Report - barinelectrical.com/QHmkrxI/loger.zip

Report Overview

Submitted URL
barinelectrical.com/QHmkrxI/loger.zip
IP
162.241.154.81
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2023-01-29 03:36:30
Access
Website Title
Final URL
Tags
suspicious
urlquery detections
Suspicious - Suspicious JS code

Detections

urlquery
7
Network Intrusion Detection
0
Threat Detection Systems
26

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
cdn.jsdelivr.net	439	2012-09-30T02:15:09Z	2023-03-13T06:17:54Z	405 B	14 kB	151.101.129.229
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	388 B	45 kB	142.250.74.40
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	61 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	34.223.234.225
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	686 B	1.4 kB	142.250.74.131
seal-cencal.bbb.org	367180	2012-11-02T23:56:37Z	2023-03-06T14:40:01Z	433 B	6.4 kB	82.102.27.18
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	375 B	21 kB	142.250.74.110
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	1.7 kB	104 kB	104.17.25.14
barinelectrical.com	unknown	2018-12-10T13:56:02Z	2023-01-29T04:36:15Z	9.9 kB	1.2 MB	162.241.154.81
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	23.36.77.32
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-13T05:09:19Z	368 B	1.9 kB	104.18.20.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-29	medium	barinelectrical.com/wp-includes/css/classic-themes.min.css?ver=1	Phishing
2023-01-29	medium	barinelectrical.com/wp-content/themes/barin/assets/css/responsive.css?ver=6.1.1	Phishing
2023-01-29	medium	barinelectrical.com/QHmkrxI/loger.zip	Phishing
2023-01-29	medium	barinelectrical.com/wp-content/themes/barin/assets/icon-font/flaticon.css?ver=6.1.1	Phishing
2023-01-29	medium	barinelectrical.com/wp-content/themes/barin/assets/css/bicon.css?ver=6.1.1	Phishing
2023-01-29	medium	barinelectrical.com/wp-content/themes/barin/assets/js/scrool.js?ver=1	Phishing
2023-01-29	medium	barinelectrical.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing
2023-01-29	medium	barinelectrical.com/wp-content/themes/barin/assets/css/owl.carousel.min.css?ver=6.1.1	Phishing
2023-01-29	medium	barinelectrical.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	Phishing
2023-01-29	medium	barinelectrical.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	Phishing
2023-01-29	medium	barinelectrical.com/wp-content/themes/barin/assets/js/custom.js?ver=1	Phishing
2023-01-29	medium	barinelectrical.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	Phishing
2023-01-29	medium	barinelectrical.com/wp-content/themes/barin/proximanova-regular-webfont.woff2	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	barinelectrical.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-25
Pretty URL barinelectrical.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 15:09:14 Times Seen38045 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	barinelectrical.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-25
Pretty URL barinelectrical.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-25 15:09:13 Times Seen31809 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	barinelectrical.com/QHmkrxI/loger.zip	2.2 kB	2023-03-13	2023-03-13
Pretty URL barinelectrical.com/QHmkrxI/loger.zip IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:38:39 Last Seen2023-03-13 10:38:39 Times Seen1 Hash ead58dfb8c47019cd8a362f91503721f c8543f6463fdaa10a80486a27fb8021a410e6351 2033f12b5ec547fe61266d10b9e95287802b7bb29cf5bd3558c725ca2ecd04b6 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	barinelectrical.com/QHmkrxI/loger.zip	3.5 kB	2023-03-13	2023-03-13
Pretty URL barinelectrical.com/QHmkrxI/loger.zip IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:38:39 Last Seen2023-03-13 10:38:39 Times Seen1 Hash 8b12af2896915d962b6b84d791302b5a 17d95419375d5eb7fcaea11e129b87bdee87c20a ff0446fe155d981f94b19b2be8e4116a2f847b30b562f786036d781e095ddda5 Loading...

	cdnjs.cloudflare.com/ajax/libs/OwlCarousel2/2.3.4/owl.carousel.min.js?ver=1	44 kB	2023-03-07	2024-04-25
Pretty URL cdnjs.cloudflare.com/ajax/libs/OwlCarousel2/2.3.4/owl.carousel.min.js?ver=1 IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-25 13:15:30 Times Seen19912 Hash f416f9031fef25ae25ba9756e3eb6978 e2a600e433df72b4cfde93d7880e3114917a3cbe a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d Loading...

	barinelectrical.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-25
Pretty URL barinelectrical.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 15:09:13 Times Seen68624 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js?ver=1	19 kB	2023-03-07	2024-04-25
Pretty URL cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js?ver=1 IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-25 12:28:35 Times Seen111510 Hash 70d3fda195602fe8b75e0097eed74dde c3b977aa4b8dfb69d651e07015031d385ded964b a52f7aa54d7bcaafa056ee0a050262dfc5694ae28dee8b4cac3429af37ff0d66 Loading...

	barinelectrical.com/QHmkrxI/loger.zip	11 kB	2023-03-13	2023-03-13
Pretty URL barinelectrical.com/QHmkrxI/loger.zip IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:38:39 Last Seen2023-03-13 10:38:39 Times Seen1 Hash 06fc36efffb38aa47771989d6fe8bfb6 ee23e2958f03b918d4f793239bfc8e5f0aed02ea f17d8a3d0834f40a225bf57a9a253cad2f9e9ba499a24d183f003e844c8bd5a1 Loading...

	barinelectrical.com/QHmkrxI/loger.zip	3.5 kB	2023-03-13	2023-03-13
Pretty URL barinelectrical.com/QHmkrxI/loger.zip IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:38:39 Last Seen2023-03-13 10:38:39 Times Seen1 Hash 6251632c9b45005841da38a00c6d8198 0dcf36c6948cefa031b138d637e64772c7519c57 36eb00bfa873184fedfd65a303e75e74807cd4b37538c8de16a1a4ffb6dfdd5d Loading...

	barinelectrical.com/QHmkrxI/loger.zip	2.2 kB	2023-03-13	2023-03-13
Pretty URL barinelectrical.com/QHmkrxI/loger.zip IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:38:39 Last Seen2023-03-13 10:38:39 Times Seen1 Hash c543d888765a88ebaa344666c811c477 fc0658b84de98f065705e5d675c630ba571b6e25 1fdf5686c8a24d413e08bb7c4e12b2e3d6ec535c84c24d35d56a76af12342eb3 Loading...

	barinelectrical.com/QHmkrxI/loger.zip	155 B	2023-03-13	2023-03-13
Pretty URL barinelectrical.com/QHmkrxI/loger.zip IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:38:39 Last Seen2023-03-13 10:38:39 Times Seen1 Hash 34110a83f12c11c8437fc138de3f2168 b7bd49413d025b500897ca61ad55a67149239667 f924c24fddf863c493ddf5e1c71f0ee8c55f7a10e1e07301c651ebf86f781b99 Loading...

	barinelectrical.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	9.9 kB	2023-03-08	2024-04-24
Pretty URL barinelectrical.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-24 20:13:16 Times Seen3136 Hash dc74c9954b1944928eca0172c3b8c6b3 e9e00e587e0e28491b69563b4e768945ff2e0ed5 d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b Loading...

	barinelectrical.com/wp-content/themes/barin/assets/js/scrool.js?ver=1	813 B	2023-03-13	2023-03-13
Pretty URL barinelectrical.com/wp-content/themes/barin/assets/js/scrool.js?ver=1 IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:38:39 Last Seen2023-03-13 10:38:39 Times Seen1 Hash 9af7eb763a24aa7db367df4ca4114f17 642b3a16f500f49554a5ec83bfcd241446126c6c 019c0740c89206e68a276e350ca838c406662d2fcac1ffd859b28f51eaf867ca Loading...

	barinelectrical.com/wp-content/themes/barin/assets/js/custom.js?ver=1	458 B	2023-03-13	2023-03-13
Pretty URL barinelectrical.com/wp-content/themes/barin/assets/js/custom.js?ver=1 IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:38:39 Last Seen2023-03-13 10:38:39 Times Seen1 Hash 9b7877646f291f72daa9e4e509f12cf7 72d39a58933b93907dae04d98273fbb5d5d08aed efc947fa8db9e415c4ffa665f3d01464fbbf0a866782e925923dbe570d882d74 Loading...

	cdn.jsdelivr.net/npm/bootstrap@4.0.0/dist/js/bootstrap.min.js?ver=1	49 kB	2023-03-07	2024-04-25
Pretty URL cdn.jsdelivr.net/npm/bootstrap@4.0.0/dist/js/bootstrap.min.js?ver=1 IP 151.101.129.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:44 Last Seen2024-04-25 15:21:59 Times Seen136821 Hash 14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b Loading...

	barinelectrical.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4	12 kB	2023-03-08	2024-04-24
Pretty URL barinelectrical.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-24 20:13:16 Times Seen3481 Hash 1f9968a7c7a2a02491393fb9d4103dae 0032c8a6a692e6f072b2cef20828449402fdd57d f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49 Loading...

	barinelectrical.com/QHmkrxI/loger.zip	26 kB	2023-03-08	2024-02-24
Pretty URL barinelectrical.com/QHmkrxI/loger.zip IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:18:03 Last Seen2024-02-24 17:08:33 Times Seen9 Hash d759cc9657aaebc58e94d2f90274d8b7 cc6310c26599f7e1e0d74cd395e807bad2837d26 3d0edcdd53bea22381160178332ddf4bf9ab2d32d54cac7622678ddcc00212c6 Loading...

	barinelectrical.com/QHmkrxI/loger.zip	133 B	2023-03-13	2023-03-13
Pretty URL barinelectrical.com/QHmkrxI/loger.zip IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:38:39 Last Seen2023-03-13 10:38:39 Times Seen1 Hash a67d1f7da58e45717efe2f1687c9635e b68ab56b90dcce75b59195d75efebd2af6a79874 c68340b2ba1e3a6bdff07edba92aa9a9dd16b0d31b8457a55e3afe9d4e8aec2b Loading...

	www.googletagmanager.com/gtag/js?id=UA-143750037-1	113 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-143750037-1 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:38:39 Last Seen2023-03-13 10:38:39 Times Seen1 Hash 5d23994df7db975b489ee11b948cecb1 b33a3661b34aaf317dde2622b6b1e428eb14b1b7 a2393b71c9b96fe1ef81c6882da5f416177e6681cfa11c2e2a8745ce648ed473 Loading...

	barinelectrical.com/QHmkrxI/loger.zip	14 kB	2023-03-13	2023-03-13
Pretty URL barinelectrical.com/QHmkrxI/loger.zip IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:38:39 Last Seen2023-03-13 10:38:39 Times Seen1 Hash ddf64b78a88eaec5cc62a09c4be17a75 8df7685ccf31bffb19f4ed082bf7d3e4507f5b36 4676bcf68b7599bebd4e888dd39f194aa60118fa08f20c710652c8d7aaf432d9 Loading...

	barinelectrical.com/QHmkrxI/loger.zip	11 kB	2023-03-13	2023-03-13
Pretty URL barinelectrical.com/QHmkrxI/loger.zip IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:38:39 Last Seen2023-03-13 10:38:39 Times Seen1 Hash bc7d9fb8a61fed1e2aae52b79e612d1b 9fad2950800bfb74db58917bd72d8fe6d0b9ef12 97388fac89ef513d7aed57b74d818f9b77b462ffae23c9c9cdaff299124eea2f Loading...

	barinelectrical.com/QHmkrxI/loger.zip	14 kB	2023-03-13	2023-03-13
Pretty URL barinelectrical.com/QHmkrxI/loger.zip IP 162.241.154.81 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 10:38:39 Last Seen2023-03-13 10:38:39 Times Seen1 Hash 01bd916cbe421d2d55aeb9d1ccdb28b7 938d1b842eb5b615b0dd5c49499f835df8761b20 93a2f24a073a357e51ae8603558c1e73039d255f47634225bca20d7ffa7a7bbb Loading...

		Size	First Seen	Last Seen
	#1 Write - f4ce4bef129e0b0eafbdb508a473e393	11 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 10:38:39 Last Seen2023-03-13 10:38:39 Times Seen1 Hash f4ce4bef129e0b0eafbdb508a473e393 7b6b841f3eb17169565081a9322f8e7b9d1f6f5d b004a2904b37192a87fa7916f1602b7743cc94188ea7f15e0633ba875779993a Loading...

	#2 Write - a1419a497a7c7d4343c89c429bbf6f4c	3.5 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 10:38:40 Last Seen2023-03-13 10:38:40 Times Seen1 Hash a1419a497a7c7d4343c89c429bbf6f4c 9250e0d0568542e6daa9420fdb8e467b81be2495 c68e3c9583832137a17dbaad5b21dc412599a73a8191b8565ff30c1631265365 Loading...

	#3 Write - 2eab5f2a3fc7841cb67ca88b75e468e4	11 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 10:38:40 Last Seen2023-03-13 10:38:40 Times Seen1 Hash 2eab5f2a3fc7841cb67ca88b75e468e4 880ebabb189e19661948d6034c2e9448dbaa3c3d 3ea59adac94b2817d8ec4fff577072477c36e81ae971926e435a73766373e658 Loading...

	#4 Write - 76366b64f10e84c42517231e26aae141	3.6 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 10:38:40 Last Seen2023-03-13 10:38:40 Times Seen1 Hash 76366b64f10e84c42517231e26aae141 e76c00df30aff04255604b435d82405f62dba3ec d0ccbd6fc1d12ccb721b0da862a54c091a869633fddcf58b1904c3372a2eb2ed Loading...

HTTP Transactions (57)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2829
Expires: Sun, 29 Jan 2023 04:23:28 GMT
Date: Sun, 29 Jan 2023 03:36:19 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2435
Expires: Sun, 29 Jan 2023 04:16:54 GMT
Date: Sun, 29 Jan 2023 03:36:19 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 02:43:07 GMT
content-type: application/json
age: 3192
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14794
Expires: Sun, 29 Jan 2023 07:42:53 GMT
Date: Sun, 29 Jan 2023 03:36:19 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 8qteyR+3LVr9dbDDZwihAeYmVMHr/QfoIE3xdQQDqkTNEqokC7iPgOrjU69dwYNzKHcfUzh+1mAM8XMB5sh7Sw==
x-amz-request-id: G165XMCBHE8ZZ4SD
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 03:21:14 GMT
age: 905
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 03:36:19 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 02:41:41 GMT
age: 3278
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20616
Expires: Sun, 29 Jan 2023 09:19:55 GMT
Date: Sun, 29 Jan 2023 03:36:19 GMT
Connection: keep-alive

push.services.mozilla.com/

34.223.234.225

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.223.234.225:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 9/ZFOPUwnRRosjy6g19yvw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MKuXAOHhgnEQai7T0DE0mjvT6HQ=

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css

104.17.25.14

200 OK

5.6 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (30837)
Size
5.6 kB (5631 bytes)
Hash
109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://barinelectrical.com
Connection: keep-alive
Referer: http://barinelectrical.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 29 Jan 2023 03:36:20 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 190416
expires: Fri, 19 Jan 2024 03:36:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kR614O6g6BaLwNuyVFCz%2BRJODzpMJ%2BjwqHP52OLXfoQFC9%2F13u%2BU3RVhICzkpJjX13U2WEIQmSEPpJsXeAmMRqjJfHwnj3e2x5EanCgiHwm245w3%2BB3akNSom65VnxW%2BIWgi7lCv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 790eec465a1eb4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/OwlCarousel2/2.3.4/owl.carousel.min.js?ver=1

104.17.25.14

200 OK

10 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/OwlCarousel2/2.3.4/owl.carousel.min.js?ver=1
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (31997)
Size
10 kB (10158 bytes)
Hash
da09af9c30411ac4ea58fa932c2bcdf1
3021a222be0168efcad5db279a305485935aeff5
19e819601b91eb75c0609dd6343a344f280a94b83e06e58595bafff5b12ca7f4

HTTP Headers

GET /ajax/libs/OwlCarousel2/2.3.4/owl.carousel.min.js?ver=1 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barinelectrical.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 29 Jan 2023 03:36:20 GMT
content-type: application/javascript; charset=utf-8
content-length: 10158
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03cf0-ad36"
last-modified: Mon, 04 May 2020 16:04:00 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 806768
expires: Fri, 19 Jan 2024 03:36:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kH01g0Zf0WG%2BMeRUDbZb%2BJ%2BhrhT7eEUgcAQHnjriBIT8y1MLhKtSohBDUImsnPIM%2Ba39EmNNO%2FycJMrMhbI5gtQgEVmgMA6fAyxCt83MvGve7rw6%2B35OQZQ8qod1LzNyt%2B27M5j0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 790eec467871b51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@4.0.0/dist/js/bootstrap.min.js?ver=1

151.101.129.229

200 OK

13 kB

URL HTTP/2
cdn.jsdelivr.net/npm/bootstrap@4.0.0/dist/js/bootstrap.min.js?ver=1
IP
151.101.129.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (48664)
Size
13 kB (13102 bytes)
Hash
af6d2fcc4d72dc2d4f60de8df84b2450
f1114664ef595e576493350260b48efa2ba99516
3daef8e3f88eba5ccc9004df99c377b0cbc2684d22b2c7fd7f415e44acb06695

HTTP Headers

GET /npm/bootstrap@4.0.0/dist/js/bootstrap.min.js?ver=1 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barinelectrical.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.0.0
x-jsd-version-type: version
etag: W/"bf30-qVRYMYA7E1nP7tR+O01rrmjkDpk"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 03:36:20 GMT
age: 2159756
x-served-by: cache-fra-eddf8230053-FRA, cache-bma1676-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 13102
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
c0d8e3eae0b6804c5117e86a0b713655
cf75e92a3f8e46320832d1e869efe1f79b5212d8
ef919be5b2ef0df5e8827b417c6b7780c31744f17da104d610cdb546d5118385

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:20 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "EE3B815BCEF292A6B05DEFF2104F6F1995D8DB98"
Expires: Sun, 29 Jan 2023 14:00:00 GMT
Last-Modified: Sun, 29 Jan 2023 02:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3102
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 790eec46bcebb4ed-OSL

cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js?ver=1

104.17.25.14

200 OK

6.9 kB

URL HTTP/1.1
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js?ver=1
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (19015)
Size
6.9 kB (6908 bytes)
Hash
6ee68b87fae57a6f48a87f6c062f4aed
c4c7895d4a339ab9b70bf49d14d9b812ea40c519
2160d992b5d27b6a0acd094ba72c1ce52a39709d1ac051d3ace1c795e876348a

HTTP Headers

GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js?ver=1 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:20 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 6908
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
Content-Encoding: gzip
ETag: "5eb03fa9-4af4"
Last-Modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: MISS
Expires: Fri, 19 Jan 2024 03:36:20 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8iRMpj6LkIjmQMxj4Hl%2FVYEaJJ%2B6Gxg0iZDTTS3avyIQNpAxFq7%2BkzNL6C5UV4qlllhN9gnMtbp0Yg1X0rIxH0PWqMh3K1iX52IRmtCAjUwDdZvsQV8ynSx0%2BPS2UTqR6qWMn0tt"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 790eec464b8eb527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400

barinelectrical.com/wp-includes/css/classic-themes.min.css?ver=1

162.241.154.81

200 OK

217 B

URL HTTP/1.1
barinelectrical.com/wp-includes/css/classic-themes.min.css?ver=1
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
217 B (217 bytes)
Hash
95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:48:30 GMT
Accept-Ranges: bytes
Content-Length: 217
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

barinelectrical.com/wp-content/themes/barin/assets/css/responsive.css?ver=6.1.1

162.241.154.81

200 OK

12 kB

URL HTTP/1.1
barinelectrical.com/wp-content/themes/barin/assets/css/responsive.css?ver=6.1.1
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
12 kB (12113 bytes)
Hash
39bf606573db88c0edb6757002c0dabe
090658d6fb10e196324acb02de8536592f56bdef
879a88abca98c702136e2d195fe20564f1ccf7f031a7846723435343879a6d27

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/barin/assets/css/responsive.css?ver=6.1.1 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Wed, 11 May 2022 11:48:19 GMT
Accept-Ranges: bytes
Content-Length: 12113
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

barinelectrical.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4

162.241.154.81

200 OK

2.7 kB

URL HTTP/1.1
barinelectrical.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
2.7 kB (2731 bytes)
Hash
e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 07:44:05 GMT
Accept-Ranges: bytes
Content-Length: 2731
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:36:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

barinelectrical.com/QHmkrxI/loger.zip

162.241.154.81

200 OK

463 kB

URL HTTP/1.1
barinelectrical.com/QHmkrxI/loger.zip
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with very long lines (65536), with no line terminators
Size
463 kB (463248 bytes)
Hash
84f83c7c4376970918a0b2a18c03a3ad
73664a0ffc91748bf9b8c63b733f358343c1eb02
4ce997c8024f43b8cd02d3a2f78aa4a013c91edeb4ed800301bd1a3781daa2b2

Detections

Analyzer	Verdict	Alert
urlquery	suspicious	Suspicious - Suspicious JS code
urlquery	suspicious	Suspicious - Suspicious JS code
fortinet	Phishing

HTTP Headers

GET /QHmkrxI/loger.zip HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:17 GMT
Server: Apache
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

barinelectrical.com/wp-content/themes/barin/style.css?ver=6.1.1

162.241.154.81

200 OK

38 kB

URL HTTP/1.1
barinelectrical.com/wp-content/themes/barin/style.css?ver=6.1.1
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
38 kB (38480 bytes)
Hash
cc71aa8a7376288cfd4afa4266cbf133
f28376154abca6b7b5ebb132999a6b217f5568fc
2a24217b931fc268a8582517849c36babe5205cba2ab0c0d213453f059de1487

HTTP Headers

GET /wp-content/themes/barin/style.css?ver=6.1.1 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Fri, 15 Jul 2022 09:06:49 GMT
Accept-Ranges: bytes
Content-Length: 38480
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

www.googletagmanager.com/gtag/js?id=UA-143750037-1

142.250.74.40

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-143750037-1
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
44 kB (44019 bytes)
Hash
b8030bfc4e35184641574ec37e9f5179
00f759fb35e67497767bd7037c903d2b25e7dabe
f2685afa9f9c4f6b235b7dda0c678c1c6874d8eaa3a01edf87c37c77f1ec6aed

HTTP Headers

GET /gtag/js?id=UA-143750037-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barinelectrical.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 03:36:20 GMT
expires: Sun, 29 Jan 2023 03:36:20 GMT
cache-control: private, max-age=900
last-modified: Sun, 29 Jan 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44019
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

barinelectrical.com/wp-content/themes/barin/assets/icon-font/flaticon.css?ver=6.1.1

162.241.154.81

200 OK

968 B

URL HTTP/1.1
barinelectrical.com/wp-content/themes/barin/assets/icon-font/flaticon.css?ver=6.1.1
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
968 B (968 bytes)
Hash
9caf907826b92bfcb469764856b6940a
309b48471efee9de56b9578298d886b0feee5047
95abf97b8ccca02923232d08258143d507c73365fa29c03ebc2b9a4169bf23af

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/barin/assets/icon-font/flaticon.css?ver=6.1.1 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Wed, 11 May 2022 11:48:19 GMT
Accept-Ranges: bytes
Content-Length: 968
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

barinelectrical.com/wp-content/themes/barin/assets/css/bicon.css?ver=6.1.1

162.241.154.81

200 OK

12 kB

URL HTTP/1.1
barinelectrical.com/wp-content/themes/barin/assets/css/bicon.css?ver=6.1.1
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
troff or preprocessor input, Unicode text, UTF-8 text
Size
12 kB (12142 bytes)
Hash
98877207360c24efa7e3c14af34b61b8
baadcac324b1919872144e0e5cc0beb64c3c1401
a0a954ed213860e3888465b6ebe925b535c5ff005f8661fd17d9907ef68eec67

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/barin/assets/css/bicon.css?ver=6.1.1 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Wed, 11 May 2022 11:48:19 GMT
Accept-Ranges: bytes
Content-Length: 12142
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 03:36:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

barinelectrical.com/wp-content/themes/barin/assets/css/owl.theme.default.min.css?ver=6.1.1

162.241.154.81

200 OK

1.0 kB

URL HTTP/1.1
barinelectrical.com/wp-content/themes/barin/assets/css/owl.theme.default.min.css?ver=6.1.1
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (846)
Size
1.0 kB (1013 bytes)
Hash
594b81805a98b267e47c70a8fad30d9f
684d84ec40b305ca14efc88c91f12972cb6342b4
924b0dc630d1c5dff9fa31aead9509775b1d476bfe0a5ac2977b2f11205a26ac

HTTP Headers

GET /wp-content/themes/barin/assets/css/owl.theme.default.min.css?ver=6.1.1 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Wed, 11 May 2022 11:48:19 GMT
Accept-Ranges: bytes
Content-Length: 1013
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

barinelectrical.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

162.241.154.81

200 OK

95 kB

URL HTTP/1.1
barinelectrical.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (47826)
Size
95 kB (94889 bytes)
Hash
71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 23:49:06 GMT
Accept-Ranges: bytes
Content-Length: 94889
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

seal-cencal.bbb.org/seals/blue-seal-280-80-bbb-850028722.png

82.102.27.18

200 OK

6.0 kB

URL HTTP/2
seal-cencal.bbb.org/seals/blue-seal-280-80-bbb-850028722.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 280 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size
6.0 kB (5955 bytes)
Hash
6aa4f190af891e10dc659f20b32d9e9e
7b261664e72a07f3fc96f345479bee8e50c56c4a
759faf74da6826e4c36f5028421af46ddd097721fd727c44b8e3ae0256e9e975

HTTP Headers

GET /seals/blue-seal-280-80-bbb-850028722.png HTTP/1.1
Host: seal-cencal.bbb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barinelectrical.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: keycdn-engine
date: Sun, 29 Jan 2023 03:36:20 GMT
content-type: image/png
content-length: 5955
cache-control: max-age=14400
expires: Sun, 29 Jan 2023 07:36:20 GMT
last-modified: Sun, 29 Jan 2023 03:36:20 GMT
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-cache: MISS
x-shield: active
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

barinelectrical.com/wp-content/themes/barin/assets/js/scrool.js?ver=1

162.241.154.81

200 OK

813 B

URL HTTP/1.1
barinelectrical.com/wp-content/themes/barin/assets/js/scrool.js?ver=1
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (813), with no line terminators
Size
813 B (813 bytes)
Hash
9af7eb763a24aa7db367df4ca4114f17
642b3a16f500f49554a5ec83bfcd241446126c6c
019c0740c89206e68a276e350ca838c406662d2fcac1ffd859b28f51eaf867ca

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/barin/assets/js/scrool.js?ver=1 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Wed, 11 May 2022 11:48:19 GMT
Accept-Ranges: bytes
Content-Length: 813
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

barinelectrical.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

162.241.154.81

200 OK

11 kB

URL HTTP/1.1
barinelectrical.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11126)
Size
11 kB (11224 bytes)
Hash
79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Accept-Ranges: bytes
Content-Length: 11224
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

barinelectrical.com/wp-content/themes/barin/assets/css/owl.carousel.min.css?ver=6.1.1

162.241.154.81

200 OK

3.4 kB

URL HTTP/1.1
barinelectrical.com/wp-content/themes/barin/assets/css/owl.carousel.min.css?ver=6.1.1
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (3184)
Size
3.4 kB (3351 bytes)
Hash
b2752a850d44f50036628eeaef3bfcfa
fba46353cf90450ef3d362a123f1e7af3e8c561e
521410e1fc44780061e09adc980275fb5ea277fd5d9e538454214ec4379ff4bc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/barin/assets/css/owl.carousel.min.css?ver=6.1.1 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Wed, 11 May 2022 11:48:19 GMT
Accept-Ranges: bytes
Content-Length: 3351
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

barinelectrical.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4

162.241.154.81

200 OK

12 kB

URL HTTP/1.1
barinelectrical.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with very long lines (12310), with no line terminators
Size
12 kB (12310 bytes)
Hash
1f9968a7c7a2a02491393fb9d4103dae
0032c8a6a692e6f072b2cef20828449402fdd57d
f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 07:44:05 GMT
Accept-Ranges: bytes
Content-Length: 12310
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

barinelectrical.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

162.241.154.81

200 OK

19 kB

URL HTTP/1.1
barinelectrical.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (15660)
Size
19 kB (18617 bytes)
Hash
32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 23:47:17 GMT
Accept-Ranges: bytes
Content-Length: 18617
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

barinelectrical.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4

162.241.154.81

200 OK

9.9 kB

URL HTTP/1.1
barinelectrical.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (9937), with no line terminators
Size
9.9 kB (9937 bytes)
Hash
dc74c9954b1944928eca0172c3b8c6b3
e9e00e587e0e28491b69563b4e768945ff2e0ed5
d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 07:44:05 GMT
Accept-Ranges: bytes
Content-Length: 9937
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript

barinelectrical.com/wp-content/themes/barin/assets/js/custom.js?ver=1

162.241.154.81

200 OK

458 B

URL HTTP/1.1
barinelectrical.com/wp-content/themes/barin/assets/js/custom.js?ver=1
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
458 B (458 bytes)
Hash
9b7877646f291f72daa9e4e509f12cf7
72d39a58933b93907dae04d98273fbb5d5d08aed
efc947fa8db9e415c4ffa665f3d01464fbbf0a866782e925923dbe570d882d74

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/barin/assets/js/custom.js?ver=1 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Thu, 30 Jun 2022 13:03:35 GMT
Accept-Ranges: bytes
Content-Length: 458
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

barinelectrical.com/wp-content/themes/barin/assets/css/bootstrap.css?ver=6.1.1

162.241.154.81

200 OK

178 kB

URL HTTP/1.1
barinelectrical.com/wp-content/themes/barin/assets/css/bootstrap.css?ver=6.1.1
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
178 kB (178152 bytes)
Hash
d59729439a203fc474f5677b8d18d8bb
2ce613073db4961ad118ac063421eb62cefc426e
8c1a4c25634d5841924aab1848acc9dcbc3d5672183053c8b71ff2139b65d7c3

HTTP Headers

GET /wp-content/themes/barin/assets/css/bootstrap.css?ver=6.1.1 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Wed, 11 May 2022 11:48:19 GMT
Accept-Ranges: bytes
Content-Length: 178152
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12953
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 03:36:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12953
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 03:36:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12953
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 03:36:21 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12953
Expires: Sun, 29 Jan 2023 07:12:14 GMT
Date: Sun, 29 Jan 2023 03:36:21 GMT
Connection: keep-alive

barinelectrical.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

162.241.154.81

200 OK

90 kB

URL HTTP/1.1
barinelectrical.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65447)
Size
90 kB (89684 bytes)
Hash
17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:19 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 11:48:30 GMT
Accept-Ranges: bytes
Content-Length: 89684
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11624 bytes)
Hash
6021d6a06bff2826eb341747e82484f7
a817ff1ba206234627706551820d0d9856b398de
f0ba6de8709fdb73e94dbdace635232c76b9d70dad73badaca0542d9ad49604d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8f2806c-ec5e-41a0-85d8-007f6d34d108.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11624
x-amzn-requestid: 09cf15e8-9e34-48d8-98e6-f698e3db09a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIhl7Hv7oAMFozg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce2f2-0c3acc173da3ccf164b4c412;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:17:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0-OYl8IX1kTRNxA8_kGXbD-yV4DeqDgN4qkCcvKxTW7VVz2FTQgalw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 06:42:55 GMT
age: 75206
etag: "a817ff1ba206234627706551820d0d9856b398de"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.7 kB (8652 bytes)
Hash
43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 5a5a883e-d7d4-4fc5-925a-3a95830c504e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVguyG7BIAMFm8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d214c4-390b59a32060e41203533c58;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 05:51:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ewSsCY4u9DwRtaj00U9JCim9tYeCgHRuIQFpdHm4ttI6L02-e44iDQ==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 06:42:55 GMT
age: 75206
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dd6ccbb-893e-4aca-b08e-b16283e4ee58.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7790 bytes)
Hash
e6d617843cc1f7df21950fe7d4add160
4b7b2e07f0c4667f9c83d99c1481f81ac6e531f9
facb5e8beed1bf0b0ae02cba77278767f211717097803b3966312dfe0822646b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9dd6ccbb-893e-4aca-b08e-b16283e4ee58.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7790
x-amzn-requestid: 19b7ae0c-7ce9-4d01-96c3-9259e6f2b1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fH88xFpKIAMF_gg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cca851-0d4a98a74200cb962d434f82;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 03:06:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ORGO0m0bJJzpWpxLCewm0J1vp8khEZlPzL58syBdlhyQniN8em5Qzg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:53:11 GMT
age: 20590
etag: "4b7b2e07f0c4667f9c83d99c1481f81ac6e531f9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9167 bytes)
Hash
3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:46:16 GMT
age: 24605
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7417 bytes)
Hash
6af6f32397882f56d14d22348e44a9f1
5a626376807e7507fa3a204c4e4e9e44aa074a37
478f32e98c0a1f0d62fa337795ca88b7927e14b684b681f7629b648bc2d709a5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F62d5a25c-3219-4061-b58b-b783bc3a37fb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7417
x-amzn-requestid: 53032353-8613-49b0-944d-3742236cf50c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYcMmFeQIAMF3Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d340b6-7fe2226327d90db014527c08;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 03:10:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: zd8cTO2N1JO-OK3hCDwVO8naClCsg0raJLboRFle-DPSKhR_7k8-Yg==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 981753271eb5b6d11bc29d52f173a5da.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 03:16:35 GMT
age: 1186
etag: "5a626376807e7507fa3a204c4e4e9e44aa074a37"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10030 bytes)
Hash
2f73f114f8dc452fc0b16825570ad50c
6bb1b3db6c36e2c9d23b6cb7d1c8616eeec19575
23fd69e6ccdd2ce2b5d3d8b3f075a07cdb36efd663a4119b5dca22165e7b2090

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7f65e9-ca75-4ecb-ba7c-ae70877eaf01.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10030
x-amzn-requestid: 0c6c82b5-f91b-4468-bb25-d87d4d7dedd5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVAbgERRIAMFdcw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d1e116-7f17c79047447dff2de3ab67;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 02:10:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: pHTs5LN29bSjD8GAXY_vstXiEQ7iy9qXsq23Pxl-GdXX16_5H5QKCQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 16:13:35 GMT
age: 40966
etag: "6bb1b3db6c36e2c9d23b6cb7d1c8616eeec19575"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

barinelectrical.com/wp-content/uploads/2022/06/mail_icon.png

162.241.154.81

200 OK

1.2 kB

URL HTTP/1.1
barinelectrical.com/wp-content/uploads/2022/06/mail_icon.png
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 38 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1165 bytes)
Hash
166dfd6489d000074c4978342fcae1e3
06f81ff047585cb509b80a99d9233eff747c7093
a3cad8ec7e7ea7c82a633c1443e8d25aad26bedb75b06fe4cf09cb81eeaff2cd

HTTP Headers

GET /wp-content/uploads/2022/06/mail_icon.png HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:20 GMT
Server: Apache
Last-Modified: Tue, 28 Jun 2022 15:43:45 GMT
Accept-Ranges: bytes
Content-Length: 1165
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

barinelectrical.com/wp-content/uploads/2022/06/search-icon.png

162.241.154.81

200 OK

1.1 kB

URL HTTP/1.1
barinelectrical.com/wp-content/uploads/2022/06/search-icon.png
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Size
1.1 kB (1111 bytes)
Hash
e76658fb71229750395447fc1affd113
1398c10239efb292861b1b747655afe6d9117326
e469ba51ca15405341d5bd220bcd4b1d96a94d8b9b488704a29069bd08ac695b

HTTP Headers

GET /wp-content/uploads/2022/06/search-icon.png HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barinelectrical.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:20 GMT
Server: Apache
Last-Modified: Thu, 30 Jun 2022 11:50:25 GMT
Accept-Ranges: bytes
Content-Length: 1111
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png

cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

104.17.25.14

200 OK

77 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /ajax/libs/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://barinelectrical.com
Connection: keep-alive
Referer: https://cdnjs.cloudflare.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Sun, 29 Jan 2023 03:36:21 GMT
content-type: application/octet-stream; charset=utf-8
content-length: 77160
access-control-allow-origin: *
cache-control: public, max-age=30672000
etag: "5eb03e5f-12d68"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 271311
expires: Fri, 19 Jan 2024 03:36:21 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8SktWzt%2B3N1RF1bJqR%2Bzmte7neIBuOuCbyvmOT4tmDBUoZqj%2BrUt86%2BELB1aTuKiWsSqEzIPHR8cr4cMN1BlRXEHk7o65%2FfFeRy6ds8%2FtGwEGVrvVdOTPrHrJnTPcTie3dO%2B9TIn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 790eec4d7ccbb4f7-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

barinelectrical.com/wp-content/uploads/2022/06/map_icon.png

162.241.154.81

200 OK

1.2 kB

URL HTTP/1.1
barinelectrical.com/wp-content/uploads/2022/06/map_icon.png
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 38 x 38, 8-bit/color RGBA, non-interlaced\012- data
Size
1.2 kB (1169 bytes)
Hash
2ed3682b9db295b6b18c9eb604d76581
e2357b7b88fa5df38aafeb337234b524224ba533
29ae17911340a2300cfb065121cb7db57c7c74aeedce25467172073dd5e915ba

HTTP Headers

GET /wp-content/uploads/2022/06/map_icon.png HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:20 GMT
Server: Apache
Last-Modified: Tue, 28 Jun 2022 15:42:21 GMT
Accept-Ranges: bytes
Content-Length: 1169
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

barinelectrical.com/wp-content/uploads/2022/06/phone-icon.png

162.241.154.81

200 OK

1.7 kB

URL HTTP/1.1
barinelectrical.com/wp-content/uploads/2022/06/phone-icon.png
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 40 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
1.7 kB (1665 bytes)
Hash
cf6a33ff641a26165eb56c8127408b71
a99d2db37f1816a22bdfc1eb2558788bfc913fca
3062d46da852ad06e79d971c1007f8f96f2a27a6342f79e0e64e180edb0635a2

HTTP Headers

GET /wp-content/uploads/2022/06/phone-icon.png HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:20 GMT
Server: Apache
Last-Modified: Tue, 28 Jun 2022 15:42:22 GMT
Accept-Ranges: bytes
Content-Length: 1665
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

barinelectrical.com/wp-content/uploads/2022/06/barin-new-logo-1.png

162.241.154.81

200 OK

25 kB

URL HTTP/1.1
barinelectrical.com/wp-content/uploads/2022/06/barin-new-logo-1.png
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 400 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
25 kB (24885 bytes)
Hash
81c4856cb32d53c9bf25bd8889c22583
96ba901fcaf3dd2657856c29049fc42025adaaba
1e07a7c29b0d67762886b86fb453327966dd1450c69e30719e80e5597bac2984

HTTP Headers

GET /wp-content/uploads/2022/06/barin-new-logo-1.png HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:20 GMT
Server: Apache
Last-Modified: Tue, 28 Jun 2022 15:18:14 GMT
Accept-Ranges: bytes
Content-Length: 24885
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png

barinelectrical.com/wp-content/uploads/2022/06/barin-mobile-logo-1.png

162.241.154.81

200 OK

101 kB

URL HTTP/1.1
barinelectrical.com/wp-content/uploads/2022/06/barin-mobile-logo-1.png
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 2050 x 328, 8-bit/color RGBA, non-interlaced\012- data
Size
101 kB (100789 bytes)
Hash
35dfce2a41beef3ef2a2233ca91409ea
603692ca155371cec50386324a66a05ebf7a1ad7
e33e63c2d7625404dbd21109a0a66d1df10bc1100c273d5dcc88564116f4d9d0

HTTP Headers

GET /wp-content/uploads/2022/06/barin-mobile-logo-1.png HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:20 GMT
Server: Apache
Last-Modified: Wed, 29 Jun 2022 11:18:56 GMT
Accept-Ranges: bytes
Content-Length: 100789
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png

barinelectrical.com/wp-content/themes/barin/proximanova-regular-webfont.woff2

162.241.154.81

200 OK

20 kB

URL HTTP/1.1
barinelectrical.com/wp-content/themes/barin/proximanova-regular-webfont.woff2
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 20312, version 2.197\012- data
Size
20 kB (20312 bytes)
Hash
231cb412090fc6584eb380e2f50834e3
08843ee3f0901f12ab55b9f8b58c4bfbf32dc247
14608fe13f0eb2949ba1a54ffa02ef6effb15a591e9d8bb7832dd379a13ac9f8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/barin/proximanova-regular-webfont.woff2 HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://barinelectrical.com/wp-content/themes/barin/style.css?ver=6.1.1

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:20 GMT
Server: Apache
Last-Modified: Wed, 11 May 2022 11:48:19 GMT
Accept-Ranges: bytes
Content-Length: 20312
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: font/woff2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://barinelectrical.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 29 Jan 2023 01:46:59 GMT
expires: Sun, 29 Jan 2023 03:46:59 GMT
cache-control: public, max-age=7200
age: 6562
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

barinelectrical.com/wp-content/uploads/2022/06/barin-electrical-logo-1.png

162.241.154.81

200 OK

91 kB

URL HTTP/1.1
barinelectrical.com/wp-content/uploads/2022/06/barin-electrical-logo-1.png
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 2181 x 456, 8-bit/color RGBA, non-interlaced\012- data
Size
91 kB (91076 bytes)
Hash
c9812c7ce75f9013305202e43cba24cd
f6a4dca3806157f00b410edb699c56e781fab7a6
7e6e799de5df3792ec1ccb4641655c11a040f3b91bc0b42803fb7ad294c52bc0

HTTP Headers

GET /wp-content/uploads/2022/06/barin-electrical-logo-1.png HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:20 GMT
Server: Apache
Last-Modified: Tue, 28 Jun 2022 14:03:22 GMT
Accept-Ranges: bytes
Content-Length: 91076
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png

barinelectrical.com/wp-content/themes/barin/assets/images/favicon.ico

162.241.154.81

200 OK

1.2 kB

URL HTTP/1.1
barinelectrical.com/wp-content/themes/barin/assets/images/favicon.ico
IP
162.241.154.81:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
1.2 kB (1150 bytes)
Hash
132a27225836cddab6255942c08ba3b0
50581cdf959e662a9545052c29469df07448af60
46177c8c871b68d7105f24b8456a908da63c316a613e361c53b334d2cd0d4f96

HTTP Headers

GET /wp-content/themes/barin/assets/images/favicon.ico HTTP/1.1
Host: barinelectrical.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://barinelectrical.com/QHmkrxI/loger.zip

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 03:36:20 GMT
Server: Apache
Last-Modified: Wed, 11 May 2022 11:48:19 GMT
Accept-Ranges: bytes
Content-Length: 1150
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/x-icon

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML