termovar.co.rs/
93.188.2.54301 Moved Permanently 0 B IP 93.188.2.54:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
X-Powered-By: PHP/7.4.30
Set-Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0; path=/; HttpOnly
X-Logged-In: False
X-Content-Powered-By: K2 v2.10.2 (by JoomlaWorks)
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Wed, 17 Aug 2005 00:00:00 GMT
Last-Modified: Fri, 04 Nov 2022 06:32:59 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Location: http://termovar.co.rs/index.php?lang=sr
X-Loopia-Node: 172.22.223.154
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b7be8442ec1e518ccc80739495f6d047
7a9d24b9d4046262c7753c49afaf9c19f4840626
b93410a9d62da3f219796d753b61a0f730cc272c13596724aa9d20efba298b44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B93410A9D62DA3F219796D753B61A0F730CC272C13596724AA9D20EFBA298B44"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5933
Expires: Fri, 04 Nov 2022 08:11:52 GMT
Date: Fri, 04 Nov 2022 06:32:59 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2842f538168981f07b56e2c69379841a
0cc4ad0a78c1407bc9b7850eb0fb1a02130e3b22
3f9e8fb02409a19ceb54fee3f0f7f73eeed9e0ad63fa778eac7b3e4633d7d682
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3919
Cache-Control: max-age=101007
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 06:32:59 GMT
Etag: "63638a5c-1d7"
Expires: Sat, 05 Nov 2022 10:36:26 GMT
Last-Modified: Thu, 03 Nov 2022 09:31:08 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2842f538168981f07b56e2c69379841a
0cc4ad0a78c1407bc9b7850eb0fb1a02130e3b22
3f9e8fb02409a19ceb54fee3f0f7f73eeed9e0ad63fa778eac7b3e4633d7d682
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3485
Cache-Control: max-age=100574
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 06:32:59 GMT
Etag: "63638a5c-1d7"
Expires: Sat, 05 Nov 2022 10:29:13 GMT
Last-Modified: Thu, 03 Nov 2022 09:31:08 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9f3527f898221f8ba6b5015f6decc100
ead93baa0e9d3a6297be3377dc3a624e5a3f509a
73a068f907cc50dd60af18d545b4264dd44bc4b9f40bf9adfceea157fdc33099
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73A068F907CC50DD60AF18D545B4264DD44BC4B9F40BF9ADFCEEA157FDC33099"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5391
Expires: Fri, 04 Nov 2022 08:02:50 GMT
Date: Fri, 04 Nov 2022 06:32:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2rZCEPmzabTQKIybvLtEM+kAyC5QlS8afFbvTVvCW5UaMahWboHRtrzBwotcyn/AyMMrllTi7Uw=
x-amz-request-id: 8VAJ8Q2GZPN4FAFY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 04 Nov 2022 06:09:29 GMT
age: 1410
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 04 Nov 2022 06:32:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
termovar.co.rs/index.php?lang=sr
93.188.2.54200 OK 9.4 kB URL HTTP/1.1 termovar.co.rs/index.php?lang=sr
IP 93.188.2.54:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2083), with CRLF, LF line terminators
Hash eddefbf934af77f6b55b15cf967506c9
c555a04bf29778393326c72cd651816b42764569
25765f2f9ccc30dabf9909e6a8eb20f28175c4fd61cc6aae0a0f7e4cf5ebdfcd
Analyzer Verdict Alert fortinet Phishing
GET /index.php?lang=sr HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Powered-By: PHP/7.4.30
X-Logged-In: False
X-Content-Powered-By: K2 v2.10.2 (by JoomlaWorks)
P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM"
Expires: Wed, 17 Aug 2005 00:00:00 GMT
Last-Modified: Fri, 04 Nov 2022 06:32:59 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/cache/widgetkit/widgetkit-28e80fba.css
93.188.2.54200 OK 3.6 kB URL HTTP/1.1 termovar.co.rs/cache/widgetkit/widgetkit-28e80fba.css
IP 93.188.2.54:0
File type ASCII text, with very long lines (1080)
Hash c43b526e07d7b79f5c5e62de17c15d62
a7cf3c0c8eb4f48b78cb731250cf50f65786d85d
b9aacaf5378ce37943d803ec87a10d92545403a6f4ca4208ecdf910304e970c1
GET /cache/widgetkit/widgetkit-28e80fba.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 14 Mar 2020 03:12:07 GMT
ETag: W/"38a8-5a0c7f3762f4f"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/media/jui/js/jquery-noconflict.js?c73e4bcd801362ff9c74e9e48012ee7c
93.188.2.54200 OK 41 B URL HTTP/1.1 termovar.co.rs/media/jui/js/jquery-noconflict.js?c73e4bcd801362ff9c74e9e48012ee7c
IP 93.188.2.54:0
Hash c740c8e83aad10b1d7a57daf397b18a2
3fa237269747c1da890e00c460113374bb94ae2a
47f73e3aeed5265b76de9eec0407f73f0b25ad2bca0cf24989987cc30f635a26
Analyzer Verdict Alert fortinet Phishing
GET /media/jui/js/jquery-noconflict.js?c73e4bcd801362ff9c74e9e48012ee7c HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 09 Mar 2020 15:22:36 GMT
ETag: W/"15-5a06d92a94700"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/media/jui/js/jquery-migrate.min.js?c73e4bcd801362ff9c74e9e48012ee7c
93.188.2.54200 OK 4.3 kB URL HTTP/1.1 termovar.co.rs/media/jui/js/jquery-migrate.min.js?c73e4bcd801362ff9c74e9e48012ee7c
IP 93.188.2.54:0
File type ASCII text, with very long lines (9959)
Hash 95cd29a10119a85432df5ed805d90441
3a8e99e4fe7aca3f5a67964a6318ab768ecd96df
500ae1c9295bc99d8e7c7ab04253ceeda1d8813fb6414b20ecbd3f57f178ec06
Analyzer Verdict Alert fortinet Phishing
GET /media/jui/js/jquery-migrate.min.js?c73e4bcd801362ff9c74e9e48012ee7c HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 09 Mar 2020 15:22:36 GMT
ETag: W/"2748-5a06d92a94700"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/media/mod_languages/css/template.css?c73e4bcd801362ff9c74e9e48012ee7c
93.188.2.54200 OK 178 B URL HTTP/1.1 termovar.co.rs/media/mod_languages/css/template.css?c73e4bcd801362ff9c74e9e48012ee7c
IP 93.188.2.54:0
Hash 83deb34bd9efcfd549364437bb1a5d0d
a31082a9b4cfc3eac68c1140a9ad6f6cca376ef6
27febf22c7a94ff624e86dcc684513a2427b8bf4c8538a0c32285c14a6827d50
Analyzer Verdict Alert fortinet Phishing
GET /media/mod_languages/css/template.css?c73e4bcd801362ff9c74e9e48012ee7c HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 09 Mar 2020 15:22:36 GMT
ETag: W/"14f-5a06d92a94700"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
fonts.googleapis.com/css?family=Rubik:300&display=swap&subset=latin,latin-ext
142.250.74.10200 OK 487 B URL HTTP/1.1 fonts.googleapis.com/css?family=Rubik:300&display=swap&subset=latin,latin-ext
IP 142.250.74.10:0
Hash c14178b9e1034192c87d34d80afe0292
d246fdff0c5962ff9b10ced401159682d252760d
4a9fc1e9ce6b005c3ff98b4b7447633428a984ca48e34da95922a735435d7acb
GET /css?family=Rubik:300&display=swap&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 04 Nov 2022 06:32:59 GMT
Date: Fri, 04 Nov 2022 06:32:59 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
termovar.co.rs/media/k2/assets/js/k2.frontend.js?v=2.10.2&b=20191212&sitepath=/
93.188.2.54200 OK 2.7 kB URL HTTP/1.1 termovar.co.rs/media/k2/assets/js/k2.frontend.js?v=2.10.2&b=20191212&sitepath=/
IP 93.188.2.54:0
Hash fe9245e0479ed58a6ca4b8323c00b4a4
2e268e8bca4f918110b6a63aa13d87ba533dcf30
f2f00312c661b0946df8baeeabedcf6909a93b89ee0d25cb1daaee6ef16a61ab
GET /media/k2/assets/js/k2.frontend.js?v=2.10.2&b=20191212&sitepath=/ HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 28 Dec 2019 23:17:13 GMT
ETag: W/"2115-59acbcf72d040"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/bootstrap.css
93.188.2.54200 OK 38 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/bootstrap.css
IP 93.188.2.54:0
Hash 1af1ed6ce90a08e6ac780dc9f71865bc
242303f25f16eee1d1b8b32f9a0649be42e6c7cb
bdb2ea8682940a38ae0571653a04dcd6e0f4ab5cbbc52936dd930a16b000ff7a
GET /templates/legend_j3/css/bootstrap.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"2dc8d-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/media/jui/js/jquery.min.js?c73e4bcd801362ff9c74e9e48012ee7c
93.188.2.54200 OK 39 kB URL HTTP/1.1 termovar.co.rs/media/jui/js/jquery.min.js?c73e4bcd801362ff9c74e9e48012ee7c
IP 93.188.2.54:0
File type ASCII text, with very long lines (65469)
Hash 300b2e06febe4ca2a5d4d4c071a0cbb4
c7c89bc2fec83999b4f8b242d58e02c846f59044
ac6aa8045eae5f545d081ddaade1db98a51616fa420d4c0ea4197aa1321a5bc3
GET /media/jui/js/jquery.min.js?c73e4bcd801362ff9c74e9e48012ee7c HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 09 Mar 2020 15:22:36 GMT
ETag: W/"1795e-5a06d92a94700"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/uikit.css
93.188.2.54200 OK 3.4 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/uikit.css
IP 93.188.2.54:0
Hash e1a5d7a2b6d270f0a17a2d9da7314553
166b13e2467b5ad01ce00487c9bf4b0c7f62694f
687316d9831e7ea062412532f765c76a99743c2b3dc610630d4c7f34bfc63394
GET /templates/legend_j3/css/uikit.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"392c-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/cache/widgetkit/widgetkit-a9d895aa.js
93.188.2.54200 OK 7.4 kB URL HTTP/1.1 termovar.co.rs/cache/widgetkit/widgetkit-a9d895aa.js
IP 93.188.2.54:0
File type ASCII text, with very long lines (14595)
Hash a3b6038da4a5ae5b6ebf4eda650d31f8
c4a8cefc8546b85b4cb8858803fcf9da0ba9b756
d021a97d604a0bdcd8c8686d0b1c223b181b9cf91240bfe571c9197d42fa4f8b
Analyzer Verdict Alert fortinet Phishing
GET /cache/widgetkit/widgetkit-a9d895aa.js HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 14 Mar 2020 03:01:09 GMT
ETag: W/"54d8-5a0c7cc43d7c1"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/media/jui/js/bootstrap.min.js?c73e4bcd801362ff9c74e9e48012ee7c
93.188.2.54200 OK 9.3 kB URL HTTP/1.1 termovar.co.rs/media/jui/js/bootstrap.min.js?c73e4bcd801362ff9c74e9e48012ee7c
IP 93.188.2.54:0
File type ASCII text, with very long lines (28972)
Hash 376d289ff8fe97a1f7f2dbea3ea1e2e6
3e9e2fafd9fcbfbf302e29829b7a56b45c66aa86
911ff5b2d9300a2b12bb65ac9b936f4a594133dd2c790bec51d0184990e92cdf
GET /media/jui/js/bootstrap.min.js?c73e4bcd801362ff9c74e9e48012ee7c HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Mon, 09 Mar 2020 15:22:36 GMT
ETag: W/"71c6-5a06d92a94700"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/base.css
93.188.2.54200 OK 564 B URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/base.css
IP 93.188.2.54:0
Hash 34adc1cfe75d5f5cf586e6b94f696465
99607a1526490d8eaa62d8d25cb45dafd102a0b8
784d8bdef3026e2fcc779e309dc348f6cc9dd9793d0ffdcf8ccded31bb037d0d
GET /templates/legend_j3/css/base.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"455-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/extensions.css
93.188.2.54200 OK 9.3 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/extensions.css
IP 93.188.2.54:0
Hash ade72a3ad6da33ae61d9e1f9c1ac73a0
1de4893b02979f3d0eaa4f2dc4626de7b85f8239
840b9a302ec93443976eee5cc7e24ec527965fbe8ff3814d00c3fe136d5be132
GET /templates/legend_j3/css/extensions.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"93ab-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/tools.css
93.188.2.54200 OK 2.9 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/tools.css
IP 93.188.2.54:0
Hash 26ead1c003733d267c3a17b4627859a6
879f39e4f7b1f3b0e5a4eeb60f826524c02d064b
3b3c726fd7a543d097bf8eacfe5909b7a0cebb08acd762a504d8dc066b1a4b67
GET /templates/legend_j3/css/tools.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"27b9-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/menus.css
93.188.2.54200 OK 2.7 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/menus.css
IP 93.188.2.54:0
Hash 5fd610974516e54810b800b02f7739cf
081647e798fc060c08e6b88eb028d153f1e0ce75
95c1d05c932a7231fc2b84c1cceb493d207a7641004219a95f0102b55f00b66d
GET /templates/legend_j3/css/menus.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"2987-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/system.css
93.188.2.54200 OK 1.3 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/system.css
IP 93.188.2.54:0
Hash 620b95c6b11e927cc0c2ac9944aa6b3b
edbab87ddeecc193520ec0c2395429ecccba3094
49c0694f79c45038a81c1f4c082b3dbf6fcad2bf3cb6338469110a2654bfb9d3
GET /templates/legend_j3/css/system.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"fbb-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/k2.css
93.188.2.54200 OK 5.8 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/k2.css
IP 93.188.2.54:0
Hash 3d03a7586476c5c7a01a26101c16857b
a1a7ac954e12027ee3c372c7b24d8d66ce34c727
53505c9ce4cb144998f225afd14428d339fa637b8d90b3bf41a09570c661925e
GET /templates/legend_j3/css/k2.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"5136-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/font1/rubik.css
93.188.2.54200 OK 211 B URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/font1/rubik.css
IP 93.188.2.54:0
File type ASCII text, with CRLF, LF line terminators
Hash ac8d21640efa978eb6e6d9ef224810e3
6fd96e633b9eac724cc5cd00981b6aa1a3381029
46ee6f52a4f7f010153a18b82c960d100fa102bdb12632aa9a5cdeb2b6f2af6a
GET /templates/legend_j3/css/font1/rubik.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"f2-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/layout.css
93.188.2.54200 OK 1.7 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/layout.css
IP 93.188.2.54:0
File type assembler source, ASCII text
Hash 29fe1396a7d67880fb4126255083040f
abc39c39b7d0093c77b6c4685c31ff1e236a475a
35e73899abfbdf336fd75d4a23040e51875cb0a798906ed2381a7cc3e36ddcef
GET /templates/legend_j3/css/layout.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"1246-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/modules.css
93.188.2.54200 OK 2.1 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/modules.css
IP 93.188.2.54:0
Hash 1c81aaf6bcb1135a1971f13be7ddbdc0
99ee167f3dac64389c298cc297bb757c09b1293d
0fec6c142ed04832d1390c4f1253ff8853cdc53cd55ba8120720e9d530343d13
GET /templates/legend_j3/css/modules.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"1e07-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/font2/rubik.css
93.188.2.54200 OK 229 B URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/font2/rubik.css
IP 93.188.2.54:0
File type ASCII text, with CRLF, LF line terminators
Hash 0b92da1d3311539358b63e186893ece7
ff6deba26baf92fab58266651e98201c10c6c340
c9fb71fe431b001b364dcde8b2933eb6a0b3b88cdb6b490e1140d122c4af6c24
GET /templates/legend_j3/css/font2/rubik.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"10a-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/iconfonts.css
93.188.2.54200 OK 132 B URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/iconfonts.css
IP 93.188.2.54:0
Hash 516a34dad34bad2b3bab63163b1113a8
3f0138cd37364e5a88df560ed0b655479a4d9c6e
0301820f682118e2d08083e4324ecd9b1fd195ea55b3321e5e7d5aa791b2346f
GET /templates/legend_j3/css/iconfonts.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"7b-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/font4/rubik.css
93.188.2.54200 OK 214 B URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/font4/rubik.css
IP 93.188.2.54:0
Hash 17ab0d7d5cec499add100d1cf78205c3
85088ef5c4e8f21372ba84faaed7b30608d5ce67
48cc8b3514b4257c0a7c38dd9e843b8e1ade4ec2d6a0c7d32be0e47cbeaaabd5
GET /templates/legend_j3/css/font4/rubik.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"10b-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/responsive.css
93.188.2.54200 OK 1.2 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/responsive.css
IP 93.188.2.54:0
Hash 09371c4781750b20c6b8f97a0ae4c0e9
a6839f9fc6da191d8ec3d092b7e2f02022d597f6
35333a9c20f8cc70c3f25261c938868f143e8878cf3d33549dc23053b28e33d1
