r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9391
Expires: Mon, 05 Dec 2022 23:22:33 GMT
Date: Mon, 05 Dec 2022 20:46:02 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2641
Cache-Control: max-age=138558
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:46:02 GMT
Etag: "638dc877-1d7"
Expires: Wed, 07 Dec 2022 11:15:20 GMT
Last-Modified: Mon, 05 Dec 2022 10:31:19 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 20:20:19 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1543
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3148
Expires: Mon, 05 Dec 2022 21:38:30 GMT
Date: Mon, 05 Dec 2022 20:46:02 GMT
Connection: keep-alive
www.fitnessbookz.com/eda/
301 Moved Permanently 707 B URL HTTP/1.1 www.fitnessbookz.com/eda/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
GET /eda/ HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Mon, 05 Dec 2022 20:46:02 GMT
server: LiteSpeed
location: https://www.fitnessbookz.com/eda/
platform: hostinger
content-security-policy: upgrade-insecure-requests
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: xr+JALK+yy7zwu1xRDxhCUr76y20PMUavGdOTL2S7qWdfPBND2HOcph9R3kPerxvdmjxR9xpitB7ZdI2aZPZDQ==
x-amz-request-id: C55EFEKQ201FSAHS
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 19:48:38 GMT
age: 3444
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 20:46:02 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 20:08:58 GMT
cache-control: public,max-age=3600
age: 2224
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2630
Cache-Control: max-age=133480
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:46:02 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 09:50:42 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UBzkId8POEcGDKa/ODNL4g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: p91nSIqW2AP5dmOUeY1/S/gKn5Q=
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:46:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-203323240-1
200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-203323240-1
IP
File type ASCII text, with very long lines (1921)
Hash daa94a8c2c203d050d3218bab723c54f
522a208b9471b25b881a0b2b555b9d463ef088bf
ca39b7fa54ed64976dcf5395d6bd9f1752a2325d73f816967ba2e7e06f0702eb
GET /gtag/js?id=UA-203323240-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Dec 2022 20:46:03 GMT
expires: Mon, 05 Dec 2022 20:46:03 GMT
cache-control: private, max-age=900
last-modified: Mon, 05 Dec 2022 18:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43631
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.jsdelivr.net/wp/wp-slimstat/tags/4.9.1.1/wp-slimstat.min.js
200 OK 13 kB URL HTTP/2 cdn.jsdelivr.net/wp/wp-slimstat/tags/4.9.1.1/wp-slimstat.min.js
IP
File type Unicode text, UTF-8 text, with very long lines (38378), with no line terminators
Hash 577e524f56c31e5b522478bd33e787b2
ecee1b5b44003bc96fffe0bf5641ebb7a7ae4ce3
bd7fab32924ec2f83bd67d12dfc62aa40cfe895c3f63f3ec15461eaab5fd0bee
GET /wp/wp-slimstat/tags/4.9.1.1/wp-slimstat.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"95f0-AfiROFbgBVg9OYMczak98MKgabU"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:46:03 GMT
age: 486168
x-served-by: cache-fra-eddf8230066-FRA, cache-bma1672-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 13001
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
200 OK 11 kB URL HTTP/2 www.fitnessbookz.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
File type ASCII text, with very long lines (47826)
Hash ba5eac37229008eef8a48bb9c12da241
95a3100a0d65a7bd0ebeba66a7ef01146cf96a24
60a4012feb8a3fb3b7f5d411ee9241e12c9ef0e5b33f249aea1b1ad103a71c0f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 05:13:33 GMT
etag: "172a9-6381a07d-3490dabfcb27c557;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11353
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-includes/css/classic-themes.min.css?ver=1
200 OK 217 B URL HTTP/2 www.fitnessbookz.com/wp-includes/css/classic-themes.min.css?ver=1
IP
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 05:13:33 GMT
etag: "d9-6381a07d-d22e3fe22905dc90;;;"
accept-ranges: bytes
content-length: 217
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 5f16a534222e5749ef240d413826c2f6
11683d84d420dd6f919425094edb8961278f7fed
691ebf7feb1f7d6ae7e5e7efd678626c62042dda520506f262c7d9a67a48e3ed
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:46:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
Hash fff8950d86540f04f7e336fbaa36574d
5323185579eacb7d59be1e63dfdddaec664f0db9
fe39fb2d7c711e776994ddc32150f40604c1c3443cffde890721fa906a8efa6f
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 20:46:03 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "9F22E367A1A9A4803E220FA04C39EFBE1DE9B0ED"
Expires: Tue, 06 Dec 2022 07:00:00 GMT
Last-Modified: Mon, 05 Dec 2022 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2850
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 774fa1074c70b529-OSL
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
200 OK 12 kB URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1
IP
File type ASCII text, with very long lines (59158), with CRLF line terminators
Hash 09087f97e4fb8b6b1008983e218e1207
560c1faa9ef8c74d9fd28984abbe54495e0ae246
13bb9d1c7b0a987b60278d9f0f5c9a494dfa5b09f7f4aa84318a392a6d1e0acc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/fonts/fontawesome/css/all.min.css?ver=5.15.1 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "e7d4-6382421e-b7d132baf22824e0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12323
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
200 OK 2.3 kB URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0
IP
File type ASCII text, with very long lines (10927), with no line terminators
Hash 49872e008158ea7eafb333619bdfd729
3b614e913175dd339ebb9f2f432bde78f1a52838
bb1aa8d0a7becbb677118efe065f7c176220675611d11e9f1d3eea44f9aad057
GET /wp-content/themes/oceanwp/assets/css/third/simple-line-icons.min.css?ver=2.4.0 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "2aaf-6382421e-144dec1217e612e8;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2299
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/css/third/hamburgers/hamburgers.min.css?ver=3.3.6
200 OK 344 B URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/css/third/hamburgers/hamburgers.min.css?ver=3.3.6
IP
File type ASCII text, with very long lines (793), with CRLF line terminators
Hash 1e7be67b877ab800f9e5c2e778380d44
501714f633dd224257ef212cd081eb542a273f4d
971207f6741f5b92287be048ac97e924b8ff3c55cf77d935289f056d84791045
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/css/third/hamburgers/hamburgers.min.css?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "396-6382421e-2cfb5ffa149988b9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 344
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.6
200 OK 24 kB URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.6
IP
File type Unicode text, UTF-8 (with BOM) text, with very long lines (65525), with no line terminators
Hash 1878a8631d463fc6ca6542596818884b
ecbbd2dbf023d2dcde8382f310fec802e6a24658
e01de95922775fbff050de2001329001d24490aa8c38371cba6e00a61a7e333a
GET /wp-content/themes/oceanwp/assets/css/style.min.css?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "2b12c-6382421e-beb90e158115ab5e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 24531
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/css/third/hamburgers/types/minus.css?ver=3.3.6
200 OK 174 B URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/css/third/hamburgers/types/minus.css?ver=3.3.6
IP
File type ASCII text, with CRLF line terminators
Hash 17a176e8434f5818450ade4282efc201
bfef996aece425618d18f0651aff428519c07e48
ca18bfd5bfdc7289f2ff5e94a8d658ba1deb2e8648d3f289cde4f310002d8455
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/css/third/hamburgers/types/minus.css?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "2ec-6382421e-35cc67f427ef17ff;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 174
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/css/third/hamburgers/types/spin.css?ver=3.3.6
200 OK 339 B URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/css/third/hamburgers/types/spin.css?ver=3.3.6
IP
File type ASCII text, with CRLF line terminators
Hash ea1e572d8e784838d01b53203ec7a322
1ab681cca9a3de0ad01e8e31bee75958af34c4d5
5c1604d9849cdae103cf9a719b43df27e417f2fc8620de51f5121bf1618bd740
GET /wp-content/themes/oceanwp/assets/css/third/hamburgers/types/spin.css?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "6ea-6382421e-26c54d485e0448be;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 339
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/css/third/perfect-scrollbar.css?ver=1.5.0
200 OK 560 B URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/css/third/perfect-scrollbar.css?ver=1.5.0
IP
File type troff or preprocessor input, ASCII text
Hash 7bd11fc4d08b6afef447882e449afea2
3667110456a902c1cfa7c8927c1310ff04940415
ca8755a319bf78f10ecf8921c849e5f5edb3f66d7c7eef0418eeccb6c5a106da
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/css/third/perfect-scrollbar.css?ver=1.5.0 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "a26-6382421e-7de8330f1a5bd2c2;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 560
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1
200 OK 6.1 kB URL HTTP/2 www.fitnessbookz.com/wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1
IP
File type Unicode text, UTF-8 text, with very long lines (51619), with no line terminators
Hash 0890ed4bc24a3d9a46797c399d9d246d
357a5bdf6dfb7d262dfd70545630dda67c9de494
0128724ce083ded76b0e47290cf10f9ba6cdcb0191c25f7e585b8e711485e86d
GET /wp-content/plugins/ocean-extra/assets/css/widgets.css?ver=6.1.1 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 16:43:42 GMT
etag: "c9a7-6382423e-1b82390e19540c25;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6115
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
200 OK 4.0 kB URL HTTP/2 www.fitnessbookz.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
File type ASCII text, with very long lines (11126)
Hash 4116c2be947ecf205a0c7fc117ca55f0
0cd8efc9fe349d67a86b49d1e5582a9b21d05add
6b1970b536b88a18b0eb4fe138e677b9736294057660676507fabee57cb0462c
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 05:13:33 GMT
etag: "2bd8-6381a07d-c459f2f7aa352997;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3984
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
200 OK 1.7 kB URL HTTP/2 www.fitnessbookz.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
File type ASCII text, with very long lines (5477)
Hash 93959a5158be6c97592ece6ddbcd8e0d
673b0f242cb57dabc937e3087f07b819eef894cb
069b47444242f525c2bc284f96b24126f92068bcc7d278d5787641dfa20c0fdf
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 05:13:33 GMT
etag: "15fd-6381a07d-59f73043d4ef27df;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1721
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/vertical-header.min.js?ver=3.3.6
200 OK 2.9 kB URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/vertical-header.min.js?ver=3.3.6
IP
File type ASCII text, with very long lines (11830), with no line terminators
Hash f3125c57f8f9565816b5f31c80f59c55
7da928c394d93292dc7d766424d55f3cc5f3770f
ba7375d9c6ea43d5f37d169fb12dd9abfd7e7d64b111bd4ba7f66469b61c49c5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/js/vertical-header.min.js?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "2e36-6382421e-e2eb7f8a011a2198;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2917
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.6
200 OK 3.4 kB URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.6
IP
File type ASCII text, with very long lines (14087), with no line terminators
Hash b48a0ab4c87779b421c9455f2150e3a5
f2b4db173287170d872e7cc9947db18d8397e0a7
205f866c71f224b538b874308c2392e9405907cffa58079a6d064a3fa99aa6d9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/js/drop-down-mobile-menu.min.js?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "3707-6382421e-ca7b93f74ffeed0b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3385
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.6
200 OK 1.9 kB URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.6
IP
File type ASCII text, with very long lines (7540), with no line terminators
Hash 1dbeb6501d9b4a481ccf0416c9ea1679
e1db7634f3e638b70d10d481446fe17cc5065dbb
76b7ae4babacb6a26917254430f526a14df68f108c994f518510cf88ee7d8dc5
GET /wp-content/themes/oceanwp/assets/js/drop-down-search.min.js?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "1d74-6382421e-995e4296124bbd61;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1933
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.6
200 OK 1.3 kB URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.6
IP
File type ASCII text, with very long lines (4111), with no line terminators
Hash 4b6e9a2df4ff24ad27154d9798b2ffd3
91531c65c54a36a3c369d98a92fe8b7d97965467
8a1cfd2beeddce5d44fb9ed8041ecc921e3d1d5ec560e587f923ac3daaa48fea
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/js/ow-lightbox.min.js?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "100f-6382421e-406bbbb4f4c60c4f;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1331
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.6
200 OK 13 kB URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.6
IP
File type ASCII text, with very long lines (21914), with CRLF line terminators
Hash 4f21ebf8cc01a8b27d094ba6a48d9add
bae9b1c554a226e4f39925132a31b1c15013a072
0cba58e9ffb46945bd884139eebfd1fd8ad7009ac0aa085713f2f78a52d13dbe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/js/vendors/flickity.pkgd.min.js?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "e0e0-6382421e-99f35a756f3a4825;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13361
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.6
200 OK 2.1 kB URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.6
IP
File type ASCII text, with very long lines (8989), with no line terminators
Hash aec9e4911835756bd7b27fa2da403a9d
6372ca69f4e4db83c23e8539698edc0136429cd0
4e28365afc9861e70f454cc6cef50dc03b3acc43b8a09f4367fcfe5d2d8134ee
GET /wp-content/themes/oceanwp/assets/js/scroll-top.min.js?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "231d-6382421e-1709a93c698b3f24;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2145
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.6
200 OK 1.4 kB URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.6
IP
File type ASCII text, with very long lines (5181), with no line terminators
Hash 3de88d73132e582689b7c0649a6e2f04
1e267c67d59f1057f7487c33ee7b6e82c9b86218
194da2ac36a05e73f1520e80309e212ad135bce9abbdfff936512239f9fb16a7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/js/select.min.js?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "143d-6382421e-76215e6b7d035375;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1389
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/plugins/ocean-social-sharing/assets/js/social.js?ver=2.0.2
200 OK 190 B URL HTTP/2 www.fitnessbookz.com/wp-content/plugins/ocean-social-sharing/assets/js/social.js?ver=2.0.2
IP
Hash c3820359a8d346321d685ee44a62062e
80315b1c9b464381c3a95b6c3b29262f68262956
6051ce959d057c677bba4ee498ce57956e86a602f09a0c74cc1faff44e2b4728
GET /wp-content/plugins/ocean-social-sharing/assets/js/social.js?ver=2.0.2 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:53:52 GMT
etag: "1da-638244a0-8d60cb7aa5a01bf0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 190
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/plugins/ocean-stick-anything/assets/js/vendors/sticky-kit.min.js?ver=2.0.4
200 OK 1.3 kB URL HTTP/2 www.fitnessbookz.com/wp-content/plugins/ocean-stick-anything/assets/js/vendors/sticky-kit.min.js?ver=2.0.4
IP
File type ASCII text, with very long lines (546)
Hash c50fe2d5737a37b35c928c59ad1959e5
dbcf0c43379785db972e1114bf77e43c886f1f36
b39e06feab00152455bee494f7ab30253981a46903ae5e7a7f2890faefa4789c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ocean-stick-anything/assets/js/vendors/sticky-kit.min.js?ver=2.0.4 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:54:05 GMT
etag: "cc3-638244ad-932d9030a54f3378;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1308
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/plugins/ocean-stick-anything/assets/js/stick-anythings.min.js?ver=2.0.4
200 OK 2.0 kB URL HTTP/2 www.fitnessbookz.com/wp-content/plugins/ocean-stick-anything/assets/js/stick-anythings.min.js?ver=2.0.4
IP
File type ASCII text, with very long lines (6205), with no line terminators
Hash a799e2d094bc117b672f76924565201e
93c5f414c7d090cc154b7830696ba8e4c348624e
6aa66175e32be5f02b33ed235e22b006eaea24646eb81b98d47cf0d99233be00
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ocean-stick-anything/assets/js/stick-anythings.min.js?ver=2.0.4 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:54:05 GMT
etag: "183d-638244ad-aa3d58ff592d7db7;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1961
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/plugins/ocean-social-sharing/assets/css/style.min.css?ver=6.1.1
200 OK 1.1 kB URL HTTP/2 www.fitnessbookz.com/wp-content/plugins/ocean-social-sharing/assets/css/style.min.css?ver=6.1.1
IP
File type ASCII text, with very long lines (6086)
Hash 87c58969acfa710d74176eaa9a34675e
50264849016621f35d04ef5b913565fe49bb0f3b
8bc2b6e3774abf22848a2282ed76b103de4f2deed6578a23fff59edb205167f1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ocean-social-sharing/assets/css/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: text/css
last-modified: Sat, 26 Nov 2022 16:53:52 GMT
etag: "17c7-638244a0-a3ce830e7c44b173;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1110
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.6
200 OK 4.0 kB URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.6
IP
File type ASCII text, with very long lines (19789), with no line terminators
Hash f78d52bad39a2228ffd3345083722861
4eb230a210f8e0f17c4a21e3b36cfdad2c52bd63
3ef63dcef86f0d478f355fc51dd344cb7bc7b4189fce2462416bd37c03030043
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/js/theme.min.js?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "4d4d-6382421e-d361b5fb0428a71c;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4007
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/vendors/perfect-scrollbar.min.js?ver=3.3.6
200 OK 5.6 kB URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/vendors/perfect-scrollbar.min.js?ver=3.3.6
IP
File type ASCII text, with very long lines (8460), with CRLF line terminators
Hash eb88fbf84f32708c3c8de1208f66d938
b743b5dd102c91d9ea4e976e0feed3cc061deb42
c54a3deba8263f68e8a53bc5fd7548ae4fe980057d9c52d571e0eee2aeea3d16
GET /wp-content/themes/oceanwp/assets/js/vendors/perfect-scrollbar.min.js?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "4c19-6382421e-54e0865dcc394097;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 5648
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.6
200 OK 7.0 kB URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.6
IP
File type ASCII text, with very long lines (20087), with CRLF line terminators
Hash d2aac2f268aeca5fd099843ce92635c8
631c135ebeb6203a98b5b87c92600fbc0b6d15cf
cfd523fe2e5f0f32a9cafe1b11e59b2e5c4ee95ebddb33707f0703f75519b3fd
GET /wp-content/themes/oceanwp/assets/js/vendors/magnific-popup.min.js?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "4efb-6382421e-82249696c7cd880e;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7034
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.6
200 OK 813 B URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.6
IP
File type ASCII text, with very long lines (2002), with no line terminators
Hash 0ce36fe5419f25e4cc98a9fcd810f16a
4678f65d08f9fd70a3648e548c6e365c242bfc14
53839153c2189711942a59093a6e2dd127638807d1b4d32e641d898fa0595c02
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/oceanwp/assets/js/ow-slider.min.js?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "7d2-6382421e-9ad7d685fe7d7e66;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 813
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.6
200 OK 3.0 kB URL HTTP/2 www.fitnessbookz.com/wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.6
IP
File type ASCII text, with very long lines (12402), with no line terminators
Hash cdea07ef38989503566a35505d9fbc4a
b5e1d0d1cb6a5d4f75e2b4bee7f0306fc6ff37d4
d591142ed18cd3402277fd9fcdde279b407dc2b3dbfc88e5bfe7049c05f97e21
GET /wp-content/themes/oceanwp/assets/js/scroll-effect.min.js?ver=3.3.6 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 16:43:10 GMT
etag: "3072-6382421e-1aa07e53bf256e51;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3024
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
200 OK 4.6 kB URL HTTP/2 www.fitnessbookz.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
File type ASCII text, with very long lines (15660)
Hash 4402e98c197d70e9bc78b1da062e658a
b1d2477c6b1dfa9283d79a0a3944098dde573f68
4e646c55a8c057d08458aed4f913f5ae713e1351aadc0bcdf947bc48fb6a73ed
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 05:13:33 GMT
etag: "48b9-6381a07d-14b5ab4b1a87eed4;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4572
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/uploads/2022/11/cropped-logo.png
200 OK 2.7 kB URL HTTP/2 www.fitnessbookz.com/wp-content/uploads/2022/11/cropped-logo.png
IP
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 358e846efca838df01d6d6ff70117cf1
8f1c24a3f354aac8f66f5a80fa1cfd73c3282d0f
1b9a1bfad2ff10d874824fb43ea69f59053988b2c824f7b3794116a1f40a7066
GET /wp-content/uploads/2022/11/cropped-logo.png HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: image/png
last-modified: Sat, 26 Nov 2022 17:41:49 GMT
etag: "a8d-63824fdd-26174c94f5140b9a;;;"
accept-ranges: bytes
content-length: 2701
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
200 OK 30 kB URL HTTP/2 www.fitnessbookz.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
File type ASCII text, with very long lines (65447)
Hash cdbbc979b5a5de31a3ac8296e0ef489e
b83000eb74956c3404fb58c87e95aed5bab2ed19
48a6489945365cddb4c75af60f1e6a8a15d6598a1596ef18eb1b4aaad33e96f3
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/eda/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: application/x-javascript
last-modified: Sat, 26 Nov 2022 05:13:33 GMT
etag: "15e54-6381a07d-3d42c87fc95bcfec;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 30075
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9199
Expires: Mon, 05 Dec 2022 23:19:23 GMT
Date: Mon, 05 Dec 2022 20:46:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9199
Expires: Mon, 05 Dec 2022 23:19:23 GMT
Date: Mon, 05 Dec 2022 20:46:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9199
Expires: Mon, 05 Dec 2022 23:19:23 GMT
Date: Mon, 05 Dec 2022 20:46:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9199
Expires: Mon, 05 Dec 2022 23:19:23 GMT
Date: Mon, 05 Dec 2022 20:46:04 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9199
Expires: Mon, 05 Dec 2022 23:19:23 GMT
Date: Mon, 05 Dec 2022 20:46:04 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kmki-SBINSx1kbiIkaSGebdCLrnDeHVhYeotAWzE__CevkNDdfzRGg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:44:05 GMT
age: 82919
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.fitnessbookz.com/eda/
404 Not Found 20 kB URL HTTP/2 www.fitnessbookz.com/eda/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9381), with CRLF, LF line terminators
Hash c19686fb12fd3491c741e0933c8c4bff
5b15ac327c58a48ae04aa2d6f861c605e8b0fade
0fe60705cc9f742313b6e5035ed778d160f3896f7ab3fe3e2b697832da9b1067
Analyzer Verdict Alert fortinet Malware
GET /eda/ HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
x-powered-by: PHP/8.0.25
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-type: text/html; charset=UTF-8
x-ua-compatible: IE=edge
link: <https://www.fitnessbookz.com/wp-json/>; rel="https://api.w.org/"
x-litespeed-cache-control: public,max-age=3600
x-litespeed-tag: f8b_HTTP.404,f8b_404,f8b_URL.ba212264ba70f0617dc9e5647d52cdeb,f8b_
x-litespeed-cache: miss
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:49:44 GMT
age: 82580
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db1701b7b9d161a0c935bb6e10b17893
22a8c4bd58c729c1abcf794466e8f3231dfb034b
b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8315
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMGVboAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JuY0xcLDiERwrVhq33d4PP64liDqFfk9bc9xX1H62o0tOwrt1ek7Pg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:42:39 GMT
age: 83005
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24c69d7ef356b352956d6dcbc9f5df1d
2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9
94d068620c34652cb2d24ca8b3cf962febe9606e6d3a33d937fc9d99f176edef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10396
x-amzn-requestid: b879fd2e-b6cf-4373-b780-2d97481c45f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cioNbH5KoAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a8722-6add7f8e225878473b20c015;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 23:15:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ir97GJKaFoW6BNXCcmMqp0JSUd5JhCACyUvLh5G-0BWCDVJsqs7XhQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 11:06:22 GMT
age: 34782
etag: "2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2f60a6490f38a772dcd50a1132e98e1b
ff254a1df087d2c157d88a6ef04e395dc49efe5e
653e40becd103cd76cc2f194a87e933e8c548d346f87520fefca3b16430fc4ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa99f7bcf-386e-4655-b6f0-99abdf67f097.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: c17eff92-da62-4f0f-9e75-2741012ec43a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_sqFSjoAMFQ6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-61d61d2f0bb01ecb21b809ea;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kf_hcK2d2YFhladZn1S4cyGq7vLTSKdWgPUTNT0M9LwHXuOV-nlgGw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:07 GMT
age: 82437
etag: "ff254a1df087d2c157d88a6ef04e395dc49efe5e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fitnessbookz.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Mon, 05 Dec 2022 20:41:08 GMT
expires: Mon, 05 Dec 2022 22:41:08 GMT
cache-control: public, max-age=7200
age: 296
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-2Z1EYW1TCM>m=2oebu0&_p=1071128184&gdid=dZTNiMT&cid=103217416.1670273161&ul=en-us&sr=1280x1024&_s=1&sid=1670273161&sct=1&seg=0&dl=https%3A%2F%2Fwww.fitnessbookz.com%2Feda%2F&dt=Page%20Not%20Found%20-%20Fitness%20Tips%2C%20Natural%20Health%2C%20Weight%20Loss%20%26%20Bodybuilding&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-2Z1EYW1TCM>m=2oebu0&_p=1071128184&gdid=dZTNiMT&cid=103217416.1670273161&ul=en-us&sr=1280x1024&_s=1&sid=1670273161&sct=1&seg=0&dl=https%3A%2F%2Fwww.fitnessbookz.com%2Feda%2F&dt=Page%20Not%20Found%20-%20Fitness%20Tips%2C%20Natural%20Health%2C%20Weight%20Loss%20%26%20Bodybuilding&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-2Z1EYW1TCM>m=2oebu0&_p=1071128184&gdid=dZTNiMT&cid=103217416.1670273161&ul=en-us&sr=1280x1024&_s=1&sid=1670273161&sct=1&seg=0&dl=https%3A%2F%2Fwww.fitnessbookz.com%2Feda%2F&dt=Page%20Not%20Found%20-%20Fitness%20Tips%2C%20Natural%20Health%2C%20Weight%20Loss%20%26%20Bodybuilding&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fitnessbookz.com
Connection: keep-alive
Referer: https://www.fitnessbookz.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.fitnessbookz.com
date: Mon, 05 Dec 2022 20:46:04 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.fitnessbookz.com/wp-content/uploads/oceanwp-webfonts-css/102fbdc70ebc97d5aacdcb5ef9ac8de3.css?ver=6.1.1
200 OK 0 B URL HTTP/2 www.fitnessbookz.com/wp-content/uploads/oceanwp-webfonts-css/102fbdc70ebc97d5aacdcb5ef9ac8de3.css?ver=6.1.1
IP
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/oceanwp-webfonts-css/102fbdc70ebc97d5aacdcb5ef9ac8de3.css?ver=6.1.1 HTTP/1.1
Host: www.fitnessbookz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Mon, 12 Dec 2022 20:46:03 GMT
content-type: text/css
last-modified: Mon, 05 Dec 2022 20:46:03 GMT
etag: "6cc-638e588b-b6e2c7d9499cf39a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
date: Mon, 05 Dec 2022 20:46:03 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2
82.180.143.169
142.250.74.131
104.18.21.226
93.184.220.29
23.36.77.32