Report - flaimway.com/

Report Overview

Submitted URL
flaimway.com/
IP
52.44.38.177
ASN
#14618 AMAZON-AES
Submitted
2022-10-11 03:58:02
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
56

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.9 kB	34.160.144.191
ocsp2.globalsign.com	1544	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	345 B	1.9 kB	104.18.21.226
flaimway.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	22 kB	2.0 MB	52.44.38.177
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.76.226
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	7.0 kB	142.250.74.3
translate.googleapis.com	1005	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	886 B	101 kB	216.58.207.202
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.2 kB	142.250.74.10
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	18.164.68.21
keenitsolutions.com	54066	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	722 B	32 kB	35.208.237.19
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	64 kB	34.120.237.76
translate.google.com	1156	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	394 B	807 B	142.250.74.46
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	737 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	35.161.6.128
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.9 kB	58 kB	216.58.207.195
www.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	6.0 kB	142.250.74.163

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-11	medium	flaimway.com/	Phishing
2022-10-11	medium	flaimway.com/	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/css/flaticon.css?ver=5.9	Phishing
2022-10-11	medium	flaimway.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9	Phishing
2022-10-11	medium	flaimway.com/wp-content/plugins/redux-framework/redux-core/extendify-sdk/public/build/extendify-utilities.css?ver=13.4	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/css/font-awesome.min.css?ver=5.9	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/css/slick.css?ver=5.9	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/css/bootstrap.min.css?ver=5.9	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/css/magnific-popup.css?ver=5.9	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/css/icofont.css?ver=5.9	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/css/default.css?ver=5.9	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/css/responsive.css?ver=5.9	Phishing
2022-10-11	medium	flaimway.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9	Phishing
2022-10-11	medium	flaimway.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.11	Phishing
2022-10-11	medium	flaimway.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/js/modernizr-2.8.3.min.js?ver=20151215	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/js/bootstrap.min.js?ver=20151215	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/js/owl.carousel.min.js?ver=20151215	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/js/slick.min.js?ver=20151215	Phishing
2022-10-11	medium	flaimway.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.11	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/js/waypoints.min.js?ver=20151215	Phishing
2022-10-11	medium	flaimway.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.11	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/js/flickr/jflickrfeed.min.js?ver=20151215	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/js/classie.js?ver=201513434	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/js/jquery.magnific-popup.min.js?ver=20151215	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/js/main.js?ver=201513434	Phishing
2022-10-11	medium	flaimway.com/wp-content/themes/unitek/assets/fonts/fontawesome-webfont.woff2?v=4.7.0	Phishing
2022-10-11	medium	flaimway.com/wp-admin/admin-ajax.php	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (33)

	URL	Size	First Seen	Last Seen
	flaimway.com/	3.0 kB	2023-03-08	2023-03-08
Pretty URL flaimway.com/ IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:41:26 Last Seen2023-03-08 12:41:26 Times Seen1 Hash 5ecd87204fb423604055d8b550e95cbc d0103b2fc2a863cd60820d38dd18bc9a88ed7928 fbb8eb1cb82cf667a5c0efacb5eb637c694376ece555409abe76153a1b1a23a4 Loading...

	flaimway.com/	398 B	2023-03-07	2024-04-15
Pretty URL flaimway.com/ IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:39:41 Last Seen2024-04-15 20:09:58 Times Seen313 Hash 7d4e47bfb38f1130194ab4b9663ce243 7b1fd5a7fd59a89cf2e7e40f542a0f7675d62b81 a31ea19a8418d590d2105c9dfa93ab528bd5b4b77704be078fd38b72168a94dd Loading...

	flaimway.com/	490 B	2023-03-08	2023-03-08
Pretty URL flaimway.com/ IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:41:26 Last Seen2023-03-08 12:41:26 Times Seen1 Hash 366d406f920f4bb2dfb25b74df08c3bf 18d4ff35cec36c17a327345b3a456627c1ab0171 ddab77921fdd7d4444e4c3ea980204af84df71315dd3065ecd9d545be75eac94 Loading...

	flaimway.com/wp-content/themes/unitek/assets/js/bootstrap.min.js?ver=20151215	49 kB	2023-03-07	2024-04-25
Pretty URL flaimway.com/wp-content/themes/unitek/assets/js/bootstrap.min.js?ver=20151215 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-25 12:28:35 Times Seen136818 Hash 14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 12:51:10 Times Seen37063064 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	flaimway.com/wp-content/themes/unitek/assets/js/main.js?ver=201513434	39 kB	2023-03-08	2024-02-13
Pretty URL flaimway.com/wp-content/themes/unitek/assets/js/main.js?ver=201513434 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:41:26 Last Seen2024-02-13 22:30:10 Times Seen3 Hash e478ddb3ee196635213091e8eb628847 46a151817ca9add4d67eb0e6f3947cc4f573aa57 92f3f8ead65b25ab048937a94ada01848c5ff88ca3e91fa1542755b4b3e53b0e Loading...

	flaimway.com/wp-content/themes/unitek/assets/js/classie.js?ver=201513434	1.8 kB	2023-03-07	2024-04-25
Pretty URL flaimway.com/wp-content/themes/unitek/assets/js/classie.js?ver=201513434 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:05 Last Seen2024-04-25 12:13:51 Times Seen4937 Hash a9df1cfb76ce492afd9d13f3320272fd 782b9564f015a2ec7bdf9c89e238fab9b44bd587 717ad22aa426d024f6c9942949b49d9a20f4239b94dfee34f94c96d8778f2144 Loading...

	flaimway.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-25
Pretty URL flaimway.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 09:54:53 Times Seen31826 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2	78 kB	2023-03-08	2023-03-08
Pretty URL translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2 IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:41:26 Last Seen2023-03-08 12:41:26 Times Seen1 Hash 53c4214daf85a8988d27c96901b6da38 f1831a66e2d40fd13fef63010dcd62ab34e61bb6 d79358ffe42021cdc0f931e77c939d87a68fadfd75163c60210731aa3cb4338b Loading...

	flaimway.com/	1.3 kB	2023-03-07	2024-04-15
Pretty URL flaimway.com/ IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:43 Last Seen2024-04-15 20:09:58 Times Seen278 Hash f8c5db399f8e5ae94a985b3bcaf25820 f867b4d7480cf88c5226ddec04e24e0f0c250e34 b41cfe45132d3f31ea3796051959689f6be336ee9263ea7aa17522994b539df4 Loading...

	flaimway.com/wp-content/themes/unitek/assets/js/modernizr-2.8.3.min.js?ver=20151215	16 kB	2023-03-07	2024-04-25
Pretty URL flaimway.com/wp-content/themes/unitek/assets/js/modernizr-2.8.3.min.js?ver=20151215 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:33 Last Seen2024-04-25 01:09:57 Times Seen1531 Hash da941a6e1e1df098744318f6d25ba13a 15f441d0df5a01efc674d62b88c0c95bf233656a 2b0f8526e7a1b0f1fb42e8acec3c1e7737a1a3065b773ebd13a492952f557967 Loading...

	flaimway.com/wp-content/themes/unitek/assets/js/jquery.magnific-popup.min.js?ver=20151215	20 kB	2023-03-07	2024-02-22
Pretty URL flaimway.com/wp-content/themes/unitek/assets/js/jquery.magnific-popup.min.js?ver=20151215 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:54 Last Seen2024-02-22 14:00:23 Times Seen269 Hash edb2fb875e1b2345dfdc8e3ae5022514 bcc892714dc191598e375b2ebc61f5e2e4c88048 539d846262b7399ff1daee9b35165e0a2abfa7e8ecfdabdfe3101394a33d03ce Loading...

	flaimway.com/	2.1 kB	2023-03-08	2023-03-08
Pretty URL flaimway.com/ IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:41:26 Last Seen2023-03-08 12:41:26 Times Seen1 Hash ea31ed28501e96d6f50e40d1260176f0 49fa2476eb3e0aa7a5d53faae67f6233bcc19472 9c18ad7c1943f549d0c2b294b346b204b0e226b77cf6419d44a04d1df4418cb8 Loading...

	flaimway.com/	51 B	2023-03-08	2023-03-08
Pretty URL flaimway.com/ IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:41:26 Last Seen2023-03-08 12:41:26 Times Seen1 Hash 1cdc52321f0e212bb0ceb198e243d96d 6cf77d140ef0424a6078e8686753c9bd23dc8dbd 537baf70e05180f5020e85dbb05974244ed55e5a57cbf1d42ca39e4c18f75173 Loading...

	translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.8a8yABOHWI4.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqcCCBEEFkqdbXKMHVanBIGeD6dNQ/m=el_main	272 kB	2023-03-08	2023-03-10
Pretty URL translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.8a8yABOHWI4.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqcCCBEEFkqdbXKMHVanBIGeD6dNQ/m=el_main IP 216.58.207.202 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:41:26 Last Seen2023-03-10 08:50:27 Times Seen1 Hash df9a548e2d3687659b3ee14acd0e3fe5 19b57bb5ee40f435f4d59e201437c14df38702a6 bcba578ea7b43b3455889f58906454c459a6a3d9d49c3b1afe440f882c430f9f Loading...

	flaimway.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-25
Pretty URL flaimway.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 12:50:40 Times Seen68622 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	flaimway.com/	2.3 kB	2023-03-07	2024-04-23
Pretty URL flaimway.com/ IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:11 Last Seen2024-04-23 14:29:04 Times Seen1832 Hash be435481837b62187ea43999d905c91a 403a7bb5b4764bf8951e239b7ad591cd0eb62d7e fc772d0508e695b6dc294b8734e7693bbdc64bbeae89239a03bf32e8b56aea2b Loading...

	flaimway.com/wp-content/themes/unitek/assets/js/owl.carousel.min.js?ver=20151215	43 kB	2023-03-07	2024-04-17
Pretty URL flaimway.com/wp-content/themes/unitek/assets/js/owl.carousel.min.js?ver=20151215 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:24 Last Seen2024-04-17 17:21:14 Times Seen1684 Hash 56b28ad35f1816c6894b14190a0a006d 967ceaa9e6f67e636d818f42b4d5d15c7a4a254e b5757aa153f991c82c949e638c56b4913042196240f3a41cec5a40c3366d1bdd Loading...

	flaimway.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4	5.6 kB	2023-03-07	2024-04-25
Pretty URL flaimway.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-25 09:08:19 Times Seen30969 Hash 3a56752b736635bf69cb069b8818cbfd 42e0951fe74bb3f56a30f51291823bcd4a84d76e ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869 Loading...

	translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback	17 kB	2023-03-07	2024-04-25
Pretty URL translate-pa.googleapis.com/v1/supportedLanguages?client=te&display_language=no&key=AIzaSyBWDj0QJvVIx8XOhRegXX5_SrRWxhT5Hs4&callback=callback IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-25 10:16:52 Times Seen14176 Hash a3eefe14b1b4698460d992bd1673a26b a2fca6ebb00b8bdcca3eda88654d02d2c165b9c4 87514750a90cd70dd22c8673cfa80d804ef55840bd0755950af2118d8d218067 Loading...

	flaimway.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9	18 kB	2023-03-07	2024-04-25
Pretty URL flaimway.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 11:55:37 Times Seen12594 Hash 116c86c56f8db0bb63f15ceda50fdc98 75e308982ecf7cd43644b8b426e6aa1a0b0fbe26 def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7 Loading...

	flaimway.com/wp-content/themes/unitek/assets/js/waypoints-sticky.min.js?ver=20151215	1.2 kB	2023-03-07	2024-02-22
Pretty URL flaimway.com/wp-content/themes/unitek/assets/js/waypoints-sticky.min.js?ver=20151215 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:01 Last Seen2024-02-22 14:00:21 Times Seen208 Hash 592deb4a2dac60910d7129f97c47f91f bc5118f65eecf69f5a7138c748375b11a1f62cce ee5de4bbbf803c4ff05f94fc34b103e4aaa3876fd0dffd16f0479e58755288eb Loading...

	flaimway.com/wp-content/themes/unitek/assets/js/jquery.counterup.min.js?ver=20151215	1.1 kB	2023-03-07	2024-04-24
Pretty URL flaimway.com/wp-content/themes/unitek/assets/js/jquery.counterup.min.js?ver=20151215 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-04-24 16:19:50 Times Seen14710 Hash ef36cca760bf1cd76cfcd0e4dc10cef1 ef38469f60d58850fe55c4de2ec7e289a2415d71 26d40f8ffdf1b9bf286a954c6888a33cda0cd031e802d821fe0c0562e379ae29 Loading...

	flaimway.com/	2.1 kB	2023-03-08	2023-03-08
Pretty URL flaimway.com/ IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:41:26 Last Seen2023-03-08 12:41:26 Times Seen1 Hash 13bd89341e562c7e214ae088ce7c4df2 e0b33597677f05bb96bf8aa599af47bbb0c957b7 1119faa1c1c80e3c8066f370d5433edb8c1d9460e1f0b52e17c232a741308cc5 Loading...

	flaimway.com/	332 B	2023-03-07	2024-04-25
Pretty URL flaimway.com/ IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:40 Last Seen2024-04-25 08:48:28 Times Seen9155 Hash 7d495bb1d6c246a2d57df3ab9332a3cc 6367d4f8addf48f2af1023b8176a2263bb424d01 df09a4f39d495e901a5479fce56c8ddec4f8a6acda1b3ceab7adc704fa439e32 Loading...

	http:srcdoc	1.2 kB	2023-03-07	2023-10-23
Pretty URL http:srcdoc IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2023-10-23 05:00:07 Times Seen4 Hash 1de62a4f326c081c49d5fdbb380837a9 2306f80fa6c73543b3af799b105ef6fc812d89d0 71a8551572997ad5c34fb5e73b002d5b1ce1d900c9e5453f1fe24dfb68bd6c13 Loading...

	flaimway.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.7.0	20 kB	2023-03-07	2024-04-25
Pretty URL flaimway.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.7.0 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:11 Last Seen2024-04-25 04:54:54 Times Seen2561 Hash 596d6e5d8400fd1e913f9adc21071f93 fee2d7a4ac08d5a522c2298a5ad3ed30ac9e62ec 159faf7827be43b4c85a35fc941924a9de59a169d42d600b49161f60debf9dff Loading...

	flaimway.com/wp-content/themes/unitek/assets/js/slick.min.js?ver=20151215	53 kB	2023-03-07	2024-04-18
Pretty URL flaimway.com/wp-content/themes/unitek/assets/js/slick.min.js?ver=20151215 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:35 Last Seen2024-04-18 11:46:23 Times Seen1514 Hash 16a791ccc8e9d34fc76accfadfdd5e4f 3f9098a372936df720e4ffef3493c328b48983ef 4f183d6af3e88171a4bbae9a2e77f90f55b425b013d057b80eade59f96ae5d0d Loading...

	flaimway.com/wp-content/themes/unitek/assets/js/waypoints.min.js?ver=20151215	8.1 kB	2023-03-07	2024-02-22
Pretty URL flaimway.com/wp-content/themes/unitek/assets/js/waypoints.min.js?ver=20151215 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:00 Last Seen2024-02-22 14:00:22 Times Seen163 Hash 6afbe9ac29006d1e859730adcea67dfa f0c5c3a93480c230dea747b9749afe5e2f6c9106 a65638715271e0c47e5d72c041540886d94a5e06d10ce60a6fee1fcd8d534b45 Loading...

	flaimway.com/	493 B	2023-03-07	2024-04-25
Pretty URL flaimway.com/ IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:11 Last Seen2024-04-25 12:27:07 Times Seen4274 Hash f73f3cc147a181d5955eaba113c1c122 07a5ef5a63d37a99d17986786d75bdcb3cda6409 5aab3a40376dc0dffe15b2882b50d298e6c877683a4f25ddfcf77fbd16d47b56 Loading...

	flaimway.com/wp-content/themes/unitek/assets/js/isotope-unitek.js?ver=20151215	35 kB	2023-03-07	2024-02-22
Pretty URL flaimway.com/wp-content/themes/unitek/assets/js/isotope-unitek.js?ver=20151215 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:00 Last Seen2024-02-22 14:00:23 Times Seen151 Hash 7a607c677b21dbc691582b6504a9c8de faddb730ec2f82b627e9565c44615e804ad0e8fa 12c7afb612e3dbaaa7faba98ecee93b0a3ddc5f77bc48ce1bc53142246524a3c Loading...

	flaimway.com/wp-content/themes/unitek/assets/js/flickr/jflickrfeed.min.js?ver=20151215	1.7 kB	2023-03-07	2024-02-13
Pretty URL flaimway.com/wp-content/themes/unitek/assets/js/flickr/jflickrfeed.min.js?ver=20151215 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:54 Last Seen2024-02-13 22:30:08 Times Seen37 Hash fbf50aa82dc50bf879fa520bcae1fc90 7b62e319aaaa5d91e18ad7739ab87579d4e6d7fe fc6516d82e1228d59bf7a37b1d9682ce6bfc1bbac41201ed825713c602ed72ed Loading...

	flaimway.com/wp-content/themes/unitek/assets/js/offcanvas.main.js?ver=201513434	1.2 kB	2023-03-08	2024-02-13
Pretty URL flaimway.com/wp-content/themes/unitek/assets/js/offcanvas.main.js?ver=201513434 IP 52.44.38.177 ASN #14618 AMAZON-AES Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 12:41:26 Last Seen2024-02-13 22:30:09 Times Seen4 Hash 86f2a3bf8b32e30de3536ed97da92eb9 3304efd1b43fbd6c12f35c29c7328785cadfe423 ee3f07d90ada53cbb659fbfb6d309cce15a23183ae4dd261fde9f3b03ea5c0f3 Loading...

HTTP Transactions (103)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

18.164.68.21

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
18.164.68.21:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
3f17af4e8a1739eda4a518039f4892f9
c3feba08ae7e8f57e0fe9bcd2ebedea6bda67cbb
c485b09cad08b5233fe8753682faf59219fe0d18fcc34d90dc88fb0971295f5f

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 11 Oct 2022 03:08:14 GMT
Expires: Tue, 11 Oct 2022 03:29:15 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 99c9ffdbfc5207f9665251bb3284f588.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: RT2pZW1lSbW-OGSXFYXvW-E82BGkkQVgZFEqEPATpte7rOWKgIWSGg==
Age: 2977

flaimway.com/

52.44.38.177

301 Moved Permanently

0 B

URL HTTP/1.1
flaimway.com/
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Tue, 11 Oct 2022 03:57:51 GMT
Server: Apache/2.4.41 (Ubuntu)
X-Redirect-By: WordPress
Location: https://flaimway.com/
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ef6d323da0ad155f526b4a57c2e46ccc
71686b19b3ca049b9b66f8740284c552a3f61a20
99e2f56075a08f133a9d1d0122ab9ef2d9eaa61e18f46994e52e21a8a53203f3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "99E2F56075A08F133A9D1D0122AB9EF2D9EAA61E18F46994E52E21A8A53203F3"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16108
Expires: Tue, 11 Oct 2022 08:26:19 GMT
Date: Tue, 11 Oct 2022 03:57:51 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3d0ffae9abfdf558a6286013a0201c8b
2dc8ea0000a1b0c0f849611fdd73429bca51bfad
8e19eab9b6d16819f9ef3920971542cbcf5dd18280617e2de1a3827f0c149398

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8E19EAB9B6D16819F9EF3920971542CBCF5DD18280617E2DE1A3827F0C149398"
Last-Modified: Sun, 09 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10751
Expires: Tue, 11 Oct 2022 06:57:02 GMT
Date: Tue, 11 Oct 2022 03:57:51 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: TnFCk8bacjhuUSXJHdiil68IiW3Yuj81yHUpmqfxNIRXlWG98O2PTemhAFoOqVMpa/8GQIyOzx+3953Qev4CDA==
x-amz-request-id: 4KYP65PCCPJYVYYV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 11 Oct 2022 03:32:46 GMT
age: 1505
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 03:57:51 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

18.164.68.21

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
18.164.68.21:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Pragma, Content-Length, Backoff, Last-Modified, Cache-Control, Content-Type, Retry-After, ETag, Expires, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 11 Oct 2022 03:41:37 GMT
Expires: Tue, 11 Oct 2022 04:38:13 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 3fc96eac90753d96374d6038f01cfe76.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: MhP3POioKg47laKtk6Dx5VWJPbS2fhqi90VYQjsS20IUUetkROnCFQ==
Age: 975

ocsp2.globalsign.com/gsalphasha2g2

104.18.21.226

200 OK

1.4 kB

URL HTTP/1.1
ocsp2.globalsign.com/gsalphasha2g2
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.4 kB (1423 bytes)
Hash
2924c1f6d6681182f09f1ef32fed8d97
3e4eb218a60aac18ef137a849d2975fb1c0ab04d
a76321310f368741061ea8b9822c37b563b93e561481c2e314a8c3b0ef519290

HTTP Headers

POST /gsalphasha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Content-Type: application/ocsp-response
Content-Length: 1423
Connection: keep-alive
Expires: Sat, 15 Oct 2022 01:45:19 GMT
ETag: "3e4eb218a60aac18ef137a849d2975fb1c0ab04d"
Last-Modified: Tue, 11 Oct 2022 01:45:20 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7584ac9019c5fac8-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d545bc725dcd5d6f1dfc10a8b35aeb3a
82d92587953dac8a05d691730b8318719328de6b
9d1e6f1bf4b1c138d9e07e67264cb9ac5090a1c338ff72c87e1758e187cccb24

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6429
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 03:57:52 GMT
Last-Modified: Tue, 11 Oct 2022 02:10:43 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

flaimway.com/

52.44.38.177

200 OK

25 kB

URL HTTP/1.1
flaimway.com/
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (8047), with CRLF, LF line terminators
Size
25 kB (24916 bytes)
Hash
ca589e1aa0a19ab6dee430b679c6abd3
b31396b833c4dbe9866d304a434b549e1c28cb7b
eaecbfa67138ba00601d4a55756f210eeb468d44af467921830fe0cddea1d0c3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Link: <https://flaimway.com/wp-json/>; rel="https://api.w.org/", <https://flaimway.com/wp-json/wp/v2/pages/2210>; rel="alternate"; type="application/json", <https://flaimway.com/>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 24916
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

flaimway.com/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=5.9

52.44.38.177

200 OK

299 B

URL HTTP/1.1
flaimway.com/wp-content/plugins/gtranslate/gtranslate-style24.css?ver=5.9
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
299 B (299 bytes)
Hash
1e34ceaa9a4c96c3499483f5fe818671
55a92f1196d0155e2bf0632f0905b5b8000f5ad7
9738e8e5222b5802082be7a77e56ad9fdee06718da410f356504184fd08b56bf

HTTP Headers

GET /wp-content/plugins/gtranslate/gtranslate-style24.css?ver=5.9 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 05 Aug 2022 11:16:31 GMT
ETag: "2b5-5e57c9920ee41-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 299
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
582b9d37a9e3e9b109753b5649cd8fd8
5891b7dc89e563b938a0cf773e0d3b6d860a6b81
d47a95bffee9458afaaa4ce85e192d98ad9b63d7ecb26d1459905769c2858679

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 03:57:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
582b9d37a9e3e9b109753b5649cd8fd8
5891b7dc89e563b938a0cf773e0d3b6d860a6b81
d47a95bffee9458afaaa4ce85e192d98ad9b63d7ecb26d1459905769c2858679

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 03:57:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

35.161.6.128

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.161.6.128:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: N+2h9pC5ceFas5KEoeQbwg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xtqekdnV/11oZI6jSqtE4zF6HmM=

flaimway.com/wp-content/themes/unitek/assets/css/flaticon.css?ver=5.9

52.44.38.177

200 OK

768 B

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/css/flaticon.css?ver=5.9
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
768 B (768 bytes)
Hash
4a9aac8f30ecf77f0455e0621f511591
ac78b8884c6b9d9e23ed060ee2bbce26320ed3e5
89a2a456b2101a0ced351d4459e0144498084b277da412bbacb78e9427a57ba7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/css/flaticon.css?ver=5.9 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "d96-5dcfa69af38a4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 768
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

flaimway.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9

52.44.38.177

200 OK

11 kB

URL HTTP/1.1
flaimway.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
Unicode text, UTF-8 text, with very long lines (35768)
Size
11 kB (10906 bytes)
Hash
75e30f798fd1725a8b1ea1936dc530b6
77346f179af94905a0ad6c6acdf8ed96813392d5
2b8c9b5f79d9e61085c9383201c801c9c8d7cec0dd760ccbb5e63fedcfb983a6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 11 Jan 2022 03:15:32 GMT
ETag: "1357b-5d545ddab3d00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10906
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

flaimway.com/wp-content/plugins/redux-framework/redux-core/extendify-sdk/public/build/extendify-utilities.css?ver=13.4

52.44.38.177

200 OK

5.4 kB

URL HTTP/1.1
flaimway.com/wp-content/plugins/redux-framework/redux-core/extendify-sdk/public/build/extendify-utilities.css?ver=13.4
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (23874)
Size
5.4 kB (5360 bytes)
Hash
975e98e1db68a72fc508595e57dde60e
6601bf45575337f97816bc90fb2a7ca0d9e60592
7e1caccb46a15975cf877410e60695bc241052b2eded708fbd0e9b7a0e9a0599

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/redux-framework/redux-core/extendify-sdk/public/build/extendify-utilities.css?ver=13.4 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:55 GMT
ETag: "c2e1-5dcfa69a03502-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5360
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

flaimway.com/wp-content/themes/unitek/assets/css/font-awesome.min.css?ver=5.9

52.44.38.177

200 OK

7.1 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/css/font-awesome.min.css?ver=5.9
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (30837)
Size
7.1 kB (7053 bytes)
Hash
52f1a8a2ce85fa8432308b33bc1a2e79
fd80917af5371c8ecad0198592a1e7cce4b77b0e
07bd6a9ea0213e20f362485aadc17a88c486ecfb394004b41b8b38db6e6a35f6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/css/font-awesome.min.css?ver=5.9 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "7918-5dcfa69aeea85-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7053
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

flaimway.com/wp-content/themes/unitek/assets/css/lineicons.css?ver=5.9

52.44.38.177

200 OK

1.4 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/css/lineicons.css?ver=5.9
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
1.4 kB (1403 bytes)
Hash
f6914394aed6234a02ad973229a89be3
c8f8c40e0e7f29a39dc981faf942c30c0ddbbfbc
3a95909327e73578b455975a71d2519e736efbe41e7aeccbe6bbca2fd8a2383b

HTTP Headers

GET /wp-content/themes/unitek/assets/css/lineicons.css?ver=5.9 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "1ea0-5dcfa69af1964-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1403
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css

flaimway.com/wp-content/themes/unitek/assets/css/slick.css?ver=5.9

52.44.38.177

200 OK

557 B

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/css/slick.css?ver=5.9
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
557 B (557 bytes)
Hash
d0e230b935d3f17f3b2ae2c38a6a6d8f
b9f29063a70a9599a89bcb497d833fc758ad63ba
0c38f4e97078d023aeb69238adae19262e7054147463bfe180b00fa7d85a0b7c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/css/slick.css?ver=5.9 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "6c1-5dcfa69af09c4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 557
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

flaimway.com/wp-content/themes/unitek/assets/css/owl.carousel.css?ver=5.9

52.44.38.177

200 OK

1.1 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/css/owl.carousel.css?ver=5.9
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with CRLF line terminators
Size
1.1 kB (1139 bytes)
Hash
a70f5fe2923cc27a93bc4920135dd5bd
9a70d1b8817008d5d4f3cde4a668b35aec311148
4be49b04543692791ad8abc94aaaae3cd29720d0df6c52ec58fe27794e50037b

HTTP Headers

GET /wp-content/themes/unitek/assets/css/owl.carousel.css?ver=5.9 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "1066-5dcfa69af09c4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1139
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

flaimway.com/wp-content/themes/unitek/assets/css/bootstrap.min.css?ver=5.9

52.44.38.177

200 OK

20 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/css/bootstrap.min.css?ver=5.9
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (65325)
Size
20 kB (20521 bytes)
Hash
81138304691e2d458b60dc0273d7dce6
a3050db1182ba5b46cfe7882ad8e853bb980a2ef
961dd2b74be3eaa8b7b28d69c7a3e9f7f140280cdb6cdcce51fff733ada1ce33

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/css/bootstrap.min.css?ver=5.9 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "235c0-5dcfa69af38a4-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 20521
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
582b9d37a9e3e9b109753b5649cd8fd8
5891b7dc89e563b938a0cf773e0d3b6d860a6b81
d47a95bffee9458afaaa4ce85e192d98ad9b63d7ecb26d1459905769c2858679

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 03:57:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

flaimway.com/wp-content/themes/unitek/assets/css/magnific-popup.css?ver=5.9

52.44.38.177

200 OK

1.8 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/css/magnific-popup.css?ver=5.9
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
1.8 kB (1816 bytes)
Hash
24d43b806e85342a40e2da6970fdfaa0
b365e6daf45244233ffac6681aa3dad08a26f2c5
dcf879e6dd283fcbef1dc4a0392fbd2ec5ea512b31a97f64ea3076fc392d784e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/css/magnific-popup.css?ver=5.9 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "1b27-5dcfa69af2904-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1816
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
582b9d37a9e3e9b109753b5649cd8fd8
5891b7dc89e563b938a0cf773e0d3b6d860a6b81
d47a95bffee9458afaaa4ce85e192d98ad9b63d7ecb26d1459905769c2858679

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 03:57:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

flaimway.com/wp-content/themes/unitek/assets/css/icofont.css?ver=5.9

52.44.38.177

200 OK

18 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/css/icofont.css?ver=5.9
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
18 kB (17694 bytes)
Hash
90c46defc8001ad50c5fb847ef343c2f
bcce30fa5a4c039a27f314425117d9336565c2f9
63e9c0719cea6fab576f8458f952975c189aa123bde0d4a94f15dbe682aaf1b0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/css/icofont.css?ver=5.9 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "1a8a3-5dcfa69af2904-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 17694
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

flaimway.com/wp-content/themes/unitek/style.css?ver=5.9

52.44.38.177

200 OK

4.8 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/style.css?ver=5.9
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
Unicode text, UTF-8 text
Size
4.8 kB (4773 bytes)
Hash
e85ae57610ce85b2eacb9683ab4b7eca
dc6b4d7a6ed7e1fd2749387eab791785bf273289
10a86477eeb0de7ab40806608b090ec66f7c30ba54106548ddf16948a1b75787

HTTP Headers

GET /wp-content/themes/unitek/style.css?ver=5.9 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 05 Aug 2022 11:36:18 GMT
ETag: "3fce-5e57cdfe78878-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4773
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

flaimway.com/wp-content/themes/unitek/assets/css/default.css?ver=5.9

52.44.38.177

200 OK

58 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/css/default.css?ver=5.9
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
58 kB (58520 bytes)
Hash
b6adb83866919d69ccea529dd06c761b
ead3c8cf90a9961bd7171a2c762fb9ce86bc7756
52f48212b905efa10cdb7c81625e9e3d1132e3ed41d4a29ace92547b4d420e88

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/css/default.css?ver=5.9 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 06 May 2022 10:54:20 GMT
ETag: "70326-5de55ae41afa2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 58520
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css

flaimway.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

52.44.38.177

200 OK

4.2 kB

URL HTTP/1.1
flaimway.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (11126)
Size
4.2 kB (4169 bytes)
Hash
5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
ETag: "2bd8-5b45debe27b80-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

flaimway.com/wp-content/themes/unitek/assets/css/responsive.css?ver=5.9

52.44.38.177

200 OK

19 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/css/responsive.css?ver=5.9
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
19 kB (19150 bytes)
Hash
56d389042154aaa8dcdaf966a276de4d
ea2201cf4882d8d8494e6930c7dd9c1da4d0b13a
732242074a42c963006a6574ad4005e279d025d4a211a3016e605e91eae1c630

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/css/responsive.css?ver=5.9 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "1abf3-5dcfa69aefa25-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19150
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css

flaimway.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9

52.44.38.177

200 OK

4.9 kB

URL HTTP/1.1
flaimway.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (15224)
Size
4.9 kB (4930 bytes)
Hash
3179794486ec4ca8f59329ccd67ae3e1
4b9c6e22ee7966479ef9844259f39f19d584f4a4
6e616b83910943042f683d5d21691f7e15aca8e2d8d154ff8f35bf09c612297a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 08 Jun 2021 22:15:12 GMT
ETag: "4705-5c4487ddedc00-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4930
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

flaimway.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.7.0

52.44.38.177

200 OK

46 kB

URL HTTP/1.1
flaimway.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.7.0
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (65358)
Size
46 kB (45810 bytes)
Hash
bfddc4ff4e82f2dd9a33b2b0bf3bb878
5cb05aacf9e97c6c58e02fabd69fcae22118c200
be6316c3e4d24d0b139c1afabe5be1fd0e84e62a0e72d9f507eb32407897d4b2

HTTP Headers

GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.7.0 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:54 GMT
ETag: "76878-5dcfa698f9b24-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 45810
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

flaimway.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.11

52.44.38.177

200 OK

12 kB

URL HTTP/1.1
flaimway.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.11
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
Unicode text, UTF-8 text, with very long lines (12602)
Size
12 kB (12303 bytes)
Hash
ec14123fd07ef488fc1aff60a6f99c13
55e9b5c3cad505a780d948349d9009867368cf6a
46e3efd2835c5f189acbe5c392d41ce6b86f2cfe3f064cdd6780032777f5706a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.11 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:53 GMT
ETag: "e197-5dcfa69854a99-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 12303
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css

flaimway.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

52.44.38.177

200 OK

31 kB

URL HTTP/1.1
flaimway.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (65447)
Size
31 kB (30908 bytes)
Hash
9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:52 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Wed, 10 Mar 2021 15:07:24 GMT
ETag: "15db1-5bd3006388300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30908
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

flaimway.com/wp-content/themes/unitek/assets/js/modernizr-2.8.3.min.js?ver=20151215

52.44.38.177

200 OK

6.3 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/js/modernizr-2.8.3.min.js?ver=20151215
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
HTML document, ASCII text, with very long lines (14856)
Size
6.3 kB (6306 bytes)
Hash
14576d0a0609d8be7f7341cd2a201595
e5bc5ee46d3109dfa2cff82230443d5306bf8ec7
9e835611472f0d9c8088e63cd95910d39e031ad72069003910716bfcc3f08406

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/js/modernizr-2.8.3.min.js?ver=20151215 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "3c9a-5dcfa69acc7a9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6306
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

flaimway.com/wp-content/themes/unitek/assets/js/bootstrap.min.js?ver=20151215

52.44.38.177

200 OK

13 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/js/bootstrap.min.js?ver=20151215
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (48664)
Size
13 kB (13105 bytes)
Hash
d98cccfb9b89091fe42a0fa94083b07c
0d9a5dd0d65305186508b41ccd0075b2f6880389
9db75ee7822d0f0bea3137e023ed756f6f47922700ebfae6dc8707471380526b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/js/bootstrap.min.js?ver=20151215 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "bf30-5dcfa69acc7a9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13105
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

flaimway.com/wp-content/themes/unitek/assets/js/owl.carousel.min.js?ver=20151215

52.44.38.177

200 OK

11 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/js/owl.carousel.min.js?ver=20151215
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (32000), with CRLF line terminators
Size
11 kB (10933 bytes)
Hash
4eb0a76cc9de7e42f1218ecb2f3ebadb
d179dcc9e58012f3b921551723f3c6b514d724ee
f86d79afdc65b4913382fbd09ad8db86d9100f1858530fc451c11ea6e4e904af

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/js/owl.carousel.min.js?ver=20151215 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "a714-5dcfa69acc7a9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 10933
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

flaimway.com/wp-content/themes/unitek/assets/js/slick.min.js?ver=20151215

52.44.38.177

200 OK

11 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/js/slick.min.js?ver=20151215
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (53179)
Size
11 kB (11312 bytes)
Hash
32d6b24d2afdcb64d0cd87711b535764
9a6d320f2cfeec0588881faa54fe3377e5d25f3d
ba32f9f127428150055eb72cce9b3579d61841b47e33ee90c0e0d1d876a7a0f1

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/js/slick.min.js?ver=20151215 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "cfbc-5dcfa69acd749-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11312
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

flaimway.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.11

52.44.38.177

200 OK

47 kB

URL HTTP/1.1
flaimway.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.11
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (42889)
Size
47 kB (46966 bytes)
Hash
53020e6c44148abf1bf6a40e38ea08ca
ef2394d748c49fbc6955408d474acf07153dbe2d
93ff7531b833c2a8b0e8b55931c93c7796f55c42677910d1b7e1eee59592ef1a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.5.11 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:53 GMT
ETag: "1e4e6-5dcfa69821e1f-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 46966
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d86e14ff3ce5350e8b876fa551583c57
f5d6a4f4a7da1e11bc5bebd89a1fe6f3ac60cb30
6db523ab57767f22ee6cebc4050b55f11ffc9937ad3868c63090df084cc9a7b7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 03:57:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d86e14ff3ce5350e8b876fa551583c57
f5d6a4f4a7da1e11bc5bebd89a1fe6f3ac60cb30
6db523ab57767f22ee6cebc4050b55f11ffc9937ad3868c63090df084cc9a7b7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 03:57:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2

216.58.207.195

200 OK

7.7 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7748, version 1.0\012- data
Size
7.7 kB (7748 bytes)
Hash
a09f2fccfee35b7247b08a1a266f0328
0da2d17e738f46d2a09e6fb7969da451719a9820
cd36de204aca2d5fa263a731f7c20009b5e3d754ba1f1e03c33e93a48f3e7446

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLGT9Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaimway.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:31:00 GMT
expires: Thu, 05 Oct 2023 19:31:00 GMT
cache-control: public, max-age=31536000
age: 462413
last-modified: Wed, 27 Apr 2022 16:21:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2

216.58.207.195

200 OK

8.0 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Size
8.0 kB (8000 bytes)
Hash
72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaimway.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 8000
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:30:59 GMT
expires: Thu, 05 Oct 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 462414
last-modified: Wed, 27 Apr 2022 16:59:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

flaimway.com/wp-content/themes/unitek/assets/js/waypoints.min.js?ver=20151215

52.44.38.177

200 OK

2.6 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/js/waypoints.min.js?ver=20151215
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (7822)
Size
2.6 kB (2630 bytes)
Hash
0707a1941bea52f37eedabcad2b23050
a5f240a7d6cd7f9704979920fae9bf2cbe0684ff
b944595ddf44fcb7135a230c5923e04378be8bb994d52647a0ed91f7ec8ceca7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/js/waypoints.min.js?ver=20151215 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "1f7a-5dcfa69acc7a9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2630
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d86e14ff3ce5350e8b876fa551583c57
f5d6a4f4a7da1e11bc5bebd89a1fe6f3ac60cb30
6db523ab57767f22ee6cebc4050b55f11ffc9937ad3868c63090df084cc9a7b7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 03:57:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2

216.58.207.195

200 OK

7.8 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Size
7.8 kB (7816 bytes)
Hash
25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526

HTTP Headers

GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaimway.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7816
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:30:59 GMT
expires: Thu, 05 Oct 2023 19:30:59 GMT
cache-control: public, max-age=31536000
age: 462414
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaimway.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:34:08 GMT
expires: Thu, 05 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 462225
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

flaimway.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.11

52.44.38.177

200 OK

100 kB

URL HTTP/1.1
flaimway.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.11
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (64288)
Size
100 kB (99929 bytes)
Hash
7b2869e4c373061c7a847105e489abe2
e1199d95b5ed5593235532391039b4643b32217c
c78311f3366240bd76de0ec46da4a3aeda099d633a6a88fe9cd20e7817cb7a8f

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.5.11 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:53 GMT
ETag: "5d7d8-5dcfa69822dbf-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

flaimway.com/wp-content/themes/unitek/assets/js/waypoints-sticky.min.js?ver=20151215

52.44.38.177

200 OK

642 B

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/js/waypoints-sticky.min.js?ver=20151215
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (944)
Size
642 B (642 bytes)
Hash
4ec8fc737c4d69616d9df0171a2f0a5e
59ae36860d8ad1ab2e62cca23f60195aaade1a9b
78e1ddeb74e726d938917761d15ea760807f1468393960a643e55636e0a8b14b

HTTP Headers

GET /wp-content/themes/unitek/assets/js/waypoints-sticky.min.js?ver=20151215 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "4a4-5dcfa69acc7a9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 642
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2

216.58.207.195

200 OK

7.9 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Size
7.9 kB (7884 bytes)
Hash
9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaimway.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 21:48:50 GMT
expires: Thu, 05 Oct 2023 21:48:50 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
age: 454143
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

flaimway.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4

52.44.38.177

200 OK

1.8 kB

URL HTTP/1.1
flaimway.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (5477)
Size
1.8 kB (1834 bytes)
Hash
951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Sat, 13 Jun 2020 18:53:27 GMT
ETag: "15fd-5a7fbb57c37c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1834
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d86e14ff3ce5350e8b876fa551583c57
f5d6a4f4a7da1e11bc5bebd89a1fe6f3ac60cb30
6db523ab57767f22ee6cebc4050b55f11ffc9937ad3868c63090df084cc9a7b7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 03:57:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

flaimway.com/wp-content/themes/unitek/assets/js/flickr/jflickrfeed.min.js?ver=20151215

52.44.38.177

200 OK

815 B

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/js/flickr/jflickrfeed.min.js?ver=20151215
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (420), with CRLF line terminators
Size
815 B (815 bytes)
Hash
c6fcb2f75b17ce31543bb2efe017851a
80c7a25e2251d958e2fc3ea5d116a8d8f3cbb297
d146233bb105d8895e40ebcc6a5ec525805e9afd642845c936478ba9fd81de85

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/js/flickr/jflickrfeed.min.js?ver=20151215 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "6be-5dcfa69acd749-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 815
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript

flaimway.com/wp-content/themes/unitek/assets/js/classie.js?ver=201513434

52.44.38.177

200 OK

680 B

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/js/classie.js?ver=201513434
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text
Size
680 B (680 bytes)
Hash
00acbde7435a9c21eaa2f40cadab3c19
5aa41dc109235f5fc818055ebe0253befc9cd6f1
ce865710d1d65ae1bfe917dc9a9edc91f8e0a7bf0e059b73174bd1ac1520c311

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/js/classie.js?ver=201513434 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "72b-5dcfa69acc7a9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 680
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

flaimway.com/wp-content/themes/unitek/assets/js/jquery.magnific-popup.min.js?ver=20151215

52.44.38.177

200 OK

7.4 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/js/jquery.magnific-popup.min.js?ver=20151215
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (20101)
Size
7.4 kB (7356 bytes)
Hash
769e2c95ae3dba60f4907ec0ad80b0b1
7124e7fa4185ba3f179447d980c458818756d891
1e577d5ba5351c1fd64d97314be8334d1f58d206d1feeceaa904bf375d604fe8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/js/jquery.magnific-popup.min.js?ver=20151215 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "4f06-5dcfa69acc7a9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7356
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

flaimway.com/wp-content/themes/unitek/assets/js/offcanvas.main.js?ver=201513434

52.44.38.177

200 OK

496 B

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/js/offcanvas.main.js?ver=201513434
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
Unicode text, UTF-8 text
Size
496 B (496 bytes)
Hash
0335e549c8b1e916a58db2c37a7762ae
3208983a36ca38d64e7c8b47ce935686d28cfedf
3ae4663083fd40e3e551536f272992da28595246e78cdd6e9133b0ff11959d19

HTTP Headers

GET /wp-content/themes/unitek/assets/js/offcanvas.main.js?ver=201513434 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "490-5dcfa69acc7a9-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 496
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript

flaimway.com/wp-content/uploads/2022/03/flaimway.png

52.44.38.177

200 OK

40 kB

URL HTTP/1.1
flaimway.com/wp-content/uploads/2022/03/flaimway.png
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 500 x 125, 8-bit/color RGBA, non-interlaced\012- data
Size
40 kB (40007 bytes)
Hash
9ba607ddd0032d43a89800e55c143182
4844cee40b007e06f5a42dc3862d4fc72e6db926
f2550fe163c8dab8694244a20bc37f09f9f951861bb061e15741a988a20e29e6

HTTP Headers

GET /wp-content/uploads/2022/03/flaimway.png HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "9c47-5dcfa69b1e81f"
Accept-Ranges: bytes
Content-Length: 40007
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

flaimway.com/wp-content/themes/unitek/assets/js/main.js?ver=201513434

52.44.38.177

200 OK

7.9 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/js/main.js?ver=201513434
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
HTML document, ASCII text
Size
7.9 kB (7929 bytes)
Hash
07ee20efd493e09181c51e12200221c2
01837254e0cd08cd9cc4f39f44724f103f555667
c66de4ea2f719f979e2f3e82d6dd013be2f3198f856ae1e11726c01d064ba98a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/js/main.js?ver=201513434 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "97e6-5dcfa69acd749-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7929
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript

flaimway.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.7.0

52.44.38.177

200 OK

5.7 kB

URL HTTP/1.1
flaimway.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.7.0
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
ASCII text, with very long lines (19905)
Size
5.7 kB (5666 bytes)
Hash
d3edefe85e1438b44fc6cc7c29b0a570
0122a5c210765d124751b3cf5dd56cc2cf432258
f53f905eec203f05d8277f4de51644307cc91a749d7cc4176ddddd7a8671e9bb

HTTP Headers

GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.7.0 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:54 GMT
ETag: "4e9c-5dcfa698ea126-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5666
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript

flaimway.com/wp-content/plugins/gtranslate/flags/24/en.png

52.44.38.177

200 OK

1.8 kB

URL HTTP/1.1
flaimway.com/wp-content/plugins/gtranslate/flags/24/en.png
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1767 bytes)
Hash
ec7233b5c80e5db85f7733b2ec25203f
d4c36fff06dc7d920b10eb13b58ea9cd9321b430
347ee97a492f79675749d03533810ff899ee6a784b4e156f3e0a7613cdfb3d40

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/en.png HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 05 Aug 2022 11:16:31 GMT
ETag: "6e7-5e57c9920a021"
Accept-Ranges: bytes
Content-Length: 1767
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

flaimway.com/wp-content/plugins/gtranslate/flags/24/de.png

52.44.38.177

200 OK

602 B

URL HTTP/1.1
flaimway.com/wp-content/plugins/gtranslate/flags/24/de.png
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
602 B (602 bytes)
Hash
8a2ba86f3b7de7562445967e2c21843b
3046cd0b51721f180c2dc75513fd4bfd316b45b5
cc318f3be9ba75def2af54bd9d0fab4f3e316517de9bf138e40dee06d332602d

HTTP Headers

GET /wp-content/plugins/gtranslate/flags/24/de.png HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Fri, 05 Aug 2022 11:16:31 GMT
ETag: "25a-5e57c9920afc1"
Accept-Ranges: bytes
Content-Length: 602
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

keenitsolutions.com/products/wordpress/unitek/wp-content/uploads/2019/11/about-1.jpg?id=2234

35.208.237.19

301 Moved Permanently

162 B

URL HTTP/1.1
keenitsolutions.com/products/wordpress/unitek/wp-content/uploads/2019/11/about-1.jpg?id=2234
IP
35.208.237.19:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET /products/wordpress/unitek/wp-content/uploads/2019/11/about-1.jpg?id=2234 HTTP/1.1
Host: keenitsolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Tue, 11 Oct 2022 03:57:53 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://keenitsolutions.com/products/wordpress/unitek/wp-content/uploads/2019/11/about-1.jpg?id=2234
Host-Header: 8441280b0c35cbc1147f8ba998a563a7
X-HTTPS-Enforce: 1
X-Proxy-Cache-Info: DT:1

flaimway.com/wp-content/plugins/revslider/public/assets/assets/dummy.png

52.44.38.177

200 OK

68 B

URL HTTP/1.1
flaimway.com/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Size
68 B (68 bytes)
Hash
2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:53 GMT
ETag: "44-5dcfa69822dbf"
Accept-Ranges: bytes
Content-Length: 68
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png

flaimway.com/wp-content/uploads/2022/04/6.png

52.44.38.177

200 OK

9.6 kB

URL HTTP/1.1
flaimway.com/wp-content/uploads/2022/04/6.png
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 300 x 111, 8-bit/color RGBA, non-interlaced\012- data
Size
9.6 kB (9633 bytes)
Hash
b287f994c3b76703f06854b7ccc89c94
321f41295c14c5454fff926fb8d15956e03b21a7
27a4f428117a6c48a1a9626c70d7e6c5de6cf24638ad0097a6695a9898005b3c

HTTP Headers

GET /wp-content/uploads/2022/04/6.png HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 10:02:41 GMT
ETag: "25a1-5dcfefa398c19"
Accept-Ranges: bytes
Content-Length: 9633
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

flaimway.com/wp-content/uploads/2022/04/5-1.png

52.44.38.177

200 OK

9.7 kB

URL HTTP/1.1
flaimway.com/wp-content/uploads/2022/04/5-1.png
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 300 x 111, 8-bit/color RGBA, non-interlaced\012- data
Size
9.7 kB (9683 bytes)
Hash
2fc2869d1a0180e34726fe55a8299f9e
4da2b8a1ad47e1b6eaf43eb8bda89517a3863f9f
51c357ce7a6a0173a60e3ac0c066a805ea613afc268b9003d3bff0d9b84401c6

HTTP Headers

GET /wp-content/uploads/2022/04/5-1.png HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 09:37:15 GMT
ETag: "25d3-5dcfe9f4bd098"
Accept-Ranges: bytes
Content-Length: 9683
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png

flaimway.com/wp-content/uploads/2022/04/4-1.png

52.44.38.177

200 OK

9.0 kB

URL HTTP/1.1
flaimway.com/wp-content/uploads/2022/04/4-1.png
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 300 x 111, 8-bit/color RGBA, non-interlaced\012- data
Size
9.0 kB (9041 bytes)
Hash
b1a0327f096351489ede10d34c4974b2
e2c6bc2f390071ea56c46cadd13c1d098dd779cc
e4b6bc86bc8f037da834e89f0549ea86f5b793ca9822bd9dd74f6752b3d9cb91

HTTP Headers

GET /wp-content/uploads/2022/04/4-1.png HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 09:38:16 GMT
ETag: "2351-5dcfea2ed69b4"
Accept-Ranges: bytes
Content-Length: 9041
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

flaimway.com/wp-content/uploads/2022/04/3.png

52.44.38.177

200 OK

25 kB

URL HTTP/1.1
flaimway.com/wp-content/uploads/2022/04/3.png
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 300 x 111, 8-bit/color RGBA, non-interlaced\012- data
Size
25 kB (24853 bytes)
Hash
1f0f91a24e22ff6247709cee50f1e86e
0cbd7781324e08ce24a0e6c632e29311c6453747
39436970ab1323efeb66588bce09b2e615ce0d25630f5276ae9491cd930a7124

HTTP Headers

GET /wp-content/uploads/2022/04/3.png HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 09:27:17 GMT
ETag: "6115-5dcfe7ba68b4d"
Accept-Ranges: bytes
Content-Length: 24853
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

flaimway.com/wp-content/uploads/2022/04/2.png

52.44.38.177

200 OK

22 kB

URL HTTP/1.1
flaimway.com/wp-content/uploads/2022/04/2.png
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 300 x 111, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (22221 bytes)
Hash
e6c65eb8171314c7e276b6e9e639f450
98bf20578825cd328e32baa62c010e708c26ce2f
8e8418e09527e4aa15b9d92f94bef6f97e4d3d0fc58966465f97d763350c2ca3

HTTP Headers

GET /wp-content/uploads/2022/04/2.png HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 09:26:51 GMT
ETag: "56cd-5dcfe7a16d64d"
Accept-Ranges: bytes
Content-Length: 22221
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png

flaimway.com/wp-content/themes/unitek/assets/fonts/fontawesome-webfont.woff2?v=4.7.0

52.44.38.177

200 OK

77 kB

URL HTTP/1.1
flaimway.com/wp-content/themes/unitek/assets/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/unitek/assets/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://flaimway.com/wp-content/themes/unitek/assets/css/font-awesome.min.css?ver=5.9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "12d68-5dcfa69ad92c7"
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff2

flaimway.com/wp-content/uploads/2022/03/bg2.jpg?id=2741

52.44.38.177

200 OK

101 kB

URL HTTP/1.1
flaimway.com/wp-content/uploads/2022/03/bg2.jpg?id=2741
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x820, components 3\012- data
Size
101 kB (101020 bytes)
Hash
7b4cd9dfd3f865b72405f263e0a7aba3
ac04f239d8b50db438bee768dc08f473f0c61a02
b0d36b696ec7882c0861d021f11d03be716f26e0204bccd45c86c4df6d8bb8d4

HTTP Headers

GET /wp-content/uploads/2022/03/bg2.jpg?id=2741 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "18a9c-5dcfa69b4497a"
Accept-Ranges: bytes
Content-Length: 101020
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

flaimway.com/wp-content/uploads/2022/04/1.png

52.44.38.177

200 OK

38 kB

URL HTTP/1.1
flaimway.com/wp-content/uploads/2022/04/1.png
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 300 x 111, 8-bit/color RGBA, non-interlaced\012- data
Size
38 kB (37853 bytes)
Hash
5622b60052c3af3c714d0a2cebec9d57
18fb48248f02b5fe6ccae9271b7b9a99adb75640
869279315eba9e6038adcf6cb957880a242041c38994c9a01ecceb93ca633bf0

HTTP Headers

GET /wp-content/uploads/2022/04/1.png HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 09:26:26 GMT
ETag: "93dd-5dcfe789bd204"
Accept-Ranges: bytes
Content-Length: 37853
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

flaimway.com/wp-content/uploads/2022/03/landing-phone.png

52.44.38.177

200 OK

60 kB

URL HTTP/1.1
flaimway.com/wp-content/uploads/2022/03/landing-phone.png
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 220 x 415, 8-bit/color RGBA, non-interlaced\012- data
Size
60 kB (60095 bytes)
Hash
68f6e4290bc4cd08a9facdc61c87e0ed
b4c9d56426781379f87d14d7ae2103505b96f480
3db197bf8dd7317d99e6cb5d1e2e87531f066df92ce1a50517b8f023d052cb55

HTTP Headers

GET /wp-content/uploads/2022/03/landing-phone.png HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "eabf-5dcfa69b216fe"
Accept-Ranges: bytes
Content-Length: 60095
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png

fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJnecmNE.woff2

216.58.207.195

200 OK

5.5 kB

URL HTTP/2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJnecmNE.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 5544, version 1.0\012- data
Size
5.5 kB (5544 bytes)
Hash
0ed299a4bb5262e17e2145783b2c18f1
65af2a037a5ef8a8d383d518377ea1f9f6837631
cb8bdeabc838774d9808eb7c4cfcea963b57855e34f84b54797076940c8e5986

HTTP Headers

GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJnecmNE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flaimway.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 5544
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 05 Oct 2022 19:37:48 GMT
expires: Thu, 05 Oct 2023 19:37:48 GMT
cache-control: public, max-age=31536000
age: 462005
last-modified: Wed, 27 Apr 2022 17:03:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15961
Expires: Tue, 11 Oct 2022 08:23:54 GMT
Date: Tue, 11 Oct 2022 03:57:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15961
Expires: Tue, 11 Oct 2022 08:23:54 GMT
Date: Tue, 11 Oct 2022 03:57:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15961
Expires: Tue, 11 Oct 2022 08:23:54 GMT
Date: Tue, 11 Oct 2022 03:57:53 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f97cde01f1afd5ed30319169445ec773
1cb25a8da62cdf1f9ab1b2b35d03163037691b33
1db2f13247d84bbebf5221ac7429e9367ee92aa1148b4aa879751e1944766406

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DB2F13247D84BBEBF5221AC7429E9367EE92AA1148B4AA879751E1944766406"
Last-Modified: Mon, 10 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15961
Expires: Tue, 11 Oct 2022 08:23:54 GMT
Date: Tue, 11 Oct 2022 03:57:53 GMT
Connection: keep-alive

flaimway.com/wp-content/uploads/2022/03/bg3.jpg?id=2743

52.44.38.177

200 OK

172 kB

URL HTTP/1.1
flaimway.com/wp-content/uploads/2022/03/bg3.jpg?id=2743
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x820, components 3\012- data
Size
172 kB (171912 bytes)
Hash
99472bfae55669fbcf71613d4a7feb00
9eeb694e4a8c41e8116e10c4a2970574264cac45
f4633513bd35a85c658e44a6d971be7de5de8f9c25f6cb81314e57e1d9472cfc

HTTP Headers

GET /wp-content/uploads/2022/03/bg3.jpg?id=2743 HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "29f88-5dcfa69b1a99f"
Accept-Ranges: bytes
Content-Length: 171912
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg

flaimway.com/wp-content/uploads/2022/03/landing-footer.png

52.44.38.177

200 OK

191 kB

URL HTTP/1.1
flaimway.com/wp-content/uploads/2022/03/landing-footer.png
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 1416 x 512, 8-bit colormap, non-interlaced\012- data
Size
191 kB (190838 bytes)
Hash
bfc9d3d3a04686e9a189288b539de6d3
951d72ac1996ad0a130d68525c0a78636cdb3777
d6951d296223ced1186e809f0d22cc9774a6702beda6f5ce393111fd816b4ca0

HTTP Headers

GET /wp-content/uploads/2022/03/landing-footer.png HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "2e976-5dcfa69b2075e"
Accept-Ranges: bytes
Content-Length: 190838
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F446563a1-94ea-4a32-b641-c9df798e47b8.jpeg

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F446563a1-94ea-4a32-b641-c9df798e47b8.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12979 bytes)
Hash
556f3f61e00147b777c177885324405e
7236376968ae06535b07609746684754a365c4f0
06d04528e98b805893a777c606d708b1e780af4749e13ea5c2b5b508d6b24d69

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F446563a1-94ea-4a32-b641-c9df798e47b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12979
x-amzn-requestid: 35cc8851-3327-4c16-9815-1a15360a5568
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZzuvDFLaoAMFZAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63449193-68c4218f6a6bfc76734a3883;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:41:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 4_7KAVnUIujGTkId1WDMw2eYMOPB6VxX5NdOZ2cZho4bs6S159TEKA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 22:05:51 GMT
age: 21122
etag: "7236376968ae06535b07609746684754a365c4f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F637b45e2-fd12-4472-b5d2-eb8ef3a57f1f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.9 kB (3881 bytes)
Hash
bbd344ccb235ebd609f2516f24227dfd
a494be7ce790c6f4079cb0edf4d12baba71d8cac
cd040d7878d316d9929ec08655c6ea30994d363edd8c3f5111b9e2407d079be2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F637b45e2-fd12-4472-b5d2-eb8ef3a57f1f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3881
x-amzn-requestid: cf010a67-b76d-4205-9d51-011517870cd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZjAd9GAToAMFStQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633de125-6ceb184864e024315f549694;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 19:55:18 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rlMLEC0n_VicVI3AbbiuB7M3026mZJKRt9_qx0-5xe2bpWa36iAmGw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 03:37:01 GMT
age: 1252
etag: "a494be7ce790c6f4079cb0edf4d12baba71d8cac"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5d6b07c-7001-4ca2-ab1c-063b144b658f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.1 kB (4135 bytes)
Hash
6e460080f8474c138e6b75edfffb1874
4013a8691576394d1a2531665b8dc2c4aac60201
3b2f41745b395c9a69f8ad417481c3e0e2c481b29b47465df7d37ce0acbcf54a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5d6b07c-7001-4ca2-ab1c-063b144b658f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4135
x-amzn-requestid: 2dceb534-dd9e-4a1d-a40e-76719cd736a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zzt7lFsJoAMFU5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63449049-71530e73484316e85d223759;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:36:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: d6HzWCZDrhnBVdDMMngfGzXYIl0Pa0mCp--7tGCxDLqCqrYuOLshLA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 21:59:42 GMT
etag: "4013a8691576394d1a2531665b8dc2c4aac60201"
content-type: image/jpeg
age: 21491
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11800 bytes)
Hash
6e9aa9808428e5fd81ac9d61d6f7c708
3a8d76badce50dd98938885082dcb6e30363ae88
d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11800
x-amzn-requestid: 5f2ce4dd-0df8-4df7-a12d-e6fffd622752
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZnTQHGADIAMFXfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f98cd-5044665325e5d64975c1ff0c;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 03:11:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LhwkinWopo6RX-yo5_35HWL9S2dGpdi7rAiwVWLxUicaHfHW3VF7DQ==
via: 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 21:42:24 GMT
age: 22529
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf363159-c109-46fe-bd9b-9134e7b048c3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11239 bytes)
Hash
e3c99f149a624060a36dd392ac0d5ef4
ccbb22ad9c30baa4e3f013dfc60195400f469dc0
3f9dc61fff639b4b8aa778630e8009c190e804b8d58684e9244cef8419a61c00

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf363159-c109-46fe-bd9b-9134e7b048c3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11239
x-amzn-requestid: 9f628fab-edd5-425d-add3-31beea676070
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZzuvOGzhoAMFd0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63449194-48cae2de0a5968fb46772067;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:41:40 GMT
x-amz-cf-pop: SFO5-P2, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ENFroTwWbZ5OwgRv1Y7pkAd3ZQjhFm-5tLEVY37B7xlRsOlCuoqpvQ==
via: 1.1 332ef4544bd8b531e8f11abaa4197c08.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 22:29:12 GMT
age: 19721
etag: "ccbb22ad9c30baa4e3f013dfc60195400f469dc0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7e4295f-4a0f-41b3-9af0-e389d3d2e3a2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4413 bytes)
Hash
5cf3f16ee684e97de9eb2eb3f114dd6c
3ac02a6f6087870a21f9003c9f2518a81a22b278
c427d1f26292d3faee2f75c429e64b7ce21d08215dbb103f6e509c04e56d3e16

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7e4295f-4a0f-41b3-9af0-e389d3d2e3a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4413
x-amzn-requestid: dfa638b6-d27f-4597-804a-66161892a5df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZkjcOH0_IAMFTJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e7f81-4da796971b03eb9b585b36d0;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 07:10:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5HFTt6VL64pOYg8QNlrFdZsW7B9_Ujjc1v8_JJBexnKJZwZGF4nLFQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 21:59:42 GMT
age: 21491
etag: "3ac02a6f6087870a21f9003c9f2518a81a22b278"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

flaimway.com/wp-content/plugins/revslider/public/assets/assets/loader.gif

52.44.38.177

200 OK

2.5 kB

URL HTTP/1.1
flaimway.com/wp-content/plugins/revslider/public/assets/assets/loader.gif
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
GIF image data, version 89a, 24 x 24\012- data
Size
2.5 kB (2545 bytes)
Hash
4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645

HTTP Headers

GET /wp-content/plugins/revslider/public/assets/assets/loader.gif HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.5.11
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:53 GMT
ETag: "9f1-5dcfa69822dbf"
Accept-Ranges: bytes
Content-Length: 2545
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/gif

flaimway.com/wp-content/uploads/2022/03/banner-1.jpg

52.44.38.177

200 OK

127 kB

URL HTTP/1.1
flaimway.com/wp-content/uploads/2022/03/banner-1.jpg
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x900, components 3\012- data
Size
127 kB (126814 bytes)
Hash
be03975ae1bf45c4d832392fc38230ce
a0f9f203d9df49cdaffdef816b59fdbce10d6a8a
8d94c909e57cd739c88d16cc15b768ad4816a44256957cb901f8e252aa871e3b

HTTP Headers

GET /wp-content/uploads/2022/03/banner-1.jpg HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "1ef5e-5dcfa69b35f1c"
Accept-Ranges: bytes
Content-Length: 126814
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg

flaimway.com/wp-content/uploads/2022/09/Magic-Blower-mit-Logo-trans.png

52.44.38.177

200 OK

633 kB

URL HTTP/1.1
flaimway.com/wp-content/uploads/2022/09/Magic-Blower-mit-Logo-trans.png
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 500 x 2500, 8-bit/color RGBA, non-interlaced\012- data
Size
633 kB (633165 bytes)
Hash
177ba2d9df0c92ad79fd2d9e8090c70a
d10f46ae889737721d2f25b580f7472f9fa57349
927f4bf4ec17a612919db4cd114fa1abf2efe3eff2a02bc40314d935bc45daf1

HTTP Headers

GET /wp-content/uploads/2022/09/Magic-Blower-mit-Logo-trans.png HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:53 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Mon, 19 Sep 2022 11:09:10 GMT
ETag: "9a94d-5e905bdbcb364"
Accept-Ranges: bytes
Content-Length: 633165
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0fa37076cf716e45f8c7d4c9d3763ec4
b5e15dbbf63afd38dafc5681994078585c2974a6
819e659d6a167e928acd75ce791dbe29c4ad44784b47a5beb0376cbfab59937f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 03:57:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

flaimway.com/wp-content/uploads/2022/03/fav.png

52.44.38.177

200 OK

12 kB

URL HTTP/1.1
flaimway.com/wp-content/uploads/2022/03/fav.png
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
PNG image data, 73 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (12321 bytes)
Hash
c5d306c7144d76902497cd056c8325c6
68136c76be010f77629ca1c92128cb58626b5dfa
1aa8a5d67ea3b4546e692c080e3e0505e7f4b48b9d1bd0b12c7dc125395a348e

HTTP Headers

GET /wp-content/uploads/2022/03/fav.png HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:54 GMT
Server: Apache/2.4.41 (Ubuntu)
Last-Modified: Tue, 19 Apr 2022 04:35:56 GMT
ETag: "3021-5dcfa69b39d9b"
Accept-Ranges: bytes
Content-Length: 12321
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0fa37076cf716e45f8c7d4c9d3763ec4
b5e15dbbf63afd38dafc5681994078585c2974a6
819e659d6a167e928acd75ce791dbe29c4ad44784b47a5beb0376cbfab59937f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 03:57:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

keenitsolutions.com/products/wordpress/unitek/wp-content/uploads/2019/11/about-1.jpg?id=2234

35.208.237.19

200 OK

31 kB

URL HTTP/2
keenitsolutions.com/products/wordpress/unitek/wp-content/uploads/2019/11/about-1.jpg?id=2234
IP
35.208.237.19:0
ASN
#15169 GOOGLE

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x720, components 3\012- data
Size
31 kB (30765 bytes)
Hash
17455f4b3aefc1dbe5a580ace01adf79
39e906c42ea952bcf969e2f4d6e0abc1bd559376
d54296a3398e60b9667c4fc2baa47bed18cd2c936cc45e684674c77901c435e3

HTTP Headers

GET /products/wordpress/unitek/wp-content/uploads/2019/11/about-1.jpg?id=2234 HTTP/1.1
Host: keenitsolutions.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 03:57:54 GMT
content-type: image/jpeg
content-length: 30765
last-modified: Wed, 27 Nov 2019 21:38:26 GMT
etag: "5ddeecd2-782d"
expires: Wed, 11 Oct 2023 03:57:54 GMT
cache-control: max-age=31536000
host-header: 8441280b0c35cbc1147f8ba998a563a7
x-proxy-cache-info: DT:1
accept-ranges: bytes
X-Firefox-Spdy: h2

translate.googleapis.com/translate_static/css/translateelement.css

216.58.207.202

200 OK

3.6 kB

URL HTTP/2
translate.googleapis.com/translate_static/css/translateelement.css
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (18670)
Size
3.6 kB (3619 bytes)
Hash
897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0

HTTP Headers

GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 11 Oct 2022 03:35:07 GMT
expires: Tue, 11 Oct 2022 04:35:07 GMT
cache-control: public, max-age=3600
age: 1367
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

flaimway.com/wp-admin/admin-ajax.php

52.44.38.177

200 OK

4.8 kB

URL HTTP/1.1
flaimway.com/wp-admin/admin-ajax.php
IP
52.44.38.177:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with very long lines (32631), with no line terminators
Size
4.8 kB (4789 bytes)
Hash
e7403d9fb977221dc0b0d3436cc39790
7ccf2640d7639e5c48fb5cc2d541b42e35960517
240afdaf8c8625696c17908e2e56dd13555b6938a5249765128173248d162e85

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

POST /wp-admin/admin-ajax.php HTTP/1.1
Host: flaimway.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 62
Origin: https://flaimway.com
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Tue, 11 Oct 2022 03:57:54 GMT
Server: Apache/2.4.41 (Ubuntu)
Access-Control-Allow-Origin: https://flaimway.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4789
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8

translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.8a8yABOHWI4.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqcCCBEEFkqdbXKMHVanBIGeD6dNQ/m=el_main

216.58.207.202

200 OK

95 kB

URL HTTP/2
translate.googleapis.com/_/translate_http/_/js/k=translate_http.tr.no.8a8yABOHWI4.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqcCCBEEFkqdbXKMHVanBIGeD6dNQ/m=el_main
IP
216.58.207.202:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1613)
Size
95 kB (95150 bytes)
Hash
228628be85f0b1b6c559aa93ad516c47
2f190c8e179bc0b0392fa46a45489a7934d45030
b4ed900cb87af924b0a401afeb630442d50688fafdaf1cbbe88884d15bd15fd8

HTTP Headers

GET /_/translate_http/_/js/k=translate_http.tr.no.8a8yABOHWI4.O/d=1/exm=el_conf/ed=1/rs=AN8SPfqcCCBEEFkqdbXKMHVanBIGeD6dNQ/m=el_main HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 95150
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 10 Oct 2022 19:25:49 GMT
expires: Tue, 10 Oct 2023 19:25:49 GMT
cache-control: public, max-age=31536000
last-modified: Sat, 08 Oct 2022 01:13:28 GMT
content-type: text/javascript; charset=UTF-8
age: 30725
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/images/branding/product/1x/translate_24dp.png

142.250.74.163

200 OK

846 B

URL HTTP/2
www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
846 B (846 bytes)
Hash
e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99

HTTP Headers

GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 10 Oct 2022 22:03:24 GMT
expires: Tue, 10 Oct 2023 22:03:24 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 21270
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png

142.250.74.163

200 OK

910 B

URL HTTP/2
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
910 B (910 bytes)
Hash
efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2

HTTP Headers

GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 10 Oct 2022 00:44:22 GMT
expires: Tue, 10 Oct 2023 00:44:22 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
age: 98012
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.gstatic.com/images/branding/product/2x/translate_24dp.png

142.250.74.163

200 OK

1.8 kB

URL HTTP/2
www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size
1.8 kB (1842 bytes)
Hash
c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82

HTTP Headers

GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 11 Oct 2022 03:37:21 GMT
expires: Wed, 11 Oct 2023 03:37:21 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 1233
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a4c386a-82ef-4841-9fd8-56e349ad78e6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.1 kB (8093 bytes)
Hash
5773f0921ca163c8158ef5f80100de36
92f7eb1d6183e04195780c341608c645e5ec00ff
ca1c2b4d0cb37e1aed2d503f61c90600425ba44235102f437fd51c06c0548f29

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5a4c386a-82ef-4841-9fd8-56e349ad78e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 8093
x-amzn-requestid: b8b625fd-bb0c-4bc9-a485-49367555c32d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZzuQ2FTiIAMF_Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634490d2-79624ac752f5517979a79ed5;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:38:26 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: F5AQCgGcQVcaqd5otvPTAq1LExH4YhQuBfTXTp-K0zIP3alJu-xxWg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 22:10:55 GMT
age: 20825
etag: "92f7eb1d6183e04195780c341608c645e5ec00ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2

142.250.74.46

200 OK

0 B

URL HTTP/2
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 11 Oct 2022 03:57:54 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+354; expires=Thu, 10-Oct-2024 03:57:54 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:500%2C400%7CPoppins:600%2C700&display=swap

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:500%2C400%7CPoppins:600%2C700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:500%2C400%7CPoppins:600%2C700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 11 Oct 2022 03:57:52 GMT
date: Tue, 11 Oct 2022 03:57:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Poppins:300,400,500,600,700&display=swap&ver=1650698878

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Poppins:300,400,500,600,700&display=swap&ver=1650698878
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Poppins:300,400,500,600,700&display=swap&ver=1650698878 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 11 Oct 2022 03:57:52 GMT
date: Tue, 11 Oct 2022 03:57:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Poppins%3A+400%2C500%2C600%2C700%2C900&ver=1.0.0

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Poppins%3A+400%2C500%2C600%2C700%2C900&ver=1.0.0
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Poppins%3A+400%2C500%2C600%2C700%2C900&ver=1.0.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://flaimway.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 11 Oct 2022 03:57:52 GMT
date: Tue, 11 Oct 2022 03:57:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (33)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP