Report - jeevottamahealth.com/dynamic

Report Overview

Submitted URL
jeevottamahealth.com/dynamic_img/blog/case.zip
IP
185.28.21.218
ASN
#47583 Hostinger International Limited
Submitted
2023-01-29 11:35:44
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
36

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	4.1 kB	11 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.164.243.166
cdn.jsdelivr.net	439	2012-09-30T02:15:09Z	2023-03-13T06:17:54Z	416 B	3.2 kB	151.101.193.229
www.youtube.com	90	2013-04-13T09:43:20Z	2023-03-13T05:09:12Z	486 B	78 kB	142.250.74.78
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-13T08:39:16Z	401 B	28 kB	142.250.74.162
jeevottamahealth.com	unknown	2018-08-07T11:13:11Z	2023-01-29T05:35:22Z	4.5 kB	99 kB	185.28.21.218
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
maps.googleapis.com	33876	2019-10-17T17:56:16Z	2023-03-13T08:06:07Z	860 B	54 kB	216.58.207.234
i.ytimg.com	109	2012-10-03T19:11:04Z	2023-03-13T08:43:01Z	402 B	18 kB	216.58.207.246
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.4 kB	2.4 kB	93.184.220.29
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	390 B	45 kB	142.250.74.40
picsum.photos	52059	2017-10-10T12:03:26Z	2023-03-12T22:40:52Z	1.9 kB	4.0 kB	172.67.74.163
fastly.picsum.photos	unknown	2023-01-26T02:05:02Z	2023-03-12T22:40:40Z	2.3 kB	422 kB	151.101.1.91
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	50 kB	34.120.237.76
www.google.com	7	2015-05-10T13:11:19Z	2023-03-13T06:40:43Z	402 B	15 kB	142.250.74.164
static.doubleclick.net	333	2012-06-26T18:16:24Z	2023-03-13T08:46:37Z	379 B	17 kB	142.250.74.166
www.nourishdoc.com	unknown	2016-08-09T12:20:09Z	2023-01-07T10:00:54Z	411 B	815 B	172.67.145.2
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	1.5 kB	68 kB	216.58.207.227
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	452 B	1.8 kB	216.58.207.234
jnn-pa.googleapis.com	2640	2021-11-16T07:12:21Z	2023-03-13T08:11:18Z	1.1 kB	32 kB	142.250.74.42
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
cdn.rawgit.com	8186	2017-01-30T06:42:07Z	2023-03-13T05:45:05Z	411 B	1.2 kB	194.242.11.186
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-13T05:09:19Z	368 B	1.9 kB	104.18.21.226
unsplash.it	470122	2014-10-30T10:55:39Z	2023-03-09T14:09:08Z	1.1 kB	999 B	178.128.139.170
yt3.ggpht.com	203	2014-01-15T17:55:17Z	2023-03-13T05:09:16Z	444 B	2.8 kB	142.250.74.161
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	5.5 kB	11 kB	142.250.74.131
www.jeevottamahealth.com	unknown	2018-08-09T15:31:57Z	2023-01-21T05:52:48Z	16 kB	3.7 MB	185.28.21.218
stackpath.bootstrapcdn.com	2467	2018-06-15T22:36:43Z	2023-03-13T07:25:30Z	942 B	79 kB	104.18.10.207

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-29	medium	jeevottamahealth.com/dynamic_img/blog/case.zip	Phishing
2023-01-29	medium	jeevottamahealth.com/dynamic_img/blog/case.zip	Phishing
2023-01-29	medium	www.jeevottamahealth.com/dynamic_img/prevention/	Phishing
2023-01-29	medium	www.jeevottamahealth.com/dynamic_img/cure/	Phishing
2023-01-29	medium	www.jeevottamahealth.com/assets/js/popper.min.js	Phishing
2023-01-29	medium	www.jeevottamahealth.com/assets/js/bootstrap.min.js	Phishing
2023-01-29	medium	www.jeevottamahealth.com/assets/js/jquery.sticky.js	Phishing
2023-01-29	medium	www.jeevottamahealth.com/assets/js/owl.carousel.min.js	Phishing
2023-01-29	medium	www.jeevottamahealth.com/assets/js/jquery-3.2.1.min.js	Phishing
2023-01-29	medium	www.jeevottamahealth.com/assets/js/jquery.shuffle.min.js	Phishing
2023-01-29	medium	www.jeevottamahealth.com/assets/js/jquery.counterup.min.js	Phishing
2023-01-29	medium	www.jeevottamahealth.com/assets/js/wow.min.js	Phishing
2023-01-29	medium	www.jeevottamahealth.com/assets/js/jquery.meanmenu.min.js	Phishing
2023-01-29	medium	www.jeevottamahealth.com/assets/js/jquery.magnific-popup.min.js	Phishing
2023-01-29	medium	www.jeevottamahealth.com/assets/js/custom.js	Phishing
2023-01-29	medium	www.jeevottamahealth.com/assets/js/slid.js	Phishing
2023-01-29	medium	www.jeevottamahealth.com/assets/js/map-script.js	Phishing
2023-01-29	medium	www.jeevottamahealth.com/assets/js/form-wizard.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (149)

	URL	Size	First Seen	Last Seen
	www.jeevottamahealth.com/assets/js/jquery.shuffle.min.js	26 kB	2023-03-13	2023-03-26
Pretty URL www.jeevottamahealth.com/assets/js/jquery.shuffle.min.js IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:08:05 Last Seen2023-03-26 00:44:25 Times Seen2 Hash 385686eb8cf14a026a4e0afca5734c92 c398e2acaba188257fee8964b09ff6a07392145d 4198d470ca248917e7ad90c5f3c2513a91bde4a1b69925caf7285cbe021a3309 Loading...

	www.youtube.com/s/player/4248d311/www-embed-player.vflset/www-embed-player.js	350 kB	2023-03-12	2023-03-13
Pretty URL www.youtube.com/s/player/4248d311/www-embed-player.vflset/www-embed-player.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:40:46 Last Seen2023-03-13 13:26:31 Times Seen1 Hash 2ba759b09f8d8303cbc4d4e782e72b96 dacd6e66a0f1dd8f1a8f88b76a655909d07845f5 a65c62d1be76bdf94ba77cc299c65eb0c831328d8aea0c2ca9c00f8e0dc90fc9 Loading...

	www.youtube.com/embed/CxrKvyg0d8c	2.0 kB	2023-03-07	2024-01-05
Pretty URL www.youtube.com/embed/CxrKvyg0d8c IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:14 Last Seen2024-01-05 16:27:33 Times Seen7664 Hash 6a73bc1d6d65579cd4d0e4ac0f0bbc4a 81de5599ae45f49e93a23f53833d3dc9c27c7a1e bf473ebe5e6ccb16d5b1df9579ac0666659badd85ee14dbb4669531ca0e226b1 Loading...

	www.youtube.com/embed/CxrKvyg0d8c	61 kB	2023-03-13	2023-03-13
Pretty URL www.youtube.com/embed/CxrKvyg0d8c IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:08:05 Last Seen2023-03-13 11:08:05 Times Seen1 Hash fe775f6acd8cb35a957772e87d135ea4 50cc80251695ff6f616f9a98896834dd76416d54 9f646b53436e1a9e683da695b609e9f15737bfa1a93caef2e9f047cd46628692 Loading...

	www.youtube.com/embed/CxrKvyg0d8c	25 B	2023-03-07	2023-11-29
Pretty URL www.youtube.com/embed/CxrKvyg0d8c IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:45 Last Seen2023-11-29 18:23:57 Times Seen447 Hash e15dba154cb2f9f1a7ec41ce1d66401a dfd3930a98425585b907c299af0f27cd43719b9f 9a32a785506a3a40fbb4adcb3e7b9a4415d54ba35b0f7e6cfcbbb4a0c7400cb0 Loading...

	www.jeevottamahealth.com/assets/js/bootstrap.min.js	51 kB	2023-03-07	2024-05-10
Pretty URL www.jeevottamahealth.com/assets/js/bootstrap.min.js IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:27 Last Seen2024-05-10 08:52:47 Times Seen2721 Hash 46b549bdc90920f18a911f186b9dd75c 3c639c4af5c036a6ee364215bd12c0b12937827d 1886bc561dec7c44a7541d82377ad81a40ff32496f32ad259884f0790c44d6a5 Loading...

	www.jeevottamahealth.com/assets/js/owl.carousel.min.js	43 kB	2023-03-07	2024-05-10
Pretty URL www.jeevottamahealth.com/assets/js/owl.carousel.min.js IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-05-10 08:27:12 Times Seen8238 Hash b7b9c97cd68ec336d01a79d5be48c58d 1a99890b57c9859a622337ed0b2f989d6e30cc0e b394d33b2a7ec654a6b037ebfda6618341b3f897a362be624c923c2711b54a43 Loading...

	www.jeevottamahealth.com/assets/js/jquery.counterup.min.js	9.2 kB	2023-03-07	2023-03-26
Pretty URL www.jeevottamahealth.com/assets/js/jquery.counterup.min.js IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:19 Last Seen2023-03-26 00:44:26 Times Seen2 Hash 46075741c23ded6039ac5104162a709b bfaccf7aaac8b117e98dda931ddfed089c81f7ae e1c8db8d12c36babdc92598e383a1753f9195e1fa589422e8a61ff7cf410849c Loading...

	www.jeevottamahealth.com/assets/js/custom.js	7.9 kB	2023-03-13	2023-03-26
Pretty URL www.jeevottamahealth.com/assets/js/custom.js IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:08:05 Last Seen2023-03-26 00:44:25 Times Seen2 Hash c3b329f7af1b0b3ac9d6ee1385ff63a4 e4544b95f4ee1d0bf7b0dab15d6a8f72d52fa81f bc20fe8e0a6beab8e9df4d00bfc2714971627b6a61c934908190101756053bb7 Loading...

	www.jeevottamahealth.com/assets/js/jquery.meanmenu.min.js	4.0 kB	2023-03-07	2024-05-09
Pretty URL www.jeevottamahealth.com/assets/js/jquery.meanmenu.min.js IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:27 Last Seen2024-05-09 17:02:29 Times Seen537 Hash 0444feb93a5bb35397275148613d7c07 ffddb012374e39779bd5415080ab9e7ac5afa194 eaf2ccc92a9f802623e6eb69af21a03fc6ba48b509201e2ded5165b58f22957e Loading...

	www.googletagmanager.com/gtag/js?id=UA-186979376-1	113 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-186979376-1 IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:08:05 Last Seen2023-03-13 11:08:05 Times Seen1 Hash bd602aaa3dd1be7c4145997576ac0bcb c119fe013eeddc5a5b8bfaefaeee4d63b9b7cc33 aee024f30bf1648c851d7140e0235303b62c99af25cec5c581357549bac9cf02 Loading...

	www.jeevottamahealth.com/assets/js/jquery.sticky.js	7.6 kB	2023-03-07	2024-04-08
Pretty URL www.jeevottamahealth.com/assets/js/jquery.sticky.js IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:27 Last Seen2024-04-08 01:33:13 Times Seen18 Hash 34e2aa6932d533d7fa26ae9e715988bd 75333009dad4a10dab4734caa03e58c82f1126bf bd92a90eaefcff3b25211b62c44d59e2c8ac262e9508bf2d17c611fc177defc3 Loading...

	www.youtube.com/embed/CxrKvyg0d8c	26 B	2023-03-07	2024-05-10
Pretty URL www.youtube.com/embed/CxrKvyg0d8c IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-10 09:35:11 Times Seen34634 Hash 173a08c5d6adc5c93611a599bcb2c717 735a7301e66ae2c3584357f7bf0bf09eefb62df0 271e6368679a21c3416e2a0325db33d6bc445d601c72a49914081b5efd0cdf3f Loading...

	www.youtube.com/embed/CxrKvyg0d8c	13 B	2023-03-07	2024-05-10
Pretty URL www.youtube.com/embed/CxrKvyg0d8c IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-10 09:35:13 Times Seen34593 Hash d8fb965e7ead2924508e97e5326bd3b1 fae376d0cb54d4433b7bdc9aba04690cd6cb5d27 57bb660c2fdf4369ff8e37f99b26963dba87c120b80c443ff3d31e030ab3a0f5 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/7/util.js	162 kB	2023-03-13	2023-11-28
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/7/util.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:11:46 Last Seen2023-11-28 01:58:38 Times Seen5 Hash c1fbd6db0a1d3b35a0676e0dddc9d648 8f51a04f29477d1dd024c82ebf1ee55421341c46 4c1ef2bbde0d86c66fa5f667860cb9ab25b30fcb3fddb127aac61c5836a8b762 Loading...

	www.jeevottamahealth.com/assets/js/wow.min.js	8.2 kB	2023-03-13	2023-03-26
Pretty URL www.jeevottamahealth.com/assets/js/wow.min.js IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:08:05 Last Seen2023-03-26 00:44:26 Times Seen2 Hash 3f89fd28d4b2e440033c4df13211fb41 89491756dd22ccb126534797fe0b55ebd1de6ccf fd6c6c1cba0551cc23dd590399541d26d1beefffdd927e3fc1bb5eebb60321b6 Loading...

	www.jeevottamahealth.com/assets/js/slid.js	1.2 kB	2023-03-13	2023-03-26
Pretty URL www.jeevottamahealth.com/assets/js/slid.js IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:08:05 Last Seen2023-03-26 00:44:25 Times Seen2 Hash 30aded722d754055a58ee9edb650114d 63aba5f089362dcc78646b2c5dd683a94b65cf9c da98061ce77a9f0eccc81cdecd06a87d1cf166cb19f93c84de27460f3e89d259 Loading...

	www.jeevottamahealth.com/assets/js/form-wizard.js	1.6 kB	2023-03-13	2023-03-26
Pretty URL www.jeevottamahealth.com/assets/js/form-wizard.js IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:08:05 Last Seen2023-03-26 00:44:26 Times Seen2 Hash 7c250ab8dcf4b48ade831c43f0dd5edf 96e99795dffff98c5a690612050f15a4a8719980 4cd353c018feb4c278f4c14b3de1ad10cd49ef542be5030600f2fc06f70be593 Loading...

	maps.googleapis.com/maps-api-v3/api/js/51/7/common.js	278 kB	2023-03-13	2023-11-28
Pretty URL maps.googleapis.com/maps-api-v3/api/js/51/7/common.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:11:46 Last Seen2023-11-28 01:58:38 Times Seen8 Hash c5c423a8a48f210555792d068e625812 80b46893e374865b8c915727c4d6a9e27a1da2e8 f9411dbff0cf58364f8f50077dadfbfb888688825ddbd7a2b3d6a2a96caa700e Loading...

	www.youtube.com/embed/CxrKvyg0d8c	134 B	2023-03-07	2024-05-10
Pretty URL www.youtube.com/embed/CxrKvyg0d8c IP 142.250.74.78 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-10 09:35:09 Times Seen34701 Hash e18eb9d0972d240f1a5456179bb6523b 65255f106adcff2907a98e295a8e7a38fe2884c4 3d68db2b85d5a2915743399f09dc438963f0c50f68b02df05d47a372661603e8 Loading...

	static.doubleclick.net/instream/ad_status.js	29 B	2023-03-07	2024-04-18
Pretty URL static.doubleclick.net/instream/ad_status.js IP 142.250.74.166 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:17 Last Seen2024-04-18 07:35:29 Times Seen2735 Hash 1fa71744db23d0f8df9cce6719defcb7 e4be9b7136697942a036f97cf26ebaf703ad2067 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9 Loading...

	www.youtube.com/s/player/4248d311/player_ias.vflset/en_US/remote.js	122 kB	2023-03-12	2023-03-13
Pretty URL www.youtube.com/s/player/4248d311/player_ias.vflset/en_US/remote.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:40:46 Last Seen2023-03-13 13:26:31 Times Seen1 Hash 2029d29387669bd0d9850dd25f13e018 d8c895aeedaa9198340ad60dbd148b2ff033315f f3b85842f1435a024c577c49e634cfdfc799a7d3fb19e8909d1bdd29017ad912 Loading...

	www.youtube.com/s/player/4248d311/player_ias.vflset/en_US/embed.js	27 kB	2023-03-12	2023-03-13
Pretty URL www.youtube.com/s/player/4248d311/player_ias.vflset/en_US/embed.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:40:46 Last Seen2023-03-13 13:26:32 Times Seen1 Hash 40fa5012957b29a1e9ee98ab97355afd 2990a114ae4348099b59be0caf83f1e3eb4442bd 39bfedc970a003d6ec90bcf8544220ad285c773d9b07d08b9233ea28d72f406d Loading...

	unknown	0 B	2023-03-07	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-10 09:47:22 Times Seen37500169 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.jeevottamahealth.com/assets/js/map-script.js	2.4 kB	2023-03-13	2023-03-26
Pretty URL www.jeevottamahealth.com/assets/js/map-script.js IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:08:05 Last Seen2023-03-26 00:44:26 Times Seen2 Hash a4ede4ac887830d85e7ccff48938c37f 98d083ca16a02779a758db15364babdc3e942ef9 6d846ce2ab32dea07b840c221ce8a29f3c234b03fb46409e8bcce35749dda6ab Loading...

	jeevottamahealth.com/dynamic_img/blog/case.zip	161 B	2023-03-13	2023-03-26
Pretty URL jeevottamahealth.com/dynamic_img/blog/case.zip IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:08:05 Last Seen2023-03-26 00:44:26 Times Seen2 Hash 45a25ec0cef5d59c5a507c93e866090f 3a855ae58e2db2c0686821ca50a7043818e1f1a6 49b2f1e75d3bf4035824105d84c2568952a660608fa032d5f3e0b9031626f402 Loading...

	www.google.com/js/th/J0Wtb-3apQjiEgHhOVup9kp7pTLa1a3i127gprViyoA.js	37 kB	2023-03-12	2023-03-13
Pretty URL www.google.com/js/th/J0Wtb-3apQjiEgHhOVup9kp7pTLa1a3i127gprViyoA.js IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:03:01 Last Seen2023-03-13 19:33:56 Times Seen1 Hash 4578e8d280abf4e8b9fcc826c31d8ecf 307f501cd2b8f7a52fe2a2137f68b34337ad9e0a 2745ad6feddaa508e21201e1395ba9f64a7ba532dad5ade2d76ee0a6b562ca80 Loading...

	www.jeevottamahealth.com/assets/js/jquery-3.2.1.min.js	97 kB	2023-03-07	2024-05-09
Pretty URL www.jeevottamahealth.com/assets/js/jquery-3.2.1.min.js IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:51 Last Seen2024-05-09 16:13:49 Times Seen2469 Hash 0fca26b5a37a66d68d0f4406976be4b5 ee000eb654b3bd37185665d3901e93b34ce1aa52 8c2812ded6436715279f8fd8db58de307aa39ab0296fe3cf0e879067c51e9b18 Loading...

	www.jeevottamahealth.com/assets/js/jquery.magnific-popup.min.js	20 kB	2023-03-07	2024-02-11
Pretty URL www.jeevottamahealth.com/assets/js/jquery.magnific-popup.min.js IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:27 Last Seen2024-02-11 09:37:24 Times Seen2 Hash 29c7de310e227d51d19d17e2b497bb32 753bb0f01915d3aec7a1b5c951f1d37454b04e34 23cffc4ea12bc2cfb53a9c8ced4b67388df50a486103cd2d01c7717a75a8aecb Loading...

	jeevottamahealth.com/dynamic_img/blog/case.zip	155 B	2023-03-13	2023-03-26
Pretty URL jeevottamahealth.com/dynamic_img/blog/case.zip IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 11:08:05 Last Seen2023-03-26 00:44:25 Times Seen2 Hash 712717ce99f8c856bc422b598e12aaa7 ac87827d670875ae0a9a5991c5018dc155eb1695 4a4e0b2d9d3714005f8116f3952a602f726e1115b46396e3d52f973a5317da26 Loading...

	www.youtube.com/s/player/4248d311/fetch-polyfill.vflset/fetch-polyfill.js	9.6 kB	2023-03-07	2024-01-08
Pretty URL www.youtube.com/s/player/4248d311/fetch-polyfill.vflset/fetch-polyfill.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:14 Last Seen2024-01-08 01:35:01 Times Seen16862 Hash 99c2f70a68b9105e6de1d8aaecda635f 1c58a7f05d5d8579f6f1a6f73a9919e941c67dd8 498b3f2a0357fbd50a80eb18b23ab4b461b791d640e5560b799f08ed960748a9 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.jeevottamahealth.com/assets/js/popper.min.js	19 kB	2023-03-07	2024-05-10
Pretty URL www.jeevottamahealth.com/assets/js/popper.min.js IP 185.28.21.218 ASN #47583 Hostinger International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:40 Last Seen2024-05-10 06:25:55 Times Seen1357 Hash b18556921e79d50bc26a3f42f33f1c16 fba9ab5f86f2b90933fc6a735de391e619fa1752 282539cf8196a5e940746f43f640e02c16b6af711cf2486d8e08ffcd39e7f9b8 Loading...

	cdn.rawgit.com/vinayakjadhav/jR3DCarousel/HEAD/dist/jR3DCarousel.min.js	7.6 kB	2023-03-09	2023-03-26
Pretty URL cdn.rawgit.com/vinayakjadhav/jR3DCarousel/HEAD/dist/jR3DCarousel.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 06:28:13 Last Seen2023-03-26 00:44:26 Times Seen2 Hash 5602b0e1347b8eca24a4c36c4bcd7f1d 7c26cb9863f09a093caa10ca7c61eeef8b83c3b4 e5e4d4901a64d58d98dc811f010e05409c3223f40d9b18ee6b9fdca8d08fbc7e Loading...

		Size	First Seen	Last Seen
	#1 Eval - 9a88105eab09e722b4909dc9eb93eb8d	143 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 9a88105eab09e722b4909dc9eb93eb8d ebdac287df2c1a677bba6b516e0ac503140da9ba e92b8a0eecb6f44e66de7e61c544e7b97ee9ffe79cc53f91f4e46ace52889a27 Loading...

	#2 Eval - 1e289ef3e74d4da0bf3522a08e3dd560	2 B	2023-03-10	2024-05-09
Pretty Observations First Seen2023-03-10 04:12:44 Last Seen2024-05-09 18:57:08 Times Seen321 Hash 1e289ef3e74d4da0bf3522a08e3dd560 71044b2dc40786c139d798139539cf4e789108ce 7b384da61fb9282ce67e19aaa94365c44bce27d20ba14781655d6f1dcf1ee3c2 Loading...

	#3 Eval - dd0b0399b775d03c3590ba6af315a42d	458 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash dd0b0399b775d03c3590ba6af315a42d 470ea2f12a2a7d02c6a380d58c57acfd8d1d5607 7ca816a3cfdd5dc0648da24929f9c41ce58d700409a8d4cb6a9b5fcb2a63c139 Loading...

	#4 Eval - 1caf614f320fbef770f76d26db618cb7	232 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 1caf614f320fbef770f76d26db618cb7 0393abd8f8ef5dd1578e9e4f07e4fee5b9bcdbf5 6785573dafb8e9d6dcc6b252899eae6a3f230d6004840c5ef3faa8a44a1e0700 Loading...

	#5 Eval - d84b3233cc797d48144e6ca6df911eee	47 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash d84b3233cc797d48144e6ca6df911eee bb6e4514de5fdf74184ed4cfb82b6a3670cc121c 5bf2161041f1a3347394037f7b698bf95065f63782d36d4450accb59de47c4b0 Loading...

	#6 Eval - c57bbdcbfba558e3d23b60edde831e85	2 B	2023-03-12	2024-03-26
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2024-03-26 18:44:00 Times Seen203 Hash c57bbdcbfba558e3d23b60edde831e85 1c4bad6d491e4c8e21e7304e7b9a8d38a740b19a ada8d598e51a0bf0d4bb5976d5dc6cb088a0603072947b002d4d665c54cadb1f Loading...

	#7 Eval - e302b269af13a2afe28eca2601bec972	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash e302b269af13a2afe28eca2601bec972 b782db34a2188459e82104281676e2b451cc06fa 198f375bc63d951ac25eb084019687eb41090c7619a75be1690438e7bc3be639 Loading...

	#8 Eval - 958ee900893b2c2532883b0180fd7c71	635 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 958ee900893b2c2532883b0180fd7c71 3916822e7bfca283b834270379acecfe18ed9e3c ac4fe2ba6cca08666b7eced4eeb0b8fa7ff604b17c63fe47de5f9608f2bc2d51 Loading...

	#9 Eval - 99d4fb3db1563c87da2cdfc0158b37c3	2 B	2023-03-07	2024-02-28
Pretty Observations First Seen2023-03-07 13:20:55 Last Seen2024-02-28 06:05:51 Times Seen41 Hash 99d4fb3db1563c87da2cdfc0158b37c3 aab9b7bd17003da21256cca5c7d2d7ff4ea384b6 d9065d6da185ec28758619fc14b755f740043e1060d342aacef26f459fae8d9d Loading...

	#10 Eval - 2436f23b98933a71439259c4bca8674b	2 B	2023-03-08	2024-05-08
Pretty Observations First Seen2023-03-08 12:49:36 Last Seen2024-05-08 08:51:25 Times Seen731 Hash 2436f23b98933a71439259c4bca8674b bc8fc96cebf44a9eb1f341bfd6d0b7aadb2c1b04 8cf3ebbdacddfddd6f13673f945f523cc9813df2fcdf2a420a230d283bdf4a7a Loading...

	#11 Eval - 8fc68733bc777bd222046349115b6f34	66 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 8fc68733bc777bd222046349115b6f34 a12d0a9be4c5880f47dd3860f171ead93ddad647 eb37cdb5536f983a418808fe170a4febce5cb953513cfac112403591f94096c3 Loading...

	#12 Eval - d48a24ae9672ee573050e4d3aeeebe4d	29 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-10 09:35:15 Times Seen53914 Hash d48a24ae9672ee573050e4d3aeeebe4d 8f8c4d27852980a1ec5a8b1aba30769001314ec8 53e5b7d706a350fe98d52499058624e15cddc1541f17370f94a899a386c50255 Loading...

	#13 Eval - 8d8b85adc4d2474a84fbca1381afb3c7	83 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2024-05-10 09:35:15 Times Seen39956 Hash 8d8b85adc4d2474a84fbca1381afb3c7 3815645d5a8680fd3ed4ce5a3b82f8d432448698 3eb8abc484d33a620c974de75babdd2caae4fff7dc8daad7d860dd41c93ee611 Loading...

	#14 Eval - 0d80d99d7f209071a284c9ab6d14accf	83 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-10 09:35:15 Times Seen54209 Hash 0d80d99d7f209071a284c9ab6d14accf c91e7389c28a7b35eeb114484808a20cddb8c20e 0cb21d1de060008bab472c15c63e6f15828de601f85deff00d701d26c0f6819a Loading...

	#15 Eval - 9e600f8ab5da435a1f45ea9bd51cdac5	212 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 9e600f8ab5da435a1f45ea9bd51cdac5 b75978da2e0c8166e6731ffc8aa5ce1a03a0ecd3 6e05eb46c6a1f0868cd42e661d69c9fc7ff01317f462b8ad9df1d18b2f71d5eb Loading...

	#16 Eval - 1c0e6931748d12fda5628aab1e6cdb3b	132 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 1c0e6931748d12fda5628aab1e6cdb3b 5bb3ec180004c88bf90f662570c3704633a5e524 cd1097f96dac97efbcc11bf5e4a64c903e22b7829ecc50d08429afa6f01a3f98 Loading...

	#17 Eval - a931635074a5017da74948b67e16c76f	206 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2024-05-10 09:35:15 Times Seen39992 Hash a931635074a5017da74948b67e16c76f a6799582ad16a7c1ab8221c166268130df6691d2 1fb437ac78114eda813a7c4d5771b6d3aa34908a5ca3b743d5eb5c79088cf82c Loading...

	#18 Eval - 1a4fe0b3ef92159a18c3058e8438b875	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 1a4fe0b3ef92159a18c3058e8438b875 67a473e413a2c2cfcfbbbecf59a873ec6c65ac3b 458a226ae7468d13f3a3ab4e5ab8f1cd872e7959110d7358a5a3a535eee073c7 Loading...

	#19 Eval - c8abe3f6d7c98e5c92199d2dca936955	79 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash c8abe3f6d7c98e5c92199d2dca936955 ec707f571e1c256b86e9551ed064a2a8d1284815 b8b189081d1725e0249adcf589f11960d29e6461c162b73122fc87dcdf17c5d2 Loading...

	#20 Eval - fcdb4690d46324e9b79a73c1e2b566ee	98 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash fcdb4690d46324e9b79a73c1e2b566ee 219cb4f111c8772ef6bfeb80478b6e0ea02faa71 6498e27661ad50848af9bcb32baa483d8b9dac4c780c655bc66cbb01098e30fc Loading...

	#21 Eval - 0563fcd3c81eef58e50b984c70677036	159 B	2023-03-07	2024-02-29
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-02-29 10:56:21 Times Seen35304 Hash 0563fcd3c81eef58e50b984c70677036 297f56d56ec1918a65a72c146da33d3ffb468684 ed2b7d8395578b6813022e5d55ce8066479d2def9c664882260f1516472c1838 Loading...

	#22 Eval - 841431d3fd2e3a93adef0a5028461a3c	251 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:56 Times Seen1 Hash 841431d3fd2e3a93adef0a5028461a3c 8bc217a487514999d1df0a43158908c8823d53ab d2fe3ef58934eb80e636e2901cd2e7e3cdeb25900a0185d238c56aba066b5e82 Loading...

	#23 Eval - 2ea974d4b864d1d16cd8110007185607	2 B	2023-03-12	2023-12-05
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-12-05 09:00:26 Times Seen601 Hash 2ea974d4b864d1d16cd8110007185607 a6c5bbd2be2e848f7ac6244250e547d3413d7bc0 96ce2eb8334102e2104ca443760fe484dddf47f7d618cc99c0cd5eabc90ef071 Loading...

	#24 Eval - 5bbb291cc1e38a051365ee9edb7cbd14	2 B	2023-03-12	2023-10-21
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-10-21 23:16:25 Times Seen12 Hash 5bbb291cc1e38a051365ee9edb7cbd14 60018f2177591071fcc9a67ea59f5dcd4d69e7ec b3af560ffaf071918d8d64d6201533061cc1f9a76c6a2264b670fc1f0032f0d6 Loading...

	#25 Eval - 4c614360da93c0a041b22e537de151eb	1 B	2023-03-07	2024-05-07
Pretty Observations First Seen2023-03-07 12:08:31 Last Seen2024-05-07 05:49:15 Times Seen10958 Hash 4c614360da93c0a041b22e537de151eb b2c7c0caa10a0cca5ea7d69e54018ae0c0389dd6 a25513c7e0f6eaa80a3337ee18081b9e2ed09e00af8531c8f7bb2542764027e7 Loading...

	#26 Eval - 44c29edb103a2872f519ad0c9a0fdaaa	1 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:20:09 Last Seen2024-05-10 08:58:39 Times Seen9364 Hash 44c29edb103a2872f519ad0c9a0fdaaa 511993d3c99719e38a6779073019dacd7178ddb9 5c62e091b8c0565f1bafad0dad5934276143ae2ccef7a5381e8ada5b1a8d26d2 Loading...

	#27 Eval - b0d8d0615cedf2b708efcb92d0fae8f7	262 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash b0d8d0615cedf2b708efcb92d0fae8f7 9ccd0b9831a60bcccd861f03253841347a826df5 eb61c7437a7d34f8aaf2e9b164420390a5a8ec848e73bacb75f697b66544f15d Loading...

	#28 Eval - 3743fe34828ad97b4c3cae1dfae54a92	26 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 3743fe34828ad97b4c3cae1dfae54a92 6c5b8474e4be5b4f9c64f6f9b7000dd8384c5eb0 bbba994b5ef793bdbc2617a95abcdc252cbf9459a63360d3a6890aa6b283780f Loading...

	#29 Eval - 3177e3b1e868855bdba2fe1c0e682c9e	2 B	2023-03-12	2024-04-05
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2024-04-05 00:12:21 Times Seen56 Hash 3177e3b1e868855bdba2fe1c0e682c9e 5c3fb0ec7c13aa87e924ab0f7e1e1b40b3a8e257 9ddae2191dc43525bdd9282dc4bd965ca4b0da86a57d81c5291fc5a46c38461b Loading...

	#30 Eval - f746602efa11942b53ded5959b3d63c2	134 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash f746602efa11942b53ded5959b3d63c2 50af4616d3bbd57ede4b89cc2fbbb4191d5148f3 6b367fed6cd319a052e50e6d925e1b487cfaa430eafa6d4a84c9ecb556591bbd Loading...

	#31 Eval - 05b8c74cbd96fbf2de4c1a352702fbf4	6 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-10 09:39:20 Times Seen55643 Hash 05b8c74cbd96fbf2de4c1a352702fbf4 320ad267d8d969f285eda5c184f5455bd29c8c95 44ff7b02c80d38b26dd6aa31d9470aed81b32e10331a3c994fb1a9945fd847ba Loading...

	#32 Eval - 1151f24be3c63db056f10938a42ab0ea	27 B	2023-03-07	2024-02-29
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-02-29 10:56:20 Times Seen35314 Hash 1151f24be3c63db056f10938a42ab0ea 5284a27f38597741e877ab31328cc8178b005676 0bc774ed3674af6aae8dd2c83bf89261e13ee293742afeda5161156a54bfc8ee Loading...

	#33 Eval - 2f379a763c22cd903a760edacd4f3f42	893 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 2f379a763c22cd903a760edacd4f3f42 7175e83343a1b262a0360c6abf0eed11314d4ad2 ca587b00173361182c3be2573fb214f121bbe01961c11666b1e49abcd7db3e19 Loading...

	#34 Eval - 9ab62b5ef34a985438bfdf7ee0102229	2 B	2023-03-07	2024-03-06
Pretty Observations First Seen2023-03-07 16:58:30 Last Seen2024-03-06 12:52:52 Times Seen482 Hash 9ab62b5ef34a985438bfdf7ee0102229 6b1f53303a732ccc8c6aae6640399827c15250e3 9c0abe51c6e6655d81de2d044d4fb194931f058c0426c67c7285d8f5657ed64a Loading...

	#35 Eval - 999062cd7af6d7551c57c7858a314446	2 B	2023-03-08	2024-02-09
Pretty Observations First Seen2023-03-08 15:11:25 Last Seen2024-02-09 16:58:22 Times Seen129 Hash 999062cd7af6d7551c57c7858a314446 0ce854355b8e5440ac15fc94af8a6ea45b7cebf4 47f57f44e73cb192c6a416c348f48c9e286771326f0f9a95ddbd877079a72463 Loading...

	#36 Eval - d885c283bafa151db235ff27a31c72de	578 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash d885c283bafa151db235ff27a31c72de 4551de296ff81e1c253c84bea6fc41a4bcfd2b2e 7cc67b38311924098b25e364c4f0e8b64b256a97265998d635e1114df42a99ac Loading...

	#37 Eval - 8cfb58e5a1eb914ec63841fe5a936017	71 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 8cfb58e5a1eb914ec63841fe5a936017 c277cb157bd07f9a3725250afa4e793125e9483e 259b0762cf024a6a934e1658bcb9628a48fff5d07e61a7d89dee573aed105c47 Loading...

	#38 Eval - 20d54658fd84f086138737df6aaa7407	40 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 11:08:06 Last Seen2023-03-13 11:08:06 Times Seen1 Hash 20d54658fd84f086138737df6aaa7407 b5243fba496ec3c8e26ad269df29344c11dbb92c dc2e90a9f8750e5e5685ac9d56a86fe31c527c6169b5e77b2a6a730cd02c0595 Loading...

	#39 Eval - a7671b8db974604c4f01952932621335	79 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash a7671b8db974604c4f01952932621335 b35f4d0594e4d565130e1d54d3f8e2729059a533 171f9aea6a06d44d830a5674873f212413f502e4219460470c564eb7779e342a Loading...

	#40 Eval - 233724c5adf28da47784390134db3c66	2 B	2023-03-08	2023-11-04
Pretty Observations First Seen2023-03-08 15:47:57 Last Seen2023-11-04 22:45:54 Times Seen239 Hash 233724c5adf28da47784390134db3c66 085ac9a633dc95f3bc6ae428e74af827c6d1b6d6 facee6dd84c950b54361fb71dfe736cdc64d894294305b4feeaf3c61abf2f2f7 Loading...

	#41 Eval - 91179d993515b367b0baba94e7bd82a2	59 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 91179d993515b367b0baba94e7bd82a2 459a4bcaabaa9032800860aad5ea585bd4760838 a87903155749fc1a976f1736cfeee19f9dce961652a700f99ad41afbad0071d9 Loading...

	#42 Eval - feb1cba9640d38ab42eac929d687d798	78 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash feb1cba9640d38ab42eac929d687d798 8c79c55b357f0f434b68b4f80acec127beb3086c c5e356164d41a2cfbf9fce12d1b6d20b34ab1ef9a549d123e2e70a7d7206a12b Loading...

	#43 Eval - d7506f680d2ed245c38811fd14cd20f2	96 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash d7506f680d2ed245c38811fd14cd20f2 7217fcb495d6387770f6b00896ec184cf885048e b6ebeb82eb8244ddf86a13b16d4ec307d80bf205d1ea857181d95b77e560b4e2 Loading...

	#44 Eval - a4e6f77837c8c632e74ed9b60f9881f9	358 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash a4e6f77837c8c632e74ed9b60f9881f9 d2d21caefed2c266a1eb3feebc4660cdac48296f 0ea5d34d97a33ecc7e2b17732d00fbfcf656f36adf64f9456a7226287abdfaa6 Loading...

	#45 Eval - f09564c9ca56850d4cd6b3319e541aee	1 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:15:12 Last Seen2024-05-10 02:54:35 Times Seen9617 Hash f09564c9ca56850d4cd6b3319e541aee c3156e00d3c2588c639e0d3cf6821258b05761c7 4ae81572f06e1b88fd5ced7a1a000945432e83e1551e6f721ee9c00b8cc33260 Loading...

	#46 Eval - 21c2e59531c8710156d34a3c30ac81d5	1 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 12:02:52 Last Seen2024-05-10 05:27:25 Times Seen9064 Hash 21c2e59531c8710156d34a3c30ac81d5 909f99a779adb66a76fc53ab56c7dd1caf35d0fd bbeebd879e1dff6918546dc0c179fdde505f2a21591c9a9c96e36b054ec5af83 Loading...

	#47 Eval - 6eecf4a539419aebac3bdc5a5bef50e8	324 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 6eecf4a539419aebac3bdc5a5bef50e8 f6510ce97f5a08efd6c4ad0303c90e54d7ca523b 6f99bb98957da29e0684f4585eace471fc0ace410bc1b6b64a79a501e9335d5e Loading...

	#48 Eval - 9b7ee97483b91d363396f0cb68128a9b	142 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 9b7ee97483b91d363396f0cb68128a9b f16c7a7bc9951ed784a94afe29ae98cf83c0bde4 3fe2cf60661c02e6fe260f94f5c696900091149f743ba1e1af29045dff825eea Loading...

	#49 Eval - 03fff0e0ba882147470c957d2f1244b7	94 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 03fff0e0ba882147470c957d2f1244b7 af7e6e3c21b067785a1f9f899a1860bba13a5ce4 6922cc97fcaeda3269110fc6af26f48e48c3d3db1f6d2b790b347f52e647ed76 Loading...

	#50 Eval - 02129bb861061d1a052c592e2dc6b383	1 B	2023-03-07	2024-05-07
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-07 14:31:41 Times Seen12340 Hash 02129bb861061d1a052c592e2dc6b383 c032adc1ff629c9b66f22749ad667e6beadf144b 4b68ab3847feda7d6c62c1fbcbeebfa35eab7351ed5e78f4ddadea5df64b8015 Loading...

	#51 Eval - 4ebada6a2af2bcba53ded1d7b414f081	2 B	2023-03-07	2024-02-04
Pretty Observations First Seen2023-03-07 12:02:01 Last Seen2024-02-04 08:59:26 Times Seen384 Hash 4ebada6a2af2bcba53ded1d7b414f081 7def6da18b44fa1c15855545c32eee0847a94472 848951c7610a98afa2cff03ea819c3a55232116c76098fecb3e048586c38355e Loading...

	#52 Eval - 666e7063fd93a9f8a1888c74f2304d53	42 kB	2023-03-13	2023-03-13
Pretty Observations First Seen2023-03-13 11:08:06 Last Seen2023-03-13 11:08:06 Times Seen1 Hash 666e7063fd93a9f8a1888c74f2304d53 9823850cfc40532ee62c93834da536337cacff1b ecba7695e2e3cabd717294ff10977ff04b00c8687b1c06f220f83e1d55bbb7a8 Loading...

	#53 Eval - 417cb7e7ebd43c1675a4eb6259d92096	130 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 417cb7e7ebd43c1675a4eb6259d92096 7d89bce7987f67e31e9f0361f3d5546d36ef80cb 6f833e9b15d6a184ec01e8cc7eb9433a5a5c37f1185e1d7ef90b54d36f904129 Loading...

	#54 Eval - 9caeb005672e76e21dc1568c6e7babc0	79 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 9caeb005672e76e21dc1568c6e7babc0 648cedc18c3bd7fa27defc9d2f5a873aa166fbde cd77af574e29b1e9daf9b9fc0c663265b317ce2b82f259526e2638ce7ea21a53 Loading...

	#55 Eval - 25916967be4ae491b1759ce854dff8ce	88 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 25916967be4ae491b1759ce854dff8ce 869338479f475596aa6c4c9afcf8f8ef9cb1d836 c8854eb7361f84379d3ee10a5e1eb87bdecef9f194efb70665e7b51b9b97f3ea Loading...

	#56 Eval - a7597dca4c151545fba337a9b9226f23	136 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash a7597dca4c151545fba337a9b9226f23 d23fa94312c1a8c669cca90920a89fb03d58ebf4 f38a86135c5556ab9383e03f5cc8833e19023fa1bcc68a8898ce52a7180e6a87 Loading...

	#57 Eval - 95c353e3ffc864a71eff9f41cecc7b8e	132 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 95c353e3ffc864a71eff9f41cecc7b8e c5e389618efa837ed1a513293364b7b993caa79e 40266c7fcd5854539924be88b5349d522d251eb7a2b08c3ebcc5ecdfd227486b Loading...

	#58 Eval - e4f30f2c916c4c3b13757c9ce5d26da9	160 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash e4f30f2c916c4c3b13757c9ce5d26da9 bdace4cc7942da5dbcbd649d2ea08f5634579948 5e0cb7dcd333f219adf36d3358b72efe30b04bb02f2563901c3a70d98a285016 Loading...

	#59 Eval - 3371043ac36318aeb54c272c300ec02c	296 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:56 Times Seen1 Hash 3371043ac36318aeb54c272c300ec02c 2ccd682819760c9410d55b18771acafe53d47a25 22aa3dd73fc4bd9e54eca2e4d773599372a7a20fe225969092a069e23ede0b6c Loading...

	#60 Eval - c9f7198c57735fa7a7a8ac2cc18dd542	9 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:02:46 Last Seen2024-05-10 09:39:20 Times Seen25515 Hash c9f7198c57735fa7a7a8ac2cc18dd542 d78ec33d89c7283a59982f10f71e7e305fa1ce93 ebf49dcd836f810084c14e0f2dab4dc1768bbdc5980481bf201fcf76771dff7a Loading...

	#61 Eval - 546633d2c8ea3af249fcf93ac3bb81a2	2 B	2023-03-07	2024-03-08
Pretty Observations First Seen2023-03-07 12:07:29 Last Seen2024-03-08 08:08:44 Times Seen761 Hash 546633d2c8ea3af249fcf93ac3bb81a2 4176cbc6d9318d4ccdf8560e45fca9d9f008eda2 03a7e44af18632c7fe8de04682a406953893e44dc02725f64e12f1731b7103bf Loading...

	#62 Eval - 0d61f8370cad1d412f80b84d143e1257	1 B	2023-03-07	2024-05-07
Pretty Observations First Seen2023-03-07 12:12:28 Last Seen2024-05-07 08:43:40 Times Seen9216 Hash 0d61f8370cad1d412f80b84d143e1257 32096c2e0eff33d844ee6d675407ace18289357d 6b23c0d5f35d1b11f9b683f0b0a617355deb11277d91ae091d399c655b87940d Loading...

	#63 Eval - c887fd2e03aff36a491d95ab0c7601e0	265 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash c887fd2e03aff36a491d95ab0c7601e0 853c866395129d1412d9e2e7a64be873d3ef1d7d 181744eefd08806d73b79771f2e13e4b698bf80010e7bd23ebfb68994cf05e65 Loading...

	#64 Eval - fab1b0a5fb12fb6b2bf024a549c19f27	83 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash fab1b0a5fb12fb6b2bf024a549c19f27 d89b85582258843b9e6db5d6f529ce785c8bcf40 b2f4d4c0ef927343b02826164883fa545a19be0b7a9bf36cd7a701eb5f47e947 Loading...

	#65 Eval - 8335b18a11ca9d5af121e30a4b017979	79 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:56 Times Seen1 Hash 8335b18a11ca9d5af121e30a4b017979 a59520b39ae08b41e97cd456535e1d0bb4b55d4a 93ab24b242047ea5e953bd19349b047faf6f8c2b3d34bad56b9a5c8331184413 Loading...

	#66 Eval - bcce98476f353b4bcbecfb36ef1103a7	94 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:56 Times Seen1 Hash bcce98476f353b4bcbecfb36ef1103a7 a99123a4dcdc6ea6a6ab64d329cd07258424ba86 5a6e00af57f246fc66e5252dab265d8d60399e8c532b653335284d3801df087c Loading...

	#67 Eval - 2fecd18a4d314787017e93ee29dd07d1	251 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 2fecd18a4d314787017e93ee29dd07d1 7da360329103ba6fa09e8b1dfac5cc203f684088 12609d13ffb177db03a0680ec80b7fb15fca6ec4bf5ab0c84824e0eece6a6083 Loading...

	#68 Eval - e5c8a6b65005390168577e6cbac18db7	156 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash e5c8a6b65005390168577e6cbac18db7 61043db5c498be4f59efc35a4f47b1c077cc3785 e9cd30814f7609a76075eaa619476317264e0cbf7651baad2fc7a50be729705d Loading...

	#69 Eval - 9d0137bffa0f20d5e8e9f54f2c84cf0a	10 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2024-05-10 09:35:14 Times Seen33676 Hash 9d0137bffa0f20d5e8e9f54f2c84cf0a 39edf6d919f82b9692a2edfecc78427a82567c42 269d4d56785ffc82f3ed05d8ee3b84fc18d7474663ddd06c6fd285165190bb19 Loading...

	#70 Eval - 61a40c2f4a7d51db537968d34a2aea5a	95 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 61a40c2f4a7d51db537968d34a2aea5a c68a3877fde47627f18d680a9d28ec8804524686 c712d009774bbbc8b99c86817bb89c070b6139e5037d16ff6955ec305420cff4 Loading...

	#71 Eval - b6fedf4d8b41bcd6fdd00dc73afebbf0	186 B	2023-03-07	2023-06-20
Pretty Observations First Seen2023-03-07 01:02:15 Last Seen2023-06-20 22:42:19 Times Seen10985 Hash b6fedf4d8b41bcd6fdd00dc73afebbf0 cc79d9f18327c590bfbf582db80c8771dbfda9a8 b98b82c364cf0a1c34b8ecf1aa18a6bf51bbd21631dd3794dad96c8ad3082a5f Loading...

	#72 Eval - 87429db7851fab75b6af3c9d0b3a24a0	54 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 87429db7851fab75b6af3c9d0b3a24a0 d401429310fb52c67f79b3d915d6e3bb93f78bf8 5b0ad8739c9606a0be5aea7c013cba77f2894169a593c1c40fbd99cd5e57af55 Loading...

	#73 Eval - efe32024f87fe99f95e091d897817480	230 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash efe32024f87fe99f95e091d897817480 aaa6f3e58ba1c5a7e1be0a0699e33a3f9dc573c4 84202d5117836491fcfbe90712adc3f5702c30dfdeae67a7e3ca0f022119b315 Loading...

	#74 Eval - 39d987fd8304752bbbec0bd1afd4b7f3	2 B	2023-03-12	2024-04-19
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2024-04-19 10:35:58 Times Seen364 Hash 39d987fd8304752bbbec0bd1afd4b7f3 86fe13d5334d2ec333dd272a2d1ef85e75a6a13d c2d6ae581bd7abe7c84817a8aa3d42498a51cfe7c3319c355efd6793f61b3b29 Loading...

	#75 Eval - 6d4502517a4d02b8e57f3b886c359a0e	2 B	2023-03-12	2024-04-19
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2024-04-19 10:35:59 Times Seen108 Hash 6d4502517a4d02b8e57f3b886c359a0e a435a2b7d57f70f2664043ea673ef6f9a891ccef e77c8fb95318f37b6593e32ec60a7e50d61086b6708fd5e412bd805f7f0d4272 Loading...

	#76 Eval - 2bd3b10a9bb1ae7613231ed98232f149	2 B	2023-03-12	2024-05-09
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2024-05-09 18:57:08 Times Seen85 Hash 2bd3b10a9bb1ae7613231ed98232f149 0ff2257fdd46d1488f74d0778c8ec279fa6250e0 d1660c241cf861ee705146fc38d94f904c2e42454824de27681bf1f81e1bff0f Loading...

	#77 Eval - bbdc5207c10d9f5903d7cc60153915e8	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash bbdc5207c10d9f5903d7cc60153915e8 049c7d424ea3c4007d3b7b8f27144a16b86d951a 0365e03a72f4e06e81e591a4f65820b196c7182512248a56d88440b264962ca3 Loading...

	#78 Eval - 6f7ae0da105c15a29542880537fd7222	26 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 6f7ae0da105c15a29542880537fd7222 43839f6f7e2fdb08b641c4f983c7bb19e9395a94 53e948b0555bc2783e3cbe6661c3a48cb0628c59b222f086d55f16e0f9821f8e Loading...

	#79 Eval - 64da55ebd305e9b66b10077adbf92543	77 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 64da55ebd305e9b66b10077adbf92543 c1b6ca21d543c7a69894bb18cdbc9c323ffd77c7 d8cafd4fa3625b0c77b2fcc448d1413b90b15b995104066eb5979c857bf9b65f Loading...

	#80 Eval - 3047b3c3fd05ca9ec2cee287b806967d	539 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 3047b3c3fd05ca9ec2cee287b806967d d2df6642235fc785158e426b003089ba34ede28d 3a389e62b39891c60516c4ab5d06b0ea1f78e0774ba2737c5c1e08a2f7ca5c0a Loading...

	#81 Eval - 24cc3dc813f384fde380df619f1525cb	19 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:02:05 Last Seen2024-05-10 09:35:14 Times Seen49421 Hash 24cc3dc813f384fde380df619f1525cb 56399e3ce57ff98d68c7de98a563e572230dff6b 5421715bbdaf2550e31d10fc28d444310a8fe7147bbddecf0abb490358a1553b Loading...

	#82 Eval - e014600539a3dc4f6a7023a02f6c7c83	26 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash e014600539a3dc4f6a7023a02f6c7c83 056ba007f3c81aeea646cb7affc2b7ee7d26dd0f 0af1db682a9b51e220fbb0956cb43c10ef1069f48608818e2d9a0680539f5a25 Loading...

	#83 Eval - 55e519c8287167c9b5f38e047bb05156	74 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 55e519c8287167c9b5f38e047bb05156 310d789b7523be0ea64191ff06b882adf25fe4a7 97f0f8f4672b61c4841c1ff94396f27b3579e3b6519de7820eb7ba73d84c1f68 Loading...

	#84 Eval - 99c85e5a929cd67833d581db00bce241	356 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 99c85e5a929cd67833d581db00bce241 174f3f899ebbde34d8df243b9f8af1851e42e372 110ce093ea1536b26c8de99aaf4d15fb2e560218cf3906aee83829efd80bc73c Loading...

	#85 Eval - 3c3dd3e6bc9a1e8e296adbe2feeff0fd	167 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:56 Times Seen1 Hash 3c3dd3e6bc9a1e8e296adbe2feeff0fd 6b924e1574c0c402447db8ac1ca22eabe114271f 3a9f16649f83d02beeec42a493da6307c5c1d373d32b6e2659f2ea78323164de Loading...

	#86 Eval - f465da03521180d47c811a98c793a2d6	9 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-10 09:35:14 Times Seen33668 Hash f465da03521180d47c811a98c793a2d6 9b76105ff4c8bb84cd630914d772f4cc73df0155 e8183224e440eb4578fd87c4c47735f9ede4c43b1c6ebbdcd7033e98aba6a009 Loading...

	#87 Eval - 43af35271c90269873d6d2d96267ac2a	139 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 43af35271c90269873d6d2d96267ac2a c6521e5913bbc3d578e260f29901ffacf314d6a9 e9f892b08494081c758f03f83d4532f899891332846681d776963082434cf572 Loading...

	#88 Eval - 8852105ae86c819879095a59827a4427	249 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 8852105ae86c819879095a59827a4427 f29f0a0e5bd8e23b887d7af248014809bf298d08 e78543f62ecff1d278a949249a306ca5bfe923f07ae321cb4c8c2c665aa400ac Loading...

	#89 Eval - 3c215e72a36ee5688aec6887406e2be8	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 3c215e72a36ee5688aec6887406e2be8 7a6f50c6bc3ef2a2ee75a6b4bb65213e9bea1df3 fcf9795e04c404c70a25471a1cdb08caeafabaee09410fb1b397dc00d1d18e26 Loading...

	#90 Eval - bae3f90cb000352645e35fad60da411c	35 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-10 09:35:15 Times Seen53953 Hash bae3f90cb000352645e35fad60da411c 00023f94c170125b979cb1914925d06ab1abfbce 1e3606d95ce27d593157594820335681a9380f51a96147303cd8000e60a95e12 Loading...

	#91 Eval - 9d78d93a55be720f349f29c8054d8ef2	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 9d78d93a55be720f349f29c8054d8ef2 cd9903a0d9f1ac5e132349d6d400f307083feb12 e48af47c1b91f5adc009ecd6d22f3dee8d3df4e92d4620a3565ad2425b037ca4 Loading...

	#92 Eval - 926485715bf5313e9eaeab5e958cd954	132 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 926485715bf5313e9eaeab5e958cd954 a3116a6adf48be5cee402c9073b68d41cfbf07b8 370e5d172821d80b11f4cf661b14eb59f37f555754b5906be13226abdcfbbda9 Loading...

	#93 Eval - b8cd7451f3cde0745072e9bb546700ec	378 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash b8cd7451f3cde0745072e9bb546700ec f0db5c40c9c47a8f06ec980e04ba0609b4e895e1 f8e1462be1a23155d2f9830a1e54ce95e82db7e24a603a6e83e801df77eea1c0 Loading...

	#94 Eval - 96d66a4d9708fdb6dd5597f3bbc7d624	195 B	2023-03-08	2024-05-10
Pretty Observations First Seen2023-03-08 14:47:45 Last Seen2024-05-10 09:35:14 Times Seen39980 Hash 96d66a4d9708fdb6dd5597f3bbc7d624 e10a66fa8a836f6f948941262b70e1fc928a446e 3cabac574ada654802fc1c4518d870f0791a9a3ac31371677e75fb683e47ce89 Loading...

	#95 Eval - fbade9e36a3f36d3d676c1b808451dd7	1 B	2023-03-07	2024-05-07
Pretty Observations First Seen2023-03-07 01:02:06 Last Seen2024-05-07 17:00:24 Times Seen4984 Hash fbade9e36a3f36d3d676c1b808451dd7 395df8f7c51f007019cb30201c49e884b46b92fa 594e519ae499312b29433b7dd8a97ff068defcba9755b6d5d00e84c524d67b06 Loading...

	#96 Eval - 6e14eea3051017d6c69a1a95b21dbc3b	128 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 6e14eea3051017d6c69a1a95b21dbc3b 61f7398bed9f3ba0e9d826e3228bf19a4dc36012 fc612fdd55a9f400af04ec1e20543ec8bf473fec8377f312617d24c6d15d34f5 Loading...

	#97 Eval - 799f77c8fe29708a03fbb82bc46e9fb2	70 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 799f77c8fe29708a03fbb82bc46e9fb2 f91dffc0c2fcf4518a69a0298fcb6c561a692abe 142ecaaf6afd7a97593e93833a1c30d0a7b19a9b4e4691814f3563ef1baf10cd Loading...

	#98 Eval - f0e976b756b6afe7f40bca206a2d7150	29 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-10 09:35:14 Times Seen34639 Hash f0e976b756b6afe7f40bca206a2d7150 db9bee9a7bba93a60330ec5ef1334d9c164fcd56 029b84af88c5d6ced58173997a15fa47011e198e5449027d87e2f7b871f332c2 Loading...

	#99 Eval - 0aa352290ad3482dd75fce488f94e499	206 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 0aa352290ad3482dd75fce488f94e499 1a8f8dd3eb6756922c28c6f72fb7229e5e2d2462 9500ef97d92ceafe24575a98d42bbba69de4159df3bb1984739543fdb26e2a2a Loading...

	#100 Eval - e61703286c68776e8679d7adcaafe24c	418 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash e61703286c68776e8679d7adcaafe24c ca11d5482f5dc600e7350ddc7d3662c73e9a45d0 5aa2f637b4fdd777cac5efa8e30a483518dd5b5743c039654588ed896fb525f2 Loading...

	#101 Eval - 37a6259cc0c1dae299a7866489dff0bd	4 B	2023-03-07	2024-05-10
Pretty Observations First Seen2023-03-07 01:02:14 Last Seen2024-05-10 09:35:14 Times Seen51086 Hash 37a6259cc0c1dae299a7866489dff0bd 2be88ca4242c76e8253ac62474851065032d6833 74234e98afe7498fb5daf1f36ac2d78acc339464f950703b8c019892f982b90b Loading...

	#102 Eval - 64e0acf81bd03d01fd812d8ed2245886	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 64e0acf81bd03d01fd812d8ed2245886 a9fec05364593336bb46beb9e71f2d84e8078403 c06e71300e34c02ff9d61928a8f8e9198aa5bd71e56eae899012b16958462c22 Loading...

	#103 Eval - 993560a792e622201090d67041f7882e	2 B	2023-03-12	2023-03-14
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-14 19:38:05 Times Seen1 Hash 993560a792e622201090d67041f7882e d0ec26506c8c189d520f477fd1d867bdd9dfb9f2 97bb6198b18008ed8707408b39620e87ef2e76cb1e2b7787db8f54bc1bee82e7 Loading...

	#104 Eval - 3dc561ba868904c379692559f79afd8d	895 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 3dc561ba868904c379692559f79afd8d 0b21a2946ba832c6aec3361e97df96d4510672f8 3981f98ba5eb4f9ca3bb2139b1e867d32bb9fd549d0e350074ee54e54304679c Loading...

	#105 Eval - d5a6ec465ca309084f08b437f18dd752	75 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash d5a6ec465ca309084f08b437f18dd752 538f59f280bba53a71481d93f23d70ef323ffd60 96c2cb211fe083c9d7c833dc981008743c62fc60a517d57663cc8ba6e133e915 Loading...

	#106 Eval - 84deb7dd5f0bf8532b55e082aa12ec75	80 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 84deb7dd5f0bf8532b55e082aa12ec75 0f0f2afb8bf945d4a96a39fe3636b5c928299315 1a34e6837e1d2347f75bd70204df30291f3182f94e51177737db97803b40fdb4 Loading...

	#107 Eval - bffdfb8964b5ad1bd7f168eb4c05e0e2	72 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash bffdfb8964b5ad1bd7f168eb4c05e0e2 7c40f1f56be4cadc836e2dc61a84a985de4ee9e9 8af087a854d1d51e32d5a8108b69fd7f2543f9bcf2d76e2e3fbff17653a3d823 Loading...

	#108 Eval - 9e8e5563aa83ab9ce0083beafd36b880	56 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 9e8e5563aa83ab9ce0083beafd36b880 e8cab1557e49ffc3a4d82558c0583fbba79265d8 3603db0d07a81217cdcb8f8c6fb9d1035fff3efceec2e7c21568f753bf97c546 Loading...

	#109 Eval - 40d22fae5ddfd9df2cb1d987842bb0df	116 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 40d22fae5ddfd9df2cb1d987842bb0df db4a7499905665cf9f3de9be0bdd0e22b112ef66 56c7b7250ab01d27595c81b0872735ddcb463d487f3f5ff59c86d70da64e52e2 Loading...

	#110 Eval - 9300c96aaec324987ea5ca6e13a02eda	2 B	2023-03-12	2024-05-07
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2024-05-07 08:43:40 Times Seen331 Hash 9300c96aaec324987ea5ca6e13a02eda d6426af04235d59336c5b6b08f61240cbb6b0f66 997164d13810adf6cab52541447d083c4472e5ca6052cc6ddd9501318ac5730c Loading...

	#111 Eval - 8dc5c9dc8de39c27bdea3745b930fe80	633 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 8dc5c9dc8de39c27bdea3745b930fe80 f76945738f6edd66e0f6b72172ca445acff132a5 1f5ec0d1e574090543ca56ff989a8035a1968e213fc01b6a388fb9633b80d62a Loading...

	#112 Eval - 4a3480ed7711bd47a166ecf696f0bc6f	130 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 4a3480ed7711bd47a166ecf696f0bc6f 92f50c5c71104fdfb8dd96b0dd3ba8a6e90253fb 532d9bf33e2d2860329cfe35ab5e40eb3512ebe04897c90bb88e657ba0c0f592 Loading...

	#113 Eval - dd1c54e39898f642c05996500bf643d8	22 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash dd1c54e39898f642c05996500bf643d8 dc2a08852cecf80f723ad0b36d27264270c1d98e 88eb6920d7b16d06d2dbe5cbafab79aa079a6180a8eefe674bfb82f19cddfdd7 Loading...

	#114 Eval - 804682ec2d5323400e6229f256ca4226	264 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:03 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 804682ec2d5323400e6229f256ca4226 8a5cc111edc1ce77d945ecef32003527418578dc 8dbea1a987481f265fd9105170897e90291ae6b0b113d2ed2f0c1540a9523c8b Loading...

	#115 Eval - 8c2435a9d0aeb931f1dc390d87f36fef	118 B	2023-03-12	2023-03-13
Pretty Observations First Seen2023-03-12 19:03:02 Last Seen2023-03-13 19:33:57 Times Seen1 Hash 8c2435a9d0aeb931f1dc390d87f36fef a992381fcc94ef8aa9b5f457fa196f987a1aea7f 1d52dec30e5f8fce6056ef53f7ceb3ad1069b864115c404ab2d4b20c49271924 Loading...

HTTP Transactions (123)

URL IP Response Size

jeevottamahealth.com/dynamic_img/blog/case.zip

185.28.21.218

301 Moved Permanently

707 B

URL HTTP/1.1
jeevottamahealth.com/dynamic_img/blog/case.zip
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
707 B (707 bytes)
Hash
1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dynamic_img/blog/case.zip HTTP/1.1
Host: jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sun, 29 Jan 2023 11:35:32 GMT
server: LiteSpeed
location: https://jeevottamahealth.com/dynamic_img/blog/case.zip
platform: hostinger
content-security-policy: upgrade-insecure-requests

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3eb88dea4fe00db1182370e72683c3ab
ca520abf1e91bfd2aef40c6a1270a911071e8922
d8083ee567c7b3023111dc30f32c94237df7db30d4d2daaea0a569e8a3069ad7

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D8083EE567C7B3023111DC30F32C94237DF7DB30D4D2DAAEA0A569E8A3069AD7"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12882
Expires: Sun, 29 Jan 2023 15:10:14 GMT
Date: Sun, 29 Jan 2023 11:35:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12894
Expires: Sun, 29 Jan 2023 15:10:26 GMT
Date: Sun, 29 Jan 2023 11:35:32 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
03092d1a1bc7ac91ee342a1a7ab2a562
52db06ce1fd2c74ddd36b6a0a7aee1b5c891600a
03b8ff2629abac9fc30ebec059c2e2018fcbc41646ad5f71c965ff630fbf1ffd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "03B8FF2629ABAC9FC30EBEC059C2E2018FCBC41646AD5F71C965FF630FBF1FFD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14415
Expires: Sun, 29 Jan 2023 15:35:47 GMT
Date: Sun, 29 Jan 2023 11:35:32 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 10:43:08 GMT
content-type: application/json
age: 3144
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 3SlVnfyjNXffkNcmfbhU1DfmkWgQ12jdndEXen/n0JempgzraesiAUd4sd/6zBGzYbAZ/+nRBHA=
x-amz-request-id: BBNZSNBCMFC0EWT5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 11:21:22 GMT
age: 850
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 11:35:32 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

jeevottamahealth.com/dynamic_img/blog/case.zip

185.28.21.218

200 OK

11 kB

URL HTTP/2
jeevottamahealth.com/dynamic_img/blog/case.zip
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (537), with CRLF, LF line terminators
Size
11 kB (10687 bytes)
Hash
7aecea72876be19b8b8554891c4a322a
3edb392f700186d3fd69905271cf50934558c9e3
79785395a133a888bd11a72bb6a266081cefed50e256bf0ace769abd326fc542

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dynamic_img/blog/case.zip HTTP/1.1
Host: jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
x-powered-by: PHP/5.6.40
set-cookie: PHPSESSID=62akqp0gm88m6ujuoqver8ab70; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 10687
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 11:35:32 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
9cea98a843749ab6ffcc1e4d554d70ee
4d4d4c548678ce5dc407a73f393a2abf1aae4cfb
478e8249f84da1fe4fc36c7f752dde2d61de74e5271e4be36c51a8e5ad1c2730

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6405
Cache-Control: max-age=147618
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:33 GMT
Etag: "63d5dea2-118"
Expires: Tue, 31 Jan 2023 04:35:51 GMT
Last-Modified: Sun, 29 Jan 2023 02:49:06 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 10:49:04 GMT
age: 2789
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=UA-186979376-1

142.250.74.40

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-186979376-1
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
44 kB (44100 bytes)
Hash
bf999adfa0bf2cde14a19ab9ac1194a5
6cb0b865c26f725484db124f8a88f05315e0f104
391417b404935a4ae19c6a6cbd3a7e8af06e2d0f32f8ab3c9e0164fa8f448581

HTTP Headers

GET /gtag/js?id=UA-186979376-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 11:35:33 GMT
expires: Sun, 29 Jan 2023 11:35:33 GMT
cache-control: private, max-age=900
last-modified: Sun, 29 Jan 2023 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

maps.googleapis.com/maps/api/js?key=AIzaSyAqoWGSQYygV-G1P5tVrj-dM2rVHR5wOGY

216.58.207.234

200 OK

53 kB

URL HTTP/2
maps.googleapis.com/maps/api/js?key=AIzaSyAqoWGSQYygV-G1P5tVrj-dM2rVHR5wOGY
IP
216.58.207.234:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2453)
Size
53 kB (52799 bytes)
Hash
83b562c7ef16c33128825b9f42a53cc6
8934372f1a5e27a9e8def831e8cd877823d63ffa
d4d5e37baf349978d5ac7c8e12419851f35e6437bf5688f36b5f3a4d1cfa88c5

HTTP Headers

GET /maps/api/js?key=AIzaSyAqoWGSQYygV-G1P5tVrj-dM2rVHR5wOGY HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Sun, 29 Jan 2023 11:35:33 GMT
expires: Sun, 29 Jan 2023 12:05:33 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 52799
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=39
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

jeevottamahealth.com/dynamic_img/blog/assets/img/feature-icon/1.png

185.28.21.218

200 OK

11 kB

URL HTTP/2
jeevottamahealth.com/dynamic_img/blog/assets/img/feature-icon/1.png
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (537), with CRLF, LF line terminators
Size
11 kB (10687 bytes)
Hash
7aecea72876be19b8b8554891c4a322a
3edb392f700186d3fd69905271cf50934558c9e3
79785395a133a888bd11a72bb6a266081cefed50e256bf0ace769abd326fc542

HTTP Headers

GET /dynamic_img/blog/assets/img/feature-icon/1.png HTTP/1.1
Host: jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/dynamic_img/blog/case.zip
Cookie: PHPSESSID=62akqp0gm88m6ujuoqver8ab70
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 10687
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
9cea98a843749ab6ffcc1e4d554d70ee
4d4d4c548678ce5dc407a73f393a2abf1aae4cfb
478e8249f84da1fe4fc36c7f752dde2d61de74e5271e4be36c51a8e5ad1c2730

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6405
Cache-Control: max-age=147618
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:33 GMT
Etag: "63d5dea2-118"
Expires: Tue, 31 Jan 2023 04:35:51 GMT
Last-Modified: Sun, 29 Jan 2023 02:49:06 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280

www.jeevottamahealth.com/assets/css/custom.css

185.28.21.218

200 OK

3.1 kB

URL HTTP/2
www.jeevottamahealth.com/assets/css/custom.css
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text, with very long lines (416), with CRLF line terminators
Size
3.1 kB (3095 bytes)
Hash
26f8477792dea3a2ca845a46796d6fc5
a584ff17f5f59baa369952e477d34ac7861546be
37956fc313435c709175525d8cf422aed605f66dede47f6d8268c3006425ea05

HTTP Headers

GET /assets/css/custom.css HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: text/css
last-modified: Mon, 19 Jul 2021 13:11:20 GMT
etag: "3d99-60f579f8-29d85539daad3bf0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 3095
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/css/slid.css

185.28.21.218

200 OK

154 B

URL HTTP/2
www.jeevottamahealth.com/assets/css/slid.css
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text, with CRLF line terminators
Size
154 B (154 bytes)
Hash
ae9d99dffa05c3363194071de3421531
cdf5867603b1cb95a6b475667ef0ceea0eb5059b
0bdeb72f3fc8f812877d8fd6de33097ad2da9de7f4cbcf2c29b65f858d41551a

HTTP Headers

GET /assets/css/slid.css HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: text/css
last-modified: Mon, 19 Jul 2021 13:11:20 GMT
etag: "13a-60f579f8-d4d64da0fa890ea;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 154
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/css/style.css

185.28.21.218

200 OK

10 kB

URL HTTP/2
www.jeevottamahealth.com/assets/css/style.css
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
assembler source, ASCII text, with CRLF line terminators
Size
10 kB (10013 bytes)
Hash
7d321dc34dd621fe5611461db660cc68
0a31911860a85f60e6f7065a87dbb0d571de4ee1
f5bb4ff40fb3135f5c362a44c4756d484125e4ccde933eb907a249360b3dcdeb

HTTP Headers

GET /assets/css/style.css HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: text/css
last-modified: Mon, 19 Jul 2021 13:11:20 GMT
etag: "12b9a-60f579f8-4b022feded100b86;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10013
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e336f1fa763a16945dde47cceb0f738a
607443b65106c5520972ef92d2a71f2f4609cea9
d242a4df759a5c48d09945c3f6634a1705db159aeb09cdb207150e23282c6bbd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D242A4DF759A5C48D09945C3F6634A1705DB159AEB09CDB207150E23282C6BBD"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8521
Expires: Sun, 29 Jan 2023 13:57:34 GMT
Date: Sun, 29 Jan 2023 11:35:33 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

jeevottamahealth.com/dynamic_img/blog/assets/img/feature-icon/3.png

185.28.21.218

200 OK

11 kB

URL HTTP/2
jeevottamahealth.com/dynamic_img/blog/assets/img/feature-icon/3.png
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (537), with CRLF, LF line terminators
Size
11 kB (10687 bytes)
Hash
7aecea72876be19b8b8554891c4a322a
3edb392f700186d3fd69905271cf50934558c9e3
79785395a133a888bd11a72bb6a266081cefed50e256bf0ace769abd326fc542

HTTP Headers

GET /dynamic_img/blog/assets/img/feature-icon/3.png HTTP/1.1
Host: jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/dynamic_img/blog/case.zip
Cookie: PHPSESSID=62akqp0gm88m6ujuoqver8ab70
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 10687
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/dynamic_img/prevention/

185.28.21.218

403 Forbidden

699 B

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/prevention/
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
699 B (699 bytes)
Hash
39d9528a539f73768073a9d8e4587324
f46f256935e8d61208b6f67d4d76c0987f9025cd
0c9bbfe175c1dc57fff572a1395af56b7942836d4c0c0708889ce35993d76c05

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dynamic_img/prevention/ HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 403 Forbidden
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 699
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/dynamic_img/cure/

185.28.21.218

403 Forbidden

699 B

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/cure/
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size
699 B (699 bytes)
Hash
39d9528a539f73768073a9d8e4587324
f46f256935e8d61208b6f67d4d76c0987f9025cd
0c9bbfe175c1dc57fff572a1395af56b7942836d4c0c0708889ce35993d76c05

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /dynamic_img/cure/ HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 403 Forbidden
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 699
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/css/responsive.css

185.28.21.218

200 OK

2.0 kB

URL HTTP/2
www.jeevottamahealth.com/assets/css/responsive.css
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text, with CRLF line terminators
Size
2.0 kB (2026 bytes)
Hash
153278c052d4e168f0ad2572f7b24088
f3601ae914902ec0d5461b342fdb1bf067591d08
142bd3b6e42b010bb5301c0b2680c3d01d6ce1a89bf4c2191dc9b1d0d09d86dc

HTTP Headers

GET /assets/css/responsive.css HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: text/css
last-modified: Mon, 19 Jul 2021 13:11:20 GMT
etag: "354b-60f579f8-422df9b0327851a;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2026
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/js/popper.min.js

185.28.21.218

200 OK

6.6 kB

URL HTTP/2
www.jeevottamahealth.com/assets/js/popper.min.js
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text, with very long lines (18860), with CRLF line terminators
Size
6.6 kB (6556 bytes)
Hash
40e2b12c7b2388a095934c884fa9dc09
f29fd87a49e9fe074e97a26ff1a233ce0fa01f4c
4965188db2791ca368b816a7112c7c6accc59cce40fb4c46641b5e1d6601ccaf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/popper.min.js HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: application/x-javascript
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "4a5c-60f579fa-d8369556f5b67cfd;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 6556
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

cdn.rawgit.com/vinayakjadhav/jR3DCarousel/HEAD/dist/jR3DCarousel.min.js

194.242.11.186

301 Moved Permanently

118 B

URL HTTP/2
cdn.rawgit.com/vinayakjadhav/jR3DCarousel/HEAD/dist/jR3DCarousel.min.js
IP
194.242.11.186:0
ASN
#34989 ServeTheWorld AS

File type
ASCII text, with no line terminators
Size
118 B (118 bytes)
Hash
610b0a619aa3b2c56047f0c902a1156d
a1f72b122f24d7e23661dcc1b6cbd78911fab89f
0e4bd5930eccad5a019c5d20618a8022235448648c7049680b02601f98a69551

HTTP Headers

GET /vinayakjadhav/jR3DCarousel/HEAD/dist/jR3DCarousel.min.js HTTP/1.1
Host: cdn.rawgit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Sun, 29 Jan 2023 11:35:33 GMT
content-type: text/plain; charset=utf-8
content-length: 118
location: https://cdn.jsdelivr.net/gh/vinayakjadhav/jR3DCarousel@HEAD/dist/jR3DCarousel.min.js
server: BunnyCDN-NO1-830
cdn-pullzone: 201235
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-expose-headers: *
age: 53026
alt-svc: h3=":443", h3-29=":443", h3-27=":443"
cache-control: public, max-age=2592000
cdn-cachedat: 01/29/2023 11:35:33
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-served-by: cache-fra-eddf8230102-FRA, cache-chi-kigq8000126-CHI
x-cache: MISS, HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 301
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 301
cdn-requestid: d6b22bc73f92dc855c93820edbbd0633
cdn-cache: MISS
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/js/bootstrap.min.js

185.28.21.218

200 OK

12 kB

URL HTTP/2
www.jeevottamahealth.com/assets/js/bootstrap.min.js
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text, with very long lines (50277)
Size
12 kB (12382 bytes)
Hash
e61a234aab974ab5541c82fa1e7d7b53
00c328786df67f86291ce589a6b5cc93428e2b8c
4cd6f5890cca372839cd3fdc6a79c1de51d15ebe161a1818b576a5d1e91bd69d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/bootstrap.min.js HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: application/x-javascript
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "c584-60f579fa-fb9034b1a6e1d022;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 12382
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/js/jquery.sticky.js

185.28.21.218

200 OK

2.0 kB

URL HTTP/2
www.jeevottamahealth.com/assets/js/jquery.sticky.js
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text
Size
2.0 kB (1956 bytes)
Hash
0c037fce4322253c944956fa445dfe17
4f3908f27da4a5aae9c3c1f7c84203eb6e598a0b
c2b44b8ad6589d4c664a943dc0966d77eba0dcf274a62ecd1e72ac3e1316fe4c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/jquery.sticky.js HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: application/x-javascript
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "1da8-60f579fa-422c25b343b8b3d0;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1956
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/js/owl.carousel.min.js

185.28.21.218

200 OK

10 kB

URL HTTP/2
www.jeevottamahealth.com/assets/js/owl.carousel.min.js
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text, with very long lines (32000)
Size
10 kB (10506 bytes)
Hash
ad0b8159ca66884f5f1f9f2ea999d98d
099bf370109e8b130f58ad01001b5629b2b706c2
882bc1c1545be4c806298d5f294931c9130afe49c2b6a3b852b1f4ca734489b9

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/owl.carousel.min.js HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: application/x-javascript
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "a70e-60f579fa-a800cca5ef00d5da;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 10506
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/js/jquery-3.2.1.min.js

185.28.21.218

200 OK

33 kB

URL HTTP/2
www.jeevottamahealth.com/assets/js/jquery-3.2.1.min.js
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text, with very long lines (32077)
Size
33 kB (32574 bytes)
Hash
0f6a2b4a8c3ef7a157b61d8927124c81
f051d4f1d1bb69467fdc65a296812a01b67ae22d
c47d6178fd4ea6721ca52555e34b672459b8af9df85f4dc647afa972cc25eca8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/jquery-3.2.1.min.js HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: application/x-javascript
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "17b8a-60f579fa-64acb8e778872ca3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 32574
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

jeevottamahealth.com/dynamic_img/blog/assets/img/feature-icon/2.png

185.28.21.218

200 OK

19 kB

URL HTTP/2
jeevottamahealth.com/dynamic_img/blog/assets/img/feature-icon/2.png
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
data
Size
19 kB (18659 bytes)
Hash
844783c6c6c64d9744b835f312bed692
bc70fd3b91f7f677af92dd9a39273f609c2af998
7f0cd1c28978848df77918ae4ef1bfca5e94e294d1d67c49349748f44bfb3036

HTTP Headers

GET /dynamic_img/blog/assets/img/feature-icon/2.png HTTP/1.1
Host: jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/dynamic_img/blog/case.zip
Cookie: PHPSESSID=62akqp0gm88m6ujuoqver8ab70
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 10687
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
b788ebf7dc724cd71953ba0393e222b6
86d34caaec688c4cfd9e77e7920fe0e8d82c31de
86d19f0bee3a0a799d8a7c869367457e640789a0c60a6b492a74cbe4dfa55520

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=106664
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:33 GMT
Etag: "63d557ad-116"
Expires: Mon, 30 Jan 2023 17:13:17 GMT
Last-Modified: Sat, 28 Jan 2023 17:13:17 GMT
Server: nginx
Content-Length: 278

www.jeevottamahealth.com/assets/js/jquery.shuffle.min.js

185.28.21.218

200 OK

7.3 kB

URL HTTP/2
www.jeevottamahealth.com/assets/js/jquery.shuffle.min.js
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
HTML document, ASCII text, with very long lines (14278)
Size
7.3 kB (7325 bytes)
Hash
f9a8c7b5ef33c319596380b623058d27
8bb51b80113e47acab54528a8fc94d40cb4c144c
67325c8a4e18b9d22c884a9cd6ec2706535eab9f295836547fd1ac97ac2bb962

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/jquery.shuffle.min.js HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: application/x-javascript
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "63bc-60f579fa-4b3d1e85ed768dc9;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7325
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/js/jquery.counterup.min.js

185.28.21.218

200 OK

2.9 kB

URL HTTP/2
www.jeevottamahealth.com/assets/js/jquery.counterup.min.js
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text, with very long lines (7808), with CRLF line terminators
Size
2.9 kB (2949 bytes)
Hash
5ec693297e316c625826e70ace4ccb98
c5c3774633df4dfacaf955bb21b74d15497191ab
bde98c6b13224d6d84c7637a587897c746aedab8acc5c0fda7e56a20a7229f43

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/jquery.counterup.min.js HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: application/x-javascript
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "2402-60f579fa-edf7e3e5b34773c6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2949
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/js/wow.min.js

185.28.21.218

200 OK

2.6 kB

URL HTTP/2
www.jeevottamahealth.com/assets/js/wow.min.js
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text, with very long lines (8099)
Size
2.6 kB (2636 bytes)
Hash
5b626ccf4764150b5f96469d914edcea
e017e2a17d0db5c7e24e3a1b953946f719b1d5d6
0a2e03423ff90ca2cb7971c4b127565417b89baffb17678b21d3dd4e8334786b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/wow.min.js HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: application/x-javascript
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "1ff6-60f579fa-4185874f5c5a9117;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2636
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/js/jquery.meanmenu.min.js

185.28.21.218

200 OK

1.3 kB

URL HTTP/2
www.jeevottamahealth.com/assets/js/jquery.meanmenu.min.js
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
HTML document, ASCII text, with very long lines (4019), with no line terminators
Size
1.3 kB (1301 bytes)
Hash
862e78f940c167681c59321a0befb509
8659fbc45e6fb1011587802867511c0375a0c1b6
a662fadfea9297892842c8b6fdf05aa3348cf4c325d266dac5d05bd1a7b6bbf7

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/jquery.meanmenu.min.js HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: application/x-javascript
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "fb3-60f579fa-159f70770c878611;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1301
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/js/jquery.magnific-popup.min.js

185.28.21.218

200 OK

7.1 kB

URL HTTP/2
www.jeevottamahealth.com/assets/js/jquery.magnific-popup.min.js
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text, with very long lines (20087)
Size
7.1 kB (7078 bytes)
Hash
4f4934f43dd8c70fdfb2c05e612a851f
f5c241777dd3112a759feed4cc15e0f8ea3d89f9
0162ac9adfbc84dff21d0e0df39bd292ef7562af1b41616fd30950aa40799f8a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/jquery.magnific-popup.min.js HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: application/x-javascript
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "4f4a-60f579fa-e2d19927f3c9868b;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 7078
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/js/custom.js

185.28.21.218

200 OK

1.5 kB

URL HTTP/2
www.jeevottamahealth.com/assets/js/custom.js
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text, with CRLF line terminators
Size
1.5 kB (1492 bytes)
Hash
dd3f69fc5a3c3d084306ab9f5183e717
c1fca3b2e129fcc0918301e96c8f154263685aee
30af4042a90eb3caf578d5d46af57d221696f5dc0c0c4a8e79183def38907126

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/custom.js HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: application/x-javascript
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "1ef5-60f579fa-ff84353373d210e6;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1492
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/js/slid.js

185.28.21.218

200 OK

536 B

URL HTTP/2
www.jeevottamahealth.com/assets/js/slid.js
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text, with CRLF line terminators
Size
536 B (536 bytes)
Hash
04423c18e43e66a7dccb97824a081c4c
42eb6caf815dae35dd623035d1c0f8697993ecb5
684e8d7c3bd5af83ff37309ef6ce555e726141b1bf0016f2ffac3bd78ed98edc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/slid.js HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: application/x-javascript
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "4d5-60f579fa-43c5f8cc7322b669;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 536
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/js/map-script.js

185.28.21.218

200 OK

797 B

URL HTTP/2
www.jeevottamahealth.com/assets/js/map-script.js
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text, with very long lines (825), with CRLF line terminators
Size
797 B (797 bytes)
Hash
61cdf5923a27acdcec85c3b0b5fcd493
5cb8f143c742a70ed9ed3131cd909fa5698bc261
21f797b06bc00135f69ed631cc1453eb6d3bc156a03b270a5dba0a6e2837a870

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/map-script.js HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: application/x-javascript
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "984-60f579fa-e50dfb80549baaa3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 797
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/js/form-wizard.js

185.28.21.218

200 OK

255 B

URL HTTP/2
www.jeevottamahealth.com/assets/js/form-wizard.js
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
ASCII text
Size
255 B (255 bytes)
Hash
b003ae16d814d0fec0b48d2cc776f348
7c74f13198a160437708ea996a74a41efe9a7807
bd1caafbde0069ae60b758c01a99643277a5bc4bafaf8b83cac34f2ad604efdc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/form-wizard.js HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: application/x-javascript
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "647-60f579fa-501887a614f7a4b3;br"
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 255
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

push.services.mozilla.com/

35.164.243.166

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.164.243.166:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3tgcO5BgJlXyot6rR7pUNw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hRLmecIlJvDZ+PW61zSp/gtQF4Q=

www.jeevottamahealth.com/dynamic_img/cure/251921efe6ff5efe6ec4204640d93d89153664597730228.jpg

185.28.21.218

200 OK

16 kB

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/cure/251921efe6ff5efe6ec4204640d93d89153664597730228.jpg
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, progressive, precision 8, 380x280, components 3\012- data
Size
16 kB (15792 bytes)
Hash
cf1069b14e3de3c90940516437f161aa
b8ab5217a11cdc661e8d1e417c29cb32f2394d35
7d8e7ee09dba9cf9819445e09b9a985f4a7dc89ab715160fd2d07477c099ad09

HTTP Headers

GET /dynamic_img/cure/251921efe6ff5efe6ec4204640d93d89153664597730228.jpg HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/jpeg
last-modified: Mon, 19 Jul 2021 13:11:23 GMT
etag: "3db0-60f579fb-e9eaad2760cfcd9b;;;"
accept-ranges: bytes
content-length: 15792
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/dynamic_img/cure/b4f98f58abe8d137b45638e8149e345415366511794819.jpg

185.28.21.218

200 OK

14 kB

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/cure/b4f98f58abe8d137b45638e8149e345415366511794819.jpg
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 241x300, components 3\012- data
Size
14 kB (14166 bytes)
Hash
627ba65855e89831998410ab15b5d60e
3fd40d0f5587bbbbe9b412f98524f52c6a44c911
46b8deb2d815e8901d1d664bd5ffef46ec20442490cc04cc8bbaaf07951184c1

HTTP Headers

GET /dynamic_img/cure/b4f98f58abe8d137b45638e8149e345415366511794819.jpg HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/jpeg
last-modified: Mon, 19 Jul 2021 13:11:23 GMT
etag: "3756-60f579fb-8a02a3a74c5916b4;;;"
accept-ranges: bytes
content-length: 14166
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/img/section-icon1.png

185.28.21.218

200 OK

15 kB

URL HTTP/2
www.jeevottamahealth.com/assets/img/section-icon1.png
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced\012- data
Size
15 kB (15410 bytes)
Hash
594f3265cf86ec3a720f35b5cd843512
106f7f0285e0bdd931cddb658a721a99321610aa
bddb853d9bd0263a051bbb675835fb91bd1e5e964267acde0c19a8af590a967e

HTTP Headers

GET /assets/img/section-icon1.png HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/png
last-modified: Mon, 19 Jul 2021 13:11:22 GMT
etag: "3c32-60f579fa-53a56059cd33d35b;;;"
accept-ranges: bytes
content-length: 15410
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/img/payment-icon/mastercard.png

185.28.21.218

200 OK

4.2 kB

URL HTTP/2
www.jeevottamahealth.com/assets/img/payment-icon/mastercard.png
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
PNG image data, 73 x 44, 8-bit/color RGBA, non-interlaced\012- data
Size
4.2 kB (4154 bytes)
Hash
6f6cdc29ee2e22e06b1ac029cb52ef71
9b4ae27fb3289e940a44eae134a06f1da5732148
93da9e6de248ab67047f4d1af7c25a8dc683bc63503b02a00aa238ba31fa8508

HTTP Headers

GET /assets/img/payment-icon/mastercard.png HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/png
last-modified: Mon, 19 Jul 2021 13:11:21 GMT
etag: "103a-60f579f9-5ef8d90a0ff658b;;;"
accept-ranges: bytes
content-length: 4154
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

jeevottamahealth.com/dynamic_img/blog/assets/img/feature-icon/4.png

185.28.21.218

200 OK

11 kB

URL HTTP/2
jeevottamahealth.com/dynamic_img/blog/assets/img/feature-icon/4.png
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (537), with CRLF, LF line terminators
Size
11 kB (10687 bytes)
Hash
7aecea72876be19b8b8554891c4a322a
3edb392f700186d3fd69905271cf50934558c9e3
79785395a133a888bd11a72bb6a266081cefed50e256bf0ace769abd326fc542

HTTP Headers

GET /dynamic_img/blog/assets/img/feature-icon/4.png HTTP/1.1
Host: jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/dynamic_img/blog/case.zip
Cookie: PHPSESSID=62akqp0gm88m6ujuoqver8ab70
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 10687
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

jeevottamahealth.com/dynamic_img/blog/assets/img/counter/counter-icon02.png

185.28.21.218

200 OK

11 kB

URL HTTP/2
jeevottamahealth.com/dynamic_img/blog/assets/img/counter/counter-icon02.png
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (537), with CRLF, LF line terminators
Size
11 kB (10687 bytes)
Hash
7aecea72876be19b8b8554891c4a322a
3edb392f700186d3fd69905271cf50934558c9e3
79785395a133a888bd11a72bb6a266081cefed50e256bf0ace769abd326fc542

HTTP Headers

GET /dynamic_img/blog/assets/img/counter/counter-icon02.png HTTP/1.1
Host: jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/dynamic_img/blog/case.zip
Cookie: PHPSESSID=62akqp0gm88m6ujuoqver8ab70
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=UTF-8
content-length: 10687
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

cdn.jsdelivr.net/gh/vinayakjadhav/jR3DCarousel@HEAD/dist/jR3DCarousel.min.js

151.101.193.229

200 OK

2.4 kB

URL HTTP/2
cdn.jsdelivr.net/gh/vinayakjadhav/jR3DCarousel@HEAD/dist/jR3DCarousel.min.js
IP
151.101.193.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (527)
Size
2.4 kB (2440 bytes)
Hash
0ed5b7516e0a86f4ca951644e469f5c3
040695320e894afc71318298583ad94c05dadfa4
8ea970f8a823a75480f6155f47ccc3897778f2fe91f4113a9419a6b3bb684e8e

HTTP Headers

GET /gh/vinayakjadhav/jR3DCarousel@HEAD/dist/jR3DCarousel.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jeevottamahealth.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: HEAD
x-jsd-version-type: branch
etag: W/"1d82-fCbLmGPwmgk8qhDKfGHu74uDw7Q"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 29 Jan 2023 11:35:33 GMT
age: 10192
x-served-by: cache-fra-eddf8230109-FRA, cache-bma1628-BMA
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 2440
X-Firefox-Spdy: h2

www.jeevottamahealth.com/dynamic_img/prevention/587c5b83f70ff651700e3b75953fb9d7153664961519604.jpg

185.28.21.218

200 OK

37 kB

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/prevention/587c5b83f70ff651700e3b75953fb9d7153664961519604.jpg
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 500x350, components 3\012- data
Size
37 kB (37215 bytes)
Hash
fc02071c7bcfbe1b2fccc4c23add5d51
666bdebcea5f48747fd804ec591bb255104555c8
6ca8155c07f1bfd64c7c792cd7b737ea284231fd6096740b6cf99c72799791e0

HTTP Headers

GET /dynamic_img/prevention/587c5b83f70ff651700e3b75953fb9d7153664961519604.jpg HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/jpeg
last-modified: Mon, 19 Jul 2021 13:11:23 GMT
etag: "915f-60f579fb-ea9b06a5e147b6d1;;;"
accept-ranges: bytes
content-length: 37215
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.jeevottamahealth.com/dynamic_img/prevention/b53ba37fd76d73cc4e4d31b348f6412315366494153250.jpg

185.28.21.218

200 OK

31 kB

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/prevention/b53ba37fd76d73cc4e4d31b348f6412315366494153250.jpg
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 480x360, components 3\012- data
Size
31 kB (30897 bytes)
Hash
b784586c836a9d5b5089da6dc2d5442b
fe82861809e73c91a5846c40bedac0ef7bad2bc0
50bf65f3825cff7b9fe2e6c7466875a48753ffea40aabb90d19a8526f0e06e4b

HTTP Headers

GET /dynamic_img/prevention/b53ba37fd76d73cc4e4d31b348f6412315366494153250.jpg HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/jpeg
last-modified: Mon, 19 Jul 2021 13:11:23 GMT
etag: "78b1-60f579fb-1bf8756287d8c891;;;"
accept-ranges: bytes
content-length: 30897
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/dynamic_img/cure/2da647def2d91e95cfd1762c7d289971153665101715781.jpg

185.28.21.218

200 OK

36 kB

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/cure/2da647def2d91e95cfd1762c7d289971153665101715781.jpg
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, progressive, precision 8, 500x360, components 3\012- data
Size
36 kB (36299 bytes)
Hash
4cdf5df3d13d9e97cc77986971cdec55
082858229e7e2e1a4be2704c93e9514ba18bed13
052d284ff7db44f3504df0d85cb017ec20b765ed7b5a6b8418c0def31f8501fa

HTTP Headers

GET /dynamic_img/cure/2da647def2d91e95cfd1762c7d289971153665101715781.jpg HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/jpeg
last-modified: Mon, 19 Jul 2021 13:11:23 GMT
etag: "8dcb-60f579fb-7580b1ee0148dff6;;;"
accept-ranges: bytes
content-length: 36299
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/dynamic_img/cure/496b178966fd31a90acf9afe59767e93153665150011830.jpg

185.28.21.218

200 OK

21 kB

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/cure/496b178966fd31a90acf9afe59767e93153665150011830.jpg
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 540x359, components 3\012- data
Size
21 kB (21110 bytes)
Hash
7697b7ff1214293624e38a9a8a2710ad
2648087598ab09897359193e16a9779fe7429000
dafc9da848422c39157cade08741b82286dfe2737445063275a5a464cab34f7d

HTTP Headers

GET /dynamic_img/cure/496b178966fd31a90acf9afe59767e93153665150011830.jpg HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/jpeg
last-modified: Mon, 19 Jul 2021 13:11:23 GMT
etag: "5276-60f579fb-db6445ba66a79664;;;"
accept-ranges: bytes
content-length: 21110
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/dynamic_img/cure/1469ca5c8e336e2b26a135fe303f943c153665159215625.jpg

