Report - www.tecasi.rs/

Report Overview

Submitted URL
www.tecasi.rs/
IP
77.105.36.156
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun
Submitted
2022-11-27 21:40:36
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
114

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
maps.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	390 B	70 kB	142.250.74.163
www.tecasi.rs	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	788 B	756 B	77.105.36.156
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	44.228.207.167
tecasi.co.rs	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	30 kB	4.6 MB	77.105.36.156
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	745 B	30 kB	142.250.74.10
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.9 kB	73 kB	216.58.207.195
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.5 kB	93.184.220.29
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	64 kB	34.120.237.76
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.4 kB	7.0 kB	142.250.74.3
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
maps.google.com	1899	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	528 B	911 B	216.58.211.14
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	528 B	2.0 kB	142.250.74.164

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-27	medium	www.tecasi.rs/	Phishing
2022-11-27	medium	www.tecasi.rs/	Phishing
2022-11-27	medium	tecasi.co.rs/wp-includes/css/classic-themes.min.css?ver=1	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4	Phishing
2022-11-27	medium	tecasi.co.rs/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	Phishing
2022-11-27	medium	tecasi.co.rs/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.0	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/essential-addons-elementor/eael-16.css?ver=1625661406	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0	Phishing
2022-11-27	medium	tecasi.co.rs/	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/elementor/css/post-16.css?ver=1646403311	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.0	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.0	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/essential-addons-elementor/eael-16.js?ver=1625661406	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.5	Phishing
2022-11-27	medium	tecasi.co.rs/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.5	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.5	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.5	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.5	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.5	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.5	Phishing
2022-11-27	medium	tecasi.co.rs/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-2.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.0	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.58-PM.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg	Phishing
2022-11-27	medium	tecasi.co.rs/wp-json/contact-form-7/v1/contact-forms/54/feedback/schema	Phishing
2022-11-27	medium	tecasi.co.rs/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (45)

	URL	Size	First Seen	Last Seen
	tecasi.co.rs/wp-content/uploads/essential-addons-elementor/eael-16.js?ver=1625661406	0 B	2023-03-07	2024-04-25
Pretty URL tecasi.co.rs/wp-content/uploads/essential-addons-elementor/eael-16.js?ver=1625661406 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 23:18:04 Times Seen37075803 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/1/overlay.js	3.6 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/1/overlay.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:54:04 Last Seen2023-03-11 23:12:16 Times Seen1 Hash f850e3ff6a31907682e3a13aa88f9c47 ab3eef470160c6ff0134394f661f79d22ac0dbf9 826ffa194c82355186ca505487674f92a796e17a6838da75e4a73b39d04d7ba7 Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7szvxs3w&10e1&11b0&callback=_xdc_._1vxbqn&client=google-maps-embed&token=7916	62 B	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7szvxs3w&10e1&11b0&callback=_xdc_._1vxbqn&client=google-maps-embed&token=7916 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:35:01 Last Seen2023-03-11 21:35:01 Times Seen1 Hash 83033618a47ffa1d03ae67036d83224e 92cb49ba0b0a0b4743bc03887f1dc6578202ccf3 6c2ab573ffdea17e34e0b6e49f59741c9510ea2ea6ad66873bfaf46d9564d6d9 Loading...

	tecasi.co.rs/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4	12 kB	2023-03-08	2024-04-24
Pretty URL tecasi.co.rs/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-24 20:13:16 Times Seen3481 Hash 1f9968a7c7a2a02491393fb9d4103dae 0032c8a6a692e6f072b2cef20828449402fdd57d f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49 Loading...

	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.5	12 kB	2023-03-07	2024-03-20
Pretty URL tecasi.co.rs/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.5 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:41 Last Seen2024-03-20 13:54:35 Times Seen341 Hash aaf6819aaa02ebc19a1824bcdef2ac15 40331d143d50bbe91ed2b6de0f27f02ea22323a4 6ece33be05682148470133b0321834dad4007cf718bcf4242115472bf5c0a73d Loading...

	tecasi.co.rs/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0	11 kB	2023-03-07	2024-04-25
Pretty URL tecasi.co.rs/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 06:13:12 Times Seen5360 Hash 4eee50ac6f4f364ba3a284d0753ddae3 a8e7e824e6824ae0b370ff36e2c07ca07276fae0 b936db5880aa9b6b2f26a8d32fc2b689fb75f69d971b94194f16dba801221ffe Loading...

	tecasi.co.rs/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2	8.0 kB	2023-03-08	2023-12-11
Pretty URL tecasi.co.rs/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:20 Last Seen2023-12-11 08:09:31 Times Seen56 Hash ef711018665b24a570d3605255874523 bdcb5e1cc811c120fd2983444b296254b7618a8b d7b10b7ce6eceb9ee2483874f0f972e419ab10692ed738c1ae3422e48c489775 Loading...

	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.5	58 kB	2023-03-07	2024-04-19
Pretty URL tecasi.co.rs/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.5 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:41 Last Seen2024-04-19 09:34:03 Times Seen1488 Hash d12d58d35825299b77044854d01a1d57 39ee67166de06d9c6ca382f4a4fa3b94b8db815f 66dd4e5c21b276f0f6302f05a0acfaec62edc461993593a028dd7113923f704f Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/1/util.js	170 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/1/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:54:04 Last Seen2023-03-11 23:13:14 Times Seen1 Hash 1869be15b4f227b772acbd045fad1a0b 74b0740732ed46e6b588b712ccb3238ec824d8f0 ebc4b582e1dcce5a8347546dce540c0b431f22a8f78811240328a2fc5f8eb7b5 Loading...

	tecasi.co.rs/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0	40 kB	2023-03-08	2024-04-25
Pretty URL tecasi.co.rs/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:20 Last Seen2024-04-25 13:07:05 Times Seen404 Hash 63da63aaa1485c280f3505da6724bccf 1c5110797988e86ffd37f66a79cec3dc023a66eb 4276020d6f31a5d3116fde82520418b99a39cf1fc04d578b8eecab57894126a1 Loading...

	tecasi.co.rs/	100 B	2023-03-11	2023-03-11
Pretty URL tecasi.co.rs/ IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:35:01 Last Seen2023-03-11 21:35:01 Times Seen1 Hash 864e6582b9124e5d1bfa9f996d209526 06eb2a01b16dd9cc34273ae1ed4fce904225470d babe6213360a4cda4abb6f98ec43f0dd6c52fa2fab6f73209763819ef4cb9a91 Loading...

	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.5	14 kB	2023-03-07	2024-04-23
Pretty URL tecasi.co.rs/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.5 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-04-23 15:32:39 Times Seen1892 Hash 45390a4ace8f255999ffd0bc7c063c7d 1b990a7d47f4c16379f55e5c8e9b8d4fab244f14 7c345ef59fb2b287237939e1cc8cc92028711602334db6d338990a01676f8e45 Loading...

	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.5	20 kB	2023-03-07	2024-04-25
Pretty URL tecasi.co.rs/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.5 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:21 Last Seen2024-04-25 08:48:30 Times Seen5898 Hash b37d7edf99565d3858eaa1ad80df3cff 786a4343711e9af5e5dfcc493e7d2331b48875bb b0a45cd5aed66e27bd8ee861d0e3b782c8e79849bde32f90f078b9f2451a36f2 Loading...

	tecasi.co.rs/	896 B	2023-03-11	2023-03-11
Pretty URL tecasi.co.rs/ IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:35:01 Last Seen2023-03-11 21:35:01 Times Seen1 Hash dc1046ad6a0b8e969948fdeed5be92ce 302f610a327388841f8fb397f9b7ebdb0a113ba3 d1fc4e8c65008b58d103e5957ecf0f397b181ab9419b042fcbccbae124275412 Loading...

	tecasi.co.rs/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0	2.6 kB	2023-03-07	2024-04-25
Pretty URL tecasi.co.rs/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:07 Last Seen2024-04-25 18:58:31 Times Seen11299 Hash 020e87460ce58802842e34a3aac97d83 d2eed5f7573c0bd640fb9f125b6bfedf43ebf9b9 138154c0deed3326477b9b4909175101070a5a3a95342291b53d8cc9879a5f47 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/1/common.js	254 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/1/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:54:04 Last Seen2023-03-11 23:13:14 Times Seen1 Hash e39ea0b6a59026e9c9a623f639661f9b 6dc69b58001aa7bde94cb7572fa14665e356c29b db099e95eb910c80a88cff3a375d59c4533d74c328b5c94189fe32f0b0ae28a1 Loading...

	tecasi.co.rs/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	9.9 kB	2023-03-08	2024-04-24
Pretty URL tecasi.co.rs/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-24 20:13:16 Times Seen3136 Hash dc74c9954b1944928eca0172c3b8c6b3 e9e00e587e0e28491b69563b4e768945ff2e0ed5 d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b Loading...

	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.5	20 kB	2023-03-07	2024-04-19
Pretty URL tecasi.co.rs/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.5 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-04-19 09:34:03 Times Seen1896 Hash 130b3e97d98a5adefebd3807a0682dfd ba1edeec0f48045cfb083f030951d196ebb3716d be5a9e7bcbc5af3b986767a8193c1d9dbb9c7bd2368ba33c25eff7bd7a76987a Loading...

	tecasi.co.rs/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-25
Pretty URL tecasi.co.rs/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-25 22:49:07 Times Seen31817 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US&callback=onApiLoad	172 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps/api/js?client=google-maps-embed&paint_origin=&libraries=geometry,search&v=3.exp&language=en_US&callback=onApiLoad IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:03:56 Last Seen2023-03-11 21:35:26 Times Seen1 Hash dedfc7743f6fb60dfcbe815d49622803 bf14b202d69bd4b250273bb8e2047b0adacf4433 d58f52e9e5710979145de2a5209e4b22db28bf0a07a130da4b927591d16b28b6 Loading...

	maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7m1&1e0&8b0&callback=_xdc_._uxcir0&client=google-maps-embed&token=83715	62 B	2023-03-08	2023-08-17
Pretty URL maps.googleapis.com/maps/api/js/AuthenticationService.Authenticate?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7m1&1e0&8b0&callback=_xdc_._uxcir0&client=google-maps-embed&token=83715 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:25:00 Last Seen2023-08-17 14:45:14 Times Seen1761 Hash ac206f9aca43cbd08f77ebff219bad68 a8f70e30f06a72933f89c350b8fcc8e77280ff5d 5da1360295132675024820ab37f9bc1c658f6b900180906ec44125f8127f762e Loading...

	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.5	9.0 kB	2023-03-07	2024-04-23
Pretty URL tecasi.co.rs/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.5 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-04-23 15:32:39 Times Seen1748 Hash 679293c5f2184c6a335f0ee58d691af5 2c93237d0e23d4ac94be43320b581a50365bd959 b27375090fa7a6b1b7953505ccce5ff008db3c23196579db5749f71f0f485304 Loading...

	tecasi.co.rs/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2	21 kB	2023-03-08	2024-04-25
Pretty URL tecasi.co.rs/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-25 21:53:55 Times Seen9808 Hash 034bd11ecaf6fb9240d905245e42e202 ff136c394ed95badfc0107fb98a890dcff642828 ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651 Loading...

	www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sTecasi+E761+ko%C5%A1evi!5e0!6i15	2.8 kB	2023-03-11	2023-03-11
Pretty URL www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sTecasi+E761+ko%C5%A1evi!5e0!6i15 IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:35:01 Last Seen2023-03-11 21:35:01 Times Seen1 Hash d2a432656d8cb3713a7bf4bef29ee8d3 951568cdb3b641afdb3bc7c3e406477cbf3135a0 c3b7b39bc048b9e4c40f3b8a691cc77631b28853bbb3750edc05fc12ef4a3a33 Loading...

	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.5	4.1 kB	2023-03-07	2024-04-23
Pretty URL tecasi.co.rs/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.5 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-04-23 15:32:38 Times Seen1864 Hash 71c31400a12073b7c576c903dcd8cea5 2f048a9ca8727b169e761033b80209f53ffbf9f4 6678f5308a4fd9620f440c3e6433920f9a09a9d6465a13888d9638aa23d70191 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/1/onion.js	27 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/1/onion.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:54:04 Last Seen2023-03-11 23:12:16 Times Seen1 Hash ced152e1bee18e5f4c893dbba68c7501 5a3bfec6642a6a6bb1c23e78beead96e044d5a71 60ff2b67ca4666fd28f8bc93e088822d95fbe98d88c6b1f6b746d73344d98ff0 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/1/controls.js	89 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/1/controls.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:54:04 Last Seen2023-03-11 23:12:16 Times Seen1 Hash a10ff9cf15d9c18dafc57104e1f7a008 8f6404b352009b9fc5361c4c3aa7ac56dce1b021 494596bd6eef3707a51e5c394adb08ba9b959b1d526cdd6be207332b816a8aee Loading...

	maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7szvxti6&10e1&11b0&callback=_xdc_._cg9wro&client=google-maps-embed&token=84633	62 B	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps/api/js/QuotaService.RecordEvent?1shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&2sgoogle-maps-embed&7szvxti6&10e1&11b0&callback=_xdc_._cg9wro&client=google-maps-embed&token=84633 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:35:01 Last Seen2023-03-11 21:35:01 Times Seen1 Hash 0d6403f01e82a59919dc3748223263df 123ec5771c2ebbdd4de08394d3e4e49a70448ae3 4d7c69a6bf2c0513368e4f808c295ac2ecc7149b5456291a0d4bbc7492435cce Loading...

	tecasi.co.rs/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-25
Pretty URL tecasi.co.rs/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 18:37:13 Times Seen38049 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	tecasi.co.rs/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13	27 kB	2023-03-07	2024-04-22
Pretty URL tecasi.co.rs/wp-content/plugins/header-footer-elementor/inc/js/frontend.js?ver=1.6.13 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:53 Last Seen2024-04-22 09:02:49 Times Seen922 Hash 5c37c12bdbed9edeeade7e37f93e2554 e56804d2640d98379f4d24b938241ab24944ed99 8d13e5f190e4c0f968ed033233598e278d294737abc5a46c5e0505b1f88320cb Loading...

	tecasi.co.rs/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-25
Pretty URL tecasi.co.rs/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 22:29:17 Times Seen52773 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	tecasi.co.rs/	474 B	2023-03-11	2023-03-11
Pretty URL tecasi.co.rs/ IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:35:01 Last Seen2023-03-11 21:35:01 Times Seen1 Hash fe847e3eaf4a69e21aca41ab89d28704 9b200961deba362d8ec3d5e45939b1e980fcdbf1 63b986f6a3f7b8b009c0f41c8584203e93bfc63369cd31397004fdc97fe87541 Loading...

	tecasi.co.rs/	1.8 kB	2023-03-11	2023-03-11
Pretty URL tecasi.co.rs/ IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:35:01 Last Seen2023-03-11 21:35:01 Times Seen1 Hash 1092fc425555bb8e4b6c8441bfb6b6c5 a79a8c0ee55fe8eeaf3439ee33187f8aa9185268 4c689a66c6898f530d2757da2d6130de709baa2fa95b4603c0cb9deebe14b0ed Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/1/search_impl.js	2.8 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/1/search_impl.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:54:04 Last Seen2023-03-11 23:12:16 Times Seen1 Hash 3073db8528bb070df546ff6c8cc875c1 fddddc8ada9c47c79ef3c94399118ae5e5b7f545 8d8d7f300c855802d23f4d822711212d8e402e76da6764ec2fa3a27fb7065885 Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d43.559830650099016&2d21.17058127780535&2m2&1d43.61186744201243&2d21.31829862259181&2u15&4sen-US&5e0&6sm%40628000000&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._62qnms&client=google-maps-embed&token=95340	43 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d43.559830650099016&2d21.17058127780535&2m2&1d43.61186744201243&2d21.31829862259181&2u15&4sen-US&5e0&6sm%40628000000&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._62qnms&client=google-maps-embed&token=95340 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:35:01 Last Seen2023-03-11 21:35:01 Times Seen1 Hash eac4d2f916780de759357a7b39aba133 fbd089b83647ee6de091306f675f5b4b20857087 b86bf53de7971b33b1a5b12d679672aa079c115bfca854d21f6bef24ffa5bf7a Loading...

	tecasi.co.rs/	2.1 kB	2023-03-11	2023-03-11
Pretty URL tecasi.co.rs/ IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:35:01 Last Seen2023-03-11 21:35:01 Times Seen1 Hash 8877af0e25f9dfc29446db22b8debecf 2723fdf889f375e51e486ce1c8de62a691bd1193 4fd34ffa94844df080ac751ea87ac45fad2623621af9afccdfd565bf36578be4 Loading...

	tecasi.co.rs/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-25
Pretty URL tecasi.co.rs/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 22:49:07 Times Seen68638 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.5	5.2 kB	2023-03-07	2024-04-23
Pretty URL tecasi.co.rs/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.5 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-04-23 15:32:38 Times Seen1900 Hash cab72260c840201b4b6e0125b3f66af7 cf137934bc4ef8c0b0c42c325f53f6c639985f18 d05f3a54518cd3ac3a4e9b4cf8c5f0deab037e659299f66a534d00fe10618b64 Loading...

	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.5	2.0 kB	2023-03-07	2024-04-23
Pretty URL tecasi.co.rs/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.5 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-04-23 15:32:38 Times Seen1915 Hash 3f249575b37232d51921e82536004592 5799b78581ed5968346cade85389b82b2d6a304d b817c9b9bb557b34222c4598548f3569a7c8f2bb30b796a6c92d47dd740e4271 Loading...

	tecasi.co.rs/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.0	43 kB	2023-03-08	2024-03-04
Pretty URL tecasi.co.rs/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.0 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:20 Last Seen2024-03-04 09:49:35 Times Seen118 Hash 4f3146d8fc678b718f1b7ad07292455d 69fba0deea0d36d39a4a9aa4611d293bad3a671d 59c3d3d0b50f56b9760ee59d09fdb21949b917015026542d88d9c22a070fc8d8 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/1/map.js	72 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/1/map.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 12:54:04 Last Seen2023-03-11 23:12:16 Times Seen1 Hash 4fff6ce78464889e5a2028f20253ce85 924e8b33887fba9509f010a0f1802533f6cd0448 82c19ea6ef8bc5c3368e21a99b85715eee48d4a1adaed53f805499ed5558d485 Loading...

	maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d43.55662264320881&2d21.203755507860787&2m2&1d43.61521221632083&2d21.285024915725838&2u11&4sen-US&5e2&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._lc1ccs&client=google-maps-embed&token=70953	3.4 kB	2023-03-11	2023-03-11
Pretty URL maps.googleapis.com/maps/api/js/ViewportInfoService.GetViewportInfo?1m6&1m2&1d43.55662264320881&2d21.203755507860787&2m2&1d43.61521221632083&2d21.285024915725838&2u11&4sen-US&5e2&7b0&8e0&11e289&12e1&13shttps%3A%2F%2Fwww.google.com%2Fmaps%2Fembed&14b1&callback=_xdc_._lc1ccs&client=google-maps-embed&token=70953 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 21:35:01 Last Seen2023-03-11 21:35:01 Times Seen1 Hash edae33c5ecee64d09791d221448efe46 554f21a0f71e1aa2104981efbb36447149597977 b40f6de341bb1d0a0fe4a6d64140d0b76ce799bb0da54142966512473dbdacd3 Loading...

	tecasi.co.rs/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-25
Pretty URL tecasi.co.rs/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-25 21:53:56 Times Seen30971 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	tecasi.co.rs/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.5	7.5 kB	2023-03-07	2024-04-23
Pretty URL tecasi.co.rs/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.5 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:18:55 Last Seen2024-04-23 15:32:38 Times Seen1057 Hash c7fa7b324baead665d76a2ffeab04152 a955c9646a728f8250f30e13772d129a3e0e2877 ca63a56d305249eb4cddeec8a6501010e206e110445f46572be1f2d56a1785fd Loading...

	tecasi.co.rs/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0	33 kB	2023-03-08	2024-04-25
Pretty URL tecasi.co.rs/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0 IP 77.105.36.156 ASN #9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:20 Last Seen2024-04-25 13:07:05 Times Seen367 Hash e7034cc4a25a7e6912a857bdcfe45899 5b30046f597c18765062572a00e7221cc490b5f8 ab3426e035a4ecbad44e1352a8f7433d0dba2f1a5b72382e2af9eb00a17a798c Loading...

HTTP Transactions (115)

URL IP Response Size

www.tecasi.rs/

77.105.36.156

301 Moved Permanently

230 B

URL HTTP/1.1
www.tecasi.rs/
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
230 B (230 bytes)
Hash
a119056c3978d2a1bbe3c7c85a719e7f
dc2d29fda6a0a7cc68e7e51c630d39d9f5f12c61
dbb03d46fd9473360f853545c5dff0a3d06a43f2af94422f31b34e04fcc3b4c8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.tecasi.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:17 GMT
Server: Apache
Location: https://www.tecasi.rs/
Content-Length: 230
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13891
Expires: Mon, 28 Nov 2022 01:31:55 GMT
Date: Sun, 27 Nov 2022 21:40:24 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12710
Expires: Mon, 28 Nov 2022 01:12:14 GMT
Date: Sun, 27 Nov 2022 21:40:24 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
64b2a23eab6e5ae8c010ec7242be930c
0673e4385ba01a5a245711bab96cafc34f765793
64751d193f7af72431e9689581faffcae1a30ff50ea425697b2b80ff61c87909

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4669
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:24 GMT
Last-Modified: Sun, 27 Nov 2022 20:22:35 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: grFr9uIAZGHDI6C8Eefu2EAtGu50ao+ZMRVbQRafytsos9F0wD/1bYhdGr4hzW4zrhA5OuBMOFM=
x-amz-request-id: XYR8ATX4D0KKN0QB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 27 Nov 2022 20:44:46 GMT
age: 3338
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 27 Nov 2022 21:19:25 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1259
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 27 Nov 2022 21:40:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 27 Nov 2022 21:11:12 GMT
cache-control: public,max-age=3600
age: 1752
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a6fee11dfe1b88cd768a0ca3e2bd0c89
59cec9a44a4a92467678afe65f347f68641a2174
50870c499aae4d5dfd6df25a36cd04b6d185b66ef0590e46933984bf52e2483f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3862
Cache-Control: max-age=131449
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:25 GMT
Etag: "638328ac-1d7"
Expires: Tue, 29 Nov 2022 10:11:14 GMT
Last-Modified: Sun, 27 Nov 2022 09:06:52 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

44.228.207.167

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.228.207.167:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: iGdZDfbrfB0nGKQS7hbK+g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EK+vB6aouq+ykNezXU3jsSsXyGs=

www.tecasi.rs/

77.105.36.156

301 Moved Permanently

0 B

URL HTTP/1.1
www.tecasi.rs/
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: www.tecasi.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:17 GMT
Server: Apache
X-UA-Compatible: IE=edge
X-Redirect-By: WordPress
Location: https://tecasi.co.rs/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Sun, 27 Nov 2022 22:56:00 GMT
Date: Sun, 27 Nov 2022 21:40:26 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Sun, 27 Nov 2022 22:56:00 GMT
Date: Sun, 27 Nov 2022 21:40:26 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Sun, 27 Nov 2022 22:56:00 GMT
Date: Sun, 27 Nov 2022 21:40:26 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Sun, 27 Nov 2022 22:56:00 GMT
Date: Sun, 27 Nov 2022 21:40:26 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4534
Expires: Sun, 27 Nov 2022 22:56:00 GMT
Date: Sun, 27 Nov 2022 21:40:26 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 05:54:16 GMT
age: 56770
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13049 bytes)
Hash
1db6041a0bdb2319ae85afcc30caaeec
3b0ec6a7188dadf986f72fda8110296d9abd6f35
05f1f9b7834e7268dc34e3233434217f58cb68ee43a403cd08d0bb0ab4f37815

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34752db1-0be8-4784-9fa0-41e828e40e06.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13049
x-amzn-requestid: 2755f206-af23-4597-b4b9-7dae5001d6be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBsvpHDJoAMFhFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d5b30-600008f573bd7e0024585eb1;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 23:28:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: y0ofyT6UcPjB8mfRR1VMjHSTW64Qb_EQ0rrjsOdbby1CG-xMIFJMPw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:49:19 GMT
age: 85867
etag: "3b0ec6a7188dadf986f72fda8110296d9abd6f35"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.1 kB (5103 bytes)
Hash
116eb5028a206e55f758f3e34887c87e
10577d9fc19028a0e0303634ec16ad8b2d41fa7a
d5d0f5518f8346e78f00a57632efe36f3363cabfa9abb30b7bea60261b29910b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6188ef1b-7a47-4903-9867-0e57b53def62.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5103
x-amzn-requestid: 203eadee-9375-4290-ae0a-dd48e83df697
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFGzTE90oAMFTyA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637eb814-2c32253b155d5dd0283fdd07;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 00:17:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7tHm0mthR9kBsxWjBYctLA-AicheWuIxgPLw0UJtI8QhOv1oW13C3A==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 14:46:13 GMT
age: 24853
etag: "10577d9fc19028a0e0303634ec16ad8b2d41fa7a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10199 bytes)
Hash
2cd887044e91d7ed0f1a8d7119ff7dd0
ae8aa4ce6ddaccba771fe65446926b60fc5628da
bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10199
x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iF1VIAMF09g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: K2eKLQhrsCdd4ASsfEibRuZAYW4CpPTlO3fZs7xdoKrw1HBxfTGkEA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da"
content-type: image/jpeg
age: 86292
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15290721-a62e-49b8-80c6-967680cff24f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.9 kB (6883 bytes)
Hash
f7f16c0f8a8e710210ce77c0e4c1c2a2
590c34be54c9889eec4ff7993e070fda836f711f
4224287ba765da59c877ac4f1dec65accc5bec934b7598d9cbbee669ba4ab12e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15290721-a62e-49b8-80c6-967680cff24f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6883
x-amzn-requestid: 9e3878c9-1817-427e-b121-969a8cbc7ad8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cL1ySF0tIAMFY4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638169a8-5143ffea77b70cf67ef60ad7;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 01:19:36 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: K4mksi8EQxTxRXDqN-0iWJc-LmiI7joDX5xGmPb1HetziDj4mRCC7Q==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 05:53:37 GMT
age: 56809
etag: "590c34be54c9889eec4ff7993e070fda836f711f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8817 bytes)
Hash
741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJ40OEOqIAMFaOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 10:16:35 GMT
age: 41031
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

tecasi.co.rs/wp-includes/css/classic-themes.min.css?ver=1

77.105.36.156

200 OK

217 B

URL HTTP/1.1
tecasi.co.rs/wp-includes/css/classic-themes.min.css?ver=1
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text
Size
217 B (217 bytes)
Hash
95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:20 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:15:41 GMT
Accept-Ranges: bytes
Content-Length: 217
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13

77.105.36.156

200 OK

776 B

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text
Size
776 B (776 bytes)
Hash
a5bf64d5859ee94a3e8e93d592d6d2a0
049eb63b42dbb820b06870a430f523bf06880721
25825611ade7ceaed7df3862ec56dc91ad1d2be539966ef7bbe84306e51cfb08

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.6.13 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:20 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 11:47:42 GMT
Accept-Ranges: bytes
Content-Length: 776
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4

77.105.36.156

200 OK

2.7 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text
Size
2.7 kB (2731 bytes)
Hash
e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:20 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:55 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

77.105.36.156

200 OK

19 kB

URL HTTP/1.1
tecasi.co.rs/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (15660)
Size
19 kB (18617 bytes)
Hash
32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:20 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 23:08:04 GMT
Accept-Ranges: bytes
Content-Length: 18617
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

77.105.36.156

200 OK

95 kB

URL HTTP/1.1
tecasi.co.rs/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (47826)
Size
95 kB (94889 bytes)
Hash
71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:20 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 23:14:28 GMT
Accept-Ranges: bytes
Content-Length: 94889
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.0

77.105.36.156

200 OK

14 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.0
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (13766)
Size
14 kB (13805 bytes)
Hash
94fa0b3e7b82bbea25e913b9e205e38d
808599f89b6bffbad7dd2fbb6eb8bcba81af85be
e3e1c7e5e7616f2594faadff41a8e0b8c6b24cbd129ce9068f695519b588a7b2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 13805
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/uploads/essential-addons-elementor/eael-16.css?ver=1625661406

77.105.36.156

200 OK

6.2 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/essential-addons-elementor/eael-16.css?ver=1625661406
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (3432)
Size
6.2 kB (6233 bytes)
Hash
6f4f674a4e602b9be18232e5ec58c15b
5d90eabb725982350dc90f2f0376bd5c759b2232
cf98084ab437cf2d74954ea5fd2c58ea43422c43de7c6aabff2fc8c411341580

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/essential-addons-elementor/eael-16.css?ver=1625661406 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 6233
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2

77.105.36.156

200 OK

3.4 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (3432)
Size
3.4 kB (3433 bytes)
Hash
9a9ecfe405e38be1cf08b752d3afbda9
8f55bc1619b42231d464bf965c67cfddf6b29df9
b9b869f479a2181cbc0c5d8b6e5bb8bb9cbf81d59a18d056681d8b3de448b1d4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.4.2 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:31:01 GMT
Accept-Ranges: bytes
Content-Length: 3433
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/uploads/elementor/css/post-5.css?ver=1646402703

77.105.36.156

200 OK

946 B

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/elementor/css/post-5.css?ver=1646402703
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (946), with no line terminators
Size
946 B (946 bytes)
Hash
9c9f240a7e497e4bcfe5e60676a3bfcf
f4dbbddffbe2627d0496f4f0be3ad7aa0323b751
64b9a342567f51bb3de015f16c16e44f1268f75b9a362041ce51f41b131be463

HTTP Headers

GET /wp-content/uploads/elementor/css/post-5.css?ver=1646402703 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2022 14:05:03 GMT
Accept-Ranges: bytes
Content-Length: 946
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0

77.105.36.156

200 OK

19 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (19233)
Size
19 kB (19279 bytes)
Hash
d183c598fd582fe997f6782afed84f9b
7799820e0e849e8484543c3360a8d8cc62baa32f
83059e4c1a5c210e5585d96779fe655170817193d43e247c78dffaae7b7ba3a9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 19279
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tecasi.co.rs/

77.105.36.156

200 OK

109 kB

URL HTTP/1.1
tecasi.co.rs/
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Size
109 kB (109347 bytes)
Hash
73e19ddb5baef7c307c6f81f06b9298a
db4b5b8588f811d59c9f54963e06c977cb3bd6a3
fe73f117c8f6d75c70d862d3940fa27ff9f20b423dc1d6f642aaed24feccaa93

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:18 GMT
Server: Apache
X-UA-Compatible: IE=edge
Link: <https://tecasi.co.rs/wp-json/>; rel="https://api.w.org/", <https://tecasi.co.rs/wp-json/wp/v2/pages/16>; rel="alternate"; type="application/json", <https://tecasi.co.rs/>; rel=shortlink
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

tecasi.co.rs/wp-content/uploads/elementor/css/post-16.css?ver=1646403311

77.105.36.156

200 OK

50 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/elementor/css/post-16.css?ver=1646403311
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (20632)
Size
50 kB (50272 bytes)
Hash
bdd99779077fe7a56cdc713d55a9ca74
2d971df17ebc8d4baf78bb2fadf9b08fe484ad8c
5a2ac44a1e9d1e1398f99c0a9677131a9769c2f450476e19d7a1be94bd081e68

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/elementor/css/post-16.css?ver=1646403311 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2022 14:15:11 GMT
Accept-Ranges: bytes
Content-Length: 50272
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0

77.105.36.156

200 OK

11 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (10927), with no line terminators
Size
11 kB (10927 bytes)
Hash
848b3d98a919b181ad03d17478e97b80
e05bd451823b6d37654fa624f3becde80dddd939
fe41a7936fba4a26a21face5fbb35961e74b9b11eb9e78fa26560f6986be6ed8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 10927
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.0

77.105.36.156

200 OK

161 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.0
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (65497)
Size
161 kB (161415 bytes)
Hash
4e8f1984399a9261ab05ad20ebcaa328
5d33f6dd212e42938e8ecfc4a97cba08bb1915b7
8f852929424e332a9ff39bbb9788fbdc435a636d16aea66999244f4863148207

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 161415
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/uploads/elementor/css/global.css?ver=1646402705

77.105.36.156

200 OK

72 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/elementor/css/global.css?ver=1646402705
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (24059)
Size
72 kB (72082 bytes)
Hash
d674254865152e74b7a45e5274be5b13
6915dd3add408567fcbde9c125d82e3db31d2855
06e0b643b401307d6a0b7accb330ef9e00db248db50385e77d79f181434cbcf2

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1646402705 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 04 Mar 2022 14:05:05 GMT
Accept-Ranges: bytes
Content-Length: 72082
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1

77.105.36.156

200 OK

52 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
Unicode text, UTF-8 text, with very long lines (51619), with no line terminators
Size
52 kB (51623 bytes)
Hash
8bfb7344f5ecb251524f4ac7930441ac
05f51ea3ce0333f9f52ec19975449a783c483c92
c56e851a0803c43ff8adb5caeb0caf6439a99d0991deceff878a4124dca317d9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:31:04 GMT
Accept-Ranges: bytes
Content-Length: 51623
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1

77.105.36.156

200 OK

59 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (59158), with CRLF line terminators
Size
59 kB (59348 bytes)
Hash
c6920efb7784a86ed443ef70db8f317d
2c2236d61417d354b5cbbc907dfc9c0eb1325a7f
c493875ea907c37e2ef7b9560f75ad5dd918121a0f42889eda351ccab0373eb1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 59348
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13

77.105.36.156

200 OK

76 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
Unicode text, UTF-8 text, with very long lines (1646)
Size
76 kB (75684 bytes)
Hash
2395c81e72a52f14588816b4f72a7f17
711357e8d49c28be7605fcfbf881b90567decee1
ea14d1b1233e6cbc9b1a156ac532f076f7adafc309726fca7bf8833f882ac872

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.6.13 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 11:47:42 GMT
Accept-Ranges: bytes
Content-Length: 75684
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

77.105.36.156

200 OK

58 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (57726)
Size
58 kB (57912 bytes)
Hash
eeb705d0bdccfd645d3bbd46dd1fbab3
066def290f42ed8c00860e573cc880bd46e9ced4
d01a2ba2805c78957e15a2958135de0f3cb88e95159dd0f6c0a032bd76b1b0e9

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 57912
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

77.105.36.156

200 OK

669 B

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (483)
Size
669 B (669 bytes)
Hash
9eb2d3c87feb6bb2ffa63b70532b1477
38f226335a05ab0e30497bc7419eb5e243a9e26c
37bab6cd583982e8eff58501a99d7c5c4d63664c1ca34f9e3b7cf526c5b73ae2

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 669
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3

77.105.36.156

200 OK

677 B

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (491)
Size
677 B (677 bytes)
Hash
3eef8c9e589a6fd58292e79bbac4ba5d
d3ebdb629b8d9c92380b14b1676b123398f0841b
eea3d6ccda7f6503078cce9dc41176c1357af1c93a5b3625131ef7cf21c9d7c4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 677
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

77.105.36.156

200 OK

11 kB

URL HTTP/1.1
tecasi.co.rs/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (11126)
Size
11 kB (11224 bytes)
Hash
79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Wed, 20 Jan 2021 11:59:24 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4

77.105.36.156

200 OK

9.9 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (9937), with no line terminators
Size
9.9 kB (9937 bytes)
Hash
dc74c9954b1944928eca0172c3b8c6b3
e9e00e587e0e28491b69563b4e768945ff2e0ed5
d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:55 GMT
Accept-Ranges: bytes
Content-Length: 9937
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4

77.105.36.156

200 OK

12 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
HTML document, ASCII text, with very long lines (12310), with no line terminators
Size
12 kB (12310 bytes)
Hash
1f9968a7c7a2a02491393fb9d4103dae
0032c8a6a692e6f072b2cef20828449402fdd57d
f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:55 GMT
Accept-Ranges: bytes
Content-Length: 12310
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.0

77.105.36.156

200 OK

18 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.0
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (10019)
Size
18 kB (18468 bytes)
Hash
4601ba55044413706c2022cb6c1c3d05
5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 18468
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
5af61422c4eaa1b995ec63e463abda26
db75634681ed688840773ce828c169ac9da7d131
506791493bb08d458008ad072ac34a26c2170c1e775b83f55f20cd8af97aa895

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tecasi.co.rs/wp-content/uploads/essential-addons-elementor/eael-16.js?ver=1625661406

77.105.36.156

200 OK

0 B

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/essential-addons-elementor/eael-16.js?ver=1625661406
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/essential-addons-elementor/eael-16.js?ver=1625661406 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 11:54:39 GMT
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2

77.105.36.156

200 OK

8.0 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (8014), with no line terminators
Size
8.0 kB (8014 bytes)
Hash
ef711018665b24a570d3605255874523
bdcb5e1cc811c120fd2983444b296254b7618a8b
d7b10b7ce6eceb9ee2483874f0f972e419ab10692ed738c1ae3422e48c489775

HTTP Headers

GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.4.2 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:31:01 GMT
Accept-Ranges: bytes
Content-Length: 8014
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-includes/js/imagesloaded.min.js?ver=4.1.4

77.105.36.156

200 OK

5.6 kB

URL HTTP/1.1
tecasi.co.rs/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (5477)
Size
5.6 kB (5629 bytes)
Hash
3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 5629
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.5

77.105.36.156

200 OK

20 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.5
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (19789), with no line terminators
Size
20 kB (19789 bytes)
Hash
130b3e97d98a5adefebd3807a0682dfd
ba1edeec0f48045cfb083f030951d196ebb3716d
be5a9e7bcbc5af3b986767a8193c1d9dbb9c7bd2368ba33c25eff7bd7a76987a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 19789
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

77.105.36.156

200 OK

90 kB

URL HTTP/1.1
tecasi.co.rs/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (65447)
Size
90 kB (89684 bytes)
Hash
17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:15:40 GMT
Accept-Ranges: bytes
Content-Length: 89684
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.5

77.105.36.156

200 OK

176 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.5
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (65525), with no line terminators
Size
176 kB (176428 bytes)
Hash
0f9fb140a31a60c0ce36314fd2c7340b
5d3dbe04e3d5267e8ef7d4e49ddfe624e09ac19a
ff0c5b0690a637c604012e7b85e8a2b54f694964ac58ad6d80f772f3119d7dfe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 176428
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

tecasi.co.rs/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.5

77.105.36.156

200 OK

7.5 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.5
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (7540), with no line terminators
Size
7.5 kB (7540 bytes)
Hash
c7fa7b324baead665d76a2ffeab04152
a955c9646a728f8250f30e13772d129a3e0e2877
ca63a56d305249eb4cddeec8a6501010e206e110445f46572be1f2d56a1785fd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 7540
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.5

77.105.36.156

200 OK

14 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.5
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (14087), with no line terminators
Size
14 kB (14087 bytes)
Hash
45390a4ace8f255999ffd0bc7c063c7d
1b990a7d47f4c16379f55e5c8e9b8d4fab244f14
7c345ef59fb2b287237939e1cc8cc92028711602334db6d338990a01676f8e45

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 14087
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.5

77.105.36.156

200 OK

20 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.5
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (20087), with CRLF line terminators
Size
20 kB (20219 bytes)
Hash
b37d7edf99565d3858eaa1ad80df3cff
786a4343711e9af5e5dfcc493e7d2331b48875bb
b0a45cd5aed66e27bd8ee861d0e3b782c8e79849bde32f90f078b9f2451a36f2

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 20219
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.5

77.105.36.156

200 OK

4.1 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.5
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (4111), with no line terminators
Size
4.1 kB (4111 bytes)
Hash
71c31400a12073b7c576c903dcd8cea5
2f048a9ca8727b169e761033b80209f53ffbf9f4
6678f5308a4fd9620f440c3e6433920f9a09a9d6465a13888d9638aa23d70191

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 4111
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.5

77.105.36.156

200 OK

12 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.5
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (12402), with no line terminators
Size
12 kB (12402 bytes)
Hash
aaf6819aaa02ebc19a1824bcdef2ac15
40331d143d50bbe91ed2b6de0f27f02ea22323a4
6ece33be05682148470133b0321834dad4007cf718bcf4242115472bf5c0a73d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 12402
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.5

77.105.36.156

200 OK

2.0 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.5
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (2002), with no line terminators
Size
2.0 kB (2002 bytes)
Hash
3f249575b37232d51921e82536004592
5799b78581ed5968346cade85389b82b2d6a304d
b817c9b9bb557b34222c4598548f3569a7c8f2bb30b796a6c92d47dd740e4271

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 2002
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.5

77.105.36.156

200 OK

9.0 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.5
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (8989), with no line terminators
Size
9.0 kB (8989 bytes)
Hash
679293c5f2184c6a335f0ee58d691af5
2c93237d0e23d4ac94be43320b581a50365bd959
b27375090fa7a6b1b7953505ccce5ff008db3c23196579db5749f71f0f485304

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 8989
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.5

77.105.36.156

200 OK

5.2 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.5
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (5181), with no line terminators
Size
5.2 kB (5181 bytes)
Hash
cab72260c840201b4b6e0125b3f66af7
cf137934bc4ef8c0b0c42c325f53f6c639985f18
d05f3a54518cd3ac3a4e9b4cf8c5f0deab037e659299f66a534d00fe10618b64

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 5181
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1

142.250.74.10

200 OK

29 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
29 kB (28850 bytes)
Hash
16f78097cf7c715c9ab5b4695b0976ff
5fb404ff9ee0667cd1d693a9b6e0dde2f7140819
4ff6ec23f58b28856031fe3bb5ef99a4d60d310774c85c80131818b4610e41db

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 27 Nov 2022 21:40:28 GMT
date: Sun, 27 Nov 2022 21:40:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tecasi.co.rs/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.5

77.105.36.156

200 OK

58 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.5
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (21914), with CRLF line terminators
Size
58 kB (57568 bytes)
Hash
d12d58d35825299b77044854d01a1d57
39ee67166de06d9c6ca382f4a4fa3b94b8db815f
66dd4e5c21b276f0f6302f05a0acfaec62edc461993593a028dd7113923f704f

HTTP Headers

GET /wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.5 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Fri, 23 Sep 2022 12:08:28 GMT
Accept-Ranges: bytes
Content-Length: 57568
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0

77.105.36.156

200 OK

5.0 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (4918)
Size
5.0 kB (4957 bytes)
Hash
f24a41ebe5fbe2440caff2972b7c3341
a58d0685eb8defda0252ce1620c5fef93d297ea0
dca573f6831bcc39828ef0c435568a4ff0980edefdfbcf52e15ff8566befb529

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 4957
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2

77.105.36.156

200 OK

21 kB

URL HTTP/1.1
tecasi.co.rs/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
21 kB (21440 bytes)
Hash
034bd11ecaf6fb9240d905245e42e202
ff136c394ed95badfc0107fb98a890dcff642828
ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:15:40 GMT
Accept-Ranges: bytes
Content-Length: 21440
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

77.105.36.156

200 OK

12 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (12198), with no line terminators
Size
12 kB (12198 bytes)
Hash
3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 12198
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0

77.105.36.156

200 OK

33 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
Unicode text, UTF-8 text, with very long lines (32907)
Size
33 kB (32947 bytes)
Hash
e7034cc4a25a7e6912a857bdcfe45899
5b30046f597c18765062572a00e7221cc490b5f8
ab3426e035a4ecbad44e1352a8f7433d0dba2f1a5b72382e2af9eb00a17a798c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 32947
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0

77.105.36.156

200 OK

2.6 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (2620), with no line terminators
Size
2.6 kB (2620 bytes)
Hash
020e87460ce58802842e34a3aac97d83
d2eed5f7573c0bd640fb9f125b6bfedf43ebf9b9
138154c0deed3326477b9b4909175101070a5a3a95342291b53d8cc9879a5f47

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 2620
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tecasi.co.rs/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0

77.105.36.156

200 OK

11 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (10544)
Size
11 kB (10682 bytes)
Hash
4eee50ac6f4f364ba3a284d0753ddae3
a8e7e824e6824ae0b370ff36e2c07ca07276fae0
b936db5880aa9b6b2f26a8d32fc2b689fb75f69d971b94194f16dba801221ffe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 10682
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

tecasi.co.rs/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0

77.105.36.156

200 OK

40 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (40474)
Size
40 kB (40513 bytes)
Hash
63da63aaa1485c280f3505da6724bccf
1c5110797988e86ffd37f66a79cec3dc023a66eb
4276020d6f31a5d3116fde82520418b99a39cf1fc04d578b8eecab57894126a1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 40513
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

maps.google.com/maps?q=Tecasi%20E761%20ko%C5%A1evi&t=m&z=15&output=embed&iwloc=near

216.58.211.14

301 Moved Permanently

292 B

URL HTTP/2
maps.google.com/maps?q=Tecasi%20E761%20ko%C5%A1evi&t=m&z=15&output=embed&iwloc=near
IP
216.58.211.14:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
292 B (292 bytes)
Hash
1d1a0ed7f65312dfc6958e69bc9d8540
0a548328396017f383387a1bf19f75a05cc04990
ca9d4f96a5b6e18a83c47ff83bafe17563a971b6d537a6cb5b629c01619472ad

HTTP Headers

GET /maps?q=Tecasi%20E761%20ko%C5%A1evi&t=m&z=15&output=embed&iwloc=near HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Sun, 27 Nov 2022 21:40:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
location: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sTecasi+E761+ko%C5%A1evi!5e0!6i15
content-type: text/html; charset=UTF-8
server: mafe
content-length: 292
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-2.jpeg

77.105.36.156

200 OK

77 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-2.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x464, components 3\012- data
Size
77 kB (76752 bytes)
Hash
83b0fb02e45ec8ffe36db4c0b4a43a95
a5788020dc1b8be09cabbf85b5e09472043329e7
5a5faf1588378aa7b6ad0b5ed87c542e7a3548eb2ad8a58a932c29b7cf78c34b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-2.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 76752
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/jpeg

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg

77.105.36.156

301 Moved Permanently

300 B

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
300 B (300 bytes)
Hash
2cbf6e320d886ba9c3e4ab09ad89bdae
ef789145a98ad40478bd7aa38490b938c2c7242d
752ee8cd897ce9234ae6b9f7d5adc2c810e2a45688b70c6d5f36edfcedf8c317

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg
Content-Length: 300
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg

77.105.36.156

301 Moved Permanently

300 B

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
300 B (300 bytes)
Hash
8d1de80de1c8801e0b79b670a1b1124f
35b746b0dcc0e110a1c40d808a9ee35af8705858
27f05cbdf4b9379e0728a020d1e8fbcf32bddc65f851e63652b89bd96249adea

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg
Content-Length: 300
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg

77.105.36.156

301 Moved Permanently

300 B

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
300 B (300 bytes)
Hash
8f781d686f7e22935bf414f41d695771
157a371ffc0bcd8eece1843ee9ceaf588c81e721
9af3f92e635ae8c0094ad07deb65be746abc657598b2f042badaf802ac93e2c3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg
Content-Length: 300
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg

77.105.36.156

301 Moved Permanently

300 B

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
300 B (300 bytes)
Hash
19b66b4dce59e975535153092f653a4a
9f3aec35a8224f3dbf8b6c64040e8c66a1f3041a
5b63b99fdb2e804d511caf64472df977753eefc820ef4ff53cb9598719e3eb04

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg
Content-Length: 300
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

tecasi.co.rs/wp-content/uploads/2020/10/41b99ed7-4ca5-4546-9b2b-ebe01e4da5b1.jpg

77.105.36.156

301 Moved Permanently

296 B

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/10/41b99ed7-4ca5-4546-9b2b-ebe01e4da5b1.jpg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
296 B (296 bytes)
Hash
ac11c602a994c9e0199bb037a369104c
c3b30c29b3603e7dc55e3fcdb6d71e1a259e11c9
4fe5203861730f623ad4fe76026e686f5d9f4b486015dff7837f82093df429e0

HTTP Headers

GET /wp-content/uploads/2020/10/41b99ed7-4ca5-4546-9b2b-ebe01e4da5b1.jpg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/10/41b99ed7-4ca5-4546-9b2b-ebe01e4da5b1.jpg
Content-Length: 296
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tecasi.co.rs
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:53:49 GMT
expires: Thu, 23 Nov 2023 18:53:49 GMT
cache-control: public, max-age=31536000
age: 355600
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tecasi.co.rs/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.0

77.105.36.156

200 OK

43 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.0
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
ASCII text, with very long lines (43101)
Size
43 kB (43140 bytes)
Hash
4f3146d8fc678b718f1b7ad07292455d
69fba0deea0d36d39a4a9aa4611d293bad3a671d
59c3d3d0b50f56b9760ee59d09fdb21949b917015026542d88d9c22a070fc8d8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.8.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 43140
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2

216.58.207.195

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11824, version 1.0\012- data
Size
12 kB (11824 bytes)
Hash
deb26e9b1a25438118e5d39d741ae6b6
a2801defb4c8bed8e4083dfde0b2a5a9c0537020
fc66f942651a9fe1a598770d3d896529dcd7a03d02f40655451513093103e61b

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tecasi.co.rs
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11824
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:50:35 GMT
expires: Thu, 23 Nov 2023 19:50:35 GMT
cache-control: public, max-age=31536000
age: 352194
last-modified: Wed, 11 May 2022 19:24:43 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tecasi.co.rs/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0

77.105.36.156

200 OK

93 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Size
93 kB (93372 bytes)
Hash
aab0bb3379e0eb7ebc26071db61fbd57
711c8d350c4192c2f1aa7f73551445b89fb4b161
691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://tecasi.co.rs/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 93372
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: font/woff2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tecasi.co.rs
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 353181
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM.jpeg

77.105.36.156

200 OK

83 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x540, components 3\012- data
Size
83 kB (82925 bytes)
Hash
66053b23605449d401dda52507ae926d
2b68cad9bcce75285fb795e6d182b2ca6d876c07
db4288dfcd81c02e02ab021f58e5384d3b20a83b2aa791549e15b18cbfce6bfe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 82925
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
88e42375d2172305f819b892225cf877
674324641f82700172e72fe259ee2241361e2ea1
6dce3754a67df878b536c368657a492a1f908d408fe7fe5ba43c5d24c44434b3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2

216.58.207.195

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11872, version 1.0\012- data
Size
12 kB (11872 bytes)
Hash
87ace20058325aa069320aa4af875dff
b743548770c46d905ae1ba06310bc001c587fe8e
3c23eb02de6b34e30f18cfb7167abd81a2cedfd1da60dfcb71989517ab3fb431

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu7GxKOzY.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tecasi.co.rs
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:35:48 GMT
expires: Thu, 23 Nov 2023 19:35:48 GMT
cache-control: public, max-age=31536000
age: 353081
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
9f6cc8d3fe9092a6d3901e873a87fd87
2e0aac117a4cc57596efb3d6f6624c269f94b031
e73982e62b92abac3d15b161f4525448cc2bc8b9bacefdcbfc6f87b74ec372e4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2

216.58.207.195

200 OK

12 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11800, version 1.0\012- data
Size
12 kB (11800 bytes)
Hash
e36fccd06262bef92e7a9841e2202225
b907dd02819497b3942220e0aa160c167195506b
7f1c829b0c90fd664a03bb714a74f7d35d9e38ee1687104abc8ad5bd9c8ccb6c

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fChc4EsA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tecasi.co.rs
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 18:48:10 GMT
expires: Thu, 23 Nov 2023 18:48:10 GMT
cache-control: public, max-age=31536000
age: 355939
last-modified: Wed, 11 May 2022 19:25:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e9895464b828d538dc654c678c82b181
af5791cd48761cb3f3f979b481c23e1508692823
c93a71d276aa3f386bef66ed2b4d69e041cccc9a4df5024b14d54ce2569948f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 27 Nov 2022 21:40:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg

77.105.36.156

200 OK

85 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x504, components 3\012- data
Size
85 kB (84659 bytes)
Hash
f8a786f3ac087863d157ad7a9e8a8920
63ffb9d82d834cf94d9a4b58106a7ac5f2b97ea4
a89423a01e6679f470a5c8eb77e1909be0842cebeb849c690ca45838ad618576

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 84659
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg

tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.58-PM.jpeg

77.105.36.156

200 OK

136 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.58-PM.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x604, components 3\012- data
Size
136 kB (136455 bytes)
Hash
2e64245ad8b8f038d4acd5f95e5812e0
4fa261cd39de089c7d2beff52715e0c88a4312c7
a34d7582d17eb34d172198c020a67fd71de56a10277617ebb6f79108e01e46da

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.58-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 136455
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

tecasi.co.rs/wp-content/uploads/2020/09/imageedit_63_4424651981-768x232.png

77.105.36.156

200 OK

38 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/09/imageedit_63_4424651981-768x232.png
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
PNG image data, 768 x 232, 8-bit/color RGBA, non-interlaced\012- data
Size
38 kB (38204 bytes)
Hash
d1f8af5a79d2d296e576d222a154c4ed
37bfcd5b64f345f0d1942d4ab7a0a3fed87433a0
2a877797c0b8868ddbf9d3ba092032dede0204556803c4a174a5395759887b5e

HTTP Headers

GET /wp-content/uploads/2020/09/imageedit_63_4424651981-768x232.png HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:55:23 GMT
Accept-Ranges: bytes
Content-Length: 38204
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg

77.105.36.156

200 OK

88 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x540, components 3\012- data
Size
88 kB (87712 bytes)
Hash
2296a0c0cd62a8d769bc6725b9fbe143
2f6d929e796342f30e3ce73afc31d6204b182b6d
01c8e5e3ac18e7e2514cc0a7916401e712e580589897400473b478d57b6180b9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 87712
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg

tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg

77.105.36.156

301 Moved Permanently

303 B

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
303 B (303 bytes)
Hash
180237012ae9f9c7792e864a9838b337
d4332494196bf70e0c5721b8a2f9477333554496
42d64c70be173e69a1b4b887d8d6f737af82d5911763be9abced0c16051ac507

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.55.59-PM-1.jpeg
Content-Length: 303
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg

77.105.36.156

301 Moved Permanently

301 B

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
301 B (301 bytes)
Hash
aaa3f55b649808d03ae541dcf67287f7
603905b39d0883c90bdc88538492a308df6ae4fe
dfa2cc4fe8a84c05624140dc9a795c014bc51e85f05188eb01ad00ee2e4d34e3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM.jpeg
Content-Length: 301
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg

77.105.36.156

301 Moved Permanently

303 B

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
303 B (303 bytes)
Hash
a61eb58836829d2c7d2bf432f5fd1891
20a21b21817ca208b0190029ab48ae74e4307e14
2d52e3dc491743b8f7b9bb179a6666d1fff6160d874e1abdf7d1fcd470e152a0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Location: https://tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg
Content-Length: 303
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg

77.105.36.156

200 OK

79 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 960x493, components 3\012- data
Size
79 kB (78932 bytes)
Hash
dde04800b27bafe702021c2745315d98
008c57320140e34525479c408439f96854b8f40e
735f9bd262fb6818bdebc4eb4a05f70f74514c1d94a782a6173f37dcdb9ea751

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/10/WhatsApp-Image-2020-10-04-at-10.56.00-PM-1.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 78932
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg

tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg

77.105.36.156

200 OK

322 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1060x1600, components 3\012- data
Size
322 kB (322444 bytes)
Hash
0a74dec36fffe006bbb8d469732edc01
e4b07339c5aac4e8f90d0014244f3bace6868438
50143d1d730d133253ce6101a2c92fc0818332d040b6c0170421f0b046ba23c5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-4.34.29-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 322444
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg

tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg

77.105.36.156

200 OK

429 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1060x1600, components 3\012- data
Size
429 kB (429143 bytes)
Hash
6121c3dcf8d498173cd66c71c0ee3fbc
eb3c035b476a958ac289654b582c76e3ec4fe604
bc298b90fe8d8a29838f99037ab69e5e7a8a98b57b4b5d4da3197279a046f7d1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.49.46-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 429143
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg

tecasi.co.rs/wp-content/uploads/2020/10/41b99ed7-4ca5-4546-9b2b-ebe01e4da5b1.jpg

77.105.36.156

200 OK

965 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/10/41b99ed7-4ca5-4546-9b2b-ebe01e4da5b1.jpg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1600x1066, components 3\012- data
Size
965 kB (965277 bytes)
Hash
b95a24c4730c03cfe5dc10272106f8ee
e5293f9d32a71abb2daf3cc8deff24e1ceeae130
fe0e05383e2195b00d2c21af4e6a84711d09949cedfd7f860132d52350ad6bb6

HTTP Headers

GET /wp-content/uploads/2020/10/41b99ed7-4ca5-4546-9b2b-ebe01e4da5b1.jpg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 965277
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sTecasi+E761+ko%C5%A1evi!5e0!6i15

142.250.74.164

200 OK

1.3 kB

URL HTTP/2
www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1sTecasi+E761+ko%C5%A1evi!5e0!6i15
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2564)
Size
1.3 kB (1261 bytes)
Hash
2fffa8a0b9951ebfc1e67a519170fe1a
5d85034400296c0d83fd77bfdd25f7cbc5764c97
05026ec2d28060950f96bf1f4d58c859c6cea9f4535b9d7984dc3337e13662ec

HTTP Headers

GET /maps/embed?origin=mfe&pb=!1m4!2m1!1sTecasi+E761+ko%C5%A1evi!5e0!6i15 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tecasi.co.rs/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sun, 27 Nov 2022 21:40:29 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-YUWu5ELJzn77U6Yds8uAaw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 1261
x-xss-protection: 0
server-timing: gfet4t7; dur=305
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg

77.105.36.156

200 OK

338 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1055x1600, components 3\012- data
Size
338 kB (337673 bytes)
Hash
291bed91a50f8ae1428868874645177e
00dea1623cbe50b81b5279710fc17bb01e104e0f
688a34a9be0878e03f4ce568fbc0b0a428a95b977ba74de68dfc7f03b764a7cb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-24-at-1.13.27-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 337673
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/jpeg

maps.gstatic.com/maps-api-v3/embed/js/51/1/init_embed.js

142.250.74.163

200 OK

69 kB

URL HTTP/2
maps.gstatic.com/maps-api-v3/embed/js/51/1/init_embed.js
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2669)
Size
69 kB (68704 bytes)
Hash
c088038bb01fdc7f15f21e2216b6b8b4
fa724c5616022f6825ac476354c492b0bf544d21
b0ecfa74efada796d206177e1bc78c7ac75250608051c6576335c6231fc2de78

HTTP Headers

GET /maps-api-v3/embed/js/51/1/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 68704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 07:12:45 GMT
expires: Thu, 23 Nov 2023 07:12:45 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 21:36:22 GMT
content-type: text/javascript
age: 397664
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg

77.105.36.156

200 OK

70 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
gzip compressed data, max compression\012- data
Size
70 kB (69662 bytes)
Hash
232f3c79296bc041b209e2e374ba2796
d3b2ceafa8cec93ceca6e06bf0a789cb329257b9
413292b482144f0b0f819b87846f89f4dcc9298d60b5024bb01b81418dcf6579

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/uploads/2020/09/WhatsApp-Image-2020-09-21-at-3.43.10-PM.jpeg HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Tue, 27 Oct 2020 14:18:32 GMT
Accept-Ranges: bytes
Content-Length: 558379
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/jpeg

tecasi.co.rs/wp-content/uploads/2020/12/favicon.ico

77.105.36.156

200 OK

270 kB

URL HTTP/1.1
tecasi.co.rs/wp-content/uploads/2020/12/favicon.ico
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
MS Windows icon resource - 1 icon, 256x256, 32 bits/pixel\012- data
Size
270 kB (270398 bytes)
Hash
9772ce10656fb5cf160b5ded085c14f7
b796e6775a48576f2d54571addd9b89855c74430
8d2ce1d873fdf8b69d3bc33cc2587902c0197ade886c6ec8e15d6eb6c2ca6f4e

HTTP Headers

GET /wp-content/uploads/2020/12/favicon.ico HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
Last-Modified: Wed, 02 Dec 2020 18:02:58 GMT
Accept-Ranges: bytes
Content-Length: 270398
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/x-icon

tecasi.co.rs/wp-json/contact-form-7/v1/contact-forms/54/feedback/schema

77.105.36.156

200 OK

308 B

URL HTTP/1.1
tecasi.co.rs/wp-json/contact-form-7/v1/contact-forms/54/feedback/schema
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type
JSON data\012- , ASCII text, with very long lines (308), with no line terminators
Size
308 B (308 bytes)
Hash
157c0403c9f495a30e63aef32ae29787
73176eaf893225dd30026ce7be65e552c4f9996d
8fdf1cfd78e4abe7fd0a37250efe89dee5dd44c2f02a3a2793751b593a0b4eb3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-json/contact-form-7/v1/contact-forms/54/feedback/schema HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://tecasi.co.rs/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:22 GMT
Server: Apache
X-Robots-Tag: noindex
Link: <https://tecasi.co.rs/wp-json/>; rel="https://api.w.org/"
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-WP-Total, X-WP-TotalPages, Link
Access-Control-Allow-Headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
Allow: GET
Vary: Origin
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/json; charset=UTF-8

34.120.237.76

200 OK

8.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.4 kB (8387 bytes)
Hash
4e97baa4851785eac92c719abf481c64
c32a57038d3cdbc514c9081c9938eca6a04fb481
adb59e982648082e5421f58899a5331b2747e9d45be33c495fbe3ab8cc872b22

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfaef414-0c01-4bb9-800d-29da0ef5607d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8387
x-amzn-requestid: fc238ea9-0169-47fc-b92e-f12b3ee27c72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b433YGtOoAMFexg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6379d362-2f97c67a2e5f05b6746cf858;Sampled=0
x-amzn-remapped-date: Sun, 20 Nov 2022 07:12:34 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: oMrdB0NUGe5CqTY7eFd3u8xaSy9TyDdOrf1awBikFJzm3jWreD2irQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 12:30:20 GMT
age: 33013
etag: "c32a57038d3cdbc514c9081c9938eca6a04fb481"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

tecasi.co.rs/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6

77.105.36.156

200 OK

0 B

URL HTTP/1.1
tecasi.co.rs/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
77.105.36.156:0
ASN
#9125 Drustvo za telekomunikacije Orion telekom doo Beograd-Zemun

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: tecasi.co.rs
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tecasi.co.rs/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Sun, 27 Nov 2022 21:40:21 GMT
Server: Apache
Last-Modified: Mon, 31 Oct 2022 14:30:58 GMT
Accept-Ranges: bytes
Content-Length: 139153
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.195

200 OK

0 B

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tecasi.co.rs
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 14:07:32 GMT
expires: Thu, 23 Nov 2023 14:07:32 GMT
cache-control: public, max-age=31536000
age: 372777
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (45)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations