firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 03 Sep 2022 18:43:10 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 2afd697fc5d0058ea30d6c4b939e714c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gdJ2D6af8ZRFnYI0O9NKf3rk2ytnQCwK5fOP-Pl83d6X_o3GXm6kqA==
Age: 3273
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4204
Expires: Sat, 03 Sep 2022 20:47:47 GMT
Date: Sat, 03 Sep 2022 19:37:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 03 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: S87DzmXAS9ddYIGr4sJqLsj_FWGuqfuCimZaYNWMQmRJ2W-C0pIOXw==
age: 66146
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 19:37:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 03 Sep 2022 18:38:16 GMT
Expires: Sat, 03 Sep 2022 18:42:27 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: V1aX74z9RxzgLa63etXDmz645CQlU1FZLaZbdWD-QnvZbAXu83BrMg==
Age: 3567
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fc12f0a98aa28ccb56e0b56d7e40ded
f7efcfb8b4f4aa40268bada3fec380820a70ee35
a34aa9b7db949a583c3f1b4d87fed415a11d119c9615b5e710c3125173f8a277
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5516
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 19:37:44 GMT
Last-Modified: Sat, 03 Sep 2022 18:05:48 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.187.160.31101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.160.31:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: oJT+XwdTJtJhdworbPv1uw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: A2pzMfn4A39UDTnOZeQSgM49OWs=
fonts.googleapis.com/css?family=Droid+Serif%3A400%2C700&ver=6.0.1
142.250.74.10200 OK 303 B URL HTTP/1.1 fonts.googleapis.com/css?family=Droid+Serif%3A400%2C700&ver=6.0.1
IP 142.250.74.10:0
Hash a12841952a98d4e00e0ad3ff2a8c60f8
226af6f94b388fcd3950735f8ed630d35c222f91
4ef5233d7a20fdcdcc67930e5d9b7ad760597129df1c2fdab7f2dd78fefbfe9b
GET /css?family=Droid+Serif%3A400%2C700&ver=6.0.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 03 Sep 2022 19:37:44 GMT
Date: Sat, 03 Sep 2022 19:37:44 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800&ver=6.0.1
142.250.74.10200 OK 766 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800&ver=6.0.1
IP 142.250.74.10:0
Hash d71ac876718b3fde556fc24de7f2eb10
018c76462bcae6729b565a9574eef581eda66e2c
a7f9e7d976c649dc7d1131408a0c672cf342113cbab5d826e1d607f7ca6bd169
GET /css?family=Open+Sans%3A300%2C400%2C600%2C700%2C800&ver=6.0.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 03 Sep 2022 19:37:44 GMT
Date: Sat, 03 Sep 2022 19:37:44 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&ver=6.0.1
142.250.74.10200 OK 693 B URL HTTP/1.1 fonts.googleapis.com/css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&ver=6.0.1
IP 142.250.74.10:0
Hash 34f9be8fb0d36cf760d9d042ea50d3dc
7102e685465df51008fedeccdb820a236170e3ee
07766bf2222c090847dab36d3e93cac171eca98c785097dc8ea6694e335f92c3
GET /css?family=Raleway%3A100%2C200%2C300%2C400%2C500%2C600%2C700%2C800%2C900&ver=6.0.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 03 Sep 2022 19:37:44 GMT
Date: Sat, 03 Sep 2022 19:37:44 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
fonts.googleapis.com/css?family=Open+Sans%3A400%2C300%2C400italic%2C600%2C700%2C700italic%2C800%7CMerriweather%3A400%2C400italic%2C700%2C700italic%7CLora%3A400%2C400italic%2C700%2C700italic%7CPoppins%3A300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext
142.250.74.10200 OK 1.6 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans%3A400%2C300%2C400italic%2C600%2C700%2C700italic%2C800%7CMerriweather%3A400%2C400italic%2C700%2C700italic%7CLora%3A400%2C400italic%2C700%2C700italic%7CPoppins%3A300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext
IP 142.250.74.10:0
Hash 6df20cd6dcb1b811b1be0163cc1f0c91
12efc6c8fc3f00bb6ad0ea5e34b6481807b9b084
2abc762e08110a98bc9f70efdcded59d5059beb21e5e674eb2659d878218b5b3
GET /css?family=Open+Sans%3A400%2C300%2C400italic%2C600%2C700%2C700italic%2C800%7CMerriweather%3A400%2C400italic%2C700%2C700italic%7CLora%3A400%2C400italic%2C700%2C700italic%7CPoppins%3A300%2C400%2C500%2C600%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 03 Sep 2022 19:37:44 GMT
Date: Sat, 03 Sep 2022 19:37:44 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
birdwinginnovations.com/
184.168.115.59200 OK 18 kB IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23398)
Hash 91f7e227a1cd5fccb37c8f4bdfe6448d
a7f1bcc195f82b4e20e5d769b4cbbf163684d66f
4d3dfbf958ac62590c53ce53807502e04f280d3a336bb8dd58dcb009245a81c1
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:43 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 17703
Keep-Alive: timeout=5
Content-Type: text/html;charset=utf-8
www.birdwinginnovations.com/wp-content/cache/wpfc-minified/fervlc7h/c48qt.css
184.168.115.59200 OK 859 B URL HTTP/1.1 www.birdwinginnovations.com/wp-content/cache/wpfc-minified/fervlc7h/c48qt.css
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 676a56566918d4af820e33bcbc886b92
1c524ec87ef0e582f1aa708ad266531fc758f403
a081e08ebf5fd480b83073880cc616134c087f471e2c897a6a46acda7c2f0f76
GET /wp-content/cache/wpfc-minified/fervlc7h/c48qt.css HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 27 May 2022 17:59:39 GMT
ETag: "51427e8-971-5e00211f63382-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 859
Keep-Alive: timeout=5
Content-Type: text/css
www.birdwinginnovations.com/wp-content/cache/wpfc-minified/6kf3ywjj/c48qt.css
184.168.115.59200 OK 7.3 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/cache/wpfc-minified/6kf3ywjj/c48qt.css
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9774)
Hash b52aa7a99ebdde29c130171b16abf38d
4d4233c5050234cc069ecaf71a0065caf8e65906
8531c313c2c0cdfa721cc86516e48c5a3b861680a4720e796167d2f4937da271
GET /wp-content/cache/wpfc-minified/6kf3ywjj/c48qt.css HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 27 May 2022 17:59:39 GMT
ETag: "51427df-8f9b-5e00211f62f9a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7344
Keep-Alive: timeout=5
Content-Type: text/css
www.birdwinginnovations.com/wp-content/cache/wpfc-minified/7lk4uzdm/c48qt.css
184.168.115.59200 OK 12 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/cache/wpfc-minified/7lk4uzdm/c48qt.css
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65518)
Hash 1e7bccb621138d7b4a8f3d6926993b79
8f4363502eef945b5aa533fef85736924781d4dc
b4a6a1eb6f117e0c6b3e27f7f468d8264abdc3c2fe6d235c1ea77a917047a96d
GET /wp-content/cache/wpfc-minified/7lk4uzdm/c48qt.css HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 27 May 2022 17:59:39 GMT
ETag: "51427ea-15a4b-5e00211f65a92-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 11642
Keep-Alive: timeout=5
Content-Type: text/css
www.birdwinginnovations.com/wp-content/cache/wpfc-minified/esizqwf/c48qt.css
184.168.115.59200 OK 334 B URL HTTP/1.1 www.birdwinginnovations.com/wp-content/cache/wpfc-minified/esizqwf/c48qt.css
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 8eb1f0b758e7b65174cf97b46ffbf97d
cab556314cace6fa0262c56f1ecee51dbc7dc1ad
40c5bd3af77e53fd68117a3ae52d9f9bc14c49f0fcf2a2720d4a2cce20ce4590
GET /wp-content/cache/wpfc-minified/esizqwf/c48qt.css HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 27 May 2022 17:59:39 GMT
ETag: "51427da-2d1-5e00211f6182a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 334
Keep-Alive: timeout=5
Content-Type: text/css
www.birdwinginnovations.com/wp-content/cache/wpfc-minified/8yavpc2e/c48qt.css
184.168.115.59200 OK 7.0 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/cache/wpfc-minified/8yavpc2e/c48qt.css
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (30695), with no line terminators
Hash 4a10c1d0ae703a4e6bdff3cd3f23b294
409f843e96e7105cfbb528b760bea383d2762b52
cd40a81ce390e33f02a54fa52a9bede981f723532ccb41a7a01c0a5bb52ba7bd
GET /wp-content/cache/wpfc-minified/8yavpc2e/c48qt.css HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 27 May 2022 17:59:39 GMT
ETag: "51427cc-77e7-5e00211f5e17a-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7034
Keep-Alive: timeout=5
Content-Type: text/css
www.birdwinginnovations.com/wp-content/cache/wpfc-minified/jy3ujddo/c48qt.css
184.168.115.59200 OK 177 B URL HTTP/1.1 www.birdwinginnovations.com/wp-content/cache/wpfc-minified/jy3ujddo/c48qt.css
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 023b11b126eb2155a57a8a024e9380f6
2b8e9a690c55cabb4a7902db11742abe45f644df
0e5482f9b7d9ec700c1eb3537a4d6aadce83f39e75d52bc7a7235739ab49676c
GET /wp-content/cache/wpfc-minified/jy3ujddo/c48qt.css HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 27 May 2022 17:59:39 GMT
ETag: "51427ca-10d-5e00211f5d1da-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 177
Keep-Alive: timeout=5
Content-Type: text/css
www.birdwinginnovations.com/wp-content/themes/easyweb/css/dyncss.css?ver=6.0.1
184.168.115.59200 OK 0 B URL HTTP/1.1 www.birdwinginnovations.com/wp-content/themes/easyweb/css/dyncss.css?ver=6.0.1
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/themes/easyweb/css/dyncss.css?ver=6.0.1 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Last-Modified: Fri, 20 Aug 2021 21:38:56 GMT
ETag: "4ee0c25-0-5ca047ea354ed"
Accept-Ranges: bytes
Content-Length: 0
Vary: Accept-Encoding
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.birdwinginnovations.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.1
184.168.115.59200 OK 5.0 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.1
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.1 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 21:38:04 GMT
ETag: "4ee0303-48b9-5dfc8c5904761-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5009
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.birdwinginnovations.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
184.168.115.59200 OK 2.5 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 21:38:03 GMT
ETag: "4ee0149-194b-5dfc8c58137d2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2457
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12704
Expires: Sat, 03 Sep 2022 23:09:29 GMT
Date: Sat, 03 Sep 2022 19:37:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12704
Expires: Sat, 03 Sep 2022 23:09:29 GMT
Date: Sat, 03 Sep 2022 19:37:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12704
Expires: Sat, 03 Sep 2022 23:09:29 GMT
Date: Sat, 03 Sep 2022 19:37:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12704
Expires: Sat, 03 Sep 2022 23:09:29 GMT
Date: Sat, 03 Sep 2022 19:37:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12704
Expires: Sat, 03 Sep 2022 23:09:29 GMT
Date: Sat, 03 Sep 2022 19:37:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60769237af4f32c663d494d91a672d08
31305131f340191799484f212e15513bd1204e88
6df36e459f3a2d0271732b645009b116e6671363f6c3050d22bbfe2d911a77bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4994
x-amzn-requestid: de39357f-d378-4bb8-b4d9-7dd4f82fbb58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xgj-kEHvoAMFyBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309b390-119fa01e254e89cb39a1b794;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 06:02:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1yjBt3dqEztIRHo4yR3ZzI67J4lWUMS8R44-PpkeDJ4KNdCTPkmh-w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 04:45:35 GMT
age: 53530
etag: "31305131f340191799484f212e15513bd1204e88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d78cbff83c152b84864606781a29563d
8bdbc6e135be6e582d0e23754399422e3792777b
3c385de9ade05e1652ccc386e73aaccc4c223a07b81af4c5fdf3f73a166909f7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb6f5d90-39e2-4288-8685-adf2348d38e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14061
x-amzn-requestid: 43535b37-15c9-4a28-a7c0-f43482948382
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XqlhGFX4IAMF9oQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630db606-77bd935d4364050f230ba5da;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 07:02:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: y_-knSwUodyBxS8I8PAoUexT6Z4o0Aq7m62v7HrRjm7vV-jP0VuCpw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 06:26:07 GMT
age: 47498
etag: "8bdbc6e135be6e582d0e23754399422e3792777b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4cb62c7c522b71c62a97630d8330ef5
950611314b81428b3d80ff8659272cc800cf48b6
3fd0bbf8a1fe8776136d611d6b99b909b71e6af3a13f8794338af2f0026b59ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7975
x-amzn-requestid: d4695cb0-76ed-495c-b548-d7819edd6d90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XwqDSGuDIAMF6kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631023ae-7ba42ae9407c626a02d10e7f;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 03:14:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: paxjtCjggGuEMbpwW1HmCdQOemdktodVUl-grweVuYke_NynMIHMlg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 03:54:34 GMT
age: 56591
etag: "950611314b81428b3d80ff8659272cc800cf48b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23b580e2b673257d24b9c2e80c4c48ce
f3a3d835a37f9b23e7458f9b7bc721bc415b61cc
c0e3559fde3dd08cdbd360f39dddcc98dd7c1b3aebd0861cc07105872a116d11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7501
x-amzn-requestid: bf297fc4-9164-45ee-bfab-06761a52e3ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eMJEP1IAMFdpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312771a-6b3e6416133d67a83d8a1469;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: datd5eYK6nOAUdEpy_y4gcqsVmCqjP4qhzTnlJ9pSrquoYk2PPugTA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:02:34 GMT
age: 77711
etag: "f3a3d835a37f9b23e7458f9b7bc721bc415b61cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GHd4FOjIO1OP7wSOVcnOryE5ux4hlr_kC0dfJs3LqgQUbxMzuFxc1A==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 21:37:28 GMT
age: 79217
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c199f7fc2a2857dec134bfdb2673e28c
af3989072b658e2de119d006ae4ca1703468913d
e57411ba0221f6ffa7baf7c374ec790959a66d6a683fad40883ef01cf67e35c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6976
x-amzn-requestid: da379546-9525-4e13-b9f0-a6446839df66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eNeG7kIAMF4-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63127722-37399f67565b06e7111095cd;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5SORUPJgJ_gKKs4hSa4EzCCQA6B1dmyO1EC-gCBvFKl2R2hV0mYTeA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:39:01 GMT
age: 75524
etag: "af3989072b658e2de119d006ae4ca1703468913d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.birdwinginnovations.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
184.168.115.59200 OK 7.1 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 2f4fcc5a628b379672d76b7e91cbdf07
9d72f2c9cbc1e9b036360acfce8c8ccc8b832b8c
a360f715a418026d2e1acd81c02c83233d0c0b60fdf4ce0b4d33562925d6a0b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Last-Modified: Tue, 24 May 2022 21:38:03 GMT
ETag: "4ee0152-4ac6-5dfc8c58133ea-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7095
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.birdwinginnovations.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2
184.168.115.59200 OK 4.1 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (12987), with no line terminators
Hash d1e444a515befe59b1fc5fac59bbf91f
9a58b94f9281ad353d5ba8267f6192e570c1c9ac
b80e69017ad712ec753504c48ce9005f79f5a27a7cd8f1262f3c20b9d00faa33
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.4.2 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Last-Modified: Fri, 20 Aug 2021 21:40:21 GMT
ETag: "4ee06c5-32bb-5ca0483ad52d6-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4071
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.birdwinginnovations.com/wp-content/themes/easyweb/js/jquery.masonry.min.js
184.168.115.59200 OK 2.2 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/themes/easyweb/js/jquery.masonry.min.js
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (5292), with CRLF line terminators
Hash 329a645e2f9c8e1d53ea907d783993db
871d7c717badcac3ce4d79719f264f93c9496ab4
aa813be611873c6068ad158999c636ad36283b271f1def3a03de0dcf5be00843
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/easyweb/js/jquery.masonry.min.js HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Last-Modified: Fri, 20 Aug 2021 21:39:02 GMT
ETag: "4ee25ee-1584-5ca047efe5e23-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2195
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.birdwinginnovations.com/wp-content/cache/wpfc-minified/q56tmb4/c48qt.css
184.168.115.59200 OK 45 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/cache/wpfc-minified/q56tmb4/c48qt.css
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65536), with no line terminators
Hash c0df39d97d911a5d1d53b99b99cb04cf
5711f60675ecb92e076de8b5da6f2aa76b6222c5
723765164692c3ea011fe5cb5269a71031ea0f40be891cfb4a526aab32339761
GET /wp-content/cache/wpfc-minified/q56tmb4/c48qt.css HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Last-Modified: Fri, 27 May 2022 17:59:39 GMT
ETag: "51427c6-72240-5e00211f2e7bd-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 45187
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: text/css
www.birdwinginnovations.com/wp-content/themes/easyweb/js/webnus-custom.js
184.168.115.59200 OK 6.4 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/themes/easyweb/js/webnus-custom.js
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash e40667da97959b8ed67c9d4e8aea65ef
3edfefbf9aff97462af3d12fc5ad1257887c8ef5
867e0c6f0a508cbd1268f2784a9bca8954827d0c1fca079e587d292ff1d06e23
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/easyweb/js/webnus-custom.js HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Last-Modified: Wed, 04 May 2022 09:24:24 GMT
ETag: "4ee25ed-52e2-5de2c30ee62f1-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6414
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.birdwinginnovations.com/wp-content/themes/easyweb/js/live-search.js
184.168.115.59200 OK 2.3 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/themes/easyweb/js/live-search.js
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (7780), with no line terminators
Hash 9318dd3921066bd2e5ef7cdf650ced66
998a77c7776ddcf72fb4a16efc375a35a0ecac16
242451e60791b98ad79367967a37a74188b1766c0dfe8322d9fbd027053912fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/easyweb/js/live-search.js HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:46 GMT
Server: Apache
Last-Modified: Fri, 20 Aug 2021 21:39:02 GMT
ETag: "4ee25ef-1e64-5ca047efe5e23-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2344
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.birdwinginnovations.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.4.5
184.168.115.59200 OK 5.7 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.4.5
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (19781), with no line terminators
Hash 71d4a975deba5e39fd33961e72ca819b
42a59c27b10a93488444d23b36c3907341ff0c52
6740f99dcf4d84c7867b015dd5238c7feeb02ff64dc12619e61f7adeecbc5fb0
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=5.4.5 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:46 GMT
Server: Apache
Last-Modified: Fri, 20 Aug 2021 21:40:21 GMT
ETag: "4fa1172-4d45-5ca0483b15a1c-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5712
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.birdwinginnovations.com/wp-content/cache/wpfc-minified/jzb1bbac/c48qt.js
184.168.115.59200 OK 99 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/cache/wpfc-minified/jzb1bbac/c48qt.js
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65351)
Hash 97f072d923fa0109986acbbfb2ccab4f
ff852de056ad1e9c715789ac8196f3852d037b8c
18cb47593e226a15bc571f8dd535c820abb7741bf128aea18842651675a8ea3b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/cache/wpfc-minified/jzb1bbac/c48qt.js HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Last-Modified: Fri, 27 May 2022 17:59:39 GMT
ETag: "526157a-49ed2-5e00211fcdaac-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.birdwinginnovations.com/wp-content/themes/easyweb/js/jquery.plugins.js
184.168.115.59200 OK 53 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/themes/easyweb/js/jquery.plugins.js
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (15184)
Hash b6e7dda30cbfe03887ba4571c9643f29
8047d9bda1bdff4ce1a50f35a9b0a276a150ee4f
f365240a0e85856e3fdfee916487f8868dc54944c325fb07f5a5a1dabf0a4576
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/easyweb/js/jquery.plugins.js HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Last-Modified: Fri, 20 Aug 2021 21:39:02 GMT
ETag: "4ee25ea-2d212-5ca047efe5a3b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.birdwinginnovations.com/wp-content/cache/wpfc-minified/6xgwhhsi/c48qt.css
184.168.115.59200 OK 167 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/cache/wpfc-minified/6xgwhhsi/c48qt.css
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type assembler source, ASCII text, with very long lines (65536), with no line terminators
Size 167 kB (167234 bytes)
Hash a33888dd430767b73b7804c58440aa1b
911b63b3f339be0e301338026fbcda292a6bd337
c0919ef57c757361687faace4599297a3c34756366b5e32dd11ae5c51e6d1285
GET /wp-content/cache/wpfc-minified/6xgwhhsi/c48qt.css HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:45 GMT
Server: Apache
Last-Modified: Fri, 27 May 2022 17:59:39 GMT
ETag: "51427c8-122dcc-5e00211f5cdf2-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.birdwinginnovations.com/wp-content/plugins/preloader-for-website/assets/images/spinner-1.gif
184.168.115.59200 OK 13 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/plugins/preloader-for-website/assets/images/spinner-1.gif
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type GIF image data, version 89a, 64 x 64\012- data
Hash 1be12687d3503bab1ffb053e551dcdf7
97adf13406f6bdaf134928f5f1f4deb67ea69b73
63db95093158b841d6cfa377a98ec31671a979f4c9613754d25742c431c44cb8
GET /wp-content/plugins/preloader-for-website/assets/images/spinner-1.gif HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Last-Modified: Thu, 21 Apr 2022 14:19:00 GMT
ETag: "4ea332e-3170-5dd2aca91f484"
Accept-Ranges: bytes
Content-Length: 12656
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/gif
www.birdwinginnovations.com/wp-content/uploads/2022/04/inforob.png
184.168.115.59200 OK 9.3 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/uploads/2022/04/inforob.png
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash cf4c71183a53534bde8a8e8eaadb383d
67b1a146d6a897fa39ca7d88a9ecb5b2a417b2b3
4a5a5167c405b7afc1dbb5f5091c8cb7214eb149d09a6c9750096b6c04d6621c
GET /wp-content/uploads/2022/04/inforob.png HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Last-Modified: Wed, 20 Apr 2022 11:24:09 GMT
ETag: "512384c-2478-5dd143b6a0db3"
Accept-Ranges: bytes
Content-Length: 9336
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
142.250.74.163200 OK 7.9 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://birdwinginnovations.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7884
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Sep 2022 00:22:10 GMT
Expires: Fri, 01 Sep 2023 00:22:10 GMT
Cache-Control: public, max-age=31536000
Age: 242137
Last-Modified: Wed, 27 Apr 2022 17:03:52 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
142.250.74.163200 OK 8.0 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 8000, version 1.0\012- data
Hash 72993dddf88a63e8f226656f7de88e57
179f97ec0275f09603a8db94d4380eb584d81cd5
f4e80d9dfd374d02989b87a27b5ed4cb78fbb177c27f1478e9a8b0afb7513149
GET /s/poppins/v20/pxiByp8kv8JHgFVrLEj6Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://birdwinginnovations.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 8000
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 31 Aug 2022 23:27:12 GMT
Expires: Thu, 31 Aug 2023 23:27:12 GMT
Cache-Control: public, max-age=31536000
Age: 245435
Last-Modified: Wed, 27 Apr 2022 16:59:07 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
142.250.74.163200 OK 7.8 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://birdwinginnovations.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7816
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 31 Aug 2022 23:14:27 GMT
Expires: Thu, 31 Aug 2023 23:14:27 GMT
Cache-Control: public, max-age=31536000
Age: 246200
Last-Modified: Wed, 27 Apr 2022 16:11:40 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
142.250.74.163200 OK 7.8 kB URL HTTP/1.1 fonts.gstatic.com/s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data
Hash 8d91ec1ca2d8b56640a47117e313a3e9
a9e9bafe64666f4595051a0e895b47a5fa39e67e
78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://birdwinginnovations.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 7840
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Sep 2022 03:31:10 GMT
Expires: Fri, 01 Sep 2023 03:31:10 GMT
Cache-Control: public, max-age=31536000
Age: 230797
Last-Modified: Wed, 27 Apr 2022 16:51:55 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/1.1 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://birdwinginnovations.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 44856
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Mon, 29 Aug 2022 21:39:19 GMT
Expires: Tue, 29 Aug 2023 21:39:19 GMT
Cache-Control: public, max-age=31536000
Age: 424708
Last-Modified: Mon, 15 Aug 2022 18:20:18 GMT
Content-Type: font/woff2
www.birdwinginnovations.com/wp-content/uploads/2022/03/GES-logo-black.png
184.168.115.59200 OK 34 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/uploads/2022/03/GES-logo-black.png
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 2044 x 736, 8-bit/color RGBA, non-interlaced\012- data
Hash f037e64822fe5d70bf4a41d16e0a8ca8
5963cb66d2b4c889b8324e0bffd82d6510bc1106
96b487f9809d576bd856d65df38d5a011fff98dfd172587641726027e1364c46
GET /wp-content/uploads/2022/03/GES-logo-black.png HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Last-Modified: Thu, 10 Mar 2022 02:11:07 GMT
ETag: "5360108-869a-5d9d3ba1a9c33"
Accept-Ranges: bytes
Content-Length: 34458
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.birdwinginnovations.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.video.min.js?version=5.4.6.3
184.168.115.59200 OK 6.6 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.video.min.js?version=5.4.6.3
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (24618), with CRLF line terminators
Hash 8b014a163ddb7a50a19703722ac47eca
fa4992cd139da420f9ddc458db2e9b8362822c41
b81eb8522675a6f8954da58fe4f00dd9cbcd47c63f281f85241356c94fee368c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.video.min.js?version=5.4.6.3 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Last-Modified: Fri, 20 Aug 2021 21:40:24 GMT
ETag: "4fa1eb5-6122-5ca0483d6a91b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 6597
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.birdwinginnovations.com/wp-content/uploads/2022/04/Gaurav-Bhatt.jpg
184.168.115.59200 OK 248 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/uploads/2022/04/Gaurav-Bhatt.jpg
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, manufacturer=Canon, model=Canon EOS 4000D, orientation=upper-left, xresolution=156, yresolution=164, resolutionunit=2, software=Adobe Photoshop CS4 Windows, datetime=2022:04:09 09:18:24], progressive, precision 8, 500x700, components 3\012- data
Size 248 kB (248340 bytes)
Hash 059e0287223c4f5aec1a0830b0c6275a
cbc889bb3798bc724aaa4815a6f26cffe4a02886
16b55a1855f83071624b4af3e0077c623d7668e13d3753ba24218696a8076d4d
GET /wp-content/uploads/2022/04/Gaurav-Bhatt.jpg HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Last-Modified: Sat, 09 Apr 2022 06:12:26 GMT
ETag: "51224f0-3ca14-5dc32985f18fe"
Accept-Ranges: bytes
Content-Length: 248340
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
www.birdwinginnovations.com/wp-content/uploads/2021/08/birdwing-logo.jpg
184.168.115.59200 OK 108 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/uploads/2021/08/birdwing-logo.jpg
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS4 Windows, datetime=2021:08:30 13:13:47], baseline, precision 8, 550x352, components 3\012- data
Size 108 kB (107551 bytes)
Hash 13173567f0f165814ca0336edc4fbd69
a9d07103a6580815cbdc960484ee9b62435154f9
e73b75bc4666b2b047431f638a0ee50204369af160747484b62115bc0266c94b
GET /wp-content/uploads/2021/08/birdwing-logo.jpg HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Last-Modified: Mon, 30 Aug 2021 07:44:05 GMT
ETag: "4ee284b-1a41f-5cac1ff5d0e66"
Accept-Ranges: bytes
Content-Length: 107551
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
www.birdwinginnovations.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.6.3
184.168.115.59200 OK 7.0 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.6.3
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (29149), with CRLF line terminators
Hash f2dd9c6fdeaea6608af1b3a6470f69c7
1e374bdb2e5bd38a3d542e4a9aac455d46d547c9
4e3d9275e596cf012af0e57e8eb7f59b9271baed94b2c0b7d8cc0999266194bc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js?version=5.4.6.3 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:48 GMT
Server: Apache
Last-Modified: Fri, 20 Aug 2021 21:40:24 GMT
ETag: "4fa1eb9-72d9-5ca0483d6a91b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7022
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.birdwinginnovations.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.6.3
184.168.115.59200 OK 14 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.6.3
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (55747), with CRLF line terminators
Hash a07e79e2567996c6ffa28c8732b3017e
ea7340ca3bbeaf33620b1ca54a7b42ac9ab71496
3692d66a39da65017014ef6742d75c8671450cc4e4de10e6502b3f9d0fb1cb10
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js?version=5.4.6.3 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:48 GMT
Server: Apache
Last-Modified: Fri, 20 Aug 2021 21:40:24 GMT
ETag: "4fa1eb8-dac0-5ca0483d6a91b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14382
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.birdwinginnovations.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.6.3
184.168.115.59200 OK 7.0 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.6.3
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (25862), with CRLF line terminators
Hash adc54bc2e8303da392a4687272eb402d
946f733c2fe7e03c842182ac05c05b25243bbdb6
d59fdbea59b31d0052869cde381fe5d4d64fc5d3bb4ec00dbc8ea5f2bb503d53
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js?version=5.4.6.3 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:48 GMT
Server: Apache
Last-Modified: Fri, 20 Aug 2021 21:40:24 GMT
ETag: "4fa1ec5-65f5-5ca0483d6ad03-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7041
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.birdwinginnovations.com/wp-content/uploads/2022/04/Parth-Nigam.jpg
184.168.115.59200 OK 297 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/uploads/2022/04/Parth-Nigam.jpg
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS4 Windows, datetime=2022:04:09 09:14:41], progressive, precision 8, 500x700, components 3\012- data
Size 297 kB (297309 bytes)
Hash 82d4c9fcd1b39bd3220ed551dee6cf53
97bad6a6c36d12b1eeaa2e63a10387003f696677
3ae9e155729e671a38a9aa171bfaf36400f4dca45a438adc34ca9be25a436055
GET /wp-content/uploads/2022/04/Parth-Nigam.jpg HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Last-Modified: Sat, 09 Apr 2022 06:13:47 GMT
ETag: "5122b22-4895d-5dc329d3a9888"
Accept-Ranges: bytes
Content-Length: 297309
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
www.birdwinginnovations.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.6.3
184.168.115.59200 OK 3.2 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.6.3
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (10692), with CRLF line terminators
Hash d3f216aa923e3039784d21a267654b4e
92e75eb2cac60c0131c71dd05792950e7e2795df
49315b56031859d7fdfae1d7f914d6133f838b0940c8acb065644f227ac29cca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.parallax.min.js?version=5.4.6.3 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:48 GMT
Server: Apache
Last-Modified: Fri, 20 Aug 2021 21:40:24 GMT
ETag: "4fa1eb6-2ab3-5ca0483d6a91b-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3239
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: application/javascript
www.birdwinginnovations.com/wp-content/uploads/2022/04/Saurabh-Rana.jpeg
184.168.115.59200 OK 186 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/uploads/2022/04/Saurabh-Rana.jpeg
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS4 Windows, datetime=2022:04:09 09:15:52], progressive, precision 8, 500x700, components 3\012- data
Size 186 kB (185986 bytes)
Hash fbcb75c91b80e5b241fbc8dbf9e92c58
09f24d08a36db883c886d347e80a617c61b09fce
a5abea453f02944d7a06c48d6cb72d2b44432ff91badb5d8fab3b0172a7c6602
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/04/Saurabh-Rana.jpeg HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Last-Modified: Sat, 09 Apr 2022 06:12:41 GMT
ETag: "5122b0e-2d682-5dc32994b08d6"
Accept-Ranges: bytes
Content-Length: 185986
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
www.birdwinginnovations.com/wp-content/uploads/2022/04/Kamal-Sarma.jpg
184.168.115.59200 OK 230 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/uploads/2022/04/Kamal-Sarma.jpg
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16], progressive, precision 8, 500x700, components 3\012- data
Size 230 kB (230306 bytes)
Hash 1c2712f2c4df9b9c00525836f03ac2f1
596271c5ea7d792f5cbb56fc9ac3901ca4470a77
77616bbf145bb46482290ef3d5b17f6db4f156df6901eee93a201e5896187485
GET /wp-content/uploads/2022/04/Kamal-Sarma.jpg HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:48 GMT
Server: Apache
Last-Modified: Sat, 09 Apr 2022 06:13:44 GMT
ETag: "5122b18-383a2-5dc329d04b356"
Accept-Ranges: bytes
Content-Length: 230306
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
www.birdwinginnovations.com/wp-content/uploads/2022/04/Anurag_Dubey-1.jpeg
184.168.115.59200 OK 181 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/uploads/2022/04/Anurag_Dubey-1.jpeg
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS4 Windows, datetime=2022:04:09 09:16:51], progressive, precision 8, 500x700, components 3\012- data
Size 181 kB (180741 bytes)
Hash 054266dcc763548cae6d536f21104304
4a81afcfc4c22b8c977a6f50d3f5a6eab3a37e5c
2b0d6b0787c5287c5ed4efb43b33ffad0e659d5e6e2711e91a898a0805525d55
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/04/Anurag_Dubey-1.jpeg HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:48 GMT
Server: Apache
Last-Modified: Sat, 09 Apr 2022 06:12:08 GMT
ETag: "5122afd-2c205-5dc329748ade5"
Accept-Ranges: bytes
Content-Length: 180741
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
www.birdwinginnovations.com/wp-content/uploads/2022/04/Prashant-Bada.jpeg
184.168.115.59200 OK 352 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/uploads/2022/04/Prashant-Bada.jpeg
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=9], progressive, precision 8, 500x700, components 3\012- data
Size 352 kB (352136 bytes)
Hash 30f79fd0d178dbddc1880e131f248917
40900e505cbf939c86519c6985785409ae02f540
2c5818e15ec43566c3fa2c5e8fe19bed03581c5d154ca00a5cf3508d06190eaa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/04/Prashant-Bada.jpeg HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Last-Modified: Sat, 09 Apr 2022 06:13:49 GMT
ETag: "5122b2c-55f88-5dc329d4fda10"
Accept-Ranges: bytes
Content-Length: 352136
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
www.birdwinginnovations.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
184.168.115.59200 OK 7.5 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://birdwinginnovations.com
Connection: keep-alive
Referer: http://www.birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:48 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 20 Aug 2021 21:40:24 GMT
ETag: "4fa1ed7-1d70-5ca0483d6b4d3"
Accept-Ranges: bytes
Content-Length: 7536
Vary: Accept-Encoding
Keep-Alive: timeout=5
Content-Type: font/woff
www.birdwinginnovations.com/wp-content/plugins/revslider/admin/assets/images/dummy.png
184.168.115.59200 OK 73 B URL HTTP/1.1 www.birdwinginnovations.com/wp-content/plugins/revslider/admin/assets/images/dummy.png
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash 9d08eac154f5b02ef14e612fc25b9bf2
5a1e9121811015fbc274dae72072f874aee3d805
17af9e65317bbbfbbd0bcdc729f14faadf37cd08cf30cc0fe0b72443e78cbffb
GET /wp-content/plugins/revslider/admin/assets/images/dummy.png HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:49 GMT
Server: Apache
Last-Modified: Fri, 20 Aug 2021 21:40:24 GMT
ETag: "4fa2127-49-5ca0483d74944"
Accept-Ranges: bytes
Content-Length: 73
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.birdwinginnovations.com/wp-content/uploads/2022/04/ids.png
184.168.115.59200 OK 21 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/uploads/2022/04/ids.png
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash cf32b9f46e7d52b1fe1ce4103c1609ff
4a9da70be148ec0a7fb0470b78b7392b9a5a1b41
52be35421ef333949d6e5ae580cab44aa7d02c237f23c14ff91c6d71ad46936d
GET /wp-content/uploads/2022/04/ids.png HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:49 GMT
Server: Apache
Last-Modified: Wed, 20 Apr 2022 11:29:59 GMT
ETag: "512384f-513e-5dd145041a86e"
Accept-Ranges: bytes
Content-Length: 20798
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.birdwinginnovations.com/wp-content/plugins/revslider/admin/assets/images/transparent.png
184.168.115.59200 OK 71 B URL HTTP/1.1 www.birdwinginnovations.com/wp-content/plugins/revslider/admin/assets/images/transparent.png
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 10 x 10, 8-bit/color RGBA, non-interlaced\012- data
Hash 753f6c59bbe7913f21576b58b193bc5a
b3e3885f69e401b3a320010ff7a40dd19768fe3b
8ea078292393a14a8e44be139a7fa6ed09d9c650e210eccca587045239b71cab
GET /wp-content/plugins/revslider/admin/assets/images/transparent.png HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:49 GMT
Server: Apache
Last-Modified: Fri, 20 Aug 2021 21:40:24 GMT
ETag: "4fa2189-47-5ca0483d75ccc"
Accept-Ranges: bytes
Content-Length: 71
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.birdwinginnovations.com/wp-content/uploads/2022/04/Rajeev-Kumar.jpg
184.168.115.59200 OK 184 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/uploads/2022/04/Rajeev-Kumar.jpg
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11], progressive, precision 8, 500x700, components 3\012- data
Size 184 kB (184328 bytes)
Hash 6be12e3bd07ba621c862b5eaddbb3453
c1d42eb336437602cf5367116e7df457f72fe742
887b5edb59bc8fe5f6e3f6cd3c5bcdea36e2272146f3a7e0d486182f9267d090
GET /wp-content/uploads/2022/04/Rajeev-Kumar.jpg HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:48 GMT
Server: Apache
Last-Modified: Sat, 09 Apr 2022 06:13:50 GMT
ETag: "5122b37-2d008-5dc329d654a79"
Accept-Ranges: bytes
Content-Length: 184328
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
www.birdwinginnovations.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.ttf?5510888
184.168.115.59200 OK 12 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.ttf?5510888
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type TrueType Font data, 14 tables, 1st "OS/2", 18 names, Macintosh, Copyright (C) 2013 by original authors @ fontello.comreviconsRegularreviconsreviconsVersion 1.0r\012- DOS 2.0-3.2 backed up sequence 1 of file \016\012- data
Hash 17629a5dfe0d3c3946cf401e1895f091
a3b3b3a91df3025adcdbc700519dd7be75e275f5
4ca02b8a5c8034de8ddb76e33e50e8398758a83bd18a5073493cace46362780a
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.ttf?5510888 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://birdwinginnovations.com
Connection: keep-alive
Referer: http://www.birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:49 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 20 Aug 2021 21:40:24 GMT
ETag: "4fa1eda-2ec0-5ca0483d6b4d3"
Accept-Ranges: bytes
Content-Length: 11968
Vary: Accept-Encoding
Keep-Alive: timeout=5
Content-Type: font/ttf
www.birdwinginnovations.com/wp-content/uploads/2022/03/birdwing-Favicon.png
184.168.115.59200 OK 45 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/uploads/2022/03/birdwing-Favicon.png
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type PNG image data, 306 x 352, 8-bit/color RGBA, non-interlaced\012- data
Hash b8d742e9b65d0b1b59c2bc574debafb0
b832e8e098b29b55088c786417fbd5ebe003afcf
4df1ae578e2286d7f7398474f463310738bcc48a5fb705c6a5ed639fbaae411b
GET /wp-content/uploads/2022/03/birdwing-Favicon.png HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:49 GMT
Server: Apache
Last-Modified: Tue, 01 Mar 2022 19:17:59 GMT
ETag: "5362327-aee8-5d92d05e75260"
Accept-Ranges: bytes
Content-Length: 44776
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/png
www.birdwinginnovations.com/wp-content/uploads/2022/03/pexels-pixabay-273209-scaled.jpg
184.168.115.59200 OK 621 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/uploads/2022/03/pexels-pixabay-273209-scaled.jpg
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 2560x1707, components 3\012- data
Size 621 kB (621178 bytes)
Hash 90694401f0a09efeeb19cf8fd96b4bd6
219e94b7e5b11e5c467adbf1b15b2787af38e4c0
91c6a05da053ff40f796be0384a2b2a730d348de2b4024746dd6f4472024ce04
GET /wp-content/uploads/2022/03/pexels-pixabay-273209-scaled.jpg HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 01 Mar 2022 20:08:11 GMT
ETag: "536232f-97a7a-5d92db9774c4d"
Accept-Ranges: bytes
Content-Length: 621178
Keep-Alive: timeout=5
Content-Type: image/jpeg
www.birdwinginnovations.com/wp-content/uploads/2022/03/birdwing-cfd-scaled.jpg
184.168.115.59200 OK 453 kB URL HTTP/1.1 www.birdwinginnovations.com/wp-content/uploads/2022/03/birdwing-cfd-scaled.jpg
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 21.0 (Windows), datetime=2022:01:27 17:22:33], baseline, precision 8, 2560x1440, components 3\012- data
Size 453 kB (453227 bytes)
Hash 988fb935f95826ce5c4eba42976513ab
b293c1979e1e327e134c903172eb288f6ff231b8
3adc9b1a6fc12be5f9b77e74ef2a51785dfec015b798cf65ba1fb65efdf93c9d
GET /wp-content/uploads/2022/03/birdwing-cfd-scaled.jpg HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:48 GMT
Server: Apache
Last-Modified: Sun, 27 Mar 2022 06:02:13 GMT
ETag: "5362a2f-6ea6b-5db2cefe5a91a"
Accept-Ranges: bytes
Content-Length: 453227
Keep-Alive: timeout=5
Connection: Keep-Alive
Content-Type: image/jpeg
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf445006-1014-4737-ad3b-0047d0183dd8.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf445006-1014-4737-ad3b-0047d0183dd8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0bde418da52c5b733e4edeb10173974e
75555a00ea68f94d83233ca3dcb7ffa60ba9da5d
67bb1775a03b6b17b05181738c8196a9ed8087dc75927e649c28c084f31c0160
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf445006-1014-4737-ad3b-0047d0183dd8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8614
x-amzn-requestid: a941656b-92dd-4948-a24e-1437469def78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2emWFBMIAMFq4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631277c2-5336706371034d98547bafbd;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:38:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: URc2SNnmMKSqG5bFd14z2P8o6fk3LCC4l79tclax0dq5uWfuUNjvew==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:24:32 GMT
age: 76400
etag: "75555a00ea68f94d83233ca3dcb7ffa60ba9da5d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.birdwinginnovations.com/wp-content/themes/easyweb/fonts/linecons.ttf
184.168.115.59200 OK 0 B URL HTTP/1.1 www.birdwinginnovations.com/wp-content/themes/easyweb/fonts/linecons.ttf
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/easyweb/fonts/linecons.ttf HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://birdwinginnovations.com
Connection: keep-alive
Referer: http://www.birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 20 Aug 2021 21:39:02 GMT
ETag: "4ee260b-3c2c-5ca047efe69dc"
Accept-Ranges: bytes
Content-Length: 15404
Vary: Accept-Encoding
Keep-Alive: timeout=5
Content-Type: font/ttf
www.birdwinginnovations.com/wp-content/themes/easyweb/fonts/Simple-Line-Icons.ttf?v=2.2.2
184.168.115.59200 OK 0 B URL HTTP/1.1 www.birdwinginnovations.com/wp-content/themes/easyweb/fonts/Simple-Line-Icons.ttf?v=2.2.2
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/easyweb/fonts/Simple-Line-Icons.ttf?v=2.2.2 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://birdwinginnovations.com
Connection: keep-alive
Referer: http://www.birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 20 Aug 2021 21:39:02 GMT
ETag: "4ee2601-d078-5ca047efe65f4"
Accept-Ranges: bytes
Content-Length: 53368
Vary: Accept-Encoding
Keep-Alive: timeout=5
Content-Type: font/ttf
www.birdwinginnovations.com/wp-content/themes/easyweb/fonts/fontawesome-webfont.woff?v=4.2.0
184.168.115.59200 OK 0 B URL HTTP/1.1 www.birdwinginnovations.com/wp-content/themes/easyweb/fonts/fontawesome-webfont.woff?v=4.2.0
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/easyweb/fonts/fontawesome-webfont.woff?v=4.2.0 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://birdwinginnovations.com
Connection: keep-alive
Referer: http://www.birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 20 Aug 2021 21:39:02 GMT
ETag: "4ee2604-15bf4-5ca047efe65f4"
Accept-Ranges: bytes
Content-Length: 89076
Vary: Accept-Encoding
Keep-Alive: timeout=5
Content-Type: font/woff
www.birdwinginnovations.com/wp-content/themes/easyweb/fonts/et-line.woff
184.168.115.59200 OK 0 B URL HTTP/1.1 www.birdwinginnovations.com/wp-content/themes/easyweb/fonts/et-line.woff
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/easyweb/fonts/et-line.woff HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://birdwinginnovations.com
Connection: keep-alive
Referer: http://www.birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 20 Aug 2021 21:39:02 GMT
ETag: "4ee260d-d7b4-5ca047efe69dc"
Accept-Ranges: bytes
Content-Length: 55220
Vary: Accept-Encoding
Keep-Alive: timeout=5
Content-Type: font/woff
www.birdwinginnovations.com/wp-content/themes/easyweb/fonts/fontawesome-webfont.ttf?v=4.2.0
184.168.115.59200 OK 0 B URL HTTP/1.1 www.birdwinginnovations.com/wp-content/themes/easyweb/fonts/fontawesome-webfont.ttf?v=4.2.0
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
GET /wp-content/themes/easyweb/fonts/fontawesome-webfont.ttf?v=4.2.0 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://birdwinginnovations.com
Connection: keep-alive
Referer: http://www.birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 20 Aug 2021 21:39:02 GMT
ETag: "4ee2609-24d88-5ca047efe69dc"
Accept-Ranges: bytes
Content-Length: 150920
Vary: Accept-Encoding
Keep-Alive: timeout=5
Content-Type: font/ttf
www.birdwinginnovations.com/wp-content/themes/easyweb/fonts/Simple-Line-Icons.woff2?v=2.2.2
184.168.115.59200 OK 0 B URL HTTP/1.1 www.birdwinginnovations.com/wp-content/themes/easyweb/fonts/Simple-Line-Icons.woff2?v=2.2.2
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
GET /wp-content/themes/easyweb/fonts/Simple-Line-Icons.woff2?v=2.2.2 HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://birdwinginnovations.com
Connection: keep-alive
Referer: http://www.birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Keep-Alive: timeout=5
Transfer-Encoding: chunked
Content-Type: text/html;charset=utf-8
www.birdwinginnovations.com/wp-content/themes/easyweb/fonts/linecons.woff
184.168.115.59200 OK 0 B URL HTTP/1.1 www.birdwinginnovations.com/wp-content/themes/easyweb/fonts/linecons.woff
IP 184.168.115.59:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/easyweb/fonts/linecons.woff HTTP/1.1
Host: www.birdwinginnovations.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://birdwinginnovations.com
Connection: keep-alive
Referer: http://www.birdwinginnovations.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 19:37:47 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 20 Aug 2021 21:39:02 GMT
ETag: "4ee2600-6aac-5ca047efe620b"
Accept-Ranges: bytes
Content-Length: 27308
Vary: Accept-Encoding
Keep-Alive: timeout=5
Content-Type: font/woff