiso-webcam-150x150.jpg
200 OK 5.5 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2021/11/siena-piaza-di-paradiso-webcam-150x150.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash dd09e343a96187e9d8f3d70656ffbb87
ee20578e6431af1f0f82ace247a6c80ea4c1af15
bbf157f8a642d8848f838477bd12e007c6dbd80a07beb3e785f70621b3e8b2c1
GET /wp-content/uploads/2021/11/siena-piaza-di-paradiso-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 27 Nov 2021 11:20:42 GMT
accept-ranges: bytes
content-length: 5524
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:48 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/girona-ath-bilbao-golovi-27-11-2023-150x150.jpg
200 OK 6.7 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/girona-ath-bilbao-golovi-27-11-2023-150x150.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 9c2a17cbf602b9ef80c8a3249789d2b8
3e10ef1d3bdfc8dc8b4cde0630979d295a548c68
f759e6bb5718613412d240b6039be95a5b40188331bf2170cfcb7606d2445a14
GET /wp-content/uploads/2023/11/girona-ath-bilbao-golovi-27-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 28 Nov 2023 00:10:20 GMT
accept-ranges: bytes
content-length: 6694
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:48 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1
200 OK 1.4 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text
Hash 6755415003869bd599c3fae8e9792027
57946a22c79654014eb00fb548f727d302221873
07f79fbda35a2bf03f2940978670a2a53cf21e490ecce887bf92fc2e3f359293
GET /wp-content/plugins/vn-video-player/js_scripts/jquery.fitvids.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:28 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 1389
content-type: application/javascript
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/habitfarm-javor-fk-vozdovac-golovi-27-11-2023-150x150.jpg
200 OK 6.0 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/habitfarm-javor-fk-vozdovac-golovi-27-11-2023-150x150.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 58337990ebec58a74b5aa3af2baadb46
593f2a0075358d436649b74185c4a266f2f7a0f0
f5c781dad35944ad8727497b241186e5e0b8bec2a1479280bbc08f014075bae7
GET /wp-content/uploads/2023/11/habitfarm-javor-fk-vozdovac-golovi-27-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 21:27:15 GMT
accept-ranges: bytes
content-length: 6001
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:48 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-includes/js/underscore.min.js?ver=1.13.4
200 OK 8.3 kB URL GET HTTP/2 www.vugla.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (18798)
Hash f88d5720bb454ed5d204cbdb56901f6b
f1952292fde4b15936e9aac16b2b9896684db95b
726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 8305
content-type: application/javascript
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2021/11/lillestrom-webcam-150x150.jpg
200 OK 7.9 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2021/11/lillestrom-webcam-150x150.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 11c3e27edc8d50b8db9acefa7279a950
16c8dccc84e6dd461821707f7a7b82fb237a17b0
1f3621db7b52146458dc4e0072e4c782e22dab9783865c32858f82d47ccd94ef
GET /wp-content/uploads/2021/11/lillestrom-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 25 Nov 2021 11:20:30 GMT
accept-ranges: bytes
content-length: 7928
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:48 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2021/11/newyork-bryant-park-webcam-150x150.jpg
200 OK 6.2 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2021/11/newyork-bryant-park-webcam-150x150.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 745b4a3b3497571feecaf9924b39ab30
18748491f70983c76ec8fffa2c4ccbcff0078233
ee1f3002de5e843e0b1ae4cfa4cec9d650f838c5c0ae6c0144fc15dcbb425363
GET /wp-content/uploads/2021/11/newyork-bryant-park-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Nov 2021 18:01:04 GMT
accept-ranges: bytes
content-length: 6173
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:48 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6
200 OK 8.6 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type Unicode text, UTF-8 text, with very long lines (629), with CRLF line terminators
Hash 68f8af044f685b84c7d49ac2356acabf
585889874b36224e980f4d285044ec0fb478dc7c
9fe6a07f596d507305d1480e6bb301d04cbf5ef8660b24b9fa411e39607a7ab5
GET /wp-content/plugins/responsive-lightbox/js/front.js?ver=2.4.6 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 23:58:55 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 8560
content-type: application/javascript
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2021/11/plaza-pag-webcam-150x150.jpg
200 OK 5.1 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2021/11/plaza-pag-webcam-150x150.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 4677a6ae64498e923e330f41419e0d95
4e6b43976f9142a330bbff82d1f6611b85654ff9
b7bd1791c64e387e2eba82e48f8e6c1cec57e65ff7071f9054b06beb38107ed0
GET /wp-content/uploads/2021/11/plaza-pag-webcam-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 30 Nov 2021 14:17:00 GMT
accept-ranges: bytes
content-length: 5120
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:48 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/sivasspor-trabzonspor-golovi-27-11-2023-150x150.jpg
200 OK 6.6 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/sivasspor-trabzonspor-golovi-27-11-2023-150x150.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash fb7a72877bcad63ff3151140efd919f2
ce3921c930ef550981f3947c812610a5858d3844
8428d61cb80c6ea4d36c5d77e2f8754f743e45bc0e876c0c5acccedad7bf57b8
GET /wp-content/uploads/2023/11/sivasspor-trabzonspor-golovi-27-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 21:27:11 GMT
accept-ranges: bytes
content-length: 6626
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:48 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/bologna-torino-golovi-27-11-2023-150x150.jpg
200 OK 7.1 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/bologna-torino-golovi-27-11-2023-150x150.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash 0bbcbe7c5eb0f46e61ce2e2ddda89077
7e0508b239b8db9e889a6c38b58da284b6a3d0bb
faf3d792ee64b9f14c2df759c439bdcc804c49004f580415892a149af92dd917
GET /wp-content/uploads/2023/11/bologna-torino-golovi-27-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 28 Nov 2023 00:10:19 GMT
accept-ranges: bytes
content-length: 7130
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:48 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1
200 OK 106 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash 64829824ee643f09fb3821dc49b3089a
446608ff9f4128b9503476135a8c28599f8d5c2e
0b967c52b8e899c4266110c97fa50018d61ccf1365144d16f09f901523d48c95
GET /wp-content/plugins/vn-video-player/js_scripts/vn_player_fit.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:31 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 106
content-type: application/javascript
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2023/11/basaksehir-pendikspor-golovi-27-11-2023-150x150.jpg
200 OK 6.4 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2023/11/basaksehir-pendikspor-golovi-27-11-2023-150x150.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 150x150, components 3\012- data
Hash f1abfff3486aad218f8083501b806693
1cb1ac196ebdc47555564c003fc77e049be3c690
ebe23e46448ac1b5e1f6bd697a74a81fe094a2ae162ae1c819fb36fdb9d4612c
GET /wp-content/uploads/2023/11/basaksehir-pendikspor-golovi-27-11-2023-150x150.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 27 Nov 2023 21:27:10 GMT
accept-ranges: bytes
content-length: 6442
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:48 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.3
409 Conflict 83 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 409 Conflict
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3
409 Conflict 83 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 409 Conflict
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3
409 Conflict 83 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 409 Conflict
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/flexslider.css
200 OK 1.5 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/flexslider.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash aed0d9c2792c1ca777bfce04eb08ae7a
64e98271e4539dbf8819fa9d801017423c9bc30b
7f7b09426068a9bacddeefcf29f89063307fdc903ac45a569853b8c452d9b62d
GET /wp-content/themes/vugla/css/flexslider.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 08 May 2014 09:18:47 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 1526
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/style_320.css
200 OK 2.4 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/style_320.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash cc437b9ea4ed072bf7636ec9013f026d
df8db436e5193d474b97364dc0cd532a9b390fe5
4e92c5bc2c3f90209e1bec52f50461d8c04d82a539296918f0db0c61af63aab2
GET /wp-content/themes/vugla/css/style_320.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:29 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 2413
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/style_768.css
200 OK 2.5 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/style_768.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (408), with CRLF line terminators
Hash 14b717ed0c77c605f84b5b9a6b9892e9
5723bca38e18b8155b26f923590a05657911a377
6f37f5624b7bc60317a9c37a473fdf7dc34474d5f52cf169a7d52b35ca1dc0dd
GET /wp-content/themes/vugla/css/style_768.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:32 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 2538
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/tabber.css
200 OK 1.7 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/tabber.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash a3e36a4db7b488bd984dd17c6e17cf63
33e7b11f7e1f149f954b6d938db9e36599816e8a
3609900b90f9835e1525c38bb6b1bcbffea0a14894799e54a07c2a9df09cb03d
GET /wp-content/themes/vugla/css/tabber.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:36 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 1710
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/style_1024.css
200 OK 2.3 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/style_1024.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash 7f4d3aa769cc8bb0e3c77745ff5c9d64
2da3458d48663a397a5a42c3bb52777bc5889dc0
7a6c4ca634ef663c6a3887df843fc04c40632ff46c53eb9f7d35bfcde21453b4
GET /wp-content/themes/vugla/css/style_1024.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:28 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 2267
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700
200 OK 1.2 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,400,700
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with CRLF, LF line terminators
Hash 04fc5f17232666147546312460e9eda4
ec9fd617618d5e1983b828c27a02553ec27ae4fe
d11dd198f32afb075cb87cc549768a08d24757b6f96486a69389e1fd0a16ce72
GET /css?family=Open+Sans:400italic,700italic,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 28 Nov 2023 03:11:48 GMT
date: Tue, 28 Nov 2023 03:11:48 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/style_400.css
200 OK 2.4 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/style_400.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash 1150741460f65df53d2a23c598e5807c
5520fd0a709fdfdc80089452403dbfa49b79f7d4
e0e19f2d1b42abb0a12a95da1488a3fb300ceeb34984bc9e321063184acb019b
GET /wp-content/themes/vugla/css/style_400.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:30 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 2412
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/elastislide.css
200 OK 674 B URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/elastislide.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash fac0ce1d7bcbe2001f963e204b03b3a4
fe650403bcbc74567e384eb3762c874835f6cad1
d8dcd83dfb6275b55ae8e495f6924dcfc52024a52f5639446a00de846ec7c7b9
GET /wp-content/themes/vugla/css/elastislide.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:21 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 674
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/style_reset.css
200 OK 1.2 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/style_reset.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with CRLF line terminators
Hash b5ae6c0ccd961d29a2924b03b0cbdd6e
3293dc40aa870c1cf79180eb7bd5c2ff28f3bd0a
0838fff76cfa3bad87963e64a610ea8d60b2dc8d0781a7531a2385f65de1ab2f
GET /wp-content/themes/vugla/css/style_reset.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:34 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 1152
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js
200 OK 9.3 kB URL GET HTTP/1.1 pl16411290.alternativecpmgate.com/c9123167a2366d360cd4d80dad2ac358/invoke.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectalternativecpmgate.com
FingerprintC9:1F:74:2C:C9:F2:3A:E6:2D:4F:6C:DC:DD:18:6E:93:10:75:9E:24
ValidityFri, 20 Oct 2023 06:02:37 GMT - Thu, 18 Jan 2024 06:02:36 GMT
File type Unicode text, UTF-8 text, with very long lines (25071), with no line terminators
Hash a62cae6518cbe1563b84b5fee8974450
084dab83019b894e1e2eb1e760bb7158fa6e9f6f
73d9f6471c758734cf7f6f9e23a4b3a4f96bbeac40ac55aead16d40d818307d8
GET /c9123167a2366d360cd4d80dad2ac358/invoke.js HTTP/1.1
Host: pl16411290.alternativecpmgate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 03:11:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 98dc6a552cebea9074c1a8829e1255fe
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 05:00:58 GMT
expires: Fri, 22 Nov 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 425450
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
200 OK 48 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 48432, version 1.0\012- data
Hash e2d74c5e631bc53a7240bbfe4be99c8f
eb513857bb01cc4f7249067fc7e969bef415fc90
9b1b9d7cb74a9923d83f36f0026f421940b861fd6e1a51b8f79af45492ed4ed5
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 05:00:58 GMT
expires: Fri, 22 Nov 2024 05:00:58 GMT
cache-control: public, max-age=31536000
age: 425450
last-modified: Thu, 14 Sep 2023 00:40:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
200 OK 35 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 35120, version 1.0\012- data
Hash dd986ff1050050613be051863773d677
51a12487fd51cc02ca54a984f82d63318807ca2e
d9784dbf11886ea032ffbd00f499d333519babe001eacc19df7ab89de17bec47
GET /s/opensans/v36/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTSGmu1aB.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Nov 2023 21:36:49 GMT
expires: Thu, 21 Nov 2024 21:36:49 GMT
cache-control: public, max-age=31536000
age: 452099
last-modified: Thu, 14 Sep 2023 01:03:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
200 OK 50 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 50368, version 1.0\012- data
Hash 4facfd6ff39e147b7e39c4b1abe4117d
0f7c0d978c209d21eb3f55950fc43e77c196ec3b
a246c4de8a0f1f1fdb6ee52565018dc341063aa9efe8481034bc3ef7d697e334
GET /s/opensans/v36/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 50368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 04:48:09 GMT
expires: Fri, 22 Nov 2024 04:48:09 GMT
cache-control: public, max-age=31536000
age: 426220
last-modified: Thu, 14 Sep 2023 01:04:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.vugla.com/tag/bologna-torino-golovi
200 OK 0 B URL HEAD HTTP/2 www.vugla.com/tag/bologna-torino-golovi
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /tag/bologna-torino-golovi HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/", <https://www.vugla.com/wp-json/wp/v2/tags/11121>; rel="alternate"; type="application/json"
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=10800
expires: Tue, 28 Nov 2023 06:11:48 GMT
vary: User-Agent
referrer-policy:
content-type: text/html; charset=UTF-8
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js
200 OK 15 kB URL GET HTTP/1.1 pl15560907.passtechusa.com/d1/37/02/d137022925bcc2a680f8a4476ff94144.js
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectpasstechusa.com
FingerprintF4:5F:CD:11:B9:E4:E0:B6:E3:01:2A:A2:FB:0E:11:26:44:B4:D0:9D
ValidityFri, 13 Oct 2023 07:12:41 GMT - Thu, 11 Jan 2024 07:12:40 GMT
File type ASCII text, with very long lines (42854), with no line terminators
Hash 43878977a1538ab2e48e96ec6a4eafe3
7e54c44cbd193eec15516b8a6b4396497c01d22d
2917481fa8c251d5bc99a24142ff8a29248ce923b53f530e81f3e73eed95b129
GET /d1/37/02/d137022925bcc2a680f8a4476ff94144.js HTTP/1.1
Host: pl15560907.passtechusa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 03:11:48 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: bb06e99686ee20466daab2c86e114820
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.vugla.com/wp-content/themes/vugla/images/search-arrow.png
200 OK 3.1 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/search-arrow.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 75 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f8933cdf4d27e317eb59959257f8c7a
b16e414fcb1561603cbf4ac404ec8b6fae1563ff
167925a8f225d7fc340317265409496b2d90e4313bd7d70bca4262bb1477eaf0
GET /wp-content/themes/vugla/images/search-arrow.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:13 GMT
accept-ranges: bytes
content-length: 3075
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:49 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Tue, 28 Nov 2023 03:11:49 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/images/preloader.gif
200 OK 1.7 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/preloader.gif
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type GIF image data, version 89a, 16 x 16\012- data
Hash dd6b7b0bf5c3af22499abc0a9ee1e1b2
e8c0018145d616fac4deb460d9c1d9c9dd4d3302
0eddaab3b8cb0b15d81d62e5ae5960329c3e576ea78dc321b20734ab20271847
GET /wp-content/themes/vugla/images/preloader.gif HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_1024.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:08 GMT
accept-ranges: bytes
content-length: 1737
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:49 GMT
referrer-policy:
pragma: public
content-type: image/gif
date: Tue, 28 Nov 2023 03:11:49 GMT
server: Apache
X-Firefox-Spdy: h2
www.kursnalista.co/banners/banners.js
200 OK 1.3 kB URL GET HTTP/2 www.kursnalista.co/banners/banners.js
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.kursnalista.co
Fingerprint1C:D4:9B:DE:4F:51:D3:F0:32:B2:6C:A1:1C:03:E2:3E:18:FC:D4:2A
ValidityMon, 20 Nov 2023 10:01:16 GMT - Sun, 18 Feb 2024 10:01:15 GMT
File type HTML document, Unicode text, UTF-8 text, with very long lines (394), with CRLF line terminators
Hash 0fa58c243ecc9c6ff829da27563c78c4
771e757dcaddc90a127b557e6a8a69b9dfe4767d
4631955f687225007a1227be7e662f1f45798c13a573f70670e748ff50aa194b
GET /banners/banners.js HTTP/1.1
Host: www.kursnalista.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
last-modified: Sun, 10 Jul 2022 10:44:43 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
content-length: 1261
content-type: application/javascript
date: Tue, 28 Nov 2023 03:11:49 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/tag/bologna-torino-golovi
200 OK 0 B URL HEAD HTTP/2 www.vugla.com/tag/bologna-torino-golovi
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
HEAD /tag/bologna-torino-golovi HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/", <https://www.vugla.com/wp-json/wp/v2/tags/11121>; rel="alternate"; type="application/json"
content-security-policy: upgrade-insecure-requests;
cache-control: max-age=10800
expires: Tue, 28 Nov 2023 06:11:48 GMT
vary: User-Agent
referrer-policy:
content-type: text/html; charset=UTF-8
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
eechicha.com/zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0&sw=3.1.471
200 OK 972 B URL GET HTTP/2 eechicha.com/zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0&sw=3.1.471
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecteechicha.com
FingerprintA7:F9:5F:87:8A:D5:59:6F:C6:F4:84:8E:C8:B1:C8:FE:DF:C8:27:B4
ValiditySun, 12 Nov 2023 05:14:19 GMT - Sat, 10 Feb 2024 05:14:18 GMT
File type JSON data\012- , ASCII text, with very long lines (971)
Hash 64f047fe127c40083700b04d3811ca27
8f6e71715f3ae8766c33ae08d590fdc202bd865d
0dd4bfd4e574ecf2df30bcd49a6afbc84ffe9a14227f17502561dfca63a51ac7
GET /zone?pub=0&zone_id=1548391&is_mobile=false&domain=www.vugla.com&var=&ymid=&var_3=&tg=0&sw=3.1.471 HTTP/1.1
Host: eechicha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:49 GMT
content-type: application/json; charset=utf-8
content-length: 972
x-trace-id: e23b569795568d916897a06f521518ae
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3
409 Conflict 83 B URL GET HTTP/2 www.vugla.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text, with no line terminators
Hash 26267cd8990f15d3bbea71684a6d5995
ac3b38cf3fe0e112bb6aeb7e05226b7133575d93
769e8ab745a0fe4bf811036e75a8630e38c50a18cb3e24d539ce4a0722c7c85e
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.8.3 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Cookie: _ga_7NCJ73THPT=GS1.1.1701141112.1.0.1701141112.60.0.0; _ga=GA1.1.492855472.1701141113
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 409 Conflict
date: Tue, 28 Nov 2023 03:11:49 GMT
server: Apache
content-length: 83
content-type: text/html; charset=iso-8859-1
X-Firefox-Spdy: h2
ocsp.r2m03.amazontrust.com/
471 B URL ocsp.r2m03.amazontrust.com/
IP
Hash ab08b21b37480bf609deaf73dcbf1e34
4121333c3a37ff481b30918ce3a1aa643cf813c2
d8c99d9c9d12731615d29afd9aba86e213ce6c7dfb8938334de50d3edfd78fcd
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 28 Nov 2023 03:11:49 GMT
Last-Modified: Tue, 28 Nov 2023 02:34:19 GMT
Server: ECAcc (ska/F7B4)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tN9V7GGZDgYPHeuomYxGJzTgbDPp8T-ruw9H8PLLqZGZeT41Cr05DA==
Age: 2250
proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash d2f996e4bbd3a0e46c3e26bcce94fe95
294ebca3a20a95f3e27879d4ebd4d18ceca4dc27
92fd334477bab2620c9726c4a0a12cec78a80ef7f657eae609bd49b70cf2e10b
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:49 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.vugla.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=73c87d98-d217-41f2-8a5e-8b4a969c1346:2:1; expires=Fri, 25 Nov 2033 03:11:49 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
eehuzaih.com/400/5005565
200 OK 38 kB IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash f3a1a2d401e51150a6c4de82ca95a03a
eb29b0f691c6404a76294cd5f52ec831af1de7d8
3b664281c88d9518e7a112996e6fadd204c9e49de0da5fc9a36e47c46961f518
GET /400/5005565 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:49 GMT
content-type: application/javascript
x-trace-id: 8ac13b48dd2fc02102538de5d03fdc08
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=78c212a9acc44d85831c6c7069ef7c2d; expires=Wed, 27 Nov 2024 03:11:49 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/images/top-arrow.png
200 OK 305 B URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/top-arrow.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 50 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 1fe20be2c98304e84623d10905435835
7ba0264f96984d92cfe0750c802f9af1ee7cb88b
1c3cbd61a972428028066c1e9abcfa7c0ef37d3b1de39d7b09455177a94eec52
GET /wp-content/themes/vugla/images/top-arrow.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: _ga_7NCJ73THPT=GS1.1.1701141112.1.0.1701141112.60.0.0; _ga=GA1.1.492855472.1701141113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:25 GMT
accept-ranges: bytes
content-length: 305
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:49 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Tue, 28 Nov 2023 03:11:49 GMT
server: Apache
X-Firefox-Spdy: h2
eehuzaih.com/400/5005565
200 OK 34 kB IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 0603464864fa2b6c9a5645316ded171e
8b2740a5a57d2c8ca2e02f556816abb0e27240e9
362a09575d352bc2d3341c2066fd7fdbbe854805340e6ebd6781e297921535a8
GET /400/5005565 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:49 GMT
content-type: application/javascript
x-trace-id: faa048e0ea3b8e2381624415cd2c296b
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=f2f86dba448448c18584efb94d601565; expires=Wed, 27 Nov 2024 03:11:49 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
tharbadir.com/27/b7af9eee900df9a8aa2af9ad8ee46174
200 OK 138 kB URL GET HTTP/2 tharbadir.com/27/b7af9eee900df9a8aa2af9ad8ee46174
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT
File type gzip compressed data, max speed, from Unix\012- data
Size 138 kB (137887 bytes)
Hash f293b5398746d9c9ce42376b7367c9ec
490f046799d92b866573dcd5224e76eb55226f26
4f7df7240083288f9e4b990c24091ccdf913cd4bf257e196b4a1107524743032
GET /27/b7af9eee900df9a8aa2af9ad8ee46174 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=1bfde260bc9141518083f72f548ea8ec; oaidts=1701141108
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:49 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 5da13f527afc7d0d0801370a24c2973c
cache-control: max-age:290304000, public
last-modified: Fri, 24 Nov 2023 06:46:08 GMT
expires: Fri, 24 Dec 2083 06:46:08 GMT
access-control-expose-headers: X-Sc
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
content-encoding: gzip
X-Firefox-Spdy: h2
proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash d2f996e4bbd3a0e46c3e26bcce94fe95
294ebca3a20a95f3e27879d4ebd4d18ceca4dc27
92fd334477bab2620c9726c4a0a12cec78a80ef7f657eae609bd49b70cf2e10b
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: uid_id2=73c87d98-d217-41f2-8a5e-8b4a969c1346:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:49 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.vugla.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
www.kursnalista.co/banners/it-servis/it-servis-300x600-1.jpg
200 OK 122 kB URL GET HTTP/2 www.kursnalista.co/banners/it-servis/it-servis-300x600-1.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.kursnalista.co
Fingerprint1C:D4:9B:DE:4F:51:D3:F0:32:B2:6C:A1:1C:03:E2:3E:18:FC:D4:2A
ValidityMon, 20 Nov 2023 10:01:16 GMT - Sun, 18 Feb 2024 10:01:15 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x600, components 3\012- data
Size 122 kB (122035 bytes)
Hash 40cc463f1dec524be975d7174c0ba28f
9ad04ae4c5eb015e25acb35cd42443f005922c3a
80468229399c3c652ad95b4d5c818ac7a6464e43fa340cb847cb97fbb6f459e8
GET /banners/it-servis/it-servis-300x600-1.jpg HTTP/1.1
Host: www.kursnalista.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 10 Jul 2022 10:44:27 GMT
accept-ranges: bytes
content-length: 122035
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:49 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1
200 OK 21 kB URL GET HTTP/2 www.vugla.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (57084)
Hash 99ab466e0866c823ae5db517d59cebd1
5595a586cbd42b31377681b9d35293278d75d336
698b89c0da3d319754d6a837b5e6d4e6a42dc402d9ffd7559b8c4cb29c644340
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
friendshipmale.com/sfp.js
200 OK 28 kB URL GET HTTP/2 friendshipmale.com/sfp.js
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:49 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: eb8e27302ccad1b05eb5e9a5ea30afcd
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 28 Nov 2023 03:11:48 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PihWqJZeemR1FWHQZYTRaUQQXdSGr%2B%2BmtPkefVpqETokWU65L%2FsTAtTokc39JApqIkkCn2REj0gp2rFY5GjUX5IT%2FhZ6rSexw9WLC3gLFI59lT0jmMhsuhNyjsfTrOMKK8dOvKM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cf6d00a9b023f3-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/images/pattern-filter.png
200 OK 2.8 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/pattern-filter.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 2 x 2, 8-bit/color RGBA, non-interlaced\012- data
Hash 6d6f2d483736ba6f70063740ddf2841b
3b9dee704da0bf19a56b46584a55226a137504a9
dca9f66f2ff2d735f415080def56d34e60cf13cc65668bf9b422103cd3bee2a5
GET /wp-content/themes/vugla/images/pattern-filter.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: _ga_7NCJ73THPT=GS1.1.1701141112.1.0.1701141112.60.0.0; _ga=GA1.1.492855472.1701141113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:06 GMT
accept-ranges: bytes
content-length: 2804
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:50 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Tue, 28 Nov 2023 03:11:50 GMT
server: Apache
X-Firefox-Spdy: h2
www.vugla.com/wp-content/uploads/2013/11/bckg-vugla-dark.jpg
200 OK 267 kB URL GET HTTP/2 www.vugla.com/wp-content/uploads/2013/11/bckg-vugla-dark.jpg
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2000x1200, components 3\012- data
Size 267 kB (267247 bytes)
Hash 11e97d76a4b329319978b9da6f46b5b0
ae03d14a5b568ed59c1772ee2065e160e93428ae
9fbe33f0e52a532495bb5d56584e250e0d3cf1acc5a04acb7cbb2e39bb6c6a42
GET /wp-content/uploads/2013/11/bckg-vugla-dark.jpg HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Cookie: _ga_7NCJ73THPT=GS1.1.1701141112.1.0.1701141112.60.0.0; _ga=GA1.1.492855472.1701141113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 20 Nov 2013 16:40:33 GMT
accept-ranges: bytes
content-length: 267247
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:50 GMT
referrer-policy:
pragma: public
content-type: image/jpeg
date: Tue, 28 Nov 2023 03:11:50 GMT
server: Apache
X-Firefox-Spdy: h2
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
200 OK 12 B URL POST HTTP/1.1 fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerSectigo Limited
Subjectfleraprt.com
FingerprintA4:AF:A0:00:99:C9:85:E5:30:F6:F3:F2:B5:4F:AE:4F:D0:46:74:A9
ValidityMon, 09 Jan 2023 00:00:00 GMT - Sun, 14 Jan 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1682
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Tue, 28 Nov 2023 03:12:24 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7NCJ73THPT&cid=492855472.1701141113>m=45je3b81v879882835&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=374588467
200 OK 42 B URL GET HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7NCJ73THPT&cid=492855472.1701141113>m=45je3b81v879882835&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=374588467
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subject*.google.no
Fingerprint6E:E4:BC:4A:67:5E:46:6A:B3:E4:CA:61:A7:C0:97:AB:14:F0:34:32
ValidityMon, 23 Oct 2023 11:27:27 GMT - Mon, 15 Jan 2024 11:27:26 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-7NCJ73THPT&cid=492855472.1701141113>m=45je3b81v879882835&aip=1&dma=1&dma_cps=sypham&gcd=11l1l1l1l1&z=374588467 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 28 Nov 2023 03:11:50 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tharbadir.com/9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=t6gy444437nr034445667r5p5qxdc112
204 No Content 0 B URL OPTIONS HTTP/2 tharbadir.com/9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=t6gy444437nr034445667r5p5qxdc112
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=t6gy444437nr034445667r5p5qxdc112 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
reptileseller.com/ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3
200 OK 13 kB URL GET HTTP/1.1 reptileseller.com/ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectreptileseller.com
FingerprintB3:18:0E:98:0F:1E:05:70:C4:67:A3:91:F6:B1:56:3B:56:EB:00:F2
ValiditySat, 25 Nov 2023 08:07:43 GMT - Fri, 23 Feb 2024 08:07:42 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (12682), with no line terminators
Hash c80bc6be02f76f185fbdf699b636ca3a
68f0a43172f9ff008217785c3e8e2e693f117933
2ad9bc2cec199197b57188b4bae26b59db6db345321f54bc84b3c37072b6d6e0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ntv.json?key=c9123167a2366d360cd4d80dad2ac358&vstc=3 HTTP/1.1
Host: reptileseller.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 28 Nov 2023 03:11:50 GMT
Content-Type: application/json
Content-Length: 12683
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16310791; expires=Wed, 29 Nov 2023 03:11:50 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 29 Nov 2023 03:11:50 GMT; secure; SameSite=None
uncs=1; expires=Wed, 29 Nov 2023 03:11:50 GMT; secure; SameSite=None
pdhtkv49=true; expires=Wed, 29 Nov 2023 03:11:50 GMT; secure; SameSite=None
uncs49=1; expires=Wed, 29 Nov 2023 03:11:50 GMT; secure; SameSite=None
nlecc9123167a2366d360cd4d80dad2ac358=[2229215,2106764,3637745]; expires=Tue, 28 Nov 2023 03:11:55 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: e746aa4bd86a3e3ee2122e3398578bee
Strict-Transport-Security: max-age=0; includeSubdomains
my.rtmark.net/gid.js?userId=t6gy444437nr034445667r5p5qxdc112
200 OK 65 B URL GET HTTP/2 my.rtmark.net/gid.js?userId=t6gy444437nr034445667r5p5qxdc112
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT
File type JSON data\012- , ASCII text
Hash efac3cbb7fdb9ac9e113e08db20576f2
61aa5e0375549564e2cdde4b79da2dd2ce52cb0e
616edb7e452b7b9abf6af9c5bdc9f78ec4ab00c4501097617b137048ac0e001c
GET /gid.js?userId=t6gy444437nr034445667r5p5qxdc112 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: ID=ab3ae5ee7cd1410c94a6763580a96eae
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=ab3ae5ee7cd1410c94a6763580a96eae; expires=Wed, 27 Nov 2024 03:11:50 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
eehuzaih.com/500/5005565?excludes=&oaid=t6gy444437nr034445667r5p5qxdc112&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0
200 OK 0 B URL OPTIONS HTTP/2 eehuzaih.com/500/5005565?excludes=&oaid=t6gy444437nr034445667r5p5qxdc112&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /500/5005565?excludes=&oaid=t6gy444437nr034445667r5p5qxdc112&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2
proftrafficcounter.com/stats
200 OK 40 B URL GET HTTP/2 proftrafficcounter.com/stats
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash d2f996e4bbd3a0e46c3e26bcce94fe95
294ebca3a20a95f3e27879d4ebd4d18ceca4dc27
92fd334477bab2620c9726c4a0a12cec78a80ef7f657eae609bd49b70cf2e10b
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: uid_id2=73c87d98-d217-41f2-8a5e-8b4a969c1346:2:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.vugla.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=t6gy444437nr034445667r5p5qxdc112
200 OK 65 B URL GET HTTP/2 my.rtmark.net/gid.js?userId=t6gy444437nr034445667r5p5qxdc112
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT
File type JSON data\012- , ASCII text
Hash efac3cbb7fdb9ac9e113e08db20576f2
61aa5e0375549564e2cdde4b79da2dd2ce52cb0e
616edb7e452b7b9abf6af9c5bdc9f78ec4ab00c4501097617b137048ac0e001c
GET /gid.js?userId=t6gy444437nr034445667r5p5qxdc112 HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: ID=ab3ae5ee7cd1410c94a6763580a96eae
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=ab3ae5ee7cd1410c94a6763580a96eae; expires=Wed, 27 Nov 2024 03:11:50 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
www.vugla.com/favicon.ico
302 Found 0 B URL GET HTTP/2 www.vugla.com/favicon.ico
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Cookie: _ga_7NCJ73THPT=GS1.1.1701141112.1.0.1701141112.60.0.0; _ga=GA1.1.492855472.1701141113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
link: <https://www.vugla.com/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
content-security-policy: upgrade-insecure-requests;
location: https://www.vugla.com/wp-includes/images/w-logo-blue-white-bg.png
cache-control: max-age=10800
expires: Tue, 28 Nov 2023 06:11:50 GMT
vary: User-Agent
referrer-policy:
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 28 Nov 2023 03:11:50 GMT
server: Apache
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?pub=0&userId=801027df69d74fa3a5cf0cb0dd1a161f&zoneId=1548391&checkDuplicate=true&ymid=&var=
200 OK 65 B URL GET HTTP/2 my.rtmark.net/gid.js?pub=0&userId=801027df69d74fa3a5cf0cb0dd1a161f&zoneId=1548391&checkDuplicate=true&ymid=&var=
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT
File type JSON data\012- , ASCII text
Hash efac3cbb7fdb9ac9e113e08db20576f2
61aa5e0375549564e2cdde4b79da2dd2ce52cb0e
616edb7e452b7b9abf6af9c5bdc9f78ec4ab00c4501097617b137048ac0e001c
GET /gid.js?pub=0&userId=801027df69d74fa3a5cf0cb0dd1a161f&zoneId=1548391&checkDuplicate=true&ymid=&var= HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Cookie: ID=ab3ae5ee7cd1410c94a6763580a96eae
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=ab3ae5ee7cd1410c94a6763580a96eae; expires=Wed, 27 Nov 2024 03:11:50 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
eechicha.com/custom
200 OK 0 B IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecteechicha.com
FingerprintA7:F9:5F:87:8A:D5:59:6F:C6:F4:84:8E:C8:B1:C8:FE:DF:C8:27:B4
ValiditySun, 12 Nov 2023 05:14:19 GMT - Sat, 10 Feb 2024 05:14:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: eechicha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
tharbadir.com/121?rnd=3992986207&z=2892323&b=15763363&c=6332999&var=&varid=0&d=https%3A%2F%2Fwww.nbfcs.org%2F%23signUp%3D753203014166122496&cln={CELL_NUMBER}&btp=7&rb=e7ycJsMpvwaTrFZ9G1Qnca87_Bq5Udo95AW0J9hYW7B8eg4OVAWFUH6IvffaNjESc3L4RvwoXfhSm1jH2cjJjJKjRMthBHvl3qHZ0Af5Yf24LbeibbI4GtxRCks5RNMRAv-TKyuzRUiGXglcBID6t0kqi9lrvV7avf0gCfSlNzTtITJehuhaO4XlkP3ZOAapqP2tI9dxzzVMNFT6eu5BfId2MqgeaIA076uS0Iqh830Ep4s6xfFLZ5H_Tgw9eKevNGN8MLV1_X0QJpMDCB1DHGsGRp2SqLE9e1-DzODl0MQcq2Dsw0uXtFBeLLLg17TEx_tgW3jJ-MFP5fS1SY3vpz6JU-qGmr2qEgQpBvxoawC7O6qXPbng9B89xOMdv3qGCRE3V64koGMXL61dp5UPtWj9ybo0-LmsQKbDVzmbHukJyMpOlTPsOm_eZB2Le0Hv39gYWI-3VXIFkqTzq59oBH0naAa3oP2WyetherLdPrSvmoTgtWkhigDkM5RrrhcU0DGPwe7dUvvCac5kepawtGpYEwYpThHBDiy1HtyH1prstM-X5a5DkEl0cgxkqRG3bCHTYeYQu2j4F8Ejqo4kjboC7PoK6R6l0TOOna23vo4vu9QLrSmrd_MXm8H8PhtviKJ4p_fCENYCYM2dRiRWTKl0kRidPC200uTtDO7G1n_pEkquCxBR0zWR2xm4NBrNuw0ZPZMzz3QD-KVJrfltM45n5596VAwbB0s7Ica7cfI1ZXNleYKYxed50Ols6CcIvrlJevQ9Wl9Vmsk4KB42WvfOpGI=&bag=mtWoNi7Fd2U1RtfFRZ7EF6PuOtdn3bta&ruid=893d67e7-a740-4bdd-b3ca-11e22721da72&subid=753203014166122496
302 Found 0 B URL GET HTTP/2 tharbadir.com/121?rnd=3992986207&z=2892323&b=15763363&c=6332999&var=&varid=0&d=https%3A%2F%2Fwww.nbfcs.org%2F%23signUp%3D753203014166122496&cln={CELL_NUMBER}&btp=7&rb=e7ycJsMpvwaTrFZ9G1Qnca87_Bq5Udo95AW0J9hYW7B8eg4OVAWFUH6IvffaNjESc3L4RvwoXfhSm1jH2cjJjJKjRMthBHvl3qHZ0Af5Yf24LbeibbI4GtxRCks5RNMRAv-TKyuzRUiGXglcBID6t0kqi9lrvV7avf0gCfSlNzTtITJehuhaO4XlkP3ZOAapqP2tI9dxzzVMNFT6eu5BfId2MqgeaIA076uS0Iqh830Ep4s6xfFLZ5H_Tgw9eKevNGN8MLV1_X0QJpMDCB1DHGsGRp2SqLE9e1-DzODl0MQcq2Dsw0uXtFBeLLLg17TEx_tgW3jJ-MFP5fS1SY3vpz6JU-qGmr2qEgQpBvxoawC7O6qXPbng9B89xOMdv3qGCRE3V64koGMXL61dp5UPtWj9ybo0-LmsQKbDVzmbHukJyMpOlTPsOm_eZB2Le0Hv39gYWI-3VXIFkqTzq59oBH0naAa3oP2WyetherLdPrSvmoTgtWkhigDkM5RrrhcU0DGPwe7dUvvCac5kepawtGpYEwYpThHBDiy1HtyH1prstM-X5a5DkEl0cgxkqRG3bCHTYeYQu2j4F8Ejqo4kjboC7PoK6R6l0TOOna23vo4vu9QLrSmrd_MXm8H8PhtviKJ4p_fCENYCYM2dRiRWTKl0kRidPC200uTtDO7G1n_pEkquCxBR0zWR2xm4NBrNuw0ZPZMzz3QD-KVJrfltM45n5596VAwbB0s7Ica7cfI1ZXNleYKYxed50Ols6CcIvrlJevQ9Wl9Vmsk4KB42WvfOpGI=&bag=mtWoNi7Fd2U1RtfFRZ7EF6PuOtdn3bta&ruid=893d67e7-a740-4bdd-b3ca-11e22721da72&subid=753203014166122496
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /121?rnd=3992986207&z=2892323&b=15763363&c=6332999&var=&varid=0&d=https%3A%2F%2Fwww.nbfcs.org%2F%23signUp%3D753203014166122496&cln={CELL_NUMBER}&btp=7&rb=e7ycJsMpvwaTrFZ9G1Qnca87_Bq5Udo95AW0J9hYW7B8eg4OVAWFUH6IvffaNjESc3L4RvwoXfhSm1jH2cjJjJKjRMthBHvl3qHZ0Af5Yf24LbeibbI4GtxRCks5RNMRAv-TKyuzRUiGXglcBID6t0kqi9lrvV7avf0gCfSlNzTtITJehuhaO4XlkP3ZOAapqP2tI9dxzzVMNFT6eu5BfId2MqgeaIA076uS0Iqh830Ep4s6xfFLZ5H_Tgw9eKevNGN8MLV1_X0QJpMDCB1DHGsGRp2SqLE9e1-DzODl0MQcq2Dsw0uXtFBeLLLg17TEx_tgW3jJ-MFP5fS1SY3vpz6JU-qGmr2qEgQpBvxoawC7O6qXPbng9B89xOMdv3qGCRE3V64koGMXL61dp5UPtWj9ybo0-LmsQKbDVzmbHukJyMpOlTPsOm_eZB2Le0Hv39gYWI-3VXIFkqTzq59oBH0naAa3oP2WyetherLdPrSvmoTgtWkhigDkM5RrrhcU0DGPwe7dUvvCac5kepawtGpYEwYpThHBDiy1HtyH1prstM-X5a5DkEl0cgxkqRG3bCHTYeYQu2j4F8Ejqo4kjboC7PoK6R6l0TOOna23vo4vu9QLrSmrd_MXm8H8PhtviKJ4p_fCENYCYM2dRiRWTKl0kRidPC200uTtDO7G1n_pEkquCxBR0zWR2xm4NBrNuw0ZPZMzz3QD-KVJrfltM45n5596VAwbB0s7Ica7cfI1ZXNleYKYxed50Ols6CcIvrlJevQ9Wl9Vmsk4KB42WvfOpGI=&bag=mtWoNi7Fd2U1RtfFRZ7EF6PuOtdn3bta&ruid=893d67e7-a740-4bdd-b3ca-11e22721da72&subid=753203014166122496 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: scm=1; OAID=t6gy444437nr034445667r5p5qxdc112; oaidts=1701141108
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-length: 0
location: https://www.nbfcs.org/#signUp=753203014166122496
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 89e757ce29b68b87bc8a5e428f463f25
access-control-expose-headers: X-Sc
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
tharbadir.com/9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=t6gy444437nr034445667r5p5qxdc112
204 No Content 2.7 kB URL OPTIONS HTTP/2 tharbadir.com/9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=t6gy444437nr034445667r5p5qxdc112
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 8af442993add6aa30846fbad3fb76978
9e062691a859c8378e55918be772c6d540f4d5f1
df7bd8ef6eae909ca7e4eb314c66729ecb3b90f1a746bff8c1d4f3377c2a257f
POST /9?z=2892323&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=t6gy444437nr034445667r5p5qxdc112 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 103
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=1bfde260bc9141518083f72f548ea8ec; oaidts=1701141108
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: application/json
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: c988edc44769c62268433a5eb52be2a9
access-control-expose-headers: X-Sc
set-cookie: OAID=t6gy444437nr034445667r5p5qxdc112; expires=Wed, 27 Nov 2024 03:11:50 GMT; secure; SameSite=None
oaidts=1701141108; expires=Wed, 27 Nov 2024 03:11:50 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
eechicha.com/custom
200 OK 0 B IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecteechicha.com
FingerprintA7:F9:5F:87:8A:D5:59:6F:C6:F4:84:8E:C8:B1:C8:FE:DF:C8:27:B4
ValiditySun, 12 Nov 2023 05:14:19 GMT - Sat, 10 Feb 2024 05:14:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /custom HTTP/1.1
Host: eechicha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: text/plain; charset=utf-8
content-length: 0
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization-Token,X-Oaid
access-control-max-age: 86400
X-Firefox-Spdy: h2
tharbadir.com/11?rnd=1218085957&z=2892323&b=15763363&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=e7ycJsMpvwaTrFZ9G1Qnca87_Bq5Udo95AW0J9hYW7B8eg4OVAWFUH6IvffaNjESc3L4RvwoXfhSm1jH2cjJjJKjRMthBHvl3qHZ0Af5Yf24LbeibbI4GtxRCks5RNMRAv-TKyuzRUiGXglcBID6t0kqi9lrvV7avf0gCfSlNzTtITJehuhaO4XlkP3ZOAapqP2tI9dxzzVMNFT6eu5BfId2MqgeaIA076uS0Iqh830Ep4s6xfFLZ5H_Tgw9eKevNGN8MLV1_X0QJpMDCB1DHGsGRp2SqLE9e1-DzODl0MQcq2Dsw0uXtFBeLLLg17TEx_tgW3jJ-MFP5fS1SY3vpz6JU-qGmr2qEgQpBvxoawC7O6qXPbng9B89xOMdv3qGCRE3V64koGMXL61dp5UPtWj9ybo0-LmsQKbDVzmbHukJyMpOlTPsOm_eZB2Le0Hv39gYWI-3VXIFkqTzq59oBH0naAa3oP2WyetherLdPrSvmoTgtWkhigDkM5RrrhcU0DGPwe7dUvvCac5kepawtGpYEwYpThHBDiy1HtyH1prstM-X5a5DkEl0cgxkqRG3bCHTYeYQu2j4F8Ejqo4kjboC7PoK6R6l0TOOna23vo4vu9QLrSmrd_MXm8H8PhtviKJ4p_fCENYCYM2dRiRWTKl0kRidPC200uTtDO7G1n_pEkquCxBR0zWR2xm4NBrNuw0ZPZMzz3QD-KVJrfltM45n5596VAwbB0s7Ica7cfI1ZXNleYKYxed50Ols6CcIvrlJevQ9Wl9Vmsk4KB42WvfOpGI=&ruid=893d67e7-a740-4bdd-b3ca-11e22721da72&subid=753203014166122496&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ot=137
200 OK 0 B URL GET HTTP/2 tharbadir.com/11?rnd=1218085957&z=2892323&b=15763363&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=e7ycJsMpvwaTrFZ9G1Qnca87_Bq5Udo95AW0J9hYW7B8eg4OVAWFUH6IvffaNjESc3L4RvwoXfhSm1jH2cjJjJKjRMthBHvl3qHZ0Af5Yf24LbeibbI4GtxRCks5RNMRAv-TKyuzRUiGXglcBID6t0kqi9lrvV7avf0gCfSlNzTtITJehuhaO4XlkP3ZOAapqP2tI9dxzzVMNFT6eu5BfId2MqgeaIA076uS0Iqh830Ep4s6xfFLZ5H_Tgw9eKevNGN8MLV1_X0QJpMDCB1DHGsGRp2SqLE9e1-DzODl0MQcq2Dsw0uXtFBeLLLg17TEx_tgW3jJ-MFP5fS1SY3vpz6JU-qGmr2qEgQpBvxoawC7O6qXPbng9B89xOMdv3qGCRE3V64koGMXL61dp5UPtWj9ybo0-LmsQKbDVzmbHukJyMpOlTPsOm_eZB2Le0Hv39gYWI-3VXIFkqTzq59oBH0naAa3oP2WyetherLdPrSvmoTgtWkhigDkM5RrrhcU0DGPwe7dUvvCac5kepawtGpYEwYpThHBDiy1HtyH1prstM-X5a5DkEl0cgxkqRG3bCHTYeYQu2j4F8Ejqo4kjboC7PoK6R6l0TOOna23vo4vu9QLrSmrd_MXm8H8PhtviKJ4p_fCENYCYM2dRiRWTKl0kRidPC200uTtDO7G1n_pEkquCxBR0zWR2xm4NBrNuw0ZPZMzz3QD-KVJrfltM45n5596VAwbB0s7Ica7cfI1ZXNleYKYxed50Ols6CcIvrlJevQ9Wl9Vmsk4KB42WvfOpGI=&ruid=893d67e7-a740-4bdd-b3ca-11e22721da72&subid=753203014166122496&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ot=137
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /11?rnd=1218085957&z=2892323&b=15763363&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=7&rb=e7ycJsMpvwaTrFZ9G1Qnca87_Bq5Udo95AW0J9hYW7B8eg4OVAWFUH6IvffaNjESc3L4RvwoXfhSm1jH2cjJjJKjRMthBHvl3qHZ0Af5Yf24LbeibbI4GtxRCks5RNMRAv-TKyuzRUiGXglcBID6t0kqi9lrvV7avf0gCfSlNzTtITJehuhaO4XlkP3ZOAapqP2tI9dxzzVMNFT6eu5BfId2MqgeaIA076uS0Iqh830Ep4s6xfFLZ5H_Tgw9eKevNGN8MLV1_X0QJpMDCB1DHGsGRp2SqLE9e1-DzODl0MQcq2Dsw0uXtFBeLLLg17TEx_tgW3jJ-MFP5fS1SY3vpz6JU-qGmr2qEgQpBvxoawC7O6qXPbng9B89xOMdv3qGCRE3V64koGMXL61dp5UPtWj9ybo0-LmsQKbDVzmbHukJyMpOlTPsOm_eZB2Le0Hv39gYWI-3VXIFkqTzq59oBH0naAa3oP2WyetherLdPrSvmoTgtWkhigDkM5RrrhcU0DGPwe7dUvvCac5kepawtGpYEwYpThHBDiy1HtyH1prstM-X5a5DkEl0cgxkqRG3bCHTYeYQu2j4F8Ejqo4kjboC7PoK6R6l0TOOna23vo4vu9QLrSmrd_MXm8H8PhtviKJ4p_fCENYCYM2dRiRWTKl0kRidPC200uTtDO7G1n_pEkquCxBR0zWR2xm4NBrNuw0ZPZMzz3QD-KVJrfltM45n5596VAwbB0s7Ica7cfI1ZXNleYKYxed50Ols6CcIvrlJevQ9Wl9Vmsk4KB42WvfOpGI=&ruid=893d67e7-a740-4bdd-b3ca-11e22721da72&subid=753203014166122496&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ot=137 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=t6gy444437nr034445667r5p5qxdc112; oaidts=1701141108
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: ad054e0be776cb97dda88f0073a6980b
access-control-expose-headers: X-Sc
set-cookie: OAID=t6gy444437nr034445667r5p5qxdc112; expires=Wed, 27 Nov 2024 03:11:50 GMT; secure; SameSite=None
oaidts=1701141108; expires=Wed, 27 Nov 2024 03:11:50 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
eechicha.com/custom
200 OK 39 B IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecteechicha.com
FingerprintA7:F9:5F:87:8A:D5:59:6F:C6:F4:84:8E:C8:B1:C8:FE:DF:C8:27:B4
ValiditySun, 12 Nov 2023 05:14:19 GMT - Sat, 10 Feb 2024 05:14:18 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: eechicha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 384
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 79c5067a01100ddb68440338aed2d9a4
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
eechicha.com/custom
200 OK 39 B IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecteechicha.com
FingerprintA7:F9:5F:87:8A:D5:59:6F:C6:F4:84:8E:C8:B1:C8:FE:DF:C8:27:B4
ValiditySun, 12 Nov 2023 05:14:19 GMT - Sat, 10 Feb 2024 05:14:18 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: eechicha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 747
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 02640e0333ad870e765269e14f46ea0b
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
offerimage.com/www/images/b89a854cfb66584b3f5fef24e571e8b5.png
200 OK 93 kB URL GET HTTP/2 offerimage.com/www/images/b89a854cfb66584b3f5fef24e571e8b5.png
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash b89a854cfb66584b3f5fef24e571e8b5
9bb5f94bcc641c8cfbc2e24f0a2af5bd07a3a1ea
7228a1274993f4e608b4f0952b2197db136917df3d8ae95ea16a9a34769945e7
GET /www/images/b89a854cfb66584b3f5fef24e571e8b5.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: image/png
content-length: 92662
last-modified: Thu, 10 Dec 2020 16:03:56 GMT
etag: "5fd246ec-169f6"
expires: Tue, 28 Nov 2023 15:02:23 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 43767
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cf6d057f6f1685-ARN
X-Firefox-Spdy: h2
reptileseller.com/65/aa/28/65aa283021630dfd9030555c4c61a78c.js
200 OK 25 kB URL GET HTTP/1.1 reptileseller.com/65/aa/28/65aa283021630dfd9030555c4c61a78c.js
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectreptileseller.com
FingerprintB3:18:0E:98:0F:1E:05:70:C4:67:A3:91:F6:B1:56:3B:56:EB:00:F2
ValiditySat, 25 Nov 2023 08:07:43 GMT - Fri, 23 Feb 2024 08:07:42 GMT
File type ASCII text, with very long lines (62418), with no line terminators
Hash fea00ad256efe4ba4200473aeb3bfef6
42b79186e5cdc90fc8d36efe93e2a755bd4c39a3
2c843d0a7886441b668144265d0e8de8fc6df8e0cd9a191d4cf3bafa6a0a61c1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /65/aa/28/65aa283021630dfd9030555c4c61a78c.js HTTP/1.1
Host: reptileseller.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecc9123167a2366d360cd4d80dad2ac358=[2229215,2106764,3637745]
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 28 Nov 2023 03:11:50 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2e21063d1682af9f613dcf3fd38b4461
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
cdn.cloudimagesb.com/cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg
200 OK 29 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash 76f54f42b70d14a6d6bfe2f8b1945265
197daa3737be8968bf39ff28000663c1c17deeb2
c864fde3026e05a2cc34b4348fa4888d3ae44202179277877d082cadd9971abc
GET /cti/28/5d/66/285d66474f8eb1391e6c869128c7a3ea/1628587131.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: image/jpeg
content-length: 28852
server: nginx/1.21.6
last-modified: Tue, 10 Aug 2021 09:18:59 GMT
etag: "61124483-70b4"
expires: Thu, 30 Nov 2023 03:11:50 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/cti/4e/61/98/4e619871efbab123abb0e0121e08e11d/1628586907.jpg
200 OK 23 kB URL GET HTTP/2 cdn.cloudimagesb.com/cti/4e/61/98/4e619871efbab123abb0e0121e08e11d/1628586907.jpg
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash c6f19781c79ff746b99178f813cfbff2
5c307e43c63001535aa3a3683777dbb1a7f0775b
816b5a5d078f27271fa2d7c210d708f386a6f9fbd9242531b07f0b051382870d
GET /cti/4e/61/98/4e619871efbab123abb0e0121e08e11d/1628586907.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: image/jpeg
content-length: 22883
server: nginx/1.21.6
last-modified: Tue, 10 Aug 2021 09:15:16 GMT
etag: "611243a4-5963"
expires: Thu, 30 Nov 2023 03:11:50 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
eechicha.com/pfe/current/universal.min.js?v=3.1.471
200 OK 35 kB URL GET HTTP/2 eechicha.com/pfe/current/universal.min.js?v=3.1.471
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecteechicha.com
FingerprintA7:F9:5F:87:8A:D5:59:6F:C6:F4:84:8E:C8:B1:C8:FE:DF:C8:27:B4
ValiditySun, 12 Nov 2023 05:14:19 GMT - Sat, 10 Feb 2024 05:14:18 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 182130da09fc2aa5a199258dd2627838
e7f894e66e3a870e86003643cf90d5dc3ed1f6a5
027d5f2216d51dfb17177a8b84891f0eae62660c2d3d72eee9b0ec5177eb6b8a
GET /pfe/current/universal.min.js?v=3.1.471 HTTP/1.1
Host: eechicha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:49 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 13:38:02 GMT
etag: W/"65649bba-1572c"
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cloudimagesb.com/si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg
200 OK 21 kB URL GET HTTP/2 cdn.cloudimagesb.com/si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Hash 8f4953c1b8baece7bb7d226247561ce2
da5d440970606602026d7900a55ae2fd27a3f170
8fd9df7d8e48ff2519631e82e01519d4f1c65abd41ec977c18abb58df9832919
GET /si/b9/5d/e2/b95de288caeec55111c172964c8a9c84/1662036680.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: image/jpeg
content-length: 20566
server: nginx/1.21.6
last-modified: Thu, 01 Sep 2022 12:51:28 GMT
etag: "6310aad0-5056"
expires: Thu, 30 Nov 2023 03:11:50 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
reptileseller.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3smP36IHcfEieGgERUEm3fM97mFxXSPBbBJ3VwLeqquqJ2Wqu5qq%2FpjklHVB9uBhxIt66jyTbNg1LO4foMjEyxIQMhfJwQjeBC8iLHuUmR0YfaHqfZ963sPzvG99tpedEw8ZPVu%2FrnekUnSxWfXcNzZkzHVh3dVbru9Vvcvuhoxbjctuf3KZ%2FG3fa1a9N933BdvSizXP9zzf890laUSo%2B4tTFjI56vrVrldt1Kp%2Bs4G%2B%2BS%2B2mQNLHfD8nFyC5OP%2FbT5%2BBMlGiKPvrgm7lerkrfeiTNFUG%2BT88KN4K9ZFjGhehsZBGB%2FOuqHtmJCvLkDHhzMH0Pn%2BxAECOSbOLz6C%2BHAmE0F%2B8ExpoCBiBPx5FPkIQo0g6QhM34HkpwRgHKtriKN7q9oUdPsZSyfsmCw8%2BRuyGJOFX19CHD28qmTfvalVlkodW%2FTDErI%2FguyNkGTHSHccyOIYLP0Ukv9MFp%2BsII7216zSkLycupdyBBmOoMQA1DrIJkc6yEIHWeIg4mcubXZDz2uHQVivdxqMsXqdsWanxZu83uiEHjI2kTdAmgzA1ADM7CIxu9iSX5w2L8FkP8JulrDcgU3HxPlwFzkvUQiCwhIUlKCQBEVKUOTlAVe2Zst7XNks8Ge5Nsv1cqjT3h490GlPxGQvOScvTkfz9Pf%2FY0ucuazr1%2Bp%2Bq01r9VaL11se4w3e8TjlNcrqzQ6sLCHthanbncmecBHJJF%2F%2FEwE9hlXHYLICmvmgxbBd80A3h42Oh534fp71FK0yHYHrEkm6gHTb2VPn5OWpCPe1zyHYyZUHrxxd9F%2F%2FA8yUSEyJT%2BRPBD11d3hDF2T%2Fhi4sebSWpDKSO3Syu5spTUXlwQdiu9CGL1%2Bzg%2FvvsAkxKY9uCZuu0JjLuGfJt1cl58IsacME%2BX7ZbohgPbObVzMTZ8nK%2BrtLy1FihLVSxyNQebr2FEyOycLtH6a%2F8oXxQ0gzgslKRNkJmQWkPgZLdmGTuXqrCYya9wTJBRRZOTS1YP6oJIESc0yDEvZfOJjXe%2FYueqYCmt5BHJXITYlclaBqAJs9N0wTc3Ll8deT%2BAaBqgwDZSr7gTLqyzF5tfLbdL5j0r79F6w8c0Uz9ELh1UQQdoOwTT3eDRvdgHZ90Q6a1Edqx0J8nP8DAAD%2F%2FwEAAP%2F%2FfElIincEAAA%3D
200 OK 7 B URL GET HTTP/1.1 reptileseller.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3smP36IHcfEieGgERUEm3fM97mFxXSPBbBJ3VwLeqquqJ2Wqu5qq%2FpjklHVB9uBhxIt66jyTbNg1LO4foMjEyxIQMhfJwQjeBC8iLHuUmR0YfaHqfZ963sPzvG99tpedEw8ZPVu%2FrnekUnSxWfXcNzZkzHVh3dVbru9Vvcvuhoxbjctuf3KZ%2FG3fa1a9N933BdvSizXP9zzf890laUSo%2B4tTFjI56vrVrldt1Kp%2Bs4G%2B%2BS%2B2mQNLHfD8nFyC5OP%2FbT5%2BBMlGiKPvrgm7lerkrfeiTNFUG%2BT88KN4K9ZFjGhehsZBGB%2FOuqHtmJCvLkDHhzMH0Pn%2BxAECOSbOLz6C%2BHAmE0F%2B8ExpoCBiBPx5FPkIQo0g6QhM34HkpwRgHKtriKN7q9oUdPsZSyfsmCw8%2BRuyGJOFX19CHD28qmTfvalVlkodW%2FTDErI%2FguyNkGTHSHccyOIYLP0Ukv9MFp%2BsII7216zSkLycupdyBBmOoMQA1DrIJkc6yEIHWeIg4mcubXZDz2uHQVivdxqMsXqdsWanxZu83uiEHjI2kTdAmgzA1ADM7CIxu9iSX5w2L8FkP8JulrDcgU3HxPlwFzkvUQiCwhIUlKCQBEVKUOTlAVe2Zst7XNks8Ge5Nsv1cqjT3h490GlPxGQvOScvTkfz9Pf%2FY0ucuazr1%2Bp%2Bq01r9VaL11se4w3e8TjlNcrqzQ6sLCHthanbncmecBHJJF%2F%2FEwE9hlXHYLICmvmgxbBd80A3h42Oh534fp71FK0yHYHrEkm6gHTb2VPn5OWpCPe1zyHYyZUHrxxd9F%2F%2FA8yUSEyJT%2BRPBD11d3hDF2T%2Fhi4sebSWpDKSO3Syu5spTUXlwQdiu9CGL1%2Bzg%2FvvsAkxKY9uCZuu0JjLuGfJt1cl58IsacME%2BX7ZbohgPbObVzMTZ8nK%2BrtLy1FihLVSxyNQebr2FEyOycLtH6a%2F8oXxQ0gzgslKRNkJmQWkPgZLdmGTuXqrCYya9wTJBRRZOTS1YP6oJIESc0yDEvZfOJjXe%2FYueqYCmt5BHJXITYlclaBqAJs9N0wTc3Ll8deT%2BAaBqgwDZSr7gTLqyzF5tfLbdL5j0r79F6w8c0Uz9ELh1UQQdoOwTT3eDRvdgHZ90Q6a1Edqx0J8nP8DAAD%2F%2FwEAAP%2F%2FfElIincEAAA%3D
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectreptileseller.com
FingerprintB3:18:0E:98:0F:1E:05:70:C4:67:A3:91:F6:B1:56:3B:56:EB:00:F2
ValiditySat, 25 Nov 2023 08:07:43 GMT - Fri, 23 Feb 2024 08:07:42 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSzWskxRuu3smP36IHcfEieGgERUEm3fM97mFxXSPBbBJ3VwLeqquqJ2Wqu5qq%2FpjklHVB9uBhxIt66jyTbNg1LO4foMjEyxIQMhfJwQjeBC8iLHuUmR0YfaHqfZ963sPzvG99tpedEw8ZPVu%2FrnekUnSxWfXcNzZkzHVh3dVbru9Vvcvuhoxbjctuf3KZ%2FG3fa1a9N933BdvSizXP9zzf890laUSo%2B4tTFjI56vrVrldt1Kp%2Bs4G%2B%2BS%2B2mQNLHfD8nFyC5OP%2FbT5%2BBMlGiKPvrgm7lerkrfeiTNFUG%2BT88KN4K9ZFjGhehsZBGB%2FOuqHtmJCvLkDHhzMH0Pn%2BxAECOSbOLz6C%2BHAmE0F%2B8ExpoCBiBPx5FPkIQo0g6QhM34HkpwRgHKtriKN7q9oUdPsZSyfsmCw8%2BRuyGJOFX19CHD28qmTfvalVlkodW%2FTDErI%2FguyNkGTHSHccyOIYLP0Ukv9MFp%2BsII7216zSkLycupdyBBmOoMQA1DrIJkc6yEIHWeIg4mcubXZDz2uHQVivdxqMsXqdsWanxZu83uiEHjI2kTdAmgzA1ADM7CIxu9iSX5w2L8FkP8JulrDcgU3HxPlwFzkvUQiCwhIUlKCQBEVKUOTlAVe2Zst7XNks8Ge5Nsv1cqjT3h490GlPxGQvOScvTkfz9Pf%2FY0ucuazr1%2Bp%2Bq01r9VaL11se4w3e8TjlNcrqzQ6sLCHthanbncmecBHJJF%2F%2FEwE9hlXHYLICmvmgxbBd80A3h42Oh534fp71FK0yHYHrEkm6gHTb2VPn5OWpCPe1zyHYyZUHrxxd9F%2F%2FA8yUSEyJT%2BRPBD11d3hDF2T%2Fhi4sebSWpDKSO3Syu5spTUXlwQdiu9CGL1%2Bzg%2FvvsAkxKY9uCZuu0JjLuGfJt1cl58IsacME%2BX7ZbohgPbObVzMTZ8nK%2BrtLy1FihLVSxyNQebr2FEyOycLtH6a%2F8oXxQ0gzgslKRNkJmQWkPgZLdmGTuXqrCYya9wTJBRRZOTS1YP6oJIESc0yDEvZfOJjXe%2FYueqYCmt5BHJXITYlclaBqAJs9N0wTc3Ll8deT%2BAaBqgwDZSr7gTLqyzF5tfLbdL5j0r79F6w8c0Uz9ELh1UQQdoOwTT3eDRvdgHZ90Q6a1Edqx0J8nP8DAAD%2F%2FwEAAP%2F%2FfElIincEAAA%3D HTTP/1.1
Host: reptileseller.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecc9123167a2366d360cd4d80dad2ac358=[2229215,2106764,3637745]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 28 Nov 2023 03:11:50 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 09abd160ea75b87e50123fb6d5ca0fde
Strict-Transport-Security: max-age=0; includeSubdomains
amunfezanttor.com/event
200 OK 94 B IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT
File type JSON data\012- , ASCII text
Hash 6990090078cb372ef8b6a81029b8205b
8ca4326149aa4a4dbd03863b5b9cecd4ab1c3d63
0fcb88233b04d714bbb3a259b3dd6953ad20f483567fdf1ee174f608809bd816
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 523
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
eehuzaih.com/500/5005565?excludes=&oaid=t6gy444437nr034445667r5p5qxdc112&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0
200 OK 1.3 kB URL OPTIONS HTTP/2 eehuzaih.com/500/5005565?excludes=&oaid=t6gy444437nr034445667r5p5qxdc112&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 3d7287ae962e520bb843ca24116c9e07
2815761d157e7d279fb64a8909dddc84514a676c
edcd0bcb65972acd60912edf1272dc82356cb619d0683303753003ea62f1436d
GET /500/5005565?excludes=&oaid=t6gy444437nr034445667r5p5qxdc112&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: OAID=f2f86dba448448c18584efb94d601565
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: application/javascript
x-trace-id: b407e2d26a80c58bde9d3a11063f2c4c
pragma: no-cache
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
vary: Origin
access-control-allow-origin: https://www.vugla.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=t6gy444437nr034445667r5p5qxdc112; expires=Wed, 27 Nov 2024 03:11:50 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
amunfezanttor.com/event
200 OK 94 B IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectamunfezanttor.com
Fingerprint94:5D:BD:F9:F6:55:6B:83:55:25:90:4A:5F:E4:CF:19:5E:6B:A2:51
ValidityWed, 22 Nov 2023 20:33:33 GMT - Tue, 20 Feb 2024 20:33:32 GMT
File type JSON data\012- , ASCII text
Hash 79410eb54728e4e54a7c50c1990cf02c
c75c3d14dfc1e102a0bda76d812d864a691d2896
c4a4a1e72c7904b91d11ee6f809f26f4d21843ed276bdbd3f2ed6c1b06afbc24
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /event HTTP/1.1
Host: amunfezanttor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 523
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: application/json; charset=utf-8
content-length: 94
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
banquetunarmedgrater.com/advertisers.js
200 OK 0 B URL GET HTTP/2 banquetunarmedgrater.com/advertisers.js
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subjectbanquetunarmedgrater.com
Fingerprint92:8E:AD:72:AC:AD:3B:21:99:CD:21:A0:9F:BD:F2:AF:0D:98:D8:57
ValidityThu, 09 Nov 2023 11:40:15 GMT - Wed, 07 Feb 2024 11:40:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /advertisers.js HTTP/1.1
Host: banquetunarmedgrater.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:51 GMT
content-type: application/javascript
content-length: 0
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=172800
x-request-id: e4116da92e1d268c546684c3b5457914
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 28 Nov 2023 03:11:49 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Jow%2B4HbzOYksnKeBBUlQIIV9pihbwpxVjKoJGbsgv%2BfwXJWp2pWJgUj%2FfCA0HxyF89U0%2BzI75Qpq0fRMyvk44LlfxE0rOFrDJRbbHAOHNZbUIpk4gqzrKHp9md9kpS4r%2F3tmu81dfFHNcZM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cf6d07ca14b51d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
chartersettlingtense.com/sbar.json?key=d137022925bcc2a680f8a4476ff94144
200 OK 2.5 kB URL GET HTTP/1.1 chartersettlingtense.com/sbar.json?key=d137022925bcc2a680f8a4476ff94144
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectchartersettlingtense.com
FingerprintC8:AA:3E:A8:E5:55:80:AD:BA:7A:90:BE:AD:46:F7:65:87:B7:61:1D
ValidityTue, 07 Nov 2023 07:41:28 GMT - Mon, 05 Feb 2024 07:41:27 GMT
File type JSON data\012- , ASCII text, with very long lines (5947), with no line terminators
Hash 683bd23963fcbce99f4f3cec9f8849f0
5fc848d8ecb2b0ffd610b0bcb40ddad3f88d8a27
14d075bc739f98eea6c1517a16321e01193b8bf599e6cd6ba9ea0ec9988b101c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /sbar.json?key=d137022925bcc2a680f8a4476ff94144 HTTP/1.1
Host: chartersettlingtense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 03:11:51 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.vugla.com
Access-Control-Allow-Origin: https://www.vugla.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15460408; expires=Wed, 29 Nov 2023 03:11:50 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 29 Nov 2023 03:11:51 GMT; secure; SameSite=None
uncs=1; expires=Wed, 29 Nov 2023 03:11:51 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 29 Nov 2023 03:11:51 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 29 Nov 2023 03:11:51 GMT; secure; SameSite=None
slecd137022925bcc2a680f8a4476ff94144=[4691074]; expires=Tue, 28 Nov 2023 03:11:56 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 9950e0484fcf7bc2c1dbbfddc74f72f5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
www.nbfcs.org/
1.2 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1177), with no line terminators
Hash 37883aa7c0d6e92c04a350d04ea33fda
a3f52fc0e5e112190b2ff79528c3ff5bfd3d216b
72eb0b7d8ddb3f5f391cef068fd50b63fc0288846c36427a23b4e93c8ed431dc
GET / HTTP/1.1
Host: www.nbfcs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 28 Nov 2023 03:11:51 GMT
Content-Type: text/html
Content-Length: 1177
Last-Modified: Mon, 13 Nov 2023 23:34:16 GMT
Connection: keep-alive
ETag: "6552b278-499"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_ENz/K+PjBN0f7d4uAK6i9sVttzh1wtg6nZ+1UAvE7vPXElYhzDXKeeVTCrm3d3z1MlDESrhhCv293G+wNltFFw
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=10.116.80.26;Path=/;Max-Age=86400;
country=;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=enom.ACTIVE.5D3C3A1B-1A26-48DD-A7EC-02F11DDF874F;Path=/;Max-Age=86400;
Accept-Ranges: bytes
unseenreport.com/pxf.gif?uuid=73c87d98-d217-41f2-8a5e-8b4a969c1346&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=73c87d98-d217-41f2-8a5e-8b4a969c1346&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=73c87d98-d217-41f2-8a5e-8b4a969c1346&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=65aa283021630dfd9030555c4c61a78c&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 28 Nov 2023 03:11:51 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c1c52312cbe05aaf5c6d8519228e2533
Strict-Transport-Security: max-age=0; includeSubdomains
unseenreport.com/pxf.gif?uuid=73c87d98-d217-41f2-8a5e-8b4a969c1346&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3
200 OK 1 B URL GET HTTP/1.1 unseenreport.com/pxf.gif?uuid=73c87d98-d217-41f2-8a5e-8b4a969c1346&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT
File type very short file (no magic)
Hash 93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pxf.gif?uuid=73c87d98-d217-41f2-8a5e-8b4a969c1346&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=d137022925bcc2a680f8a4476ff94144&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=3 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 28 Nov 2023 03:11:51 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 71a56528d251931ba56ee920aead4bd0
Strict-Transport-Security: max-age=0; includeSubdomains
chartersettlingtense.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3QxAFgyAKwhwEFXS2u6dnZ8YcFmNMCCa7axJd8GR1VfVsudVdTVX39Oye1gQkxwl48CL0vtk%2FRoMYD15EIrN6kAFhR0H2kD0rEREWchNkZgcWP%2Bj%2Bvqr3Du%2B9rz7azA%2BJi5weLF3R61IpOluvupWXlmXCdWErC9crnlt1z1aWZTIXnK10xz%2FTec1z61X35cpFwVb1rO96ruu5XuWCNCLS3dkJCpnebXnVllsN%2FKpXD9A1%2Fz3b3IGlDnjnkJyB5KP%2Frfx0D5INkMRfnRd2NdPpK2%2FGuaKZNujw3XeS1UQXCeKTMTIOomR3yoa2I0I%2BOQWd7E4dQHe2xg4QyhFxfvMQJrtTmQg728dKQwWRIOSPo%2BgMINQAkg7A9E1Ivk8AxrGwiCTeWdCmoGvHKB2jIzLz6AiyGJGZB08jib88p2S3ck2rPJM6sehGJWR3ANkeIM33kK07kMUeWHYDkv9MZh9dRhJvLVqlIXk5cS%2FlADIaQIkeqHWQjz%2FpII8c5KmDmB9UaL0VuW4jCqNarRkwxmo1xurNOV7ntaAZucjZWF4PWdoDUz0ws4HUbGBV3t6vn4HJv4ddKWG5A5uNiPP2Bjq8RCEICktQUIJCEhQZQdEpt7myvi13uLJ56E27P%2B21sq%2Bz9ibd1llbJGQzPSRPTaJ5%2BHsTq%2BKgwr1aw%2FX9ll8PGfPpXNONmjQIGnNR1Aq8IICVJaQ9NXG7Pt4THkM67lf%2BREj3YNUemDwNmj8PWvQbvgu60g%2BaLtaTO528rWiV6Rhcl0izGWRrzqY6JM9ORFz8%2BAYEG87%2F9Uf313%2BOvgEzJVJT4gP5A0Fb3epf1QXZuqoLS%2B4tppmM5Tod7%2B5aRjMx8%2FlbYq3Qhl86b3t3XmdjYDzevS5sdpkmXCZtS744JzkX5oI2TJDvLtllES7lduVcbpI8vbz0xoVLcWqEtVInA1C5%2F%2F59MDkiT%2BzMT17li599C2kGMHmJOB%2BSaUHqPbB0AzYdzj%2F89OtXn3x3BlYTGHXCCVMHRV72jR%2BeXCo5Iv7RM1BiOP%2Fjh%2F9%2F4cHsc6BhCStOYgjF8P7fx%2FxNewtt44BmN5HEJTqmREeVoKoHm5%2FuZ6kZzv9SmxRC5fRDZZytUBl1%2BzheKw8qoh65kXB9EUatMGpQl7eioBXSlicaYZ16yOxIiPeKfwEAAP%2F%2FAQAA%2F%2F8BA%2FMacQQAAA%3D%3D
200 OK 7 B URL GET HTTP/1.1 chartersettlingtense.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3QxAFgyAKwhwEFXS2u6dnZ8YcFmNMCCa7axJd8GR1VfVsudVdTVX39Oye1gQkxwl48CL0vtk%2FRoMYD15EIrN6kAFhR0H2kD0rEREWchNkZgcWP%2Bj%2Bvqr3Du%2B9rz7azA%2BJi5weLF3R61IpOluvupWXlmXCdWErC9crnlt1z1aWZTIXnK10xz%2FTec1z61X35cpFwVb1rO96ruu5XuWCNCLS3dkJCpnebXnVllsN%2FKpXD9A1%2Fz3b3IGlDnjnkJyB5KP%2Frfx0D5INkMRfnRd2NdPpK2%2FGuaKZNujw3XeS1UQXCeKTMTIOomR3yoa2I0I%2BOQWd7E4dQHe2xg4QyhFxfvMQJrtTmQg728dKQwWRIOSPo%2BgMINQAkg7A9E1Ivk8AxrGwiCTeWdCmoGvHKB2jIzLz6AiyGJGZB08jib88p2S3ck2rPJM6sehGJWR3ANkeIM33kK07kMUeWHYDkv9MZh9dRhJvLVqlIXk5cS%2FlADIaQIkeqHWQjz%2FpII8c5KmDmB9UaL0VuW4jCqNarRkwxmo1xurNOV7ntaAZucjZWF4PWdoDUz0ws4HUbGBV3t6vn4HJv4ddKWG5A5uNiPP2Bjq8RCEICktQUIJCEhQZQdEpt7myvi13uLJ56E27P%2B21sq%2Bz9ibd1llbJGQzPSRPTaJ5%2BHsTq%2BKgwr1aw%2FX9ll8PGfPpXNONmjQIGnNR1Aq8IICVJaQ9NXG7Pt4THkM67lf%2BREj3YNUemDwNmj8PWvQbvgu60g%2BaLtaTO528rWiV6Rhcl0izGWRrzqY6JM9ORFz8%2BAYEG87%2F9Uf313%2BOvgEzJVJT4gP5A0Fb3epf1QXZuqoLS%2B4tppmM5Tod7%2B5aRjMx8%2FlbYq3Qhl86b3t3XmdjYDzevS5sdpkmXCZtS744JzkX5oI2TJDvLtllES7lduVcbpI8vbz0xoVLcWqEtVInA1C5%2F%2F59MDkiT%2BzMT17li599C2kGMHmJOB%2BSaUHqPbB0AzYdzj%2F89OtXn3x3BlYTGHXCCVMHRV72jR%2BeXCo5Iv7RM1BiOP%2Fjh%2F9%2F4cHsc6BhCStOYgjF8P7fx%2FxNewtt44BmN5HEJTqmREeVoKoHm5%2FuZ6kZzv9SmxRC5fRDZZytUBl1%2BzheKw8qoh65kXB9EUatMGpQl7eioBXSlicaYZ16yOxIiPeKfwEAAP%2F%2FAQAA%2F%2F8BA%2FMacQQAAA%3D%3D
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectchartersettlingtense.com
FingerprintC8:AA:3E:A8:E5:55:80:AD:BA:7A:90:BE:AD:46:F7:65:87:B7:61:1D
ValidityTue, 07 Nov 2023 07:41:28 GMT - Mon, 05 Feb 2024 07:41:27 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3QxAFgyAKwhwEFXS2u6dnZ8YcFmNMCCa7axJd8GR1VfVsudVdTVX39Oye1gQkxwl48CL0vtk%2FRoMYD15EIrN6kAFhR0H2kD0rEREWchNkZgcWP%2Bj%2Bvqr3Du%2B9rz7azA%2BJi5weLF3R61IpOluvupWXlmXCdWErC9crnlt1z1aWZTIXnK10xz%2FTec1z61X35cpFwVb1rO96ruu5XuWCNCLS3dkJCpnebXnVllsN%2FKpXD9A1%2Fz3b3IGlDnjnkJyB5KP%2Frfx0D5INkMRfnRd2NdPpK2%2FGuaKZNujw3XeS1UQXCeKTMTIOomR3yoa2I0I%2BOQWd7E4dQHe2xg4QyhFxfvMQJrtTmQg728dKQwWRIOSPo%2BgMINQAkg7A9E1Ivk8AxrGwiCTeWdCmoGvHKB2jIzLz6AiyGJGZB08jib88p2S3ck2rPJM6sehGJWR3ANkeIM33kK07kMUeWHYDkv9MZh9dRhJvLVqlIXk5cS%2FlADIaQIkeqHWQjz%2FpII8c5KmDmB9UaL0VuW4jCqNarRkwxmo1xurNOV7ntaAZucjZWF4PWdoDUz0ws4HUbGBV3t6vn4HJv4ddKWG5A5uNiPP2Bjq8RCEICktQUIJCEhQZQdEpt7myvi13uLJ56E27P%2B21sq%2Bz9ibd1llbJGQzPSRPTaJ5%2BHsTq%2BKgwr1aw%2FX9ll8PGfPpXNONmjQIGnNR1Aq8IICVJaQ9NXG7Pt4THkM67lf%2BREj3YNUemDwNmj8PWvQbvgu60g%2BaLtaTO528rWiV6Rhcl0izGWRrzqY6JM9ORFz8%2BAYEG87%2F9Uf313%2BOvgEzJVJT4gP5A0Fb3epf1QXZuqoLS%2B4tppmM5Tod7%2B5aRjMx8%2FlbYq3Qhl86b3t3XmdjYDzevS5sdpkmXCZtS744JzkX5oI2TJDvLtllES7lduVcbpI8vbz0xoVLcWqEtVInA1C5%2F%2F59MDkiT%2BzMT17li599C2kGMHmJOB%2BSaUHqPbB0AzYdzj%2F89OtXn3x3BlYTGHXCCVMHRV72jR%2BeXCo5Iv7RM1BiOP%2Fjh%2F9%2F4cHsc6BhCStOYgjF8P7fx%2FxNewtt44BmN5HEJTqmREeVoKoHm5%2FuZ6kZzv9SmxRC5fRDZZytUBl1%2BzheKw8qoh65kXB9EUatMGpQl7eioBXSlicaYZ16yOxIiPeKfwEAAP%2F%2FAQAA%2F%2F8BA%2FMacQQAAA%3D%3D HTTP/1.1
Host: chartersettlingtense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecd137022925bcc2a680f8a4476ff94144=[4691074]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 03:11:51 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f9cf70649ea336d86c71ef874d3540b1
Strict-Transport-Security: max-age=0; includeSubdomains
friendshipmale.com/sfp.js
200 OK 27 kB URL GET HTTP/2 friendshipmale.com/sfp.js
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Hash 924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95
GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: a5392cccf197876a99300e334c69f15d
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 28 Nov 2023 03:11:50 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9bOghWIc9IeL7tbSJsqweveTYiubfJgiLv2DQqKu51ndf6wiQ3ylc7ydIR2ILj8%2Bwbbqi5LAfsULq0CbZUl7cYfr1ooulJCJfcDF77nogUEkclJ3yILyxV%2BsbrzF%2BmS9%2FlJ1FKw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cf6d06a99d773b-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
img1.wsimg.com/parking-lander/static/js/main.ed307b3c.js
200 OK 202 kB URL GET HTTP/2 img1.wsimg.com/parking-lander/static/js/main.ed307b3c.js
IP
ASN #20940 Akamai International B.V.
Requested by https://www.nbfcs.org/#signUp=753203014166122496
Certificate IssuerStarfield Technologies, Inc.
Subject*.wsimg.com
FingerprintB7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD
ValidityTue, 19 Sep 2023 21:06:14 GMT - Sun, 20 Oct 2024 21:06:14 GMT
File type ASCII text, with very long lines (65465)
Size 202 kB (201490 bytes)
Hash 12be8e7ca274474fda2d91c5d8be2866
a41a80ed51a84ae8973a9e2779489f419d12cc6a
5bb6b8410758c3743d0845a1923ec00bdc91cc116c52eb513bf23fb1adf6219e
GET /parking-lander/static/js/main.ed307b3c.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nbfcs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: +XarIoVgW22OY6sAKw23AjF4JjB4KUWh5G6EvsRxRy+Kk1fwMnxeCq+k6w1F8xrURo5n7edf+IA=
x-amz-request-id: PQP55BSPK5WRC4WP
last-modified: Mon, 13 Nov 2023 23:32:12 GMT
etag: "12be8e7ca274474fda2d91c5d8be2866"
x-amz-server-side-encryption: AES256
x-amz-version-id: J9lW9zbdfJIPV6UpIMUQKyHI1xEGGym7
accept-ranges: bytes
content-type: application/javascript
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 03:11:51 GMT
date: Tue, 28 Nov 2023 03:11:51 GMT
content-length: 201490
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.nbfcs.org/px.js?ch=1&abp=1
200 OK 476 B URL GET HTTP/1.1 www.nbfcs.org/px.js?ch=1&abp=1
IP
Requested by https://www.nbfcs.org/#signUp=753203014166122496
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.nbfcs.org
FingerprintE0:6B:EC:7B:D6:B0:6E:9E:26:18:76:0D:83:E2:83:F9:02:52:F5:09
ValidityFri, 17 Nov 2023 10:08:39 GMT - Sun, 17 Nov 2024 10:08:39 GMT
Hash d2183968f9080b37babfeba3ccf10df2
24b9cf589ee6789e567fac3ae5acfc25826d00c6
4d9b83714539f82372e1e0177924bcb5180b75148e22d6725468fd2fb6f96bcc
GET /px.js?ch=1&abp=1 HTTP/1.1
Host: www.nbfcs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nbfcs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 28 Nov 2023 03:11:51 GMT
Content-Type: application/javascript
Content-Length: 476
Last-Modified: Mon, 13 Nov 2023 23:34:15 GMT
Connection: keep-alive
ETag: "6552b277-1dc"
Accept-Ranges: bytes
sodaprostitutetar.com/pixel/purst?dl=0&th=0&sc=0&rs=5503&rd=5503&fd=279&bv=23.11.v.8&tmpl=136
200 OK 0 B URL GET HTTP/1.1 sodaprostitutetar.com/pixel/purst?dl=0&th=0&sc=0&rs=5503&rd=5503&fd=279&bv=23.11.v.8&tmpl=136
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectsodaprostitutetar.com
Fingerprint61:23:2C:71:95:24:A2:C4:13:7D:F6:A5:6D:1A:D3:EA:6E:8B:47:98
ValidityTue, 21 Nov 2023 13:51:35 GMT - Mon, 19 Feb 2024 13:51:34 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/purst?dl=0&th=0&sc=0&rs=5503&rd=5503&fd=279&bv=23.11.v.8&tmpl=136 HTTP/1.1
Host: sodaprostitutetar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 28 Nov 2023 03:11:51 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
www.nbfcs.org/px.js?ch=2&abp=1
200 OK 476 B URL GET HTTP/1.1 www.nbfcs.org/px.js?ch=2&abp=1
IP
Requested by https://www.nbfcs.org/#signUp=753203014166122496
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.nbfcs.org
FingerprintE0:6B:EC:7B:D6:B0:6E:9E:26:18:76:0D:83:E2:83:F9:02:52:F5:09
ValidityFri, 17 Nov 2023 10:08:39 GMT - Sun, 17 Nov 2024 10:08:39 GMT
Hash d2183968f9080b37babfeba3ccf10df2
24b9cf589ee6789e567fac3ae5acfc25826d00c6
4d9b83714539f82372e1e0177924bcb5180b75148e22d6725468fd2fb6f96bcc
GET /px.js?ch=2&abp=1 HTTP/1.1
Host: www.nbfcs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nbfcs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 28 Nov 2023 03:11:51 GMT
Content-Type: application/javascript
Content-Length: 476
Last-Modified: Mon, 13 Nov 2023 23:35:16 GMT
Connection: keep-alive
ETag: "6552b2b4-1dc"
Accept-Ranges: bytes
www.vugla.com/wp-includes/images/w-logo-blue-white-bg.png
200 OK 4.1 kB URL GET HTTP/2 www.vugla.com/wp-includes/images/w-logo-blue-white-bg.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/tag/bologna-torino-golovi
DNT: 1
Connection: keep-alive
Cookie: _ga_7NCJ73THPT=GS1.1.1701141112.1.0.1701141112.60.0.0; _ga=GA1.1.492855472.1701141113; sb_main_d137022925bcc2a680f8a4476ff94144=1; sb_count_d137022925bcc2a680f8a4476ff94144=1; prefetchAd_1316441=true; dom3ic8zudi28v8lr6fgphwffqoz0j6c=73c87d98-d217-41f2-8a5e-8b4a969c1346%3A2%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=reptileseller.com; pbpr0tpuw4isk85t8yg3jb2lj5vqf=chartersettlingtense.com; pp_main_65aa283021630dfd9030555c4c61a78c=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
content-length: 4119
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:51 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Tue, 28 Nov 2023 03:11:51 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/custom_banner/8/img/close.png
200 OK 9.0 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/custom_banner/8/img/close.png
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type PNG image data, 497 x 496, 8-bit/color RGBA, non-interlaced\012- data
Hash b080cbdd5cc827b5a659a45676c079d4
3502ad6743a3a42dd92ee3cea142616356f47359
c89d28b4be45a7af77493e8f6c76894a7ba86469e5b6733e6ca3cb33eaabcd8f
GET /sb/notifications/games/hentai-heroes/custom_banner/8/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:52 GMT
content-type: image/png
content-length: 8952
last-modified: Thu, 19 Oct 2023 15:38:02 GMT
etag: "65314d5a-22f8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2243092
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j2efGonRf5TlGhSxF0ZwxMpxljrngwAw%2FHPD%2F6y17ZVaMp2%2BbtxhyjmjbdABZsKp%2FGB5E%2Bv948FT6ceZdcxqY3KUBOop3LkDjEzA%2Bq0waaFzs6Ovz63QgROOBxpjjdwWFsWA8Q8fgfV5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cf6d0e586423ea-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/custom_banner/8/img/button.png
200 OK 3.6 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/custom_banner/8/img/button.png
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type PNG image data, 513 x 201, 8-bit colormap, non-interlaced\012- data
Hash fb3226b461ade8c506c258950e69a77b
ea44029992a5564fef15abbc73a3a62bb7f0d260
5e8af7875cefc1e7b40fb3622897fb6726204fee54e029649586cf9eafbe95db
GET /sb/notifications/games/hentai-heroes/custom_banner/8/img/button.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:52 GMT
content-type: image/png
content-length: 3631
last-modified: Thu, 19 Oct 2023 15:38:02 GMT
etag: "65314d5a-e2f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 313
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BZWi9gnRPmOJFL0HbnIhpvO3oa0l69GrcpoxDDDlbmZ0ElfHR3ooYgiSvHvgd6VP9kLz%2FFx0b1Ppi%2BpeKMQ2GgcIe85eE9UgeHptYIoAHiRpWO0WpHfllDOgz4bFy2vungC%2FbcAN7sEP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cf6d0e586723ea-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/custom_banner/8/img/bg.jpg
200 OK 282 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/custom_banner/8/img/bg.jpg
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3\012- data
Size 282 kB (281494 bytes)
Hash 8c14eaeb916683e79c7deb466661a8a5
85d307230af99fd6a6b902c0bd2b6a45925af85d
2a543d991e49ab46653c77ea220cc406475666102bf3ee4f506b85aa184b8317
GET /sb/notifications/games/hentai-heroes/custom_banner/8/img/bg.jpg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:52 GMT
content-type: image/jpeg
content-length: 281494
last-modified: Thu, 19 Oct 2023 15:38:02 GMT
etag: "65314d5a-44b96"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2249674
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x4b3kqCXI6r2MeIC%2BGn2jiVLyQD5BL5lI5%2FR%2FH55GpyGMfZdokcEuZArOOJPFdjo%2BsYuRNFObwUtE%2BPkYkd2lUe7K5Dd%2FWsscYDtdI%2BceNuVJZmWuz64n7ba4C74Mrc95VOrdcJS5wEV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cf6d0e586623ea-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 04:57:34 GMT
expires: Fri, 22 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 425658
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
chartersettlingtense.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3QxAFgyAKwhwEFXS2u6dnZ8YcFmNMCCa7axJd8GR1VfVsudVdTVX39Oye1gQkxwl48CL0vtk%2FRoMYD15EIrN6kAFhR0H2kD0rEREWchNkZgcWP%2Bj%2Bvqr3Du%2B9rz7azA%2BJi5weLF3R61IpOluvupWXlmXCdWErC9crnlt1z1aWZTIXnK10xz%2FTec1z61X35cpFwVb1rO96ruu5XuWCNCLS3dkJCpnebXnVllsN%2FKpXD9A1%2Fz3b3IGlDnjnkJyB5KP%2Frfx0D5INkMRfnRd2NdPpK2%2FGuaKZNujw3XeS1UQXCeKTMTIOomR3yoa2I0I%2BOQWd7E4dQHe2xg4QyhFxfvMQJrtTmQg728dKQwWRIOSPo%2BgMINQAkg7A9E1Ivk8AxrGwiCTeWdCmoGvHKB2jIzLz6AiyGJGZB08jib88p2S3ck2rPJM6sehGJWR3ANkeIM33kK07kMUeWHYDkv9MZh9dRhJvLVqlIXk5cS%2FlADIaQIkeqHWQjz%2FpII8c5KmDmB9UaL0VuW4jCqNarRkwxmo1xurNOV7ntaAZucjZWF4PWdoDUz0ws4HUbGBV3t6vn4HJv4ddKWG5A5uNiPP2Bjq8RCEICktQUIJCEhQZQdEpt7myvi13uLJ56E27P%2B21sq%2Bz9ibd1llbJGQzPSRPTaJ5%2BHsTq%2BKgwr1aw%2FX9ll8PGfPpXNONmjQIGnNR1Aq8IICVJaQ9NXG7Pt4THkM67lf%2BREj3YNUemDwNmj8PWvQbvgu60g%2BaLtaTO528rWiV6Rhcl0izGWRrzqY6JM9ORFz8%2BAYEG87%2F9Uf313%2BOvgEzJVJT4gP5A0Fb3epf1QXZuqoLS%2B4tppmM5Tod7%2B5aRjMx8%2FlbYq3Qhl86b3t3XmdjYDzevS5sdpkmXCZtS744JzkX5oI2TJDvLtllES7lduVcbpI8vbz0xoVLcWqEtVInA1C5%2F%2F59MDkiT%2BzMT17li599C2kGMHmJOB%2BSaUHqPbB0AzYdzj%2F89OtXn3x3BlYTGHXCCVMHRV72jR%2BeXCo5Iv7RM1BiOP%2Fjh%2F9%2F4cHsc6BhCStOYgjF8P7fx%2FxNewtt44BmN5HEJTqmREeVoKoHm5%2FuZ6kZzv9SmxRC5fRDZZytUBl1%2BzheKw8qdS8QzbDZYJyHgnGv4deaNdf1OQ8aLeG1kNmREO8V%2FwIAAP%2F%2FAQAA%2F%2F8VC338cQQAAA%3D%3D
200 OK 7 B URL GET HTTP/1.1 chartersettlingtense.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3QxAFgyAKwhwEFXS2u6dnZ8YcFmNMCCa7axJd8GR1VfVsudVdTVX39Oye1gQkxwl48CL0vtk%2FRoMYD15EIrN6kAFhR0H2kD0rEREWchNkZgcWP%2Bj%2Bvqr3Du%2B9rz7azA%2BJi5weLF3R61IpOluvupWXlmXCdWErC9crnlt1z1aWZTIXnK10xz%2FTec1z61X35cpFwVb1rO96ruu5XuWCNCLS3dkJCpnebXnVllsN%2FKpXD9A1%2Fz3b3IGlDnjnkJyB5KP%2Frfx0D5INkMRfnRd2NdPpK2%2FGuaKZNujw3XeS1UQXCeKTMTIOomR3yoa2I0I%2BOQWd7E4dQHe2xg4QyhFxfvMQJrtTmQg728dKQwWRIOSPo%2BgMINQAkg7A9E1Ivk8AxrGwiCTeWdCmoGvHKB2jIzLz6AiyGJGZB08jib88p2S3ck2rPJM6sehGJWR3ANkeIM33kK07kMUeWHYDkv9MZh9dRhJvLVqlIXk5cS%2FlADIaQIkeqHWQjz%2FpII8c5KmDmB9UaL0VuW4jCqNarRkwxmo1xurNOV7ntaAZucjZWF4PWdoDUz0ws4HUbGBV3t6vn4HJv4ddKWG5A5uNiPP2Bjq8RCEICktQUIJCEhQZQdEpt7myvi13uLJ56E27P%2B21sq%2Bz9ibd1llbJGQzPSRPTaJ5%2BHsTq%2BKgwr1aw%2FX9ll8PGfPpXNONmjQIGnNR1Aq8IICVJaQ9NXG7Pt4THkM67lf%2BREj3YNUemDwNmj8PWvQbvgu60g%2BaLtaTO528rWiV6Rhcl0izGWRrzqY6JM9ORFz8%2BAYEG87%2F9Uf313%2BOvgEzJVJT4gP5A0Fb3epf1QXZuqoLS%2B4tppmM5Tod7%2B5aRjMx8%2FlbYq3Qhl86b3t3XmdjYDzevS5sdpkmXCZtS744JzkX5oI2TJDvLtllES7lduVcbpI8vbz0xoVLcWqEtVInA1C5%2F%2F59MDkiT%2BzMT17li599C2kGMHmJOB%2BSaUHqPbB0AzYdzj%2F89OtXn3x3BlYTGHXCCVMHRV72jR%2BeXCo5Iv7RM1BiOP%2Fjh%2F9%2F4cHsc6BhCStOYgjF8P7fx%2FxNewtt44BmN5HEJTqmREeVoKoHm5%2FuZ6kZzv9SmxRC5fRDZZytUBl1%2BzheKw8qdS8QzbDZYJyHgnGv4deaNdf1OQ8aLeG1kNmREO8V%2FwIAAP%2F%2FAQAA%2F%2F8VC338cQQAAA%3D%3D
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectchartersettlingtense.com
FingerprintC8:AA:3E:A8:E5:55:80:AD:BA:7A:90:BE:AD:46:F7:65:87:B7:61:1D
ValidityTue, 07 Nov 2023 07:41:28 GMT - Mon, 05 Feb 2024 07:41:27 GMT
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RST4gcxRutTvb3QxAFgyAKwhwEFXS2u6dnZ8YcFmNMCCa7axJd8GR1VfVsudVdTVX39Oye1gQkxwl48CL0vtk%2FRoMYD15EIrN6kAFhR0H2kD0rEREWchNkZgcWP%2Bj%2Bvqr3Du%2B9rz7azA%2BJi5weLF3R61IpOluvupWXlmXCdWErC9crnlt1z1aWZTIXnK10xz%2FTec1z61X35cpFwVb1rO96ruu5XuWCNCLS3dkJCpnebXnVllsN%2FKpXD9A1%2Fz3b3IGlDnjnkJyB5KP%2Frfx0D5INkMRfnRd2NdPpK2%2FGuaKZNujw3XeS1UQXCeKTMTIOomR3yoa2I0I%2BOQWd7E4dQHe2xg4QyhFxfvMQJrtTmQg728dKQwWRIOSPo%2BgMINQAkg7A9E1Ivk8AxrGwiCTeWdCmoGvHKB2jIzLz6AiyGJGZB08jib88p2S3ck2rPJM6sehGJWR3ANkeIM33kK07kMUeWHYDkv9MZh9dRhJvLVqlIXk5cS%2FlADIaQIkeqHWQjz%2FpII8c5KmDmB9UaL0VuW4jCqNarRkwxmo1xurNOV7ntaAZucjZWF4PWdoDUz0ws4HUbGBV3t6vn4HJv4ddKWG5A5uNiPP2Bjq8RCEICktQUIJCEhQZQdEpt7myvi13uLJ56E27P%2B21sq%2Bz9ibd1llbJGQzPSRPTaJ5%2BHsTq%2BKgwr1aw%2FX9ll8PGfPpXNONmjQIGnNR1Aq8IICVJaQ9NXG7Pt4THkM67lf%2BREj3YNUemDwNmj8PWvQbvgu60g%2BaLtaTO528rWiV6Rhcl0izGWRrzqY6JM9ORFz8%2BAYEG87%2F9Uf313%2BOvgEzJVJT4gP5A0Fb3epf1QXZuqoLS%2B4tppmM5Tod7%2B5aRjMx8%2FlbYq3Qhl86b3t3XmdjYDzevS5sdpkmXCZtS744JzkX5oI2TJDvLtllES7lduVcbpI8vbz0xoVLcWqEtVInA1C5%2F%2F59MDkiT%2BzMT17li599C2kGMHmJOB%2BSaUHqPbB0AzYdzj%2F89OtXn3x3BlYTGHXCCVMHRV72jR%2BeXCo5Iv7RM1BiOP%2Fjh%2F9%2F4cHsc6BhCStOYgjF8P7fx%2FxNewtt44BmN5HEJTqmREeVoKoHm5%2FuZ6kZzv9SmxRC5fRDZZytUBl1%2BzheKw8qdS8QzbDZYJyHgnGv4deaNdf1OQ8aLeG1kNmREO8V%2FwIAAP%2F%2FAQAA%2F%2F8VC338cQQAAA%3D%3D HTTP/1.1
Host: chartersettlingtense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 03:11:52 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6bb5a01804b8561652a130cf084aee7e
Strict-Transport-Security: max-age=0; includeSubdomains
chartersettlingtense.com/pixel/sbs?c=1
200 OK 0 B URL GET HTTP/1.1 chartersettlingtense.com/pixel/sbs?c=1
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectchartersettlingtense.com
FingerprintC8:AA:3E:A8:E5:55:80:AD:BA:7A:90:BE:AD:46:F7:65:87:B7:61:1D
ValidityTue, 07 Nov 2023 07:41:28 GMT - Mon, 05 Feb 2024 07:41:27 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: chartersettlingtense.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=15460408; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 28 Nov 2023 03:11:52 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
eehuzaih.com/impression/CCnLlF2rzBxgOe1GB51g6MFh64Tugq6esMA7E64YaY_2FGWBy86hHg1dXORYGpmx94y7dGLagHEf2KHH0-Og9PYwgDA_DTipL26KEqA6fl1C21qBvGCdNnb8e_5-TuV41jpkNucfDvBm7SWBRakdQK-T3q0_Ea-w79u03HJ5o__QaT6kNR-BRCNSnW3ZUHvktbZGbfyBW8dDxKYgzTNtvz_9QPQ0UnZqT51XK6Le-W-sfwjCLiJ1sdzvc33bQ9oP6JL2dDR2C8cq6kIiy1mf3ZM0GzK8qPwNy6zCvlU46_yUg_wxhFAs-UTWYfLgGiJXyPfBtuzxf3bS8kDFkTj6EqexJSqS_c2iYU0WFgqkxu5I57KdWjRGLVSOWyTiDLt16tQbAmCvIIO4xX0gZXfrl9Q7D9mJMjiXzGnL41vYfNH83qlnDnBO3bwd4iswMda5FN2ELTiDJuQyFOsL6t-cEz8FXGbnmbCnEyaENoY8_NWO3x3eKXjKHofuqvPKu1OEJxC4Q_Jz62Ync4Blqg2Xwnweaya5rgNO9elCcj9aY2fIbDtPZMXyrJVcyqbZPaHkd7w_iRTFlwo-jdeC0I-K21HoHQ-bz0ko7b2dOW48gZQhn2Umv4CV19jq7ehxgmXP79xDsNOcKyzBGFwz66zNVLPBHiLChqdkSIwum73a-onV4AeFNc8crzmd-4o=?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0
200 OK 43 B URL GET HTTP/2 eehuzaih.com/impression/CCnLlF2rzBxgOe1GB51g6MFh64Tugq6esMA7E64YaY_2FGWBy86hHg1dXORYGpmx94y7dGLagHEf2KHH0-Og9PYwgDA_DTipL26KEqA6fl1C21qBvGCdNnb8e_5-TuV41jpkNucfDvBm7SWBRakdQK-T3q0_Ea-w79u03HJ5o__QaT6kNR-BRCNSnW3ZUHvktbZGbfyBW8dDxKYgzTNtvz_9QPQ0UnZqT51XK6Le-W-sfwjCLiJ1sdzvc33bQ9oP6JL2dDR2C8cq6kIiy1mf3ZM0GzK8qPwNy6zCvlU46_yUg_wxhFAs-UTWYfLgGiJXyPfBtuzxf3bS8kDFkTj6EqexJSqS_c2iYU0WFgqkxu5I57KdWjRGLVSOWyTiDLt16tQbAmCvIIO4xX0gZXfrl9Q7D9mJMjiXzGnL41vYfNH83qlnDnBO3bwd4iswMda5FN2ELTiDJuQyFOsL6t-cEz8FXGbnmbCnEyaENoY8_NWO3x3eKXjKHofuqvPKu1OEJxC4Q_Jz62Ync4Blqg2Xwnweaya5rgNO9elCcj9aY2fIbDtPZMXyrJVcyqbZPaHkd7w_iRTFlwo-jdeC0I-K21HoHQ-bz0ko7b2dOW48gZQhn2Umv4CV19jq7ehxgmXP79xDsNOcKyzBGFwz66zNVLPBHiLChqdkSIwum73a-onV4AeFNc8crzmd-4o=?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecteehuzaih.com
FingerprintAC:55:E9:5B:5B:87:BF:89:7C:BE:E0:77:14:BE:B7:B4:16:AB:70:5A
ValiditySun, 12 Nov 2023 08:38:54 GMT - Sat, 10 Feb 2024 08:38:53 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49
GET /impression/CCnLlF2rzBxgOe1GB51g6MFh64Tugq6esMA7E64YaY_2FGWBy86hHg1dXORYGpmx94y7dGLagHEf2KHH0-Og9PYwgDA_DTipL26KEqA6fl1C21qBvGCdNnb8e_5-TuV41jpkNucfDvBm7SWBRakdQK-T3q0_Ea-w79u03HJ5o__QaT6kNR-BRCNSnW3ZUHvktbZGbfyBW8dDxKYgzTNtvz_9QPQ0UnZqT51XK6Le-W-sfwjCLiJ1sdzvc33bQ9oP6JL2dDR2C8cq6kIiy1mf3ZM0GzK8qPwNy6zCvlU46_yUg_wxhFAs-UTWYfLgGiJXyPfBtuzxf3bS8kDFkTj6EqexJSqS_c2iYU0WFgqkxu5I57KdWjRGLVSOWyTiDLt16tQbAmCvIIO4xX0gZXfrl9Q7D9mJMjiXzGnL41vYfNH83qlnDnBO3bwd4iswMda5FN2ELTiDJuQyFOsL6t-cEz8FXGbnmbCnEyaENoY8_NWO3x3eKXjKHofuqvPKu1OEJxC4Q_Jz62Ync4Blqg2Xwnweaya5rgNO9elCcj9aY2fIbDtPZMXyrJVcyqbZPaHkd7w_iRTFlwo-jdeC0I-K21HoHQ-bz0ko7b2dOW48gZQhn2Umv4CV19jq7ehxgmXP79xDsNOcKyzBGFwz66zNVLPBHiLChqdkSIwum73a-onV4AeFNc8crzmd-4o=?_z=5005565&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=5&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.311.0 HTTP/1.1
Host: eehuzaih.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: OAID=t6gy444437nr034445667r5p5qxdc112
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:54 GMT
content-type: image/gif
content-length: 43
x-trace-id: 651b8c1eb5880432860759534e794b71
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
offerimage.com/www/images/b89a854cfb66584b3f5fef24e571e8b5.png
200 OK 93 kB URL GET HTTP/2 offerimage.com/www/images/b89a854cfb66584b3f5fef24e571e8b5.png
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash b89a854cfb66584b3f5fef24e571e8b5
9bb5f94bcc641c8cfbc2e24f0a2af5bd07a3a1ea
7228a1274993f4e608b4f0952b2197db136917df3d8ae95ea16a9a34769945e7
GET /www/images/b89a854cfb66584b3f5fef24e571e8b5.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:54 GMT
content-type: image/png
content-length: 92662
last-modified: Thu, 10 Dec 2020 16:03:56 GMT
etag: "5fd246ec-169f6"
expires: Tue, 28 Nov 2023 15:02:23 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 43771
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cf6d1e5c131685-ARN
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700
94 kB URL fonts.googleapis.com/css2?family=Roboto:wght@100;300;400;500;700
IP
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type gzip compressed data, max compression\012- data
Hash 3cd684f7cff125373a07a02f2f581e2e
7e680b4111a22a83826fa6dc851754c96d291986
3b565c90d638220725a5c2f2501808dc2c5f9494fdbe4f29028d7c6b76df23f9
GET /css2?family=Roboto:wght@100;300;400;500;700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 28 Nov 2023 03:11:54 GMT
date: Tue, 28 Nov 2023 03:11:54 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/custom_banner/8/css/style.css
200 OK 16 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/custom_banner/8/css/style.css
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
Hash 18a91e00872438589c6ba83e5e3662e5
d97dcf0726b70b26c44def91b388d5a7626bf477
960d92ba1a5336648795b14497df5e89eada4a697d0003a22b78604aa2f9ec26
GET /sb/notifications/games/hentai-heroes/custom_banner/8/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:52 GMT
content-type: text/css
last-modified: Thu, 19 Oct 2023 15:38:00 GMT
etag: W/"65314d58-7fa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lqjiodo4vVmsjfxaMkUHxRcD6KLf%2FnoRztxxiS%2BB7YGVkljK6GNxiPiUvjxUGBc0lnrt6ZUsSs%2BW6auF9MNiGUrkYiXBYzRT3Y6j4zBd3yR98nfCIppRoR%2B%2BcL7d5TOi%2FS9f8AjCU1KF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cf6d0e586323ea-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 04:57:34 GMT
expires: Fri, 22 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 425660
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
16 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 04:53:27 GMT
expires: Fri, 22 Nov 2024 04:53:27 GMT
cache-control: public, max-age=31536000
age: 425907
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 23 Nov 2023 04:57:34 GMT
expires: Fri, 22 Nov 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 425660
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tharbadir.com/11?rnd=1218085957&z=2892323&b=15763363&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=e7ycJsMpvwaTrFZ9G1Qnca87_Bq5Udo95AW0J9hYW7B8eg4OVAWFUH6IvffaNjESc3L4RvwoXfhSm1jH2cjJjJKjRMthBHvl3qHZ0Af5Yf24LbeibbI4GtxRCks5RNMRAv-TKyuzRUiGXglcBID6t0kqi9lrvV7avf0gCfSlNzTtITJehuhaO4XlkP3ZOAapqP2tI9dxzzVMNFT6eu5BfId2MqgeaIA076uS0Iqh830Ep4s6xfFLZ5H_Tgw9eKevNGN8MLV1_X0QJpMDCB1DHGsGRp2SqLE9e1-DzODl0MQcq2Dsw0uXtFBeLLLg17TEx_tgW3jJ-MFP5fS1SY3vpz6JU-qGmr2qEgQpBvxoawC7O6qXPbng9B89xOMdv3qGCRE3V64koGMXL61dp5UPtWj9ybo0-LmsQKbDVzmbHukJyMpOlTPsOm_eZB2Le0Hv39gYWI-3VXIFkqTzq59oBH0naAa3oP2WyetherLdPrSvmoTgtWkhigDkM5RrrhcU0DGPwe7dUvvCac5kepawtGpYEwYpThHBDiy1HtyH1prstM-X5a5DkEl0cgxkqRG3bCHTYeYQu2j4F8Ejqo4kjboC7PoK6R6l0TOOna23vo4vu9QLrSmrd_MXm8H8PhtviKJ4p_fCENYCYM2dRiRWTKl0kRidPC200uTtDO7G1n_pEkquCxBR0zWR2xm4NBrNuw0ZPZMzz3QD-KVJrfltM45n5596VAwbB0s7Ica7cfI1ZXNleYKYxed50Ols6CcIvrlJevQ9Wl9Vmsk4KB42WvfOpGI=&ruid=893d67e7-a740-4bdd-b3ca-11e22721da72&subid=753203014166122496&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
200 OK 0 B URL GET HTTP/2 tharbadir.com/11?rnd=1218085957&z=2892323&b=15763363&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=e7ycJsMpvwaTrFZ9G1Qnca87_Bq5Udo95AW0J9hYW7B8eg4OVAWFUH6IvffaNjESc3L4RvwoXfhSm1jH2cjJjJKjRMthBHvl3qHZ0Af5Yf24LbeibbI4GtxRCks5RNMRAv-TKyuzRUiGXglcBID6t0kqi9lrvV7avf0gCfSlNzTtITJehuhaO4XlkP3ZOAapqP2tI9dxzzVMNFT6eu5BfId2MqgeaIA076uS0Iqh830Ep4s6xfFLZ5H_Tgw9eKevNGN8MLV1_X0QJpMDCB1DHGsGRp2SqLE9e1-DzODl0MQcq2Dsw0uXtFBeLLLg17TEx_tgW3jJ-MFP5fS1SY3vpz6JU-qGmr2qEgQpBvxoawC7O6qXPbng9B89xOMdv3qGCRE3V64koGMXL61dp5UPtWj9ybo0-LmsQKbDVzmbHukJyMpOlTPsOm_eZB2Le0Hv39gYWI-3VXIFkqTzq59oBH0naAa3oP2WyetherLdPrSvmoTgtWkhigDkM5RrrhcU0DGPwe7dUvvCac5kepawtGpYEwYpThHBDiy1HtyH1prstM-X5a5DkEl0cgxkqRG3bCHTYeYQu2j4F8Ejqo4kjboC7PoK6R6l0TOOna23vo4vu9QLrSmrd_MXm8H8PhtviKJ4p_fCENYCYM2dRiRWTKl0kRidPC200uTtDO7G1n_pEkquCxBR0zWR2xm4NBrNuw0ZPZMzz3QD-KVJrfltM45n5596VAwbB0s7Ica7cfI1ZXNleYKYxed50Ols6CcIvrlJevQ9Wl9Vmsk4KB42WvfOpGI=&ruid=893d67e7-a740-4bdd-b3ca-11e22721da72&subid=753203014166122496&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /11?rnd=1218085957&z=2892323&b=15763363&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=7&rb=e7ycJsMpvwaTrFZ9G1Qnca87_Bq5Udo95AW0J9hYW7B8eg4OVAWFUH6IvffaNjESc3L4RvwoXfhSm1jH2cjJjJKjRMthBHvl3qHZ0Af5Yf24LbeibbI4GtxRCks5RNMRAv-TKyuzRUiGXglcBID6t0kqi9lrvV7avf0gCfSlNzTtITJehuhaO4XlkP3ZOAapqP2tI9dxzzVMNFT6eu5BfId2MqgeaIA076uS0Iqh830Ep4s6xfFLZ5H_Tgw9eKevNGN8MLV1_X0QJpMDCB1DHGsGRp2SqLE9e1-DzODl0MQcq2Dsw0uXtFBeLLLg17TEx_tgW3jJ-MFP5fS1SY3vpz6JU-qGmr2qEgQpBvxoawC7O6qXPbng9B89xOMdv3qGCRE3V64koGMXL61dp5UPtWj9ybo0-LmsQKbDVzmbHukJyMpOlTPsOm_eZB2Le0Hv39gYWI-3VXIFkqTzq59oBH0naAa3oP2WyetherLdPrSvmoTgtWkhigDkM5RrrhcU0DGPwe7dUvvCac5kepawtGpYEwYpThHBDiy1HtyH1prstM-X5a5DkEl0cgxkqRG3bCHTYeYQu2j4F8Ejqo4kjboC7PoK6R6l0TOOna23vo4vu9QLrSmrd_MXm8H8PhtviKJ4p_fCENYCYM2dRiRWTKl0kRidPC200uTtDO7G1n_pEkquCxBR0zWR2xm4NBrNuw0ZPZMzz3QD-KVJrfltM45n5596VAwbB0s7Ica7cfI1ZXNleYKYxed50Ols6CcIvrlJevQ9Wl9Vmsk4KB42WvfOpGI=&ruid=893d67e7-a740-4bdd-b3ca-11e22721da72&subid=753203014166122496&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: scm=1; OAID=t6gy444437nr034445667r5p5qxdc112; oaidts=1701141108
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:55 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 6655a25e9f7a5f5f2ed3489bf81be637
access-control-expose-headers: X-Sc
set-cookie: OAID=t6gy444437nr034445667r5p5qxdc112; expires=Wed, 27 Nov 2024 03:11:55 GMT; secure; SameSite=None
oaidts=1701141108; expires=Wed, 27 Nov 2024 03:11:55 GMT; secure; SameSite=None
oaidvc=1; expires=Wed, 27 Nov 2024 03:11:55 GMT; secure; SameSite=None
CNT=1_v1_o4fwAAEAAADpTAAA; expires=Tue, 28 Nov 2023 04:11:55 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2
eechicha.com/custom
200 OK 39 B IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecteechicha.com
FingerprintA7:F9:5F:87:8A:D5:59:6F:C6:F4:84:8E:C8:B1:C8:FE:DF:C8:27:B4
ValiditySun, 12 Nov 2023 05:14:19 GMT - Sat, 10 Feb 2024 05:14:18 GMT
File type JSON data\012- , ASCII text
Hash 058b158c2be925f556454ef762d93538
cc6fc563b4b6baee880fdbc7fcfaa134978e33c9
ff752c1c79bb2c0347c5a8b7f069fa2772047324dbbadf77d21cec4b26ee3881
POST /custom HTTP/1.1
Host: eechicha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Content-Type: application/json
Content-Length: 386
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:56 GMT
content-type: application/json; charset=utf-8
content-length: 39
x-trace-id: 0d9f032b186ee768eb0a256a09a1e59f
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-headers: Origin, X-Requested-With, X-Oaid, Content-Type, Accept
strict-transport-security: max-age=1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
reptileseller.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzqwY9KLBi%2BChERQFme2e32MOwRgji5vdNYkseKuuqp4tt7qrqeofs3vaGNAcPIx4UU%2B93%2BxmSVzE%2FAGKzHoJi8LORfbgCt4ELyKEHGUmA6MPqt776nuH73uvPtnNzoiHjJ6uXdPbUim62Kx67mvrMua6sO7KTdf3qt5Fd13GrcZFtz%2B5TP6m7zWr3uvuu4Jt6sWa53ue7%2FnuVWlEqPuLUxYyOez61a5XbdSqfrOBvvk%2FtpkDSx3w%2FIxcgOTjpzYePoBkI8TRd1eE3Ux18sY7UaZoqg1yfvBBvBnrIkY0L0PjIIwPZt3QdkzIl%2Beg44OZA%2Bh8b%2BIAgRwT51cfQXwwk4kg33%2BiNFAQMQL%2BLIp8BKFGkHQEpm9D8hMCMI6VVcTR3RVtCrr1hKUTdkwWHv0DWYzJwm8vII6%2Bvaxk372hVZZKHVv0wxKyP4LsjZBkR0i3HcjiCCz9GJL%2FQhYfLSOO9lat0pC8nLqXcgQZjqDEANQ6yCZHOshCB1niIOKnLm12Q89rh0FYr3cajLF6nbFmp8WbvN7ohB4yNpE3QJoMwNQAzOwgMTvYlJ%2BfNC%2FAZD%2FCbpSw3IFNx8R5fwc5L1EIgsISFJSgkARFSlDk5T5XtmbLu1zZLPBnuTbL9XKo094u3ddpT8RkNzkjz09H8%2FiPp7EpTl3W9Wt1v9WmtXqrxestj%2FEG73ic8hpl9WYHVpaQ9tzU7fZkTziPZJKv%2FYWAHsGqIzBZAc180GLYrnmgG8NGx8N2fC%2FPeopWmY7AdYkkXUC65eyqM%2FLiVMTLld8h2PGl%2By8dnvdf%2FRPMlEhMiY%2FkTwQ9dWd4XRdk77ouLHmwmqQyktt0srsbKU1F5f57YqvQhi9dsYN7b7EJMSkPbwqbLtOYy7hnyTeXJefCXNWGCfL9kl0XwVpmNy5nJs6S5bW3ry5FiRHWSh2PQOXJ6mMwOSYLt36Y%2Fsrnfv4U0oxgshJRdkxmAamPwJId2GSu3moCo%2BY9QeKgyMqhqQXzRyUJlJhjGpSw%2F8HBvN61d9AzFdD0NuKoRG5K5KoEVQPY7JlhmpjjSw%2B%2FmsTXCFRlGChT2QuUUV9MRzsm7iufjUn71t%2Bw8tQVzdALhVcTQdgNwjb1eDdsdAPa9UU7aFIfqR0L8WH%2BLwAAAP%2F%2FAQAA%2F%2F9FayeSdwQAAA%3D%3D
200 OK 0 B URL GET HTTP/1.1 reptileseller.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzqwY9KLBi%2BChERQFme2e32MOwRgji5vdNYkseKuuqp4tt7qrqeofs3vaGNAcPIx4UU%2B93%2BxmSVzE%2FAGKzHoJi8LORfbgCt4ELyKEHGUmA6MPqt776nuH73uvPtnNzoiHjJ6uXdPbUim62Kx67mvrMua6sO7KTdf3qt5Fd13GrcZFtz%2B5TP6m7zWr3uvuu4Jt6sWa53ue7%2FnuVWlEqPuLUxYyOez61a5XbdSqfrOBvvk%2FtpkDSx3w%2FIxcgOTjpzYePoBkI8TRd1eE3Ux18sY7UaZoqg1yfvBBvBnrIkY0L0PjIIwPZt3QdkzIl%2Beg44OZA%2Bh8b%2BIAgRwT51cfQXwwk4kg33%2BiNFAQMQL%2BLIp8BKFGkHQEpm9D8hMCMI6VVcTR3RVtCrr1hKUTdkwWHv0DWYzJwm8vII6%2Bvaxk372hVZZKHVv0wxKyP4LsjZBkR0i3HcjiCCz9GJL%2FQhYfLSOO9lat0pC8nLqXcgQZjqDEANQ6yCZHOshCB1niIOKnLm12Q89rh0FYr3cajLF6nbFmp8WbvN7ohB4yNpE3QJoMwNQAzOwgMTvYlJ%2BfNC%2FAZD%2FCbpSw3IFNx8R5fwc5L1EIgsISFJSgkARFSlDk5T5XtmbLu1zZLPBnuTbL9XKo094u3ddpT8RkNzkjz09H8%2FiPp7EpTl3W9Wt1v9WmtXqrxestj%2FEG73ic8hpl9WYHVpaQ9tzU7fZkTziPZJKv%2FYWAHsGqIzBZAc180GLYrnmgG8NGx8N2fC%2FPeopWmY7AdYkkXUC65eyqM%2FLiVMTLld8h2PGl%2By8dnvdf%2FRPMlEhMiY%2FkTwQ9dWd4XRdk77ouLHmwmqQyktt0srsbKU1F5f57YqvQhi9dsYN7b7EJMSkPbwqbLtOYy7hnyTeXJefCXNWGCfL9kl0XwVpmNy5nJs6S5bW3ry5FiRHWSh2PQOXJ6mMwOSYLt36Y%2Fsrnfv4U0oxgshJRdkxmAamPwJId2GSu3moCo%2BY9QeKgyMqhqQXzRyUJlJhjGpSw%2F8HBvN61d9AzFdD0NuKoRG5K5KoEVQPY7JlhmpjjSw%2B%2FmsTXCFRlGChT2QuUUV9MRzsm7iufjUn71t%2Bw8tQVzdALhVcTQdgNwjb1eDdsdAPa9UU7aFIfqR0L8WH%2BLwAAAP%2F%2FAQAA%2F%2F9FayeSdwQAAA%3D%3D
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectreptileseller.com
FingerprintB3:18:0E:98:0F:1E:05:70:C4:67:A3:91:F6:B1:56:3B:56:EB:00:F2
ValiditySat, 25 Nov 2023 08:07:43 GMT - Fri, 23 Feb 2024 08:07:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzqwY9KLBi%2BChERQFme2e32MOwRgji5vdNYkseKuuqp4tt7qrqeofs3vaGNAcPIx4UU%2B93%2BxmSVzE%2FAGKzHoJi8LORfbgCt4ELyKEHGUmA6MPqt776nuH73uvPtnNzoiHjJ6uXdPbUim62Kx67mvrMua6sO7KTdf3qt5Fd13GrcZFtz%2B5TP6m7zWr3uvuu4Jt6sWa53ue7%2FnuVWlEqPuLUxYyOez61a5XbdSqfrOBvvk%2FtpkDSx3w%2FIxcgOTjpzYePoBkI8TRd1eE3Ux18sY7UaZoqg1yfvBBvBnrIkY0L0PjIIwPZt3QdkzIl%2Beg44OZA%2Bh8b%2BIAgRwT51cfQXwwk4kg33%2BiNFAQMQL%2BLIp8BKFGkHQEpm9D8hMCMI6VVcTR3RVtCrr1hKUTdkwWHv0DWYzJwm8vII6%2Bvaxk372hVZZKHVv0wxKyP4LsjZBkR0i3HcjiCCz9GJL%2FQhYfLSOO9lat0pC8nLqXcgQZjqDEANQ6yCZHOshCB1niIOKnLm12Q89rh0FYr3cajLF6nbFmp8WbvN7ohB4yNpE3QJoMwNQAzOwgMTvYlJ%2BfNC%2FAZD%2FCbpSw3IFNx8R5fwc5L1EIgsISFJSgkARFSlDk5T5XtmbLu1zZLPBnuTbL9XKo094u3ddpT8RkNzkjz09H8%2FiPp7EpTl3W9Wt1v9WmtXqrxestj%2FEG73ic8hpl9WYHVpaQ9tzU7fZkTziPZJKv%2FYWAHsGqIzBZAc180GLYrnmgG8NGx8N2fC%2FPeopWmY7AdYkkXUC65eyqM%2FLiVMTLld8h2PGl%2By8dnvdf%2FRPMlEhMiY%2FkTwQ9dWd4XRdk77ouLHmwmqQyktt0srsbKU1F5f57YqvQhi9dsYN7b7EJMSkPbwqbLtOYy7hnyTeXJefCXNWGCfL9kl0XwVpmNy5nJs6S5bW3ry5FiRHWSh2PQOXJ6mMwOSYLt36Y%2Fsrnfv4U0oxgshJRdkxmAamPwJId2GSu3moCo%2BY9QeKgyMqhqQXzRyUJlJhjGpSw%2F8HBvN61d9AzFdD0NuKoRG5K5KoEVQPY7JlhmpjjSw%2B%2FmsTXCFRlGChT2QuUUV9MRzsm7iufjUn71t%2Bw8tQVzdALhVcTQdgNwjb1eDdsdAPa9UU7aFIfqR0L8WH%2BLwAAAP%2F%2FAQAA%2F%2F9FayeSdwQAAA%3D%3D HTTP/1.1
Host: reptileseller.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecc9123167a2366d360cd4d80dad2ac358=[2229215,2106764,3637745]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 28 Nov 2023 03:11:50 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 99b5c12f289d6c71d30d8965c764807d
Strict-Transport-Security: max-age=0; includeSubdomains
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
200 OK 6.8 kB URL GET HTTP/3 fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (7013), with no line terminators
Hash 49475c425d6c00477bb339179326c49b
bd97deeb753f44f43a21feafa92d98239fa511bd
598841a98ad357d2896d2f093ea3e4e1d44e24b3351268ffd45e61ff8c1d0e09
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 28 Nov 2023 03:11:52 GMT
date: Tue, 28 Nov 2023 03:11:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
tharbadir.com/2?z=1347951
200 OK 43 kB URL GET HTTP/2 tharbadir.com/2?z=1347951
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecttharbadir.com
FingerprintA5:91:BD:23:83:6F:FE:A6:06:78:AE:E7:58:60:8E:74:B2:BA:C3:64
ValidityThu, 21 Sep 2023 16:36:00 GMT - Wed, 20 Dec 2023 16:35:59 GMT
File type ASCII text, with very long lines (41880)
Hash 667a16d347fe698078bf89557e007241
bfdb5ea7036014cf3738dfa6bec0fb89d767e9ac
e07cf59e02eb3ad9b222ba4b5eb2365340ae38162efa8cdc690c6edbba343523
GET /2?z=1347951 HTTP/1.1
Host: tharbadir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:48 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin:
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 9b5dc95825c86f87fc4b1b753f700a84
access-control-expose-headers: X-Sc
x-sc: 9lz_MWvf92eS_dmzPUk_a4IsqAVf1RfOmLo_jGyeWo_mAUM3MeXDLG6w2vWZjEEhI_ZccHQw95sqITKd0Qbsn_73Ub0=
set-cookie: scm=1; expires=Wed, 27 Nov 2024 03:11:48 GMT; secure; SameSite=None
OAID=1bfde260bc9141518083f72f548ea8ec; expires=Wed, 27 Nov 2024 03:11:48 GMT; secure; SameSite=None
oaidts=1701141108; expires=Wed, 27 Nov 2024 03:11:48 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
my.rtmark.net/gid.js?userId=ab3ae5ee7cd1410c94a6763580a96eae
200 OK 65 B URL GET HTTP/2 my.rtmark.net/gid.js?userId=ab3ae5ee7cd1410c94a6763580a96eae
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT
File type troff or preprocessor input, ASCII text, with no line terminators
Hash bc809acb3f59c7b6f26df9dc7dfca6db
9dcbb57ba90d8a4a0122df0235d6e5de0396e4e4
e7296382c6e4ed59f790736228e62616b616bed4834f1e5a0a61abcadb0b473d
GET /gid.js?userId=ab3ae5ee7cd1410c94a6763580a96eae HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:49 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://www.vugla.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=ab3ae5ee7cd1410c94a6763580a96eae; expires=Wed, 27 Nov 2024 03:11:49 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1
200 OK 571 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
Size 571 kB (571247 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/vn-video-player/js_scripts/video.min.js?ver=0.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:30 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-type: application/javascript
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
tzegilo.com/stattag.js
200 OK 19 kB IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subjecttzegilo.com
Fingerprint52:B8:ED:73:BB:55:6F:9C:F8:97:7C:04:34:2B:AD:DB:55:0A:C9:6A
ValidityThu, 05 Oct 2023 17:59:18 GMT - Wed, 03 Jan 2024 17:59:17 GMT
File type ASCII text, with very long lines (18369)
Hash 89e89aea544ea2785d49cc4cd9cf26f6
7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b
86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9
GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:49 GMT
content-type: application/javascript
last-modified: Thu, 07 Sep 2023 08:19:52 GMT
etag: W/"64f987a8-4a4b"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 2678
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QLTfYWfSW6qAgHFIzr%2FAZlgPNMyuVDCUY7tznoa%2BbtEMxN7gYrwHwXPkzE9Sp%2FFDZodiwScqX%2F342VFeofxD15AEQZhnqhUKgEF8jxmk7sdHsn1xEn2k7oULtM2LGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cf6cfe6ba7b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/custom_banner/8/js/script.js
200 OK 396 B URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/custom_banner/8/js/script.js
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
File type ASCII text, with very long lines (409), with no line terminators
Hash 62db6ec6ee205b8ab74956b94b8e069b
6ab683ee23a85e8be42add5c943bb9ed448ee2b3
3dc621d6edb0e93e5b6d545b66d16e29d255c49fecc7fa01cc7f17d3833340cf
GET /sb/notifications/games/hentai-heroes/custom_banner/8/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:52 GMT
content-type: application/javascript
last-modified: Thu, 19 Oct 2023 15:38:04 GMT
etag: W/"65314d5c-18c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kJIZxabbZcFhXFNHqCWxVYWO0ib2k6sAehH2nBSmN1eLcvEFVDOct2ABFsV%2Bw3R9cxjyrZBChptFFAgmT1EA59HipsG6Qu5lK4JjOlxiB%2Br5OqIiFuXaaOZOPs4AmVR9zYF%2BqsfcmIxe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cf6d0e485b23ea-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
eechicha.com/pfe/current/tag.min.js?z=1548391
200 OK 13 kB URL GET HTTP/2 eechicha.com/pfe/current/tag.min.js?z=1548391
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecteechicha.com
FingerprintA7:F9:5F:87:8A:D5:59:6F:C6:F4:84:8E:C8:B1:C8:FE:DF:C8:27:B4
ValiditySun, 12 Nov 2023 05:14:19 GMT - Sat, 10 Feb 2024 05:14:18 GMT
File type C source, ASCII text, with very long lines (13300), with no line terminators
Hash 258578af3c107ccb907f73c3a2f4c25f
7a192edea829968fb7f57f2a2fc4cb5b612598be
1f945c9c46c47a2b0e867b0d09c3e4559cd768a2d3747abf28d1d65667733b75
GET /pfe/current/tag.min.js?z=1548391 HTTP/1.1
Host: eechicha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:48 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 13:38:02 GMT
etag: W/"65649bba-33f4"
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
hautoust.com/?rb=HmDXxon4_r5LvO9ni9eMqIGtYted8PXCbV3B-rfmfgcBVyTWrLnWQYU7k7RzFZ8vkDSv0eFyEGa9XWiYtgaHhS5zglRq2qL4N2oOQ8BGH1VOCvSi-w0isYsRSBD7PKSEOVZWK2jxpzRv3W5olTaKtRaTpAOaix07QX7i9a7LnZlUZHNFklUEWg1PMMGxGVnhFk34WVFuH6uAayVe84VBOMjl-uwT5080Rth_ywdowU0%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.633.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.633.0&bs=2137201a-7397-43b7-aae9-c15f742fb418&userId=t6gy444437nr034445667r5p5qxdc112&m=link
200 OK 2.3 kB URL GET HTTP/2 hautoust.com/?rb=HmDXxon4_r5LvO9ni9eMqIGtYted8PXCbV3B-rfmfgcBVyTWrLnWQYU7k7RzFZ8vkDSv0eFyEGa9XWiYtgaHhS5zglRq2qL4N2oOQ8BGH1VOCvSi-w0isYsRSBD7PKSEOVZWK2jxpzRv3W5olTaKtRaTpAOaix07QX7i9a7LnZlUZHNFklUEWg1PMMGxGVnhFk34WVFuH6uAayVe84VBOMjl-uwT5080Rth_ywdowU0%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.633.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.633.0&bs=2137201a-7397-43b7-aae9-c15f742fb418&userId=t6gy444437nr034445667r5p5qxdc112&m=link
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecthautoust.com
FingerprintB7:D2:BE:5F:7C:FB:F3:E6:0D:3F:DF:04:90:1A:2D:86:D4:06:B8:A5
ValidityFri, 13 Oct 2023 18:54:43 GMT - Thu, 11 Jan 2024 18:54:42 GMT
File type troff or preprocessor input, ASCII text, with very long lines (2284), with no line terminators
Hash 40fab51e6c544e69462f1935b718f2e6
ede3f43e1d00dc3f4c58d3104c3e9ddd15194997
a252c347493b5965c9204523005a6af03e6f7698fa965cea72122b3d17818970
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /?rb=HmDXxon4_r5LvO9ni9eMqIGtYted8PXCbV3B-rfmfgcBVyTWrLnWQYU7k7RzFZ8vkDSv0eFyEGa9XWiYtgaHhS5zglRq2qL4N2oOQ8BGH1VOCvSi-w0isYsRSBD7PKSEOVZWK2jxpzRv3W5olTaKtRaTpAOaix07QX7i9a7LnZlUZHNFklUEWg1PMMGxGVnhFk34WVFuH6uAayVe84VBOMjl-uwT5080Rth_ywdowU0%3D&request_ab2=0&zoneid=1316441&js_build=iclick-v1.633.0&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wih=1024&wiw=1280&wfc=3&pl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&wgl=&js_build=iclick-v1.633.0&bs=2137201a-7397-43b7-aae9-c15f742fb418&userId=t6gy444437nr034445667r5p5qxdc112&m=link HTTP/1.1
Host: hautoust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Cookie: OAID=ab3ae5ee7cd1410c94a6763580a96eae; oaidts=1701141108
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:50 GMT
content-type: application/json
x-trace-id: 9a2d42eec0cd9dc11c87fbf011e42f72
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
set-cookie: OAID=t6gy444437nr034445667r5p5qxdc112; expires=Wed, 27 Nov 2024 03:11:50 GMT; path=/; secure; SameSite=None
oaidts=1701141110; expires=Wed, 27 Nov 2024 03:11:50 GMT; path=/; secure; SameSite=None
syncedCookie=true; expires=Tue, 05 Dec 2023 03:11:50 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/style_main.css
200 OK 85 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/style_main.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (6104), with CRLF line terminators
Hash 1d85fc3a503a0f77b0f029ad44e4ddd4
5b1212871267b4eba6f2d0628ce678890cefbd8e
df3db153ea5d4b5fdd494569edaa7513e12c7520282d6926628bee4e93c18187
GET /wp-content/themes/vugla/css/style_main.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 23 May 2014 15:19:09 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-7NCJ73THPT>m=45je3b81v879882835&_p=1701141112585&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=492855472.1701141113&ul=en-us&sr=1280x1024&_s=1&sid=1701141112&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&dt=Bologna%20Torino%20golovi%20-%20Vugla&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3941
204 No Content 0 B URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-7NCJ73THPT>m=45je3b81v879882835&_p=1701141112585&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=492855472.1701141113&ul=en-us&sr=1280x1024&_s=1&sid=1701141112&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&dt=Bologna%20Torino%20golovi%20-%20Vugla&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3941
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7NCJ73THPT>m=45je3b81v879882835&_p=1701141112585&_gaz=1&gcd=11l1l1l1l1&dma_cps=sypham&dma=1&cid=492855472.1701141113&ul=en-us&sr=1280x1024&_s=1&sid=1701141112&sct=1&seg=0&dl=https%3A%2F%2Fwww.vugla.com%2Ftag%2Fbologna-torino-golovi&dt=Bologna%20Torino%20golovi%20-%20Vugla&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&tfd=3941 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.vugla.com
date: Tue, 28 Nov 2023 03:11:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.vugla.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
200 OK 88 kB URL GET HTTP/2 www.vugla.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (65447)
Hash 826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 13 Nov 2023 13:25:19 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-type: application/javascript
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
hautoust.com/5/1316441
200 OK 72 kB IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecthautoust.com
FingerprintB7:D2:BE:5F:7C:FB:F3:E6:0D:3F:DF:04:90:1A:2D:86:D4:06:B8:A5
ValidityFri, 13 Oct 2023 18:54:43 GMT - Thu, 11 Jan 2024 18:54:42 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash d6dd0e79232c2ad04216cc93e706e0b6
d6782474a04a42dbdaf2ae3ac938a08a9ee5acbb
c585897ec040eefd05d3cac3ee4b717fea20700401c0350c755ab9a6b9c7ee2c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /5/1316441 HTTP/1.1
Host: hautoust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:48 GMT
content-type: application/javascript
x-trace-id: 9dd2da15bdfb1b0c00eae06c78c1fedc
link: <https://my.rtmark.net>; rel="preconnect dns-prefetch",<https://propeller-tracking.com>; rel="preconnect dns-prefetch",<https://sr7pv7n5x.com>; rel="preconnect dns-prefetch"
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-max-age: 86400
timing-allow-origin: *
set-cookie: OAID=ab3ae5ee7cd1410c94a6763580a96eae; expires=Wed, 27 Nov 2024 03:11:48 GMT; path=/; secure; SameSite=None
oaidts=1701141108; expires=Wed, 27 Nov 2024 03:11:48 GMT; path=/; secure; SameSite=None
syncedCookie=; expires=Tue, 10 Nov 2009 23:00:00 GMT
pragma: no-cache, no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT, Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2
reptileseller.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzkSMPy4GL4JCIygJyGz3%2FB5zCMa4EsyPNYksiJfqqurZcqu7mqr%2BMbun1YDkIDjiRT31frObJXER8wcI0uslLAg7F9mDK3gTvIgYPMrMDqw%2BqHrvq%2B8dvu%2B9%2BmQzOyIeMnq4dE2vS6XoQrvuueeWZcx1Yd3rt13fq3sX3GUZd1oX3OH0Mvnrvteue%2BfdtwVb1QsNz%2Fc83%2FPdRWlEqIcLMxYy2e379b5XbzXqfruFofk%2FtpkDSx3w%2FIicheSTJ1YePYRkFeLou8vCrqY6ee2tKFM01QY533kvXo11ESM6KUPjIIx35t3QdkLIl6eg4525A%2Bh8a%2BoAgZwQ52cfQbwzl4kg3z5WGiiIGAF%2FBkVeQagKklZg%2Bg4kPyAA47h%2BA3F077o2BV07ZumUnZDTj%2F%2BCLCbk9C%2FPI46%2BvaTk0L2lVZZKHVsMwxJyWEEOKiTZHtJ1B7LYA0s%2FhuQ%2FkYXHVxFHWzes0pC8nLmXsoIMKygxArUOsumRDrLQQZY4iPihS9v90PO6YRA2m70WY6zZZKzd6%2FA2b7Z6oYeMTeWNkCYjMDUCMxtIzAZW5ecH7bMw2Q%2BwKyUsd2DTCXHe3UDOSxSCoLAEBSUoJEGREhR5uc2VbdjyHlc2C%2Fx5bsxzsxzrdLBJt3U6EDHZTI7Ic7PR%2FPPbk1gVhy7r%2B42m3%2BnSRrPT4c2Ox3iL9zxOeYOyZrsHK0tIe2rmdn26J5xBMs3X%2FkBA92DVHpisgWY%2BaDHuNjzQlXGr52E9vp9nA0XrTEfgukSSnka65myqI%2FLCTET3oz8h2P7F3XN%2FV599cB7MlEhMiQ%2FljwQDdXd8Uxdk66YuLHl4I0llJNfpdHe3UpqK2oN3xFqhDb9y2Y7uv8GmxLTcvS1sepXGXMYDS765JDkXZlEbJsj3V%2ByyCJYyu3IpM3GWXF16c%2FFKlBhhrdRxBSoPnq3A5IQ8tX959itfWlyBNBVMViLK9sk8IPUeWLIBm%2BxffPDi7hn%2F1d9hNYFRJz1BUkORlWPTCE4elSRQ4gTToIT9Dw5O6k17FwNTA03vII5K5KZErkpQNYLNnh6nidm%2F%2BOiraXyNQNXGgTK1rUAZ9cWEvFz7dULcVz49HrKVh65oh14ovIYIwn4QdqnH%2B2GrH9C%2BL7pBm%2FpI7USI9%2FN%2FAQAA%2F%2F8BAAD%2F%2F%2FJBBC13BAAA
200 OK 0 B URL GET HTTP/1.1 reptileseller.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzkSMPy4GL4JCIygJyGz3%2FB5zCMa4EsyPNYksiJfqqurZcqu7mqr%2BMbun1YDkIDjiRT31frObJXER8wcI0uslLAg7F9mDK3gTvIgYPMrMDqw%2BqHrvq%2B8dvu%2B9%2BmQzOyIeMnq4dE2vS6XoQrvuueeWZcx1Yd3rt13fq3sX3GUZd1oX3OH0Mvnrvteue%2BfdtwVb1QsNz%2Fc83%2FPdRWlEqIcLMxYy2e379b5XbzXqfruFofk%2FtpkDSx3w%2FIicheSTJ1YePYRkFeLou8vCrqY6ee2tKFM01QY533kvXo11ESM6KUPjIIx35t3QdkLIl6eg4525A%2Bh8a%2BoAgZwQ52cfQbwzl4kg3z5WGiiIGAF%2FBkVeQagKklZg%2Bg4kPyAA47h%2BA3F077o2BV07ZumUnZDTj%2F%2BCLCbk9C%2FPI46%2BvaTk0L2lVZZKHVsMwxJyWEEOKiTZHtJ1B7LYA0s%2FhuQ%2FkYXHVxFHWzes0pC8nLmXsoIMKygxArUOsumRDrLQQZY4iPihS9v90PO6YRA2m70WY6zZZKzd6%2FA2b7Z6oYeMTeWNkCYjMDUCMxtIzAZW5ecH7bMw2Q%2BwKyUsd2DTCXHe3UDOSxSCoLAEBSUoJEGREhR5uc2VbdjyHlc2C%2Fx5bsxzsxzrdLBJt3U6EDHZTI7Ic7PR%2FPPbk1gVhy7r%2B42m3%2BnSRrPT4c2Ox3iL9zxOeYOyZrsHK0tIe2rmdn26J5xBMs3X%2FkBA92DVHpisgWY%2BaDHuNjzQlXGr52E9vp9nA0XrTEfgukSSnka65myqI%2FLCTET3oz8h2P7F3XN%2FV599cB7MlEhMiQ%2FljwQDdXd8Uxdk66YuLHl4I0llJNfpdHe3UpqK2oN3xFqhDb9y2Y7uv8GmxLTcvS1sepXGXMYDS765JDkXZlEbJsj3V%2ByyCJYyu3IpM3GWXF16c%2FFKlBhhrdRxBSoPnq3A5IQ8tX959itfWlyBNBVMViLK9sk8IPUeWLIBm%2BxffPDi7hn%2F1d9hNYFRJz1BUkORlWPTCE4elSRQ4gTToIT9Dw5O6k17FwNTA03vII5K5KZErkpQNYLNnh6nidm%2F%2BOiraXyNQNXGgTK1rUAZ9cWEvFz7dULcVz49HrKVh65oh14ovIYIwn4QdqnH%2B2GrH9C%2BL7pBm%2FpI7USI9%2FN%2FAQAA%2F%2F8BAAD%2F%2F%2FJBBC13BAAA
IP
ASN #39572 DataWeb Global Group B.V.
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjectreptileseller.com
FingerprintB3:18:0E:98:0F:1E:05:70:C4:67:A3:91:F6:B1:56:3B:56:EB:00:F2
ValiditySat, 25 Nov 2023 08:07:43 GMT - Fri, 23 Feb 2024 08:07:42 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuzkSMPy4GL4JCIygJyGz3%2FB5zCMa4EsyPNYksiJfqqurZcqu7mqr%2BMbun1YDkIDjiRT31frObJXER8wcI0uslLAg7F9mDK3gTvIgYPMrMDqw%2BqHrvq%2B8dvu%2B9%2BmQzOyIeMnq4dE2vS6XoQrvuueeWZcx1Yd3rt13fq3sX3GUZd1oX3OH0Mvnrvteue%2BfdtwVb1QsNz%2Fc83%2FPdRWlEqIcLMxYy2e379b5XbzXqfruFofk%2FtpkDSx3w%2FIicheSTJ1YePYRkFeLou8vCrqY6ee2tKFM01QY533kvXo11ESM6KUPjIIx35t3QdkLIl6eg4525A%2Bh8a%2BoAgZwQ52cfQbwzl4kg3z5WGiiIGAF%2FBkVeQagKklZg%2Bg4kPyAA47h%2BA3F077o2BV07ZumUnZDTj%2F%2BCLCbk9C%2FPI46%2BvaTk0L2lVZZKHVsMwxJyWEEOKiTZHtJ1B7LYA0s%2FhuQ%2FkYXHVxFHWzes0pC8nLmXsoIMKygxArUOsumRDrLQQZY4iPihS9v90PO6YRA2m70WY6zZZKzd6%2FA2b7Z6oYeMTeWNkCYjMDUCMxtIzAZW5ecH7bMw2Q%2BwKyUsd2DTCXHe3UDOSxSCoLAEBSUoJEGREhR5uc2VbdjyHlc2C%2Fx5bsxzsxzrdLBJt3U6EDHZTI7Ic7PR%2FPPbk1gVhy7r%2B42m3%2BnSRrPT4c2Ox3iL9zxOeYOyZrsHK0tIe2rmdn26J5xBMs3X%2FkBA92DVHpisgWY%2BaDHuNjzQlXGr52E9vp9nA0XrTEfgukSSnka65myqI%2FLCTET3oz8h2P7F3XN%2FV599cB7MlEhMiQ%2FljwQDdXd8Uxdk66YuLHl4I0llJNfpdHe3UpqK2oN3xFqhDb9y2Y7uv8GmxLTcvS1sepXGXMYDS765JDkXZlEbJsj3V%2ByyCJYyu3IpM3GWXF16c%2FFKlBhhrdRxBSoPnq3A5IQ8tX959itfWlyBNBVMViLK9sk8IPUeWLIBm%2BxffPDi7hn%2F1d9hNYFRJz1BUkORlWPTCE4elSRQ4gTToIT9Dw5O6k17FwNTA03vII5K5KZErkpQNYLNnh6nidm%2F%2BOiraXyNQNXGgTK1rUAZ9cWEvFz7dULcVz49HrKVh65oh14ovIYIwn4QdqnH%2B2GrH9C%2BL7pBm%2FpI7USI9%2FN%2FAQAA%2F%2F8BAAD%2F%2F%2FJBBC13BAAA HTTP/1.1
Host: reptileseller.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Cookie: u_pl=16310791; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecc9123167a2366d360cd4d80dad2ac358=[2229215,2106764,3637745]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 28 Nov 2023 03:11:50 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 42d0fe28863441abe929c71293b64ad3
Strict-Transport-Security: max-age=0; includeSubdomains
www.vugla.com/wp-content/themes/vugla/images/small-social-sprite.png
200 OK 3.8 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/images/small-social-sprite.png
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type PNG image data, 272 x 95, 8-bit/color RGBA, non-interlaced\012- data
Hash 1aabf6dabc51ca6168aa98fbecbf79e2
0e4cb499aff16fedb2097658da7d2baa1bdafaa8
09ac67d0b81afe77f52b59ee9abc68ba2dd7cf0ebbc85703c75a76c2586e93aa
GET /wp-content/themes/vugla/images/small-social-sprite.png HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/css/style_main.css
Cookie: _ga_7NCJ73THPT=GS1.1.1701141112.1.0.1701141112.60.0.0; _ga=GA1.1.492855472.1701141113
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:53:16 GMT
accept-ranges: bytes
content-length: 3812
cache-control: max-age=31536000, public, must-revalidate, proxy-revalidate
expires: Wed, 27 Nov 2024 03:11:49 GMT
referrer-policy:
pragma: public
content-type: image/png
date: Tue, 28 Nov 2023 03:11:49 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.yourwebbars.com/sb/notifications/games/hentai-heroes/custom_banner/8/index.html
200 OK 1.2 kB URL GET HTTP/2 cdn.yourwebbars.com/sb/notifications/games/hentai-heroes/custom_banner/8/index.html
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint84:82:6E:35:03:D4:C4:FC:BA:08:CD:C8:E6:A3:97:A9:20:2F:F5:49
ValiditySun, 23 Jul 2023 00:00:00 GMT - Mon, 22 Jul 2024 23:59:59 GMT
File type HTML document text\012- HTML document, ASCII text, with very long lines (1284), with no line terminators
Hash c027918f527566bdc59148bde3bb5b0c
904fa0b527a1d76c083a23e10e9d04701426afa4
6fdb255aef0fb622623e2fc5b56ccdabd6b8c04d7a2339eaa31eb446040016d2
GET /sb/notifications/games/hentai-heroes/custom_banner/8/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:51 GMT
content-type: text/html
last-modified: Thu, 19 Oct 2023 15:37:59 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ak5lCRwh%2BJ4DxmL62sFfwKNZo3mc5TuBFo28seaKtr0e%2FI%2FCCqdptCpoHplKSpt%2BEJYt9efygt9GxQkXYW8hPDwqVWgZBLJyKSuBuECGN7b%2Biy3lhCUfOnqIzl8nGx%2BykRZnA0k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cf6d09dcd5b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/css/wpp.css
200 OK 627 B URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/css/wpp.css
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (743), with no line terminators
Hash b8bce9517de9f757e65a98ee74b10a52
44ddad0d137616f15a79c4e7902c9a1458ef7281
d198bbce0ee9a578b45e87cd5d8df9b384605c4fd8ebb1eac60ab2316cfa52a7
GET /wp-content/themes/vugla/css/wpp.css HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/wp-content/themes/vugla/style.css?ver=6.4.1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 11:52:37 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 357
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/custom_banner/8/css/animate.css
200 OK 79 kB URL GET HTTP/2 cdn.creative-bars1.com/sb/notifications/games/hentai-heroes/custom_banner/8/css/animate.css
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT
Hash e1d8acd5ee9d1a90ea09313cbd8f2b02
8a8327b115d1356715e63270d1ce6d46124c7b1a
3028c87fc798ac3741f02079034e6c23462afc0c5e6c8d321188ce3716c8472a
GET /sb/notifications/games/hentai-heroes/custom_banner/8/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 28 Nov 2023 03:11:52 GMT
content-type: text/css
last-modified: Thu, 19 Oct 2023 15:38:00 GMT
etag: W/"65314d58-13591"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6rW3VzV%2FJTEAtN1CDFWXLKxmTRrC7Mmbz2%2FcHol6ajkicRfi1HrUHOT2h7n6uK2Ce9YeA8Q1vWjU0aYhVCJXSNGjkDzhTUuzJoKFZCdfN7pSu8MX9n117HJR9rxXtlnscjaW92JBx8AS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 82cf6d0e383f23ea-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.vugla.com/wp-content/plugins/vn-video-player/style/theme-city.css?ver=6.4.1
200 OK 2.6 kB URL GET HTTP/2 www.vugla.com/wp-content/plugins/vn-video-player/style/theme-city.css?ver=6.4.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type ASCII text, with very long lines (2557), with no line terminators
Hash 61cc33ee99bcd7a851f0a1e506476537
f3022f92be14c2ae7653aebccd2b7d3f1591a512
292f1b9a96454c19e07316c49c306fe6bf5a91ab876d958d756a4300637b82e5
GET /wp-content/plugins/vn-video-player/style/theme-city.css?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 26 Nov 2021 15:34:33 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-length: 733
content-type: text/css
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
eechicha.com/pfe/current/defaultSkin.min.js
200 OK 57 kB URL GET HTTP/2 eechicha.com/pfe/current/defaultSkin.min.js
IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subjecteechicha.com
FingerprintA7:F9:5F:87:8A:D5:59:6F:C6:F4:84:8E:C8:B1:C8:FE:DF:C8:27:B4
ValiditySun, 12 Nov 2023 05:14:19 GMT - Sat, 10 Feb 2024 05:14:18 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pfe/current/defaultSkin.min.js HTTP/1.1
Host: eechicha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.vugla.com/
Origin: https://www.vugla.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 28 Nov 2023 03:11:55 GMT
content-type: application/javascript
last-modified: Mon, 27 Nov 2023 17:44:23 GMT
etag: W/"6564d577-df63"
access-control-allow-origin: https://www.vugla.com
access-control-allow-credentials: true
cache-control: no-cache
pragma: no-cache
content-encoding: gzip
X-Firefox-Spdy: h2
www.nbfcs.org/
200 OK 1.2 kB IP
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.nbfcs.org
FingerprintE0:6B:EC:7B:D6:B0:6E:9E:26:18:76:0D:83:E2:83:F9:02:52:F5:09
ValidityFri, 17 Nov 2023 10:08:39 GMT - Sun, 17 Nov 2024 10:08:39 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1227), with no line terminators
Hash eba99f250a0808d37b3d58ed3bcfa437
c81011ad0d82e456e2ef96f80a6e4aeec65c213c
2a55582312bbcc9cd057594c6b960220cb3ee3e3431542c297cf31c92f70416a
GET / HTTP/1.1
Host: www.nbfcs.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: openresty
Date: Tue, 28 Nov 2023 03:11:51 GMT
Content-Type: text/html
Content-Length: 1177
Last-Modified: Mon, 13 Nov 2023 23:34:16 GMT
Connection: keep-alive
ETag: "6552b278-499"
X-Adblock-Key: MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAJRmzcpTevQqkWn6dJuX/N/Hxl7YxbOwy8+73ijqYSQEN+WGxrruAKtZtliWC86+ewQ0msW1W8psOFL/b00zWqsCAwEAAQ_ENz/K+PjBN0f7d4uAK6i9sVttzh1wtg6nZ+1UAvE7vPXElYhzDXKeeVTCrm3d3z1MlDESrhhCv293G+wNltFFw
Cache-Control: no-cache
X-Content-Type-Options: nosniff
Set-Cookie: caf_ipaddr=10.116.80.26;Path=/;Max-Age=86400;
country=;Path=/;Max-Age=86400;
city="";Path=/;Max-Age=86400;
expiry_partner=enom.ACTIVE.5D3C3A1B-1A26-48DD-A7EC-02F11DDF874F;Path=/;Max-Age=86400;
Accept-Ranges: bytes
www.google.com/adsense/domains/caf.js?abp=1
200 OK 150 kB URL GET HTTP/2 www.google.com/adsense/domains/caf.js?abp=1
IP
Requested by https://www.nbfcs.org/#signUp=753203014166122496
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintB0:8E:97:10:7E:30:90:F6:42:A1:32:63:5C:78:27:D3:A8:F1:05:D1
ValidityMon, 23 Oct 2023 11:24:57 GMT - Mon, 15 Jan 2024 11:24:56 GMT
File type ASCII text, with very long lines (1888)
Size 150 kB (149642 bytes)
Hash 874a9639750ae434c10140eb1a983849
075e222560bb798ac08f476e157afa2782d3c85b
a49690ce6db822bd1ae860ad7687076d3259019e7353ecdd86cd02066fd6bee8
GET /adsense/domains/caf.js?abp=1 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nbfcs.org/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-type: text/javascript; charset=UTF-8
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-afs-ui
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-afs-ui"
report-to: {"group":"ads-afs-ui","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-afs-ui"}]}
date: Tue, 28 Nov 2023 03:11:51 GMT
expires: Tue, 28 Nov 2023 03:11:51 GMT
cache-control: private, max-age=3600
etag: "13859965838328933494"
x-content-type-options: nosniff
link: <https://www.adsensecustomsearchads.com>; rel="preconnect"
content-encoding: gzip
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img1.wsimg.com/parking-lander/static/css/main.ba077a97.css
200 OK 198 B URL GET HTTP/2 img1.wsimg.com/parking-lander/static/css/main.ba077a97.css
IP
ASN #20940 Akamai International B.V.
Requested by https://www.nbfcs.org/#signUp=753203014166122496
Certificate IssuerStarfield Technologies, Inc.
Subject*.wsimg.com
FingerprintB7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD
ValidityTue, 19 Sep 2023 21:06:14 GMT - Sun, 20 Oct 2024 21:06:14 GMT
File type ASCII text, with no line terminators
Hash c4afa44441843fee46a8eddf2005df15
ef7984d10d89f80e139f22769e4b76f56a46ba9c
04f3ab9862d5af0d87435c5134edbfbbc26e82cc27efc80f20370a4f99ade761
GET /parking-lander/static/css/main.ba077a97.css HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.nbfcs.org/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: hVbAf+7gM2hs36Ag33XHe7fO+0CTgKGXqo80SHegVu0xTx8rqccrPuEXRFHrKfUVzwyRYRPRwMc=
x-amz-request-id: PQPBQ8C3KHV43R4Q
last-modified: Mon, 13 Nov 2023 23:32:18 GMT
etag: "92cc7bc9897bfb97adb18591dc4642cb"
x-amz-server-side-encryption: AES256
x-amz-version-id: S.cohGeac3FUy_snjCsO9LOvUc0sPSaD
accept-ranges: bytes
content-type: text/css
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=31536000
expires: Wed, 27 Nov 2024 03:11:51 GMT
date: Tue, 28 Nov 2023 03:11:51 GMT
content-length: 187
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=6.4.1
200 OK 104 kB URL GET HTTP/2 www.vugla.com/wp-content/themes/vugla/js/scripts.js?ver=6.4.1
IP
ASN #46606 UNIFIEDLAYER-AS-1
Requested by https://www.vugla.com/tag/bologna-torino-golovi
Certificate IssuerLet's Encrypt
Subject*.vugla.com
Fingerprint60:1A:D3:8D:4C:FA:56:F9:38:93:28:7F:AA:D3:BE:FE:AB:86:9D:99
ValidityWed, 22 Nov 2023 10:07:17 GMT - Tue, 20 Feb 2024 10:07:16 GMT
File type HTML document, ASCII text, with very long lines (1754), with CRLF line terminators
Size 104 kB (103652 bytes)
Hash ef9b7abbc5670902d89c6d20af50b7c3
2593f7764d07fecf938574d3d93693f1974759d2
17cadc0ae5ff07b667c2150bce71007b771bcc75ce070fd2a697ee2e60109535
GET /wp-content/themes/vugla/js/scripts.js?ver=6.4.1 HTTP/1.1
Host: www.vugla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.vugla.com/tag/bologna-torino-golovi
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 15 Nov 2013 12:00:03 GMT
accept-ranges: bytes
vary: Accept-Encoding,User-Agent
content-encoding: gzip
referrer-policy:
content-type: application/javascript
date: Tue, 28 Nov 2023 03:11:48 GMT
server: Apache
X-Firefox-Spdy: h2
192.185.106.252
139.45.197.238
104.22.33.172
18.157.203.0
23.36.79.16
0.0.0.0