www.tecasi.rs/
77.105.36.156301 Moved Permanently 230 B IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a119056c3978d2a1bbe3c7c85a719e7f
dc2d29fda6a0a7cc68e7e51c630d39d9f5f12c61
dbb03d46fd9473360f853545c5dff0a3d06a43f2af94422f31b34e04fcc3b4c8
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.tecasi.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:17 GMT
Server: Apache
Location: https://www.tecasi.rs/
Content-Length: 230
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13891
Expires: Mon, 28 Nov 2022 01:31:55 GMT
Date: Sun, 27 Nov 2022 21:40:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12710
Expires: Mon, 28 Nov 2022 01:12:14 GMT
Date: Sun, 27 Nov 2022 21:40:24 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4669
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:24 GMT
Last-Modified: Sun, 27 Nov 2022 20:22:35 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: grFr9uIAZGHDI6C8Eefu2EAtGu50ao+ZMRVbQRafytsos9F0wD/1bYhdGr4hzW4zrhA5OuBMOFM=
x-amz-request-id: XYR8ATX4D0KKN0QB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 20:44:46 GMT
age: 3338
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 21:19:25 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1259
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 21:40:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 21:11:12 GMT
cache-control: public,max-age=3600
age: 1752
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3862
Cache-Control: max-age=131449
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:25 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:11:14 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
44.228.207.167101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.228.207.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iGdZDfbrfB0nGKQS7hbK+g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EK+vB6aouq+ykNezXU3jsSsXyGs=
www.tecasi.rs/
77.105.36.156301 Moved Permanently 0 B IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.tecasi.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:17 GMT
Server: Apache
X-UA-Compatible: IE=edge
X-Redirect-By: WordPress
Location: https://tecasi.co.rs/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Sun, 27 Nov 2022 22:56:00 GMT
Date: Sun, 27 Nov 2022 21:40:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Sun, 27 Nov 2022 22:56:00 GMT
Date: Sun, 27 Nov 2022 21:40:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Sun, 27 Nov 2022 22:56:00 GMT
Date: Sun, 27 Nov 2022 21:40:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Sun, 27 Nov 2022 22:56:00 GMT
Date: Sun, 27 Nov 2022 21:40:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Sun, 27 Nov 2022 22:56:00 GMT
Date: Sun, 27 Nov 2022 21:40:26 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 05:54:16 GMT
age: 56770
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: y0ofyT6UcPjB8mfRR1VMjHSTW64Qb_EQ0rrjsOdbby1CG-xMIFJMPw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:49:19 GMT
age: 85867
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 116eb5028a206e55f758f3e34887c87e
10577d9fc19028a0e0303634ec16ad8b2d41fa7a
d5d0f5518f8346e78f00a57632efe36f3363cabfa9abb30b7bea60261b29910b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5103
x-amzn-requestid: 203eadee-9375-4290-ae0a-dd48e83df697
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFGzTE90oAMFTyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637eb814-2c32253b155d5dd0283fdd07;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 00:17:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7tHm0mthR9kBsxWjBYctLA-AicheWuIxgPLw0UJtI8QhOv1oW13C3A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 14:46:13 GMT
age: 24853
etag: "10577d9fc19028a0e0303634ec16ad8b2d41fa7a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K2eKLQhrsCdd4ASsfEibRuZAYW4CpPTlO3fZs7xdoKrw1HBxfTGkEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
age: 86292
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15290721-a62e-49b8-80c6-967680cff24f.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15290721-a62e-49b8-80c6-967680cff24f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7f16c0f8a8e710210ce77c0e4c1c2a2
590c34be54c9889eec4ff7993e070fda836f711f
4224287ba765da59c877ac4f1dec65accc5bec934b7598d9cbbee669ba4ab12e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15290721-a62e-49b8-80c6-967680cff24f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6883
x-amzn-requestid: 9e3878c9-1817-427e-b121-969a8cbc7ad8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cL1ySF0tIAMFY4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638169a8-5143ffea77b70cf67ef60ad7;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 01:19:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K4mksi8EQxTxRXDqN-0iWJc-LmiI7joDX5xGmPb1HetziDj4mRCC7Q==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 05:53:37 GMT
age: 56809
etag: "590c34be54c9889eec4ff7993e070fda836f711f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJ40OEOqIAMFaOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 10:16:35 GMT
age: 41031
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tecasi.co.rs/wp-includes/css/classic-themes.min.css?ver=1
77.105.36.156200 OK 217 B URL HTTP/1.1 tecasi.co.rs/wp-includes/css/classic-themes.min.css?ver=1
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:20 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:15:41 GMT
Accept-Ranges: bytes
Content-Length: 217
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
77.105.36.156200 OK 776 B URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
Hash a5bf64d5859ee94a3e8e93d592d6d2a0
049eb63b42dbb820b06870a430f523bf06880721
25825611ade7ceaed7df3862ec56dc91ad1d2be539966ef7bbe84306e51cfb08
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:20 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 11:47:42 GMT
Accept-Ranges: bytes
Content-Length: 776
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
77.105.36.156200 OK 2.7 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:20 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:55 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
77.105.36.156200 OK 19 kB URL HTTP/1.1 tecasi.co.rs/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:20 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 23:08:04 GMT
Accept-Ranges: bytes
Content-Length: 18617
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
77.105.36.156200 OK 95 kB URL HTTP/1.1 tecasi.co.rs/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:20 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 23:14:28 GMT
Accept-Ranges: bytes
Content-Length: 94889
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.0
77.105.36.156200 OK 14 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.0
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (13766)
Hash 94fa0b3e7b82bbea25e913b9e205e38d
808599f89b6bffbad7dd2fbb6eb8bcba81af85be
e3e1c7e5e7616f2594faadff41a8e0b8c6b24cbd129ce9068f695519b588a7b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 13805
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/uploads/essential-addons-elementor/eael-16.css?ver=1625661406
77.105.36.156200 OK 6.2 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/essential-addons-elementor/eael-16.css?ver=1625661406
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (3432)
Hash 6f4f674a4e602b9be18232e5ec58c15b
5d90eabb725982350dc90f2f0376bd5c759b2232
cf98084ab437cf2d74954ea5fd2c58ea43422c43de7c6aabff2fc8c411341580
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/essential-addons-elementor/eael-16.css?ver=1625661406 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 6233
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2
77.105.36.156200 OK 3.4 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (3432)
Hash 9a9ecfe405e38be1cf08b752d3afbda9
8f55bc1619b42231d464bf965c67cfddf6b29df9
b9b869f479a2181cbc0c5d8b6e5bb8bb9cbf81d59a18d056681d8b3de448b1d4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:31:01 GMT
Accept-Ranges: bytes
Content-Length: 3433
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/uploads/elementor/css/post-5.css?ver=1646402703
77.105.36.156200 OK 946 B URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/elementor/css/post-5.css?ver=1646402703
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (946), with no line terminators
Hash 9c9f240a7e497e4bcfe5e60676a3bfcf
f4dbbddffbe2627d0496f4f0be3ad7aa0323b751
64b9a342567f51bb3de015f16c16e44f1268f75b9a362041ce51f41b131be463
GET /wp-content/uploads/elementor/css/post-5.css?ver=1646402703 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2022 14:05:03 GMT
Accept-Ranges: bytes
Content-Length: 946
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
77.105.36.156200 OK 19 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (19233)
Hash d183c598fd582fe997f6782afed84f9b
7799820e0e849e8484543c3360a8d8cc62baa32f
83059e4c1a5c210e5585d96779fe655170817193d43e247c78dffaae7b7ba3a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 19279
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tecasi.co.rs/
77.105.36.156200 OK 109 kB IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size 109 kB (109347 bytes)
Hash 73e19ddb5baef7c307c6f81f06b9298a
db4b5b8588f811d59c9f54963e06c977cb3bd6a3
fe73f117c8f6d75c70d862d3940fa27ff9f20b423dc1d6f642aaed24feccaa93
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:18 GMT
Server: Apache
X-UA-Compatible: IE=edge
Link: <https://tecasi.co.rs/wp-json/>; rel="https://api.w.org/", <https://tecasi.co.rs/wp-json/wp/v2/pages/16>; rel="alternate"; type="application/json", <https://tecasi.co.rs/>; rel=shortlink
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
tecasi.co.rs/wp-content/uploads/elementor/css/post-16.css?ver=1646403311
77.105.36.156200 OK 50 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/elementor/css/post-16.css?ver=1646403311
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (20632)
Hash bdd99779077fe7a56cdc713d55a9ca74
2d971df17ebc8d4baf78bb2fadf9b08fe484ad8c
5a2ac44a1e9d1e1398f99c0a9677131a9769c2f450476e19d7a1be94bd081e68
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-16.css?ver=1646403311 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2022 14:15:11 GMT
Accept-Ranges: bytes
Content-Length: 50272
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
77.105.36.156200 OK 11 kB URL HTTP/1.1 tecasi.co.rs/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (10927), with no line terminators
Hash 848b3d98a919b181ad03d17478e97b80
e05bd451823b6d37654fa624f3becde80dddd939
fe41a7936fba4a26a21face5fbb35961e74b9b11eb9e78fa26560f6986be6ed8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 10927
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.0
77.105.36.156200 OK 161 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.0
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (65497)
Size 161 kB (161415 bytes)
Hash 4e8f1984399a9261ab05ad20ebcaa328
5d33f6dd212e42938e8ecfc4a97cba08bb1915b7
8f852929424e332a9ff39bbb9788fbdc435a636d16aea66999244f4863148207
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 161415
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/uploads/elementor/css/global.css?ver=1646402705
77.105.36.156200 OK 72 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/elementor/css/global.css?ver=1646402705
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (24059)
Hash d674254865152e74b7a45e5274be5b13
6915dd3add408567fcbde9c125d82e3db31d2855
06e0b643b401307d6a0b7accb330ef9e00db248db50385e77d79f181434cbcf2
GET /wp-content/uploads/elementor/css/global.css?ver=1646402705 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2022 14:05:05 GMT
Accept-Ranges: bytes
Content-Length: 72082
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1
77.105.36.156200 OK 52 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type Unicode text, UTF-8 text, with very long lines (51619), with no line terminators
Hash 8bfb7344f5ecb251524f4ac7930441ac
05f51ea3ce0333f9f52ec19975449a783c483c92
c56e851a0803c43ff8adb5caeb0caf6439a99d0991deceff878a4124dca317d9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:31:04 GMT
Accept-Ranges: bytes
Content-Length: 51623
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
77.105.36.156200 OK 59 kB URL HTTP/1.1 tecasi.co.rs/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (59158), with CRLF line terminators
Hash c6920efb7784a86ed443ef70db8f317d
2c2236d61417d354b5cbbc907dfc9c0eb1325a7f
c493875ea907c37e2ef7b9560f75ad5dd918121a0f42889eda351ccab0373eb1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 59348
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
77.105.36.156200 OK 76 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type Unicode text, UTF-8 text, with very long lines (1646)
Hash 2395c81e72a52f14588816b4f72a7f17
711357e8d49c28be7605fcfbf881b90567decee1
ea14d1b1233e6cbc9b1a156ac532f076f7adafc309726fca7bf8833f882ac872
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 11:47:42 GMT
Accept-Ranges: bytes
Content-Length: 75684
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
77.105.36.156200 OK 58 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (57726)
Hash eeb705d0bdccfd645d3bbd46dd1fbab3
066def290f42ed8c00860e573cc880bd46e9ced4
d01a2ba2805c78957e15a2958135de0f3cb88e95159dd0f6c0a032bd76b1b0e9
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 57912
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
77.105.36.156200 OK 669 B URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (483)
Hash 9eb2d3c87feb6bb2ffa63b70532b1477
38f226335a05ab0e30497bc7419eb5e243a9e26c
37bab6cd583982e8eff58501a99d7c5c4d63664c1ca34f9e3b7cf526c5b73ae2
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 669
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
77.105.36.156200 OK 677 B URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (491)
Hash 3eef8c9e589a6fd58292e79bbac4ba5d
d3ebdb629b8d9c92380b14b1676b123398f0841b
eea3d6ccda7f6503078cce9dc41176c1357af1c93a5b3625131ef7cf21c9d7c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 677
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
77.105.36.156200 OK 11 kB URL HTTP/1.1 tecasi.co.rs/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 11:59:24 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
77.105.36.156200 OK 9.9 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (9937), with no line terminators
Hash dc74c9954b1944928eca0172c3b8c6b3
e9e00e587e0e28491b69563b4e768945ff2e0ed5
d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:55 GMT
Accept-Ranges: bytes
Content-Length: 9937
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
77.105.36.156200 OK 12 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type HTML document, ASCII text, with very long lines (12310), with no line terminators
Hash 1f9968a7c7a2a02491393fb9d4103dae
0032c8a6a692e6f072b2cef20828449402fdd57d
f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:55 GMT
Accept-Ranges: bytes
Content-Length: 12310
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.0
77.105.36.156200 OK 18 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.0
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (10019)
Hash 4601ba55044413706c2022cb6c1c3d05
5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 18468
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tecasi.co.rs/wp-content/uploads/essential-addons-elementor/eael-16.js?ver=1625661406
77.105.36.156200 OK 0 B URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/essential-addons-elementor/eael-16.js?ver=1625661406
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/essential-addons-elementor/eael-16.js?ver=1625661406 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2
77.105.36.156200 OK 8.0 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (8014), with no line terminators
Hash ef711018665b24a570d3605255874523
bdcb5e1cc811c120fd2983444b296254b7618a8b
d7b10b7ce6eceb9ee2483874f0f972e419ab10692ed738c1ae3422e48c489775
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:31:01 GMT
Accept-Ranges: bytes
Content-Length: 8014
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-includes/js/imagesloaded.min.js?ver=4.1.4
77.105.36.156200 OK 5.6 kB URL HTTP/1.1 tecasi.co.rs/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (5477)
Hash 3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 5629
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.5
77.105.36.156200 OK 20 kB URL HTTP/1.1 tecasi.co.rs/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.5
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (19789), with no line terminators
Hash 130b3e97d98a5adefebd3807a0682dfd
ba1edeec0f48045cfb083f030951d196ebb3716d
be5a9e7bcbc5af3b986767a8193c1d9dbb9c7bd2368ba33c25eff7bd7a76987a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 19789
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
77.105.36.156200 OK 90 kB URL HTTP/1.1 tecasi.co.rs/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:15:40 GMT
Accept-Ranges: bytes
Content-Length: 89684
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.5
77.105.36.156200 OK 176 kB URL HTTP/1.1 tecasi.co.rs/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.5
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65525), with no line terminators
Size 176 kB (176428 bytes)
Hash 0f9fb140a31a60c0ce36314fd2c7340b
5d3dbe04e3d5267e8ef7d4e49ddfe624e09ac19a
ff0c5b0690a637c604012e7b85e8a2b54f694964ac58ad6d80f772f3119d7dfe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 176428
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.5
77.105.36.156200 OK 7.5 kB URL HTTP/1.1 tecasi.co.rs/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.5
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (7540), with no line terminators
Hash c7fa7b324baead665d76a2ffeab04152
a955c9646a728f8250f30e13772d129a3e0e2877
ca63a56d305249eb4cddeec8a6501010e206e110445f46572be1f2d56a1785fd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 7540
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.5
77.105.36.156200 OK 14 kB URL HTTP/1.1 tecasi.co.rs/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.5
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (14087), with no line terminators
Hash 45390a4ace8f255999ffd0bc7c063c7d
1b990a7d47f4c16379f55e5c8e9b8d4fab244f14
7c345ef59fb2b287237939e1cc8cc92028711602334db6d338990a01676f8e45
GET /wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 14087
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.5
77.105.36.156200 OK 20 kB URL HTTP/1.1 tecasi.co.rs/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.5
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (20087), with CRLF line terminators
Hash b37d7edf99565d3858eaa1ad80df3cff
786a4343711e9af5e5dfcc493e7d2331b48875bb
b0a45cd5aed66e27bd8ee861d0e3b782c8e79849bde32f90f078b9f2451a36f2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 20219
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.5
77.105.36.156200 OK 4.1 kB URL HTTP/1.1 tecasi.co.rs/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.5
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (4111), with no line terminators
Hash 71c31400a12073b7c576c903dcd8cea5
2f048a9ca8727b169e761033b80209f53ffbf9f4
6678f5308a4fd9620f440c3e6433920f9a09a9d6465a13888d9638aa23d70191
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 4111
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.5
77.105.36.156200 OK 12 kB URL HTTP/1.1 tecasi.co.rs/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.5
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (12402), with no line terminators
Hash aaf6819aaa02ebc19a1824bcdef2ac15
40331d143d50bbe91ed2b6de0f27f02ea22323a4
6ece33be05682148470133b0321834dad4007cf718bcf4242115472bf5c0a73d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 12402
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.5
77.105.36.156200 OK 2.0 kB URL HTTP/1.1 tecasi.co.rs/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.5
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (2002), with no line terminators
Hash 3f249575b37232d51921e82536004592
5799b78581ed5968346cade85389b82b2d6a304d
b817c9b9bb557b34222c4598548f3569a7c8f2bb30b796a6c92d47dd740e4271
GET /wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 2002
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.5
77.105.36.156200 OK 9.0 kB URL HTTP/1.1 tecasi.co.rs/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.5
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (8989), with no line terminators
Hash 679293c5f2184c6a335f0ee58d691af5
2c93237d0e23d4ac94be43320b581a50365bd959
b27375090fa7a6b1b7953505ccce5ff008db3c23196579db5749f71f0f485304
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 8989
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.5
77.105.36.156200 OK 5.2 kB URL HTTP/1.1 tecasi.co.rs/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.5
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (5181), with no line terminators
Hash cab72260c840201b4b6e0125b3f66af7
cf137934bc4ef8c0b0c42c325f53f6c639985f18
d05f3a54518cd3ac3a4e9b4cf8c5f0deab037e659299f66a534d00fe10618b64
GET /wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 5181
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.10200 OK 29 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.10:0
Hash 16f78097cf7c715c9ab5b4695b0976ff
5fb404ff9ee0667cd1d693a9b6e0dde2f7140819
4ff6ec23f58b28856031fe3bb5ef99a4d60d310774c85c80131818b4610e41db
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 21:40:28 GMT
date: Sun, 27 Nov 2022 21:40:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.5
77.105.36.156200 OK 58 kB URL HTTP/1.1 tecasi.co.rs/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.5
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (21914), with CRLF line terminators
Hash d12d58d35825299b77044854d01a1d57
39ee67166de06d9c6ca382f4a4fa3b94b8db815f
66dd4e5c21b276f0f6302f05a0acfaec62edc461993593a028dd7113923f704f
GET /wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 57568
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0
77.105.36.156200 OK 5.0 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (4918)
Hash f24a41ebe5fbe2440caff2972b7c3341
a58d0685eb8defda0252ce1620c5fef93d297ea0
dca573f6831bcc39828ef0c435568a4ff0980edefdfbcf52e15ff8566befb529
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 4957
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
77.105.36.156200 OK 21 kB URL HTTP/1.1 tecasi.co.rs/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 034bd11ecaf6fb9240d905245e42e202
ff136c394ed95badfc0107fb98a890dcff642828
ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:15:40 GMT
Accept-Ranges: bytes
Content-Length: 21440
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
77.105.36.156200 OK 12 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (12198), with no line terminators
Hash 3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 12198
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0
77.105.36.156200 OK 33 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type Unicode text, UTF-8 text, with very long lines (32907)
Hash e7034cc4a25a7e6912a857bdcfe45899
5b30046f597c18765062572a00e7221cc490b5f8
ab3426e035a4ecbad44e1352a8f7433d0dba2f1a5b72382e2af9eb00a17a798c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 32947
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0
77.105.36.156200 OK 2.6 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (2620), with no line terminators
Hash 020e87460ce58802842e34a3aac97d83
d2eed5f7573c0bd640fb9f125b6bfedf43ebf9b9
138154c0deed3326477b9b4909175101070a5a3a95342291b53d8cc9879a5f47
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 2620
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
77.105.36.156200 OK 11 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (10544)
Hash 4eee50ac6f4f364ba3a284d0753ddae3
a8e7e824e6824ae0b370ff36e2c07ca07276fae0
b936db5880aa9b6b2f26a8d32fc2b689fb75f69d971b94194f16dba801221ffe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 10682
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
tecasi.co.rs/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0
77.105.36.156200 OK 40 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (40474)
Hash 63da63aaa1485c280f3505da6724bccf
1c5110797988e86ffd37f66a79cec3dc023a66eb
4276020d6f31a5d3116fde82520418b99a39cf1fc04d578b8eecab57894126a1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 40513
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
maps.google.com/maps?q=Tecasi%20E761%20ko%C5%A1evi&t=m&z=15&output=embed&iwloc=near
216.58.211.14301 Moved Permanently 292 B URL HTTP/2 maps.google.com/maps?q=Tecasi%20E761%20ko%C5%A1evi&t=m&z=15&output=embed&iwloc=near
IP 216.58.211.14:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 1d1a0ed7f65312dfc6958e69bc9d8540
0a548328396017f383387a1bf19f75a05cc04990
ca9d4f96a5b6e18a83c47ff83bafe17563a971b6d537a6cb5b629c01619472ad
GET /maps?q=Tecasi%20E761%20ko%C5%A1evi&t=m&z=15&output=embed&iwloc=near HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Sun, 27 Nov 2022 21:40:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sTecasi+E761+ko%C5%A1evi!5e0!6i15
content-type: text/html; charset=UTF-8
server: mafe
content-length: 292
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-2.jpeg
77.105.36.156200 OK 77 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-2.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x464, components 3\012- data
Hash 83b0fb02e45ec8ffe36db4c0b4a43a95
a5788020dc1b8be09cabbf85b5e09472043329e7
5a5faf1588378aa7b6ad0b5ed87c542e7a3548eb2ad8a58a932c29b7cf78c34b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-2.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 76752
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg
77.105.36.156301 Moved Permanently 300 B URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2cbf6e320d886ba9c3e4ab09ad89bdae
ef789145a98ad40478bd7aa38490b938c2c7242d
752ee8cd897ce9234ae6b9f7d5adc2c810e2a45688b70c6d5f36edfcedf8c317
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg
Content-Length: 300
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg
77.105.36.156301 Moved Permanently 300 B URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8d1de80de1c8801e0b79b670a1b1124f
35b746b0dcc0e110a1c40d808a9ee35af8705858
27f05cbdf4b9379e0728a020d1e8fbcf32bddc65f851e63652b89bd96249adea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg
Content-Length: 300
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg
77.105.36.156301 Moved Permanently 300 B URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8f781d686f7e22935bf414f41d695771
157a371ffc0bcd8eece1843ee9ceaf588c81e721
9af3f92e635ae8c0094ad07deb65be746abc657598b2f042badaf802ac93e2c3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg
Content-Length: 300
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg
77.105.36.156301 Moved Permanently 300 B URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 19b66b4dce59e975535153092f653a4a
9f3aec35a8224f3dbf8b6c64040e8c66a1f3041a
5b63b99fdb2e804d511caf64472df977753eefc820ef4ff53cb9598719e3eb04
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg
Content-Length: 300
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
tecasi.co.rs/wp-content/uploads/2020/10/41b99ed7-4ca5-4546-9b2b-ebe01e4da5b1.jpg
77.105.36.156301 Moved Permanently 296 B URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/10/41b99ed7-4ca5-4546-9b2b-ebe01e4da5b1.jpg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ac11c602a994c9e0199bb037a369104c
c3b30c29b3603e7dc55e3fcdb6d71e1a259e11c9
4fe5203861730f623ad4fe76026e686f5d9f4b486015dff7837f82093df429e0
GET /wp-content/uploads/2020/10/41b99ed7-4ca5-4546-9b2b-ebe01e4da5b1.jpg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/10/41b99ed7-4ca5-4546-9b2b-ebe01e4da5b1.jpg
Content-Length: 296
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tecasi.co.rs
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:53:49 GMT
expires: Thu, 23 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 355600
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tecasi.co.rs/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.0
77.105.36.156200 OK 43 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.0
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type ASCII text, with very long lines (43101)
Hash 4f3146d8fc678b718f1b7ad07292455d
69fba0deea0d36d39a4a9aa4611d293bad3a671d
59c3d3d0b50f56b9760ee59d09fdb21949b917015026542d88d9c22a070fc8d8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 43140
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Hash deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tecasi.co.rs
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:50:35 GMT
expires: Thu, 23 Nov 2023 19:50:35 GMT
cache-control: public, max-age=31536000
age: 352194
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
77.105.36.156200 OK 93 kB URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Hash aab0bb3379e0eb7ebc26071db61fbd57
711c8d350c4192c2f1aa7f73551445b89fb4b161
691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://tecasi.co.rs/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 93372
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tecasi.co.rs
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 353181
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM.jpeg
77.105.36.156200 OK 83 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x540, components 3\012- data
Hash 66053b23605449d401dda52507ae926d
2b68cad9bcce75285fb795e6d182b2ca6d876c07
db4288dfcd81c02e02ab021f58e5384d3b20a83b2aa791549e15b18cbfce6bfe
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 82925
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Hash 87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tecasi.co.rs
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:35:48 GMT
expires: Thu, 23 Nov 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 353081
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9f6cc8d3fe9092a6d3901e873a87fd87
2e0aac117a4cc57596efb3d6f6624c269f94b031
e73982e62b92abac3d15b161f4525448cc2bc8b9bacefdcbfc6f87b74ec372e4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
216.58.207.195200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 11800, version 1.0\012- data
Hash e36fccd06262bef92e7a9841e2202225
b907dd02819497b3942220e0aa160c167195506b
7f1c829b0c90fd664a03bb714a74f7d35d9e38ee1687104abc8ad5bd9c8ccb6c
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tecasi.co.rs
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:48:10 GMT
expires: Thu, 23 Nov 2023 18:48:10 GMT
cache-control: public, max-age=31536000
age: 355939
last-modified: Wed, 11 May 2022 19:25:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg
77.105.36.156200 OK 85 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x504, components 3\012- data
Hash f8a786f3ac087863d157ad7a9e8a8920
63ffb9d82d834cf94d9a4b58106a7ac5f2b97ea4
a89423a01e6679f470a5c8eb77e1909be0842cebeb849c690ca45838ad618576
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 84659
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.58-PM.jpeg
77.105.36.156200 OK 136 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.58-PM.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x604, components 3\012- data
Size 136 kB (136455 bytes)
Hash 2e64245ad8b8f038d4acd5f95e5812e0
4fa261cd39de089c7d2beff52715e0c88a4312c7
a34d7582d17eb34d172198c020a67fd71de56a10277617ebb6f79108e01e46da
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.58-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 136455
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
tecasi.co.rs/wp-content/uploads/2020/09/imageedit_63_4424651981-768x232.png
77.105.36.156200 OK 38 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/09/imageedit_63_4424651981-768x232.png
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type PNG image data, 768 x 232, 8-bit/color RGBA, non-interlaced\012- data
Hash d1f8af5a79d2d296e576d222a154c4ed
37bfcd5b64f345f0d1942d4ab7a0a3fed87433a0
2a877797c0b8868ddbf9d3ba092032dede0204556803c4a174a5395759887b5e
GET /wp-content/uploads/2020/09/imageedit_63_4424651981-768x232.png HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:55:23 GMT
Accept-Ranges: bytes
Content-Length: 38204
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg
77.105.36.156200 OK 88 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x540, components 3\012- data
Hash 2296a0c0cd62a8d769bc6725b9fbe143
2f6d929e796342f30e3ce73afc31d6204b182b6d
01c8e5e3ac18e7e2514cc0a7916401e712e580589897400473b478d57b6180b9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 87712
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg
77.105.36.156301 Moved Permanently 303 B URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 180237012ae9f9c7792e864a9838b337
d4332494196bf70e0c5721b8a2f9477333554496
42d64c70be173e69a1b4b887d8d6f737af82d5911763be9abced0c16051ac507
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg
Content-Length: 303
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg
77.105.36.156301 Moved Permanently 301 B URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash aaa3f55b649808d03ae541dcf67287f7
603905b39d0883c90bdc88538492a308df6ae4fe
dfa2cc4fe8a84c05624140dc9a795c014bc51e85f05188eb01ad00ee2e4d34e3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg
Content-Length: 301
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg
77.105.36.156301 Moved Permanently 303 B URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a61eb58836829d2c7d2bf432f5fd1891
20a21b21817ca208b0190029ab48ae74e4307e14
2d52e3dc491743b8f7b9bb179a6666d1fff6160d874e1abdf7d1fcd470e152a0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg
Content-Length: 303
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg
77.105.36.156200 OK 79 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x493, components 3\012- data
Hash dde04800b27bafe702021c2745315d98
008c57320140e34525479c408439f96854b8f40e
735f9bd262fb6818bdebc4eb4a05f70f74514c1d94a782a6173f37dcdb9ea751
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 78932
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg
77.105.36.156200 OK 322 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1060x1600, components 3\012- data
Size 322 kB (322444 bytes)
Hash 0a74dec36fffe006bbb8d469732edc01
e4b07339c5aac4e8f90d0014244f3bace6868438
50143d1d730d133253ce6101a2c92fc0818332d040b6c0170421f0b046ba23c5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 322444
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg
77.105.36.156200 OK 429 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1060x1600, components 3\012- data
Size 429 kB (429143 bytes)
Hash 6121c3dcf8d498173cd66c71c0ee3fbc
eb3c035b476a958ac289654b582c76e3ec4fe604
bc298b90fe8d8a29838f99037ab69e5e7a8a98b57b4b5d4da3197279a046f7d1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 429143
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
tecasi.co.rs/wp-content/uploads/2020/10/41b99ed7-4ca5-4546-9b2b-ebe01e4da5b1.jpg
77.105.36.156200 OK 965 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/10/41b99ed7-4ca5-4546-9b2b-ebe01e4da5b1.jpg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1600x1066, components 3\012- data
Size 965 kB (965277 bytes)
Hash b95a24c4730c03cfe5dc10272106f8ee
e5293f9d32a71abb2daf3cc8deff24e1ceeae130
fe0e05383e2195b00d2c21af4e6a84711d09949cedfd7f860132d52350ad6bb6
GET /wp-content/uploads/2020/10/41b99ed7-4ca5-4546-9b2b-ebe01e4da5b1.jpg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 965277
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sTecasi+E761+ko%C5%A1evi!5e0!6i15
142.250.74.164200 OK 1.3 kB URL HTTP/2 www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sTecasi+E761+ko%C5%A1evi!5e0!6i15
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2564)
Hash 2fffa8a0b9951ebfc1e67a519170fe1a
5d85034400296c0d83fd77bfdd25f7cbc5764c97
05026ec2d28060950f96bf1f4d58c859c6cea9f4535b9d7984dc3337e13662ec
GET /maps/embed?origin=mfe&pb=!1m4!2m1!1sTecasi+E761+ko%C5%A1evi!5e0!6i15 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tecasi.co.rs/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sun, 27 Nov 2022 21:40:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-YUWu5ELJzn77U6Yds8uAaw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1261
x-xss-protection: 0
server-timing: gfet4t7; dur=305
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg
77.105.36.156200 OK 338 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1055x1600, components 3\012- data
Size 338 kB (337673 bytes)
Hash 291bed91a50f8ae1428868874645177e
00dea1623cbe50b81b5279710fc17bb01e104e0f
688a34a9be0878e03f4ce568fbc0b0a428a95b977ba74de68dfc7f03b764a7cb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 337673
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg
maps.gstatic.com/maps-api-v3/embed/js/51/1/init_embed.js
142.250.74.163200 OK 69 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/51/1/init_embed.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (2669)
Hash c088038bb01fdc7f15f21e2216b6b8b4
fa724c5616022f6825ac476354c492b0bf544d21
b0ecfa74efada796d206177e1bc78c7ac75250608051c6576335c6231fc2de78
GET /maps-api-v3/embed/js/51/1/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 68704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 07:12:45 GMT
expires: Thu, 23 Nov 2023 07:12:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 21:36:22 GMT
content-type: text/javascript
age: 397664
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg
77.105.36.156200 OK 70 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type gzip compressed data, max compression\012- data
Hash 232f3c79296bc041b209e2e374ba2796
d3b2ceafa8cec93ceca6e06bf0a789cb329257b9
413292b482144f0b0f819b87846f89f4dcc9298d60b5024bb01b81418dcf6579
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 558379
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg
tecasi.co.rs/wp-content/uploads/2020/12/favicon.ico
77.105.36.156200 OK 270 kB URL HTTP/1.1 tecasi.co.rs/wp-content/uploads/2020/12/favicon.ico
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type MS Windows icon resource - 1 icon, 256x256, 32 bits/pixel\012- data
Size 270 kB (270398 bytes)
Hash 9772ce10656fb5cf160b5ded085c14f7
b796e6775a48576f2d54571addd9b89855c74430
8d2ce1d873fdf8b69d3bc33cc2587902c0197ade886c6ec8e15d6eb6c2ca6f4e
GET /wp-content/uploads/2020/12/favicon.ico HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 18:02:58 GMT
Accept-Ranges: bytes
Content-Length: 270398
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/x-icon
tecasi.co.rs/wp-json/contact-form-7/v1/contact-forms/54/feedback/schema
77.105.36.156200 OK 308 B URL HTTP/1.1 tecasi.co.rs/wp-json/contact-form-7/v1/contact-forms/54/feedback/schema
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
File type JSON data\012- , ASCII text, with very long lines (308), with no line terminators
Hash 157c0403c9f495a30e63aef32ae29787
73176eaf893225dd30026ce7be65e552c4f9996d
8fdf1cfd78e4abe7fd0a37250efe89dee5dd44c2f02a3a2793751b593a0b4eb3
Analyzer Verdict Alert fortinet Phishing
GET /wp-json/contact-form-7/v1/contact-forms/54/feedback/schema HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tecasi.co.rs/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
X-Robots-Tag: noindex
Link: <https://tecasi.co.rs/wp-json/>; rel="https://api.w.org/"
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-WP-Total, X-WP-TotalPages, Link
Access-Control-Allow-Headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
Allow: GET
Vary: Origin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4e97baa4851785eac92c719abf481c64
c32a57038d3cdbc514c9081c9938eca6a04fb481
adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8387
x-amzn-requestid: fc238ea9-0169-47fc-b92e-f12b3ee27c72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b433YGtOoAMFexg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6379d362-2f97c67a2e5f05b6746cf858;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 07:12:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: oMrdB0NUGe5CqTY7eFd3u8xaSy9TyDdOrf1awBikFJzm3jWreD2irQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 12:30:20 GMT
age: 33013
etag: "c32a57038d3cdbc514c9081c9938eca6a04fb481"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
77.105.36.156200 OK 0 B URL HTTP/1.1 tecasi.co.rs/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 77.105.36.156:0
ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 139153
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.195200 OK 0 B URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.195:0
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tecasi.co.rs
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:07:32 GMT
expires: Thu, 23 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 372777
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2