GET /templates/legend_j3/css/responsive.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"110a-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/custom.css
93.188.2.54200 OK 101 B URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/custom.css
IP 93.188.2.54:0
Hash 07d52f52e953a36ec88ec0ab2fb8b33c
ad44d5c2f3b7a1c23e7d1d14ad3b0f5b2f6bfd45
2278cae6eb6888590f5ee74b74f29a5f6b48246476c2e2c01343c7ca6df4a845
GET /templates/legend_j3/css/custom.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 26 Mar 2014 10:03:30 GMT
ETag: W/"51-4f57f949fe080"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/font3/rubik.css
93.188.2.54200 OK 230 B URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/font3/rubik.css
IP 93.188.2.54:0
File type ASCII text, with CRLF, LF line terminators
Hash c494cdaaea98b6f4172078f646c0b364
9fbfc4694e392805ef7ca5deaacbe064a5cfac05
d0a76e6c0b7c37a0ec357a2d1f23e7daa4d821908c7be1757bdd2593b3f61cae
GET /templates/legend_j3/css/font3/rubik.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"14d-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/print.css
93.188.2.54200 OK 517 B URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/print.css
IP 93.188.2.54:0
Hash 892ec4b2e95242d502a9581b1124b063
b0110031839dc8c7547b385c49e03f5ad2fe22c4
8419b47e152fb77b022cc6221a06db50588e7616fca014cf5ad0a8aaf1d7b314
GET /templates/legend_j3/css/print.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"470-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/warp/js/responsive.js
93.188.2.54200 OK 1.6 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/js/responsive.js
IP 93.188.2.54:0
File type HTML document, ASCII text, with very long lines (3281), with no line terminators
Hash 567e6e98d87f1d8d3280b48a3e6cc47a
8ca7d38fec086e10cd9f7843355b813a692a8ac4
069d7db004a5907f62384759fd25f40abf276182b3b5c5b8fd382b4c62fbc4ca
Analyzer Verdict Alert fortinet Phishing
GET /templates/legend_j3/warp/js/responsive.js HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"cd1-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/warp/js/accordionmenu.js
93.188.2.54200 OK 724 B URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/js/accordionmenu.js
IP 93.188.2.54:0
File type ASCII text, with very long lines (1548), with no line terminators
Hash b368b2120c2fe0719b5e0d26aa128b82
07c94a36aa2c148ef0a64988ea3207bc69095f3a
1c41a87a49a0a017f9c1b4cba9708e7981c90a07e9555cd6c032eafd0aeeb2cd
Analyzer Verdict Alert fortinet Phishing
GET /templates/legend_j3/warp/js/accordionmenu.js HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"60c-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/warp/js/dropdownmenu.js
93.188.2.54200 OK 2.1 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/js/dropdownmenu.js
IP 93.188.2.54:0
File type ASCII text, with very long lines (6192), with no line terminators
Hash 4976e08977d71028e87e453dd472276b
db666641f06aa992d704ae2a8c3475d9ad6854b8
4e03f12239052048f0269841ac49a8dd3b30625c54499c398d83c35609fc4235
Analyzer Verdict Alert fortinet Phishing
GET /templates/legend_j3/warp/js/dropdownmenu.js HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"1830-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/warp/js/warp.js
93.188.2.54200 OK 3.2 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/js/warp.js
IP 93.188.2.54:0
File type HTML document, ASCII text, with very long lines (8759), with no line terminators
Hash 99df49dadefb7489d41ce48cb7e9509c
cbdc1ae422e8f4d981a74e2b2a868418944e6c2f
c3497703abf95e2b52e60778812e068895c5e60f950cfec5fdd94c07cac3e074
Analyzer Verdict Alert fortinet Phishing
GET /templates/legend_j3/warp/js/warp.js HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"2237-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/warp/js/uikit.min.js
93.188.2.54200 OK 26 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/js/uikit.min.js
IP 93.188.2.54:0
File type ASCII text, with very long lines (32018)
Hash 82b170422e1bb89bfacc611fb527dd8b
b67e5dfe54ede59ecf88d1d59d5234c1384cc7e0
21bbf972c528be4274ad870d231274a25e491b36439ee1c27fef57d1cfd70122
Analyzer Verdict Alert fortinet Phishing
GET /templates/legend_j3/warp/js/uikit.min.js HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"1389e-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/js/template.js
93.188.2.54200 OK 19 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/js/template.js
IP 93.188.2.54:0
File type ASCII text, with very long lines (43460)
Hash 6bd0d1225b4b5d096c0c1a9c205e9476
0bfb0a55fccbd5b2e9a1d0dda0c6528bb15d799b
2e1ae1787269a53bae83001bcc46a618fa4a51bb7c646d42101e2924c34b8156
Analyzer Verdict Alert fortinet Phishing
GET /templates/legend_j3/js/template.js HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"d158-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/warp/css/tools.css
93.188.2.54200 OK 1.6 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/css/tools.css
IP 93.188.2.54:0
File type assembler source, ASCII text
Hash f564ad069f7271a93d07458e2a0dfbc7
79d25f8418b354e3a1103a8a815cd7d0a3c53121
4b77c36508d8d01bdd2f54f7fe4bc6e901efdbd5f06533bb4b00a1b3116db706
GET /templates/legend_j3/warp/css/tools.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/templates/legend_j3/css/tools.css
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"1335-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/warp/css/menus.css
93.188.2.54200 OK 1.2 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/css/menus.css
IP 93.188.2.54:0
Hash 022baf634c0c7b97e9fcc838949e0c7f
c48b1ef15aad43601b84ad29c9de2f20072ff1cf
466dedb8f2e823ccf57e7bfe7e63622f998cdde8ca04d02c356d4e2203b492a1
GET /templates/legend_j3/warp/css/menus.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/templates/legend_j3/css/menus.css
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"f8b-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/warp/css/base.css
93.188.2.54200 OK 2.0 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/css/base.css
IP 93.188.2.54:0
Hash 08f86cc53577d9a8e64a123b780772c8
b54467dcb064f49981021231c76319d6c1e1a941
bd1535dab829c8b31c0cc9cb5eb1af961612991e86e66cc4d614c478a55494a4
GET /templates/legend_j3/warp/css/base.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/templates/legend_j3/css/base.css
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"13f5-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/warp/css/system.css
93.188.2.54200 OK 2.1 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/css/system.css
IP 93.188.2.54:0
Hash e37c02e19ed30393c8caeddd567c88ef
3c0dc9a556fa32fdbd9ebdd655978d257b83de68
9764910dce29896d28cb7949d2c437f48e17cfff86e90ca2623ed4f62664f0f9
GET /templates/legend_j3/warp/css/system.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/templates/legend_j3/css/system.css
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"1e5e-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/media/widgetkit/widgets/spotlight/js/spotlight.js?wkv=1.4.9
93.188.2.54200 OK 1.2 kB URL HTTP/1.1 termovar.co.rs/media/widgetkit/widgets/spotlight/js/spotlight.js?wkv=1.4.9
IP 93.188.2.54:0
File type ASCII text, with very long lines (2984)
Hash 02f3ddef97fb0995724d93672fad43eb
33bd7a3459394866464c0990e1b625e6b95c92d8
9c936d45e6920681ea82eafcd2d5d036488675c525b5b6d82cccc2febeb7503a
Analyzer Verdict Alert fortinet Phishing
GET /media/widgetkit/widgets/spotlight/js/spotlight.js?wkv=1.4.9 HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 09 Jan 2020 11:50:20 GMT
ETag: W/"c0f-59bb39d0ed700"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/media/widgetkit/widgets/lightbox/js/lightbox.js?wkv=1.4.9
93.188.2.54200 OK 8.0 kB URL HTTP/1.1 termovar.co.rs/media/widgetkit/widgets/lightbox/js/lightbox.js?wkv=1.4.9
IP 93.188.2.54:0
File type ASCII text, with very long lines (24644)
Hash 0315ef4e9bb981e694c72a92707eeca7
7cf015b368d6e79502ae0f8fd31d9df445a5aac6
94a2483aa010cc91edcaf05e33dc0edeb07b7118fabf3a09a9384b94dea6298d
GET /media/widgetkit/widgets/lightbox/js/lightbox.js?wkv=1.4.9 HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 09 Jan 2020 11:50:20 GMT
ETag: W/"6118-59bb39d0ed700"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/warp/css/modules.css
93.188.2.54200 OK 484 B URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/css/modules.css
IP 93.188.2.54:0
Hash 381938a250370649a1abfd7d9bd76163
fd36ed07ebc8829ef1b1e4cc6b24e6177f4b30d1
dd3176741bc5589c0b6d4bc66e823446735d478b69600b6c2d73e65356e07ec5
GET /templates/legend_j3/warp/css/modules.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/templates/legend_j3/css/modules.css
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"4ff-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/warp/css/responsive.css
93.188.2.54200 OK 1.0 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/css/responsive.css
IP 93.188.2.54:0
Hash 9598c5733020f68a24c0dd3f7bf0ef86
9a1e14a69368cb6b5144a3a4267aa3797fc755d7
89ced310a9449ea2b253beb45bd60c938222aad44b1721a76f71417825078849
GET /templates/legend_j3/warp/css/responsive.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/templates/legend_j3/css/responsive.css
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"ccf-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/warp/systems/joomla/css/system.css
93.188.2.54200 OK 789 B URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/systems/joomla/css/system.css
IP 93.188.2.54:0
Hash aa2ef2490d51e21ae6c6d9b3aceaeba0
f054720597cd8aa0c7ac598a6649f60ca3e25ce7
169e7ee653fa343694f589e4637c9ca83f74a47142d04bdcc7ebc6a81a4b0904
GET /templates/legend_j3/warp/systems/joomla/css/system.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/templates/legend_j3/css/system.css
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"968-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/fonts/Pe-icon-7-stroke.css
93.188.2.54200 OK 2.0 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/fonts/Pe-icon-7-stroke.css
IP 93.188.2.54:0
Hash 4aca4c8ccba937bb21cd6afb8347e9d9
81a235e878102cd1f4e1c3c0ba25fc56dbc02ea4
09924d5e33346dccf0a7953f86c2176aadfb32ba61b4ddf3bbb0a31a0d89f958
GET /templates/legend_j3/fonts/Pe-icon-7-stroke.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/templates/legend_j3/css/iconfonts.css
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"27d2-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/css/system-all.css
93.188.2.54200 OK 1.9 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/css/system-all.css
IP 93.188.2.54:0
Hash 20535e6a04c1e9cf821e34402aea7be3
3a0317a5e35601a44002594857623813154381a5
0f1246b4a8d4182d3fd9c313a75cc1065e3b4166311ee56fcb0b1b7baebe2521
GET /templates/legend_j3/css/system-all.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/templates/legend_j3/css/system.css
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"1a20-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 670d0b2f341e8ff1e4ee9fe4fe21e210
dcd277daebf63623b985a81a96bcdc6a6f67c518
75029ab8db44811ac539aa3e2f1f8e015a45b80cb5a1099cec7d64e55e2a72a6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1007
Cache-Control: max-age=93036
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 06:32:59 GMT
Etag: "63637698-1d7"
Expires: Sat, 05 Nov 2022 08:23:35 GMT
Last-Modified: Thu, 03 Nov 2022 08:06:48 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
termovar.co.rs/templates/legend_j3/warp/css/layout.css
93.188.2.54200 OK 894 B URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/css/layout.css
IP 93.188.2.54:0
Hash e12509c0bc579ac5ab94959059055019
f0d4fa95652c6ababaf4f3a32d6060ed94e25c0a
ea590158853d1c82769550f4ae83c0a3550d52577bd8d08a48074803fd3aaa95
GET /templates/legend_j3/warp/css/layout.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/templates/legend_j3/css/layout.css
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"91f-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/templates/legend_j3/warp/css/print.css
93.188.2.54200 OK 440 B URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/css/print.css
IP 93.188.2.54:0
Hash 2302ca9326b487cda6f34092f7848fdd
2ab4423533e1354fe9ba49328c4bc5bde7faed44
1f93944f0676d523eac8c35c1d18f2714e4fd078985dfc76ca31ab94ec9552ea
GET /templates/legend_j3/warp/css/print.css HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/templates/legend_j3/css/print.css
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: W/"2e1-59771e49ac480"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/images/demo/clients/09.png
93.188.2.54200 OK 11 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/09.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash fde8fb2428a6530265aeaa3af39a533f
f46879521834204102b736b9f7c8facbe3eddbb7
306fe559b2c1f34f30cbfc0ba2ed257ebf4222566f4d336eaaaa6d6035283b2b
GET /images/demo/clients/09.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 11350
Connection: keep-alive
Last-Modified: Fri, 10 Jan 2020 16:41:05 GMT
ETag: "2c56-59bcbcab3ca40"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/clients/11.png
93.188.2.54200 OK 16 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/11.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash a06c671fbb9d8ec10d183b3d4465e41b
86dcdc0b3acee58134fe6d88b962de118449d226
1895efd109be2b9e3f60967c5a4aeee17979d9049c65de1bb3ce5c9a4f16db75
GET /images/demo/clients/11.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 16439
Connection: keep-alive
Last-Modified: Fri, 10 Jan 2020 16:41:36 GMT
ETag: "4037-59bcbcc8cd000"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/clients/12.png
93.188.2.54200 OK 11 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/12.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash c54f2e678139a75c19600d3eb47f3d00
cdfeb9d163413489414ba225bd1e554f98389d04
559eecc0d0f7413d3d3ad1723d7362078dfa430938c7dad9319200234513aa2e
GET /images/demo/clients/12.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 10667
Connection: keep-alive
Last-Modified: Sun, 05 Jan 2020 21:51:44 GMT
ETag: "29ab-59b6b8c777c00"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/clients/10.png
93.188.2.54200 OK 14 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/10.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 46c3e9cfb5af2dd9a1b2958c38f0f8c4
8c0b15b17081703ebdab1ae8205a195c7a098a14
0e1a0a28afb8c92ee8d4834c28cb8531416d86fff5e08a8ccd4cc55931defdd1
GET /images/demo/clients/10.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 13510
Connection: keep-alive
Last-Modified: Fri, 10 Jan 2020 16:41:18 GMT
ETag: "34c6-59bcbcb7a2780"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/clients/07.png
93.188.2.54200 OK 17 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/07.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash c6063c50a3da08f18ae5619fcdd6ccab
ecc58527f26810b68ff55070ae13f3c7dab87cc3
335ca18e6f3a920bc94419b3743dd59c051bd7314f90e675699dc67607562520
GET /images/demo/clients/07.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 16816
Connection: keep-alive
Last-Modified: Fri, 10 Jan 2020 16:40:42 GMT
ETag: "41b0-59bcbc954d680"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/clients/08.png
93.188.2.54200 OK 15 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/08.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 02aa466580ca9e825911e8100d7cac3e
045a3ea39cb136672dda05b17d52f864b8e3e6d1