185.28.21.218

200 OK

39 kB

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/cure/1469ca5c8e336e2b26a135fe303f943c153665159215625.jpg
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1080x578, components 3\012- data
Size
39 kB (39208 bytes)
Hash
ae32f3f5a3fdd11fbd150abaa506c84f
2654f76d63b50cb56de31842ea6e29666447d2b4
a45c54853c73a4abf90b871e4c7ff35faade162512f47ea29bb618c59f2fe35d

HTTP Headers

GET /dynamic_img/cure/1469ca5c8e336e2b26a135fe303f943c153665159215625.jpg HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/jpeg
last-modified: Mon, 19 Jul 2021 13:11:23 GMT
etag: "9928-60f579fb-3c2fa17e5dc45f1;;;"
accept-ranges: bytes
content-length: 39208
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4

104.18.21.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP
104.18.21.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
b0901dff4cbdeda2bf98f33d3b404f99
a033639cf35c1871fb4be47143b6a3ec9a0cc698
3047e626e360ded18f9800ed6ce14d54727312147bdad902140446015f145e94

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 11:35:33 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "765CBC6AD5D4A241AE678487D4369D2AD466B880"
Expires: Sun, 29 Jan 2023 22:00:00 GMT
Last-Modified: Sun, 29 Jan 2023 10:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2903
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7911aa444de31c16-OSL

www.jeevottamahealth.com/dynamic_img/prevention/80a7c19b5265f61ee68013a6a4fa543f153664974029612.jpg

185.28.21.218

200 OK

63 kB

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/prevention/80a7c19b5265f61ee68013a6a4fa543f153664974029612.jpg
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Windows), datetime=2018:08:06 12:15:43], baseline, precision 8, 480x360, components 3\012- data
Size
63 kB (62763 bytes)
Hash
d4a7c4e26e26e2fdfc7b84cb4b0e8684
00df4c74d401f750203dd5693248fa0d11cac79c
45ec9632af28c22ba123857faaf308a7a4dda2436fbd4e38ca8e85f8867780d0

HTTP Headers

GET /dynamic_img/prevention/80a7c19b5265f61ee68013a6a4fa543f153664974029612.jpg HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/jpeg
last-modified: Mon, 19 Jul 2021 13:11:23 GMT
etag: "f52b-60f579fb-5c732082bfd59f73;;;"
accept-ranges: bytes
content-length: 62763
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/dynamic_img/prevention/123b945fb142778d3e53c2ae806c0d4f1536649711110.jpg

185.28.21.218

200 OK

76 kB

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/prevention/123b945fb142778d3e53c2ae806c0d4f1536649711110.jpg
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=334, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=602], baseline, precision 8, 602x334, components 3\012- data
Size
76 kB (76390 bytes)
Hash
a927a5860b17083d66e639db6c7fa1d5
242fd19dec35c051639972d9e0a78f48dd64aa8e
14a3923911f63374ce166d03ca19d6708eb04fdf49098684968b65ad5a005ad2

HTTP Headers

GET /dynamic_img/prevention/123b945fb142778d3e53c2ae806c0d4f1536649711110.jpg HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/jpeg
last-modified: Mon, 19 Jul 2021 13:11:23 GMT
etag: "12a66-60f579fb-959f680c0c9ece98;;;"
accept-ranges: bytes
content-length: 76390
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

jeevottamahealth.com/dynamic_img/blog/assets/img/counter/counter-icon04.png

185.28.21.218

200 OK

11 kB

URL HTTP/2
jeevottamahealth.com/dynamic_img/blog/assets/img/counter/counter-icon04.png
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (537), with CRLF, LF line terminators
Size
11 kB (11159 bytes)
Hash
b9e55f29a8cf61c6eb8e8a56a56cc856
1a09c2269ef60cc91159fc7a7a080ff1331805fb
39aff66025e93a16dab92f2bf730366f162b418dafb29795011825a6167dd19e

HTTP Headers

GET /dynamic_img/blog/assets/img/counter/counter-icon04.png HTTP/1.1
Host: jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/dynamic_img/blog/case.zip
Cookie: PHPSESSID=62akqp0gm88m6ujuoqver8ab70
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0

104.18.10.207

200 OK

77 kB

URL HTTP/2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /font-awesome/4.7.0/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jeevottamahealth.com
Connection: keep-alive
Referer: https://stackpath.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 29 Jan 2023 11:35:33 GMT
content-type: font/woff2
content-length: 77160
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "af7ae505a9eed503f8b8e6982036873e"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 08/17/2022 18:20:14
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 72afca2a7ce3793e918592883e388115
cdn-cache: HIT
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7911aa4479aeb509-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.jeevottamahealth.com/dynamic_img/cure/83113646799a865a8257241177c3cb54153665082911062.jpg

185.28.21.218

200 OK

138 kB

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/cure/83113646799a865a8257241177c3cb54153665082911062.jpg
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=(c) Andreus | Dreamstime.com], baseline, precision 8, 800x600, components 3\012- data
Size
138 kB (137755 bytes)
Hash
87fdb601c98087d70a23654972f30131
86b54a47af934fb208452c4701adb93e2802639c
a92a4faff6aa6ab31ae601779908a14803b8b20e4164f1d2c5ded0f87831a1a9

HTTP Headers

GET /dynamic_img/cure/83113646799a865a8257241177c3cb54153665082911062.jpg HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/jpeg
last-modified: Mon, 19 Jul 2021 13:11:23 GMT
etag: "21a1b-60f579fb-62faaf99851b8101;;;"
accept-ranges: bytes
content-length: 137755
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2

216.58.207.227

200 OK

34 kB

URL HTTP/2
fonts.gstatic.com/s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 34112, version 1.0\012- data
Size
34 kB (34112 bytes)
Hash
c21e7acd53a6d80fa451f1af92d9a492
4096e12b96fa2549e4f169044a49b6ec60214008
6a0d96c353719068401ebbedf7f58e3be1232756327243922b6ab9690a3591bd

HTTP Headers

GET /s/rubik/v23/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jeevottamahealth.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34112
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 00:13:07 GMT
expires: Fri, 26 Jan 2024 00:13:07 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 07 Dec 2022 18:11:50 GMT
content-type: font/woff2
age: 300146
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.jeevottamahealth.com/assets/img/logo.png

185.28.21.218

200 OK

289 kB

URL HTTP/2
www.jeevottamahealth.com/assets/img/logo.png
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
PNG image data, 1628 x 467, 8-bit/color RGBA, non-interlaced\012- data
Size
289 kB (288930 bytes)
Hash
f4b5f572189d5850f1d249cacc322604
2c8813bfadb2ce632d4f326b42116b0a755dd965
838d5e48a0484e5706ed0301dc8a4d01ddfdb14cc13ee26b938ca21e8b2471ae

HTTP Headers

GET /assets/img/logo.png HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/png
last-modified: Mon, 19 Jul 2021 13:11:21 GMT
etag: "468a2-60f579f9-d40975f3dd74afb4;;;"
accept-ranges: bytes
content-length: 288930
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

jeevottamahealth.com/dynamic_img/blog/assets/img/counter/counter-icon03.png

185.28.21.218

200 OK

11 kB

URL HTTP/2
jeevottamahealth.com/dynamic_img/blog/assets/img/counter/counter-icon03.png
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (537), with CRLF, LF line terminators
Size
11 kB (11159 bytes)
Hash
b9e55f29a8cf61c6eb8e8a56a56cc856
1a09c2269ef60cc91159fc7a7a080ff1331805fb
39aff66025e93a16dab92f2bf730366f162b418dafb29795011825a6167dd19e

HTTP Headers

GET /dynamic_img/blog/assets/img/counter/counter-icon03.png HTTP/1.1
Host: jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/dynamic_img/blog/case.zip
Cookie: PHPSESSID=62akqp0gm88m6ujuoqver8ab70
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
x-powered-by: PHP/5.6.40
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.jeevottamahealth.com/dynamic_img/slider/9eb3212dcf0a8b33237fee85581b1df4153620975129848.jpg

185.28.21.218

200 OK

592 kB

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/slider/9eb3212dcf0a8b33237fee85581b1df4153620975129848.jpg
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=667, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=1000], baseline, precision 8, 1600x500, components 3\012- data
Size
592 kB (591676 bytes)
Hash
8b3d0212676b4636d2f0085732f8daf4
587d13e6a552dac9a5e73017cb9715bd476d527b
2ddd42670d8c52d5622dc16e90bc5b4c0748acb36c2304c5ee1140fe85b1d605

HTTP Headers

GET /dynamic_img/slider/9eb3212dcf0a8b33237fee85581b1df4153620975129848.jpg HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/jpeg
last-modified: Mon, 19 Jul 2021 13:11:23 GMT
etag: "9073c-60f579fb-57aa106ffda011bf;;;"
accept-ranges: bytes
content-length: 591676
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Size
15 kB (15344 bytes)
Hash
5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc

HTTP Headers

GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 222451
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.jeevottamahealth.com/dynamic_img/slider/19ad3dbd43e23d9e23641998549b2b2a153632100915779.jpg

185.28.21.218

200 OK

731 kB

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/slider/19ad3dbd43e23d9e23641998549b2b2a153632100915779.jpg
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=685, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 1600x500, components 3\012- data
Size
731 kB (731176 bytes)
Hash
90e130c96b192b4105327c85b92713ed
9eb3f5e89b3da53e48fc5421c5065615edd4c8d2
638db9288577a0435b299ba1ed922ff6c86ca593867fa620d19ad367c1371fb0

HTTP Headers

GET /dynamic_img/slider/19ad3dbd43e23d9e23641998549b2b2a153632100915779.jpg HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/jpeg
last-modified: Mon, 19 Jul 2021 13:11:23 GMT
etag: "b2828-60f579fb-d5428e749752673;;;"
accept-ranges: bytes
content-length: 731176
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/dynamic_img/slider/7c9a778d594c025dc99213019cdf6bcf153620967213653.jpg

185.28.21.218

200 OK

598 kB

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/slider/7c9a778d594c025dc99213019cdf6bcf153620967213653.jpg
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2017 (Windows), datetime=2018:08:23 18:36:58], baseline, precision 8, 1600x500, components 3\012- data
Size
598 kB (598331 bytes)
Hash
6b7afdcb16d3ccea8c6838f1e43206ec
02c5affb509f6e5fdcc08bdf62ba38851d8629a6
9915f165a23203bf0c622818f591f4dbe2e512cf88f45914b139425024dcc677

HTTP Headers

GET /dynamic_img/slider/7c9a778d594c025dc99213019cdf6bcf153620967213653.jpg HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/jpeg
last-modified: Mon, 19 Jul 2021 13:11:23 GMT
etag: "9213b-60f579fb-c1a1acf305339d4b;;;"
accept-ranges: bytes
content-length: 598331
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.jeevottamahealth.com/dynamic_img/slider/8c5b413b64b97d1f5c875881bd4c6a2f15362097352518.jpg

185.28.21.218

200 OK

837 kB

URL HTTP/2
www.jeevottamahealth.com/dynamic_img/slider/8c5b413b64b97d1f5c875881bd4c6a2f15362097352518.jpg
IP
185.28.21.218:0
ASN
#47583 Hostinger International Limited

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=685, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1920], baseline, precision 8, 1600x500, components 3\012- data
Size
837 kB (837275 bytes)
Hash
4d3902432d003db3357d43b714025e02
35c5e25d243072fa48427ad9a55a2c870bcec37b
3731448d353d1ac03888d91545a49e377e415b8f5e6a965afe8f7e4632f57c64

HTTP Headers

GET /dynamic_img/slider/8c5b413b64b97d1f5c875881bd4c6a2f15362097352518.jpg HTTP/1.1
Host: www.jeevottamahealth.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sun, 05 Feb 2023 11:35:33 GMT
content-type: image/jpeg
last-modified: Mon, 19 Jul 2021 13:11:23 GMT
etag: "cc69b-60f579fb-71a39d78f460e152;;;"
accept-ranges: bytes
content-length: 837275
date: Sun, 29 Jan 2023 11:35:33 GMT
server: LiteSpeed
platform: hostinger
content-security-policy: upgrade-insecure-requests
X-Firefox-Spdy: h2

www.youtube.com/embed/CxrKvyg0d8c

142.250.74.78

200 OK

77 kB

URL HTTP/2
www.youtube.com/embed/CxrKvyg0d8c
IP
142.250.74.78:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (58644)
Size
77 kB (77043 bytes)
Hash
e32e68ab8855ae58e00d9c77a4f2262b
a1036a9fab84f563caf002fda308b8f86277b5d8
66e02591d27ab8f0862493f9104ff5bdf1e29706aea367c6546b6db9d7b20277

HTTP Headers

GET /embed/CxrKvyg0d8c HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sun, 29 Jan 2023 11:35:33 GMT
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=KOYwpwLAcY8; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=bSaptePlrEY; Domain=.youtube.com; Expires=Fri, 28-Jul-2023 11:35:33 GMT; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TkRBek5qUXpNekEzTWpjeE9UTTNOZz09EIW02Z4GGIW02Z4G; Domain=.youtube.com; Expires=Fri, 28-Jul-2023 11:35:33 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+955; expires=Tue, 28-Jan-2025 11:35:33 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Size
16 kB (15552 bytes)
Hash
285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7

HTTP Headers

GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:40:43 GMT
expires: Fri, 26 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 240891
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ae47dab02e56810012de0955909e30e2
5b7305b19e5162949a7d64660f3faa046dad0613
f85ae6f436f18dfd5a6997cf6043e2f0ffa8c07cd09deba181f83dff20f67f7f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F85AE6F436F18DFD5A6997CF6043E2F0FFA8C07CD09DEBA181F83DFF20F67F7F"
Last-Modified: Fri, 27 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16838
Expires: Sun, 29 Jan 2023 16:16:12 GMT
Date: Sun, 29 Jan 2023 11:35:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ae47dab02e56810012de0955909e30e2
5b7305b19e5162949a7d64660f3faa046dad0613
f85ae6f436f18dfd5a6997cf6043e2f0ffa8c07cd09deba181f83dff20f67f7f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F85AE6F436F18DFD5A6997CF6043E2F0FFA8C07CD09DEBA181F83DFF20F67F7F"
Last-Modified: Fri, 27 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16838
Expires: Sun, 29 Jan 2023 16:16:12 GMT
Date: Sun, 29 Jan 2023 11:35:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ae47dab02e56810012de0955909e30e2
5b7305b19e5162949a7d64660f3faa046dad0613
f85ae6f436f18dfd5a6997cf6043e2f0ffa8c07cd09deba181f83dff20f67f7f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F85AE6F436F18DFD5A6997CF6043E2F0FFA8C07CD09DEBA181F83DFF20F67F7F"
Last-Modified: Fri, 27 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16838
Expires: Sun, 29 Jan 2023 16:16:12 GMT
Date: Sun, 29 Jan 2023 11:35:34 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ae47dab02e56810012de0955909e30e2
5b7305b19e5162949a7d64660f3faa046dad0613
f85ae6f436f18dfd5a6997cf6043e2f0ffa8c07cd09deba181f83dff20f67f7f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F85AE6F436F18DFD5A6997CF6043E2F0FFA8C07CD09DEBA181F83DFF20F67F7F"
Last-Modified: Fri, 27 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16838
Expires: Sun, 29 Jan 2023 16:16:12 GMT
Date: Sun, 29 Jan 2023 11:35:34 GMT
Connection: keep-alive

unsplash.it/1369/771

178.128.139.170

302 Found

138 B

URL HTTP/2
unsplash.it/1369/771
IP
178.128.139.170:0
ASN
#14061 DIGITALOCEAN-ASN

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
138 B (138 bytes)
Hash
aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0

HTTP Headers

GET /1369/771 HTTP/1.1
Host: unsplash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 29 Jan 2023 11:35:34 GMT
content-type: text/html
content-length: 138
location: https://picsum.photos/1369/771
access-control-allow-origin: *
X-Firefox-Spdy: h2

unsplash.it/1366/768

178.128.139.170

302 Found

138 B

URL HTTP/2
unsplash.it/1366/768
IP
178.128.139.170:0
ASN
#14061 DIGITALOCEAN-ASN

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
138 B (138 bytes)
Hash
aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0

HTTP Headers

GET /1366/768 HTTP/1.1
Host: unsplash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 29 Jan 2023 11:35:34 GMT
content-type: text/html
content-length: 138
location: https://picsum.photos/1366/768
access-control-allow-origin: *
X-Firefox-Spdy: h2

unsplash.it/1368/770

178.128.139.170

302 Found

138 B

URL HTTP/2
unsplash.it/1368/770
IP
178.128.139.170:0
ASN
#14061 DIGITALOCEAN-ASN

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
138 B (138 bytes)
Hash
aff950cab4c0265e21d401db15f1026d
f03e18461817f7a6546c8bf8fa8d686d7e30aca0
753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0

HTTP Headers

GET /1368/770 HTTP/1.1
Host: unsplash.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 29 Jan 2023 11:35:34 GMT
content-type: text/html
content-length: 138
location: https://picsum.photos/1368/770
access-control-allow-origin: *
X-Firefox-Spdy: h2

picsum.photos/1370/772

172.67.74.163

302 Found

0 B

URL HTTP/2
picsum.photos/1370/772
IP
172.67.74.163:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1370/772 HTTP/1.1
Host: picsum.photos
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jeevottamahealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 29 Jan 2023 11:35:34 GMT
content-length: 0
location: https://fastly.picsum.photos/id/580/1370/772.jpg?hmac=71Nlkb4zdcR0tcc8BRYwp5wQTQDBIfxsk1ZCqjbOdYg
cache-control: private, no-cache, no-store, must-revalidate
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bRRP8RbbNJYS0D9G%2BemxSbJFxuG8AVW1mbTmjwo%2FCqHg2VkKBPcpCq13vU5rhDzwKa2wIdHQV2G3WD%2Bc7%2FRSYVMxqEknxbtK6iZ2xkmpj61DWNM9cZr4xwIlCDpecsU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7911aa490bc6b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

picsum.photos/1369/771

172.67.74.163

302 Found

0 B

URL HTTP/2
picsum.photos/1369/771
IP
172.67.74.163:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1369/771 HTTP/1.1
Host: picsum.photos
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jeevottamahealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 29 Jan 2023 11:35:34 GMT
content-length: 0
location: https://fastly.picsum.photos/id/269/1369/771.jpg?hmac=GMlZ3o_pTSsAnfV47HlrF6VGjWy7ydFF8pvPGPrgWaY
cache-control: private, no-cache, no-store, must-revalidate
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YC81JJ9VjZp6GHRPYvt1rhPtqyBHy2n6kE5EUf%2BbsBmcTeOag4aeS58uvSKxzXjJZ694q0sZB9KC%2Fez01uwsMdlGOWtBGythDxn8gGW3ayp7zsy3D3y%2FrPlCF319izA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7911aa490bc2b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

picsum.photos/1367/769

172.67.74.163

302 Found

0 B

URL HTTP/2
picsum.photos/1367/769
IP
172.67.74.163:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1367/769 HTTP/1.1
Host: picsum.photos
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jeevottamahealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 29 Jan 2023 11:35:34 GMT
content-length: 0
location: https://fastly.picsum.photos/id/943/1367/769.jpg?hmac=d9Sn4yqBXTf9yOA7AKBsjHm3wR7Ock89kRXgTUGmSY8
cache-control: private, no-cache, no-store, must-revalidate
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hKjmpYglsnVsQVLxVUMJTQFkCDPhVOAHsFYfKa%2FH6EkVCwZpYNteDpRC4SUA2DjxM1Pzp1hWKIOUpv7dzOkyy7pQsP%2Flz2USV4xslLu9da%2FQCV3Boio%2Bl32Dv1Z1XMY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7911aa490bbcb51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

picsum.photos/1366/768

172.67.74.163

302 Found

0 B

URL HTTP/2
picsum.photos/1366/768
IP
172.67.74.163:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1366/768 HTTP/1.1
Host: picsum.photos
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jeevottamahealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 29 Jan 2023 11:35:34 GMT
content-length: 0
location: https://fastly.picsum.photos/id/737/1366/768.jpg?hmac=xxVpDl4R5Yb8nKs99rtzQCBK7nij1ysPS6lTfhPn3mo
cache-control: private, no-cache, no-store, must-revalidate
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZLKYup%2BMtHUUdyvF5EMFQYyEm5nPTs7y6%2FKmyYuiEXRzzqWBzAW65i2wAX8tzY%2BS1DOU6Z8OCWpgn4vopzVZ77j6WJXPFcVGpDVHiGBrn8bv2GW4hpOyAYKW0Deh2%2Bs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7911aa491bceb51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

picsum.photos/1368/770

172.67.74.163

302 Found

0 B

URL HTTP/2
picsum.photos/1368/770
IP
172.67.74.163:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1368/770 HTTP/1.1
Host: picsum.photos
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jeevottamahealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Sun, 29 Jan 2023 11:35:34 GMT
content-length: 0
location: https://fastly.picsum.photos/id/486/1368/770.jpg?hmac=0ko0OPaZjd-gmE8caKSEWmprZsphjLNyYwINojjLC7s
cache-control: private, no-cache, no-store, must-revalidate
vary: Origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DPTnr6vXLV9yJyEbemcSavgrzOlINLzWrgHNAKfUgPS9LIVI1jYwf6wCxqZYwMHivgBCSBFUsD2zn41MWfKwJoZlNHfX18B2Bht06XsHLKvMyzaKwdzbsqtAvcdEav0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7911aa491bd5b51b-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fastly.picsum.photos/id/943/1367/769.jpg?hmac=d9Sn4yqBXTf9yOA7AKBsjHm3wR7Ock89kRXgTUGmSY8

151.101.1.91

200 OK

32 kB

URL HTTP/2
fastly.picsum.photos/id/943/1367/769.jpg?hmac=d9Sn4yqBXTf9yOA7AKBsjHm3wR7Ock89kRXgTUGmSY8
IP
151.101.1.91:0
ASN
#54113 FASTLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 1367x769, components 3\012- data
Size
32 kB (32503 bytes)
Hash
0cfe8e3625a3bbe05fe3e0e8bcd0a415
f70059b6982a53c61d1c223e9beb047577e4be4b
6de4affb54f67dbefb9f33d0cc0e6ebab54e85c3e5a471e506715d0a6fd0934c

HTTP Headers

GET /id/943/1367/769.jpg?hmac=d9Sn4yqBXTf9yOA7AKBsjHm3wR7Ock89kRXgTUGmSY8 HTTP/1.1
Host: fastly.picsum.photos
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jeevottamahealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/jpeg
cache-control: public, max-age=2592000, stale-while-revalidate=60, stale-if-error=43200, immutable
content-disposition: inline; filename="943-1367x769.jpg"
picsum-id: 943
timing-allow-origin: *
accept-ranges: bytes
date: Sun, 29 Jan 2023 11:35:34 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1678-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674992135.717689,VS0,VE192
vary: Origin
content-length: 32503
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f69c5f43bf99edb53b690cb0bba51efb
e303559ff0956b6bf963b572b17da2a713ce5206
bc95b0a6b8b9a1df9c53272c4324ca1d008699b3da74110efa37ed0118c66181

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

static.doubleclick.net/instream/ad_status.js

142.250.74.166

200 OK

16 kB

URL HTTP/2
static.doubleclick.net/instream/ad_status.js
IP
142.250.74.166:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 63712, version 1.0\012- data
Size
16 kB (15875 bytes)
Hash
6b195d4703c8ef99ef44c772058adcd5
47567901fd2338d91ba3c50520af10a0ea7d9e43
edcb438eccae14fa2de052fcf58499c2a330608a7f1084b86e295de7527cc222

HTTP Headers

GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 11:27:52 GMT
expires: Sun, 29 Jan 2023 11:42:52 GMT
cache-control: public, max-age=900
age: 462
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

googleads.g.doubleclick.net/pagead/id

142.250.74.162

302 Found

27 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/id
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
data
Size
27 kB (27340 bytes)
Hash
e9932f60308096c985c3d285d738c690
42ca1193ef22899e6bce830d0d86d167fc5e850b
5f40b1e43202742bed69e45f0760555fd55de7b1c43afb9f32cef10286e21393

HTTP Headers

GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Sun, 29 Jan 2023 11:35:34 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f69c5f43bf99edb53b690cb0bba51efb
e303559ff0956b6bf963b572b17da2a713ce5206
bc95b0a6b8b9a1df9c53272c4324ca1d008699b3da74110efa37ed0118c66181

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fastly.picsum.photos/id/737/1366/768.jpg?hmac=xxVpDl4R5Yb8nKs99rtzQCBK7nij1ysPS6lTfhPn3mo

151.101.1.91

200 OK

160 kB

URL HTTP/2
fastly.picsum.photos/id/737/1366/768.jpg?hmac=xxVpDl4R5Yb8nKs99rtzQCBK7nij1ysPS6lTfhPn3mo
IP
151.101.1.91:0
ASN
#54113 FASTLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 1366x768, components 3\012- data
Size
160 kB (159615 bytes)
Hash
0b0e24f3016205431116fd6adffdb0d9
e10d039b76120b5cb43732850c7fe4f3a1888566
7a9b3a943de767b1eff70b73bd0633af00e6b6e93aa8666c6855b3a0f042ac7d

HTTP Headers

GET /id/737/1366/768.jpg?hmac=xxVpDl4R5Yb8nKs99rtzQCBK7nij1ysPS6lTfhPn3mo HTTP/1.1
Host: fastly.picsum.photos
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jeevottamahealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/jpeg
cache-control: public, max-age=2592000, stale-while-revalidate=60, stale-if-error=43200, immutable
content-disposition: inline; filename="737-1366x768.jpg"
picsum-id: 737
timing-allow-origin: *
accept-ranges: bytes
date: Sun, 29 Jan 2023 11:35:34 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1678-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674992135.701203,VS0,VE288
vary: Origin
content-length: 159615
X-Firefox-Spdy: h2

fastly.picsum.photos/id/486/1368/770.jpg?hmac=0ko0OPaZjd-gmE8caKSEWmprZsphjLNyYwINojjLC7s

151.101.1.91

200 OK

70 kB

URL HTTP/2
fastly.picsum.photos/id/486/1368/770.jpg?hmac=0ko0OPaZjd-gmE8caKSEWmprZsphjLNyYwINojjLC7s
IP
151.101.1.91:0
ASN
#54113 FASTLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 1368x770, components 3\012- data
Size
70 kB (69833 bytes)
Hash
15aeae00a00ee08277472b9d3919df7b
ada622abae2883ab86d7d987de0fda72ecc4f544
e49f80908e2321a3085ec80e421b899f94d4e5e8e1c5b62cfdf8d7f249697060

HTTP Headers

GET /id/486/1368/770.jpg?hmac=0ko0OPaZjd-gmE8caKSEWmprZsphjLNyYwINojjLC7s HTTP/1.1
Host: fastly.picsum.photos
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jeevottamahealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/jpeg
cache-control: public, max-age=2592000, stale-while-revalidate=60, stale-if-error=43200, immutable
content-disposition: inline; filename="486-1368x770.jpg"
picsum-id: 486
timing-allow-origin: *
accept-ranges: bytes
date: Sun, 29 Jan 2023 11:35:35 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1678-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674992135.710089,VS0,VE313
vary: Origin
content-length: 69833
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Dancing+Script:400,700|Rubik:300,400,500,700,900

216.58.207.234

200 OK

1.2 kB

URL HTTP/2
fonts.googleapis.com/css?family=Dancing+Script:400,700|Rubik:300,400,500,700,900
IP
216.58.207.234:0
ASN
#15169 GOOGLE

File type
data
Size
1.2 kB (1193 bytes)
Hash
0740b10f03db7ab215bd2cbf5f6895dd
01f6bf266df99f4bed14a20f112905637b1cf5a5
0146d6c130217544aae9d3105975febb9f2dc5e2668912ec800da7bcb6fadafe

HTTP Headers

GET /css?family=Dancing+Script:400,700|Rubik:300,400,500,700,900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jeevottamahealth.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 11:35:33 GMT
date: Sun, 29 Jan 2023 11:35:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fastly.picsum.photos/id/580/1370/772.jpg?hmac=71Nlkb4zdcR0tcc8BRYwp5wQTQDBIfxsk1ZCqjbOdYg

151.101.1.91

200 OK

78 kB

URL HTTP/2
fastly.picsum.photos/id/580/1370/772.jpg?hmac=71Nlkb4zdcR0tcc8BRYwp5wQTQDBIfxsk1ZCqjbOdYg
IP
151.101.1.91:0
ASN
#54113 FASTLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 1370x772, components 3\012- data
Size
78 kB (77765 bytes)
Hash
6d1c8bd6a20eca3a7aa3a4512cc53002
96637006262db16e25b246e6cbd09c52c8f51bfe
ec35b5f30da702b8c084fd4ef4c9df7c01e2405455b4426ac10401d430dfc92a

HTTP Headers

GET /id/580/1370/772.jpg?hmac=71Nlkb4zdcR0tcc8BRYwp5wQTQDBIfxsk1ZCqjbOdYg HTTP/1.1
Host: fastly.picsum.photos
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jeevottamahealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/jpeg
cache-control: public, max-age=2592000, stale-while-revalidate=60, stale-if-error=43200, immutable
content-disposition: inline; filename="580-1370x772.jpg"
picsum-id: 580
timing-allow-origin: *
accept-ranges: bytes
date: Sun, 29 Jan 2023 11:35:35 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1678-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674992135.716638,VS0,VE323
vary: Origin
content-length: 77765
X-Firefox-Spdy: h2

fastly.picsum.photos/id/269/1369/771.jpg?hmac=GMlZ3o_pTSsAnfV47HlrF6VGjWy7ydFF8pvPGPrgWaY

151.101.1.91

200 OK

80 kB

URL HTTP/2
fastly.picsum.photos/id/269/1369/771.jpg?hmac=GMlZ3o_pTSsAnfV47HlrF6VGjWy7ydFF8pvPGPrgWaY
IP
151.101.1.91:0
ASN
#54113 FASTLY

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 1369x771, components 3\012- data
Size
80 kB (80086 bytes)
Hash
3eb7f19bdaec3a33c10d7f6d8fedc6bd
bd6262060390b0301f3abad1bfef16365509a6e7
b2f03b8a6b67e2734bbbf8d076fade1da50aec9143eaf2474bd1f7a262cd3ce2

HTTP Headers

GET /id/269/1369/771.jpg?hmac=GMlZ3o_pTSsAnfV47HlrF6VGjWy7ydFF8pvPGPrgWaY HTTP/1.1
Host: fastly.picsum.photos
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jeevottamahealth.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/jpeg
cache-control: public, max-age=2592000, stale-while-revalidate=60, stale-if-error=43200, immutable
content-disposition: inline; filename="269-1369x771.jpg"
picsum-id: 269
timing-allow-origin: *
accept-ranges: bytes
date: Sun, 29 Jan 2023 11:35:35 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1678-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1674992135.712948,VS0,VE349
vary: Origin
content-length: 80086
X-Firefox-Spdy: h2

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create

142.250.74.42

200 OK

0 B

URL HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
142.250.74.42:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Sun, 29 Jan 2023 11:35:35 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create

142.250.74.42

200 OK

31 kB

URL HTTP/2
jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create
IP
142.250.74.42:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size
31 kB (30666 bytes)
Hash
f3f6a41fbfa275d943d4dab495a54732
8d3e26efce31737ce9cb235f1413e8fe7406ab05
a2f0d560bbdf959d89a966352fc2fa25aac4b9f5727711fadc7da4cbe7eb10e2

HTTP Headers

POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 29 Jan 2023 11:35:35 GMT
server: ESF
cache-control: private
content-length: 30666
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3669
Expires: Sun, 29 Jan 2023 12:36:44 GMT
Date: Sun, 29 Jan 2023 11:35:35 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3669
Expires: Sun, 29 Jan 2023 12:36:44 GMT
Date: Sun, 29 Jan 2023 11:35:35 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3669
Expires: Sun, 29 Jan 2023 12:36:44 GMT