7b04eb2353a780fa702b7b355e3c4148fa578e25ed09795031637623e591f6b9
GET /images/demo/clients/08.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 15434
Connection: keep-alive
Last-Modified: Fri, 10 Jan 2020 16:40:53 GMT
ETag: "3c4a-59bcbc9fcaf40"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/clients/13.png
93.188.2.54200 OK 8.7 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/13.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash cbdb95e1ab48bc38a9997e0552bb1aaa
1b6a78241e254bcf42558b1f1af4220aa903bdb5
6365ba71e354d47b763edb67ebefe4d907e0dba258504f1ff7cfc8898c06dbc3
GET /images/demo/clients/13.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 8725
Connection: keep-alive
Last-Modified: Fri, 10 Jan 2020 16:41:47 GMT
ETag: "2215-59bcbcd34a8c0"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/clients/15.png
93.188.2.54200 OK 15 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/15.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash f85750c95eef1b6d0f555fb2d912da97
5119be8b0f5e7f34b8f70302427611443b357fe9
c47cd4b485c4e13e4ef49a8943b4fc998317e1d61a81b2680adff8d5da5f6983
GET /images/demo/clients/15.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 14669
Connection: keep-alive
Last-Modified: Fri, 10 Jan 2020 16:42:10 GMT
ETag: "394d-59bcbce939c80"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/clients/16.png
93.188.2.54200 OK 11 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/16.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 19fa80de3e135a67a9b0bff368db61bd
658cbfec6cee9737bf491d121777ce930f5af990
040924d97df8c13f5fea5da30fb27473119467c804428123b47608bab5b0de1e
GET /images/demo/clients/16.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 11375
Connection: keep-alive
Last-Modified: Sun, 05 Jan 2020 21:58:31 GMT
ETag: "2c6f-59b6ba4b9cfc0"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/clients/tuev-logo.png
93.188.2.54200 OK 36 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/tuev-logo.png
IP 93.188.2.54:0
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 6815fee6553a963f5a34efb39b42231a
737e9ba57e269952b891ff9455066b6fbb932274
397946da5123bcd46ba1a7c4d83042a59553c003c819f7322582dffc8d5941e8
GET /images/demo/clients/tuev-logo.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 35826
Connection: keep-alive
Last-Modified: Wed, 01 Jun 2016 18:05:20 GMT
ETag: "8bf2-5343b5528b800"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/clients/14.png
93.188.2.54200 OK 10 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/14.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash a399454b480ab45144e4d065013bd356
120f2af29162148b2377fb7acd6eb958b0a77c7d
4c8d15ad9efe0e3e7febe637bd987d69751311df09c74ba43a47790004d8d14d
GET /images/demo/clients/14.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 10413
Connection: keep-alive
Last-Modified: Fri, 10 Jan 2020 16:41:57 GMT
ETag: "28ad-59bcbcdcd3f40"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/media/mod_languages/images/ru.gif
93.188.2.54200 OK 94 B URL HTTP/1.1 termovar.co.rs/media/mod_languages/images/ru.gif
IP 93.188.2.54:0
File type GIF image data, version 89a, 18 x 12\012- data
Hash 6f32c7ae76cb2fbccfefb1ea00f4f910
04ae5c544201eac485a6b634d6146c8e02ea100e
48e7820ecb96090956ad39f1afc2a6d435a99b6a613df1a137c42d8cb4b69066
GET /media/mod_languages/images/ru.gif HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/gif
Content-Length: 94
Connection: keep-alive
Last-Modified: Mon, 09 Mar 2020 15:22:36 GMT
ETag: "5e-5a06d92a94700"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/logo.png
93.188.2.54200 OK 9.5 kB URL HTTP/1.1 termovar.co.rs/images/demo/logo.png
IP 93.188.2.54:0
File type PNG image data, 467 x 179, 8-bit/color RGBA, non-interlaced\012- data
Hash 0dbd2d0d7aae9b1fa72c00e745211952
8bdd6c24c380251377e2f1b6ba1523a646bc71c5
d54fa76a0bd848322a59f5745f89142bd0d59ed80055411e282bb66f9fdb5ee1
GET /images/demo/logo.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 9535
Connection: keep-alive
Last-Modified: Wed, 01 Jun 2016 18:43:21 GMT
ETag: "253f-5343bdd1e0440"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/media/mod_languages/images/sr_yu.gif
93.188.2.54200 OK 289 B URL HTTP/1.1 termovar.co.rs/media/mod_languages/images/sr_yu.gif
IP 93.188.2.54:0
File type GIF image data, version 87a, 18 x 12\012- data
Hash 20b262034c714f2f02763b01c617e2a1
b9995ef3ae52f9cb84116c7081ff1cc70ceef846
3208b821449129dcbdcbc967ff97d124dced0271200f96bbb80019329d41515a
GET /media/mod_languages/images/sr_yu.gif HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/gif
Content-Length: 289
Connection: keep-alive
Last-Modified: Mon, 09 Mar 2020 15:22:36 GMT
ETag: "121-5a06d92a94700"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/media/mod_languages/images/de.gif
93.188.2.54200 OK 62 B URL HTTP/1.1 termovar.co.rs/media/mod_languages/images/de.gif
IP 93.188.2.54:0
File type GIF image data, version 87a, 18 x 12\012- data
Hash cec19601792bd53172f7a21b1bba3f81
fbf24a8e93d16781a4588b372362b532aa60d3c1
724d23202a5a606a79ef4d88b3a8632f0e38f94b55a435efba624f51172fe5ec
GET /media/mod_languages/images/de.gif HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/gif
Content-Length: 62
Connection: keep-alive
Last-Modified: Mon, 09 Mar 2020 15:22:36 GMT
ETag: "3e-5a06d92a94700"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
fonts.gstatic.com/s/rubik/v21/iJWZBXyIfDnIV5PNhY1KTN7Z-Yh-WYiFV0U1.woff2
216.58.207.195200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/rubik/v21/iJWZBXyIfDnIV5PNhY1KTN7Z-Yh-WYiFV0U1.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15904, version 1.0\012- data
Hash 958821f537e30348527649cfed0009f0
3f5e26e87ab4711e418973865ec57840f3a4e578
3239c4426129ed88eb346395415005f687ebf03347b016afe72f0166dd65fe13
GET /s/rubik/v21/iJWZBXyIfDnIV5PNhY1KTN7Z-Yh-WYiFV0U1.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://termovar.co.rs
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15904
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 03 Nov 2022 08:03:11 GMT
Expires: Fri, 03 Nov 2023 08:03:11 GMT
Cache-Control: public, max-age=31536000
Age: 80988
Last-Modified: Mon, 18 Jul 2022 19:32:54 GMT
Content-Type: font/woff2
termovar.co.rs/images/demo/default/content/icon-3.png
93.188.2.54200 OK 11 kB URL HTTP/1.1 termovar.co.rs/images/demo/default/content/icon-3.png
IP 93.188.2.54:0
File type PNG image data, 512 x 512, 8-bit gray+alpha, non-interlaced\012- data
Hash 0a83220e6c684bd7c9afbfd334e2ac43
30d7c712dcc8edbeac7eee5b6b3a02fbf3361f03
dcf35781e301378fb5967d6d72725df5ba32c41a0f15e39e05a4ba5744265a84
GET /images/demo/default/content/icon-3.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 11446
Connection: keep-alive
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: "2cb6-59771e49ac480"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/default/content/icon-4.png
93.188.2.54200 OK 25 kB URL HTTP/1.1 termovar.co.rs/images/demo/default/content/icon-4.png
IP 93.188.2.54:0
File type PNG image data, 512 x 512, 8-bit gray+alpha, non-interlaced\012- data
Hash 9d7861f6249c6e480bfe87f6467eecfd
bc1622f70ce1e409fbf07aa40cf38625349a25a4
8a50e9a95d1d1c0f7afd8542345ca2abac2e56d2ea203022880d8815a830fbb5
GET /images/demo/default/content/icon-4.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 24747
Connection: keep-alive
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: "60ab-59771e49ac480"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/default/content/icon-1.png
93.188.2.54200 OK 73 kB URL HTTP/1.1 termovar.co.rs/images/demo/default/content/icon-1.png
IP 93.188.2.54:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 18a31aac2bf4a02fa81fbde50f7e463e
fe918acdbe22fc3e5d496cb46940bc4941b542c7
3f0ca76e5818fe9648674d1f6a787eea59e3ec953af8060122099c20f5923a02
GET /images/demo/default/content/icon-1.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: image/png
Content-Length: 73418
Connection: keep-alive
Last-Modified: Sun, 05 Jan 2020 18:58:08 GMT
ETag: "11eca-59b691f9ff000"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/proizvodi/novo/novo3.jpg
93.188.2.54200 OK 15 kB URL HTTP/1.1 termovar.co.rs/images/demo/proizvodi/novo/novo3.jpg
IP 93.188.2.54:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=183, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=275], baseline, precision 8, 275x183, components 3\012- data
Hash f514234e9efd004df2d7d673500ab45c
3485104057c9c81accf0300b2d2886a1801a514c
d5ee45c4e5fbc312bbb5cbdc68bbd87207281e51f0b9d60ca8ca686481594eb1
GET /images/demo/proizvodi/novo/novo3.jpg HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: image/jpeg
Content-Length: 15113
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2016 20:47:08 GMT
ETag: "3b09-535e40a77eb00"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/clients/01.png
93.188.2.54200 OK 11 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/01.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash b785b4e60ebc4286dc33b3fdaa121c3f
60439f55967714facd0198e36bce45c2df23a0d4
9cd59921113c9bbfb5cf87e90b90390050cb3203f949d4c4a9396b2aa4313fbe
GET /images/demo/clients/01.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: image/png
Content-Length: 11245
Connection: keep-alive
Last-Modified: Sun, 05 Jan 2020 18:31:36 GMT
ETag: "2bed-59b68c0bbf200"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/templates/legend_j3/warp/fonts/fontawesome-webfont.woff2
93.188.2.54200 OK 77 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/warp/fonts/fontawesome-webfont.woff2
IP 93.188.2.54:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Phishing
GET /templates/legend_j3/warp/fonts/fontawesome-webfont.woff2 HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://termovar.co.rs/templates/legend_j3/warp/css/uikit.css
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:32:59 GMT
Content-Type: font/woff2
Content-Length: 77160
Connection: keep-alive
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: "12d68-59771e49ac480"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/proizvodi/novo/novo1.jpg
93.188.2.54200 OK 21 kB URL HTTP/1.1 termovar.co.rs/images/demo/proizvodi/novo/novo1.jpg
IP 93.188.2.54:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=183, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=275], baseline, precision 8, 275x183, components 3\012- data
Hash 8a5700deb903144b86400aa49cb4129f
b823a2c9c1edad7b1259ac269ffcaf5b70432bfe
fcac46bd62ccb5a0ef7519cd20b98dd2d6e58c9e85449af20533609f1feefd7b
GET /images/demo/proizvodi/novo/novo1.jpg HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: image/jpeg
Content-Length: 20804
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2016 20:44:18 GMT
ETag: "5144-535e40055ec80"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/proizvodi/novo/novo2.jpg
93.188.2.54200 OK 15 kB URL HTTP/1.1 termovar.co.rs/images/demo/proizvodi/novo/novo2.jpg
IP 93.188.2.54:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=183, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=275], baseline, precision 8, 275x183, components 3\012- data
Hash bd5d300ff99bedd364b71a93ef4aa0be
897bf0efbce052538284526315a6b68a95762f4b
d955882c38f8ed64e778c461e5145bbfbe8dae0157b3d83315d708821dc51993
GET /images/demo/proizvodi/novo/novo2.jpg HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: image/jpeg
Content-Length: 14898
Connection: keep-alive
Last-Modified: Wed, 22 Jun 2016 20:49:09 GMT
ETag: "3a32-535e411ae3b40"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
fonts.gstatic.com/s/rubik/v21/iJWZBXyIfDnIV5PNhY1KTN7Z-Yh-WYiFWUU1Z4Y.woff2
216.58.207.195200 OK 8.0 kB URL HTTP/1.1 fonts.gstatic.com/s/rubik/v21/iJWZBXyIfDnIV5PNhY1KTN7Z-Yh-WYiFWUU1Z4Y.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 8048, version 1.0\012- data
Hash 7a9fb42cdc98863c77496cad94c9ae7f
edd24872981e96ba8f749a544f58f420c477dd80
953ebfb7964de8d71d49858bf8e1bc5995615ed401466bf1329aa6a2009de907
GET /s/rubik/v21/iJWZBXyIfDnIV5PNhY1KTN7Z-Yh-WYiFWUU1Z4Y.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://termovar.co.rs
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 8048
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 03 Nov 2022 12:04:06 GMT
Expires: Fri, 03 Nov 2023 12:04:06 GMT
Cache-Control: public, max-age=31536000
Age: 66534
Last-Modified: Mon, 18 Jul 2022 19:21:31 GMT
Content-Type: font/woff2
termovar.co.rs/images/demo/clients/02.png
93.188.2.54200 OK 6.4 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/02.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 886bef88777e74634483d0d87b47f8c0
61148a43f114b6cb5cc3cdee25e47af89387247b
979b5eeffd983ed0738795aff2ae3d586e419e5a844e72bc51ab583808073774
GET /images/demo/clients/02.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: image/png
Content-Length: 6414
Connection: keep-alive
Last-Modified: Sun, 05 Jan 2020 18:31:34 GMT
ETag: "190e-59b68c09d6d80"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/background/bg-4.jpg
93.188.2.54200 OK 21 kB URL HTTP/1.1 termovar.co.rs/images/background/bg-4.jpg
IP 93.188.2.54:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1407x611, components 3\012- data
Hash 830da73bc566aabac1f2a22dc23d6c18
795204747e7550405ea2903e65842553b3e9679c
f021af83746ddf689a6c55eea0b25aa37708569a6b5a7d1a7d0486577a928a07
GET /images/background/bg-4.jpg HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: image/jpeg
Content-Length: 21101
Connection: keep-alive
Last-Modified: Sat, 16 Nov 2019 07:44:56 GMT
ETag: "526d-59771e4022e00"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/clients/05.png
93.188.2.54200 OK 8.4 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/05.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 9c535d716aeb78fee2f3bc69658505e9
08f15bcf0299f5c420d2953bd40109e3b0a32a78
72bb4ea353777399a154c83326f791174e1019ba74a3204a875669bee88c5e9c
GET /images/demo/clients/05.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: image/png
Content-Length: 8443
Connection: keep-alive
Last-Modified: Sun, 05 Jan 2020 18:31:33 GMT
ETag: "20fb-59b68c08e2b40"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/clients/06.png
93.188.2.54200 OK 5.7 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/06.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 60e28af8cef2d6467c7b06e8373b1faf
b4dd9c62f2158768cc37b36077475f5e72e70020
09f3aa5a713d08c8d1ef89b8185b183f06297c0c99abb4340423742bc492cb10
GET /images/demo/clients/06.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: image/png
Content-Length: 5693
Connection: keep-alive
Last-Modified: Sun, 05 Jan 2020 18:31:33 GMT
ETag: "163d-59b68c08e2b40"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/media/mod_languages/images/en.gif
93.188.2.54200 OK 1.0 kB URL HTTP/1.1 termovar.co.rs/media/mod_languages/images/en.gif
IP 93.188.2.54:0
File type GIF image data, version 87a, 18 x 12\012- data
Hash dc27490e740f62c372205d04e5b0400e
cad81078b95b980801485ac2d69b10a45b8ff3f6
5d14e1355f6dc3fae99dda64bd1b376867196c66c2eb3dd07ffb18f8dd0d242b
GET /media/mod_languages/images/en.gif HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: image/gif
Content-Length: 1027
Connection: keep-alive
Last-Modified: Mon, 09 Mar 2020 15:22:36 GMT
ETag: "403-5a06d92a94700"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/slide/slide1.jpg
93.188.2.54200 OK 68 kB URL HTTP/1.1 termovar.co.rs/images/demo/slide/slide1.jpg
IP 93.188.2.54:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=520, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 1280x500, components 3\012- data
Hash aa6de93654db19303bceea8af369d504
ad724e67bc97813e09101fbcd4d61a52efb74fa4
7c59b5871e4d1f68b259bd4e6629a7736d0428e66c3d4decb1eff23dce5af2ef
GET /images/demo/slide/slide1.jpg HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: image/jpeg
Content-Length: 68503
Connection: keep-alive
Last-Modified: Fri, 20 May 2016 22:55:47 GMT
ETag: "10b97-5334dfdcb22c0"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/clients/03.png
93.188.2.54200 OK 2.2 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/03.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 79c1b81158e0ef25bea94c95cecd7cf7
1a2bec92782b5f46d3c39146f700bebfda683d35
914f525c0f920c4889c3c905d18068d744f4640110593e5d976590ff6695c9d5
GET /images/demo/clients/03.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: image/png
Content-Length: 2197
Connection: keep-alive
Last-Modified: Sun, 05 Jan 2020 18:31:34 GMT
ETag: "895-59b68c09d6d80"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/media/widgetkit/widgets/slideshow/js/slideshow.js?wkv=1.4.9
93.188.2.54200 OK 6.5 kB URL HTTP/1.1 termovar.co.rs/media/widgetkit/widgets/slideshow/js/slideshow.js?wkv=1.4.9
IP 93.188.2.54:0
File type ASCII text, with very long lines (24292)
Hash a05786b8895aa71f1707b32c3754da34
78a06258d4683c7a1f804bff5643aea492154d3f
7b4e4eb276608905eff2a7e0628dc7dca52f83cd5972730ae8eab8f22e25e07e
Analyzer Verdict Alert fortinet Phishing
GET /media/widgetkit/widgets/slideshow/js/slideshow.js?wkv=1.4.9 HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Thu, 09 Jan 2020 11:50:20 GMT
ETag: W/"5f4b-59bb39d0ed700"
X-Loopia-Node: 172.22.223.154
Content-Encoding: gzip
termovar.co.rs/images/demo/clients/04.png
93.188.2.54200 OK 8.5 kB URL HTTP/1.1 termovar.co.rs/images/demo/clients/04.png
IP 93.188.2.54:0
File type PNG image data, 207 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash d7b187a6dcce654d90f0e8ed1e3e9be3
9c9d2d9eaf01cf93598cd0dc003b35ea62cbf8c3
ebd7d9c2fd41d59afde723218e33b73b9bf173574720e53b15dc79ef7bc72d5e
GET /images/demo/clients/04.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: image/png
Content-Length: 8523
Connection: keep-alive
Last-Modified: Sun, 05 Jan 2020 18:31:34 GMT
ETag: "214b-59b68c09d6d80"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/templates/legend_j3/favicon.ico
93.188.2.54200 OK 33 kB URL HTTP/1.1 termovar.co.rs/templates/legend_j3/favicon.ico
IP 93.188.2.54:0
File type MS Windows icon resource - 4 icons, 64x64, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 7f70ff82f527d1aaa9326e0884219c1f
b770be5dba4b257cf208401b25a0905931971404
d12a753bf44c9afc1e96049d256ab361161663ad164c0345c88d3258ca440c50
GET /templates/legend_j3/favicon.ico HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: image/x-icon
Content-Length: 32988
Connection: keep-alive
Last-Modified: Wed, 01 Jun 2016 19:54:23 GMT
ETag: "80dc-5343cdb26f9c0"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/apple_touch_icon.png
93.188.2.54200 OK 2.4 kB URL HTTP/1.1 termovar.co.rs/images/demo/apple_touch_icon.png
IP 93.188.2.54:0
File type PNG image data, 180 x 180, 8-bit/color RGB, non-interlaced\012- data
Hash 1de2e964412c9fa900a4d6430f2e3f3f
7a3dc765ab79f79c0dafc6323e46bcd31dbc9b4f
ab465cf60718a3011238f076f271a62525f2605852f8a7b43a155a57c5b389e9
GET /images/demo/apple_touch_icon.png HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: image/png
Content-Length: 2367
Connection: keep-alive
Last-Modified: Sat, 16 Nov 2019 07:45:06 GMT
ETag: "93f-59771e49ac480"
Accept-Ranges: bytes
X-Loopia-Node: 172.22.223.154
ocsp.pki.goog/s/gts1p5/EWg-zhOv62k
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/EWg-zhOv62k
IP 142.250.74.35:0
Hash 507364737c9bd9e49c33e732957e4d09
370c8644dfb6b2404bce739f9818502b60f12475
65e7d4ddab2faf892b80e5e78d1c0a924755efca4f5c883ad9cdbbd54bc00a18
POST /s/gts1p5/EWg-zhOv62k HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 06:33:00 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
44.242.3.166101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.242.3.166:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 2c/LIbCCazd1Na9sb8+kNg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: pTngByfj85+mX0DD4221WWgiXF0=
termovar.co.rs/images/demo/video/Termovar.mp4
93.188.2.54206 Partial Content 11 kB URL HTTP/1.1 termovar.co.rs/images/demo/video/Termovar.mp4
IP 93.188.2.54:0
Hash 8e729c1a77c5c7e1a77ccbdcd3d893dc
be23c00c3e0804b7799eb42d970a456dd103c4e6
09515ffdaee8dd5b75c78ab5d6e78b551d7d3ee49bb34e86a666e89cd9c3396a
Analyzer Verdict Alert fortinet Phishing
GET /images/demo/video/Termovar.mp4 HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=5275648-
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 206 Partial Content
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: video/mp4
Content-Length: 10815
Connection: keep-alive
Last-Modified: Fri, 20 May 2016 19:31:40 GMT
ETag: "50aa3f-5334b23d0bf00"
Accept-Ranges: bytes
Content-Range: bytes 5275648-5286462/5286463
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/video/Termovar.mp4
93.188.2.54206 Partial Content 11 kB URL HTTP/1.1 termovar.co.rs/images/demo/video/Termovar.mp4
IP 93.188.2.54:0
Hash 8e729c1a77c5c7e1a77ccbdcd3d893dc
be23c00c3e0804b7799eb42d970a456dd103c4e6
09515ffdaee8dd5b75c78ab5d6e78b551d7d3ee49bb34e86a666e89cd9c3396a
Analyzer Verdict Alert fortinet Phishing
GET /images/demo/video/Termovar.mp4 HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=5275648-
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 206 Partial Content
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: video/mp4
Content-Length: 10815
Connection: keep-alive
Last-Modified: Fri, 20 May 2016 19:31:40 GMT
ETag: "50aa3f-5334b23d0bf00"
Accept-Ranges: bytes
Content-Range: bytes 5275648-5286462/5286463
X-Loopia-Node: 172.22.223.154
ocsp.pki.goog/s/gts1p5/EWg-zhOv62k
142.250.74.35200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1p5/EWg-zhOv62k
IP 142.250.74.35:0
Hash 507364737c9bd9e49c33e732957e4d09
370c8644dfb6b2404bce739f9818502b60f12475
65e7d4ddab2faf892b80e5e78d1c0a924755efca4f5c883ad9cdbbd54bc00a18
POST /s/gts1p5/EWg-zhOv62k HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 04 Nov 2022 06:33:00 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17782
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 06:33:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17782
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 06:33:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17782
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 06:33:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17782
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 06:33:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f6ae0db60213bfddbf2ad71a9fb116bf
915d2895adc3f022c28cc628aeb6e441cbb09d47
ac94f3fd00f0f8f8617d15a3816b07d25d3774e91b287ac181e5efb4ebf95e22
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AC94F3FD00F0F8F8617D15A3816B07D25D3774E91B287AC181E5EFB4EBF95E22"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17782
Expires: Fri, 04 Nov 2022 11:29:23 GMT
Date: Fri, 04 Nov 2022 06:33:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9524cae-f401-4c3f-9f4e-70d1e88ee5bd.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9524cae-f401-4c3f-9f4e-70d1e88ee5bd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 708841358a6fc20b839646a65ab61a4e
190c7d413a9478e5313f544854e4c9e94caa084f
fcdf862068dd9311d82f1aa3ce581857fd2787eede78ac9de61d4b70b7010f33
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff9524cae-f401-4c3f-9f4e-70d1e88ee5bd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8390
x-amzn-requestid: 702aca24-e330-4e48-a3ae-d9f992b8066f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC1V7FKcIAMFpKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636435bf-59519798142560b90ff03644;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:42:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: LW7FxwUdGdRQAnQgZBDfdfkXuDkV-dA3ow7u44r3C3I3vqNh2Smrag==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:54:12 GMT
age: 31129
etag: "190c7d413a9478e5313f544854e4c9e94caa084f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca6c7517d7015fbc35fa290c1c2d6afd
594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c
a746b36be50209915a0e5657abd219aab382eee4b7556142aa1316daf3a9f5a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6557
x-amzn-requestid: f2e39db1-fb8a-4a9b-8a1d-ee08000ddeb6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC1VyFHuIAMF5Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636435be-7a03ef677f8dbd680f72de90;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:42:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OI-hzSDTy-vFSFOZxI98XT8VZmnpFlU_cobzCTkrn4T5NuH8cqybMg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:52:32 GMT
age: 31229
etag: "594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a631333-54a4-458c-b54b-2dd96d4ede5a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a631333-54a4-458c-b54b-2dd96d4ede5a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5aedde5b1d003651d773c89833460868
29ca25963b777fd7463c65d8cde6d65172c996e1
04b95b954d7d992e6547d05d052c6f3f8a4cfb4a5988f9e6c6629969053bf7b3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a631333-54a4-458c-b54b-2dd96d4ede5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11188
x-amzn-requestid: 72e0a128-e0c4-4a93-8e29-01a574b2d1c3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0XNHPcoAMFkNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364342d-341a40d37b7bcc9153749d67;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: eo3FBGjoivBN1-4xP1UiTocKbLd87acRtOX2AQrPr1a4yDboDrXYRA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:53:38 GMT
age: 31163
etag: "29ca25963b777fd7463c65d8cde6d65172c996e1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02641b8c-1dd8-435a-974c-742ebe42dc8e.webp
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02641b8c-1dd8-435a-974c-742ebe42dc8e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6eeadc4cf94026430250d497b18c2106
65d7de9f2853ba1d8241cebe1ebbff20a5bef0ba
437ec5e94b9cefc7ca77c9644e25ce9ead169811d1ca283bbf83bd5231c02366
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02641b8c-1dd8-435a-974c-742ebe42dc8e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: e2f28365-7a43-4007-8d3c-4180a1dae3cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0RpErIIAMFxcg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6364340a-5fd7e5cc6adf0bcb3c0a46cb;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:06 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: o7rLGV6ABdBVF4og7-1Jxn0hYvBv_A7Z0iX_caEpb4MkJxMzAqTaBg==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 21:51:55 GMT
age: 31266
etag: "65d7de9f2853ba1d8241cebe1ebbff20a5bef0ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f952f80-88d2-4881-a879-4d2680d4b6ee.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f952f80-88d2-4881-a879-4d2680d4b6ee.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4208f9a8b666cae4d746ded7876acef6
936152386cf80e4e857943561af97c10d2346d75
d4666c8ffec1b3c4c6955fbaa09f76d37e37932a49ad92fc587c13b200007f00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f952f80-88d2-4881-a879-4d2680d4b6ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5691
x-amzn-requestid: 0aec00d5-d966-4166-af0d-ea2643c8c3d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bC0TBE9FIAMFm3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63643413-64916cd42060451d18cbc060;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:15 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: t7h4jQOC0wtd-uFaOEBN4hCK2bFUSrJ3BbKl2i77sdQ_8tG35P_gEg==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 03 Nov 2022 22:00:58 GMT
age: 30723
etag: "936152386cf80e4e857943561af97c10d2346d75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e2853cc6ec6223160471401e6871f4b
f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c
bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10462
x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aMF6oEz_oAMF8Hg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0
x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: z6Lnru_eeTvRGdsz-q37-HGFgFfIT6fLSFcJBvT3oPjAPilszTWkDw==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 05:35:34 GMT
age: 3447
etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
termovar.co.rs/images/demo/video/Termovar.mp4
93.188.2.54206 Partial Content 0 B URL HTTP/1.1 termovar.co.rs/images/demo/video/Termovar.mp4
IP 93.188.2.54:0
Analyzer Verdict Alert fortinet Phishing
GET /images/demo/video/Termovar.mp4 HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 206 Partial Content
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: video/mp4
Content-Length: 5286463
Connection: keep-alive
Last-Modified: Fri, 20 May 2016 19:31:40 GMT
ETag: "50aa3f-5334b23d0bf00"
Accept-Ranges: bytes
Content-Range: bytes 0-5286462/5286463
X-Loopia-Node: 172.22.223.154
termovar.co.rs/images/demo/video/Termovar.mp4
93.188.2.54206 Partial Content 0 B URL HTTP/1.1 termovar.co.rs/images/demo/video/Termovar.mp4
IP 93.188.2.54:0
Analyzer Verdict Alert fortinet Phishing
GET /images/demo/video/Termovar.mp4 HTTP/1.1
Host: termovar.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://termovar.co.rs/index.php?lang=sr
Cookie: edf9e23c74eac3b7410ffcbe613dd9e2=6757b9ff794e2ed61cbeeff7ac6d29b0
HTTP/1.1 206 Partial Content
Server: nginx
Date: Fri, 04 Nov 2022 06:33:00 GMT
Content-Type: video/mp4
Content-Length: 5286463
Connection: keep-alive
Last-Modified: Fri, 20 May 2016 19:31:40 GMT
ETag: "50aa3f-5334b23d0bf00"
Accept-Ranges: bytes
Content-Range: bytes 0-5286462/5286463
X-Loopia-Node: 172.22.223.154
cdn.plyr.io/2.0.17/plyr.svg
104.27.194.88200 OK 0 B URL HTTP/2 cdn.plyr.io/2.0.17/plyr.svg
IP 104.27.194.88:0
GET /2.0.17/plyr.svg HTTP/1.1
Host: cdn.plyr.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://termovar.co.rs
Connection: keep-alive
Referer: http://termovar.co.rs/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 04 Nov 2022 06:33:00 GMT
content-type: image/svg+xml
x-amz-id-2: b4w4bmJ7gU4Y0Jz3QymNxtoc9auH4Ax0mqeMTlzgCZaVicHrpp4opvnGyhqycLsZSzd1xTUy5NA=
x-amz-request-id: QFASRVBKV0QXA0TZ
last-modified: Sat, 04 Nov 2017 12:17:45 GMT
etag: W/"2e424027329f13b2cf82d00129c5e193"
cache-control: max-age=31536000
via: 1.1 varnish, 1.1 varnish
x-served-by: cache-iad-kiad7000020-IAD, cache-mia11365-MIA
x-cache: HIT, HIT
x-cache-hits: 1, 216
x-timer: S1667543580.281010,VS0,VE2
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Range, Date, Cache-Control, Content-Type, Accept, Origin, Accept
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=w4ouu4O8QLi1Nti7n2ObhJSX1RvrtRAGdakXRHSkylv%2FKLfsHxO1OwaoTg3O7301Z5Alz4Tsy2lhZMp11pbJKaRc3ap0DRGuKmaXdDa0GsfCMUiRpXf49KOdMHPz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 764b50d04aa1b4ee-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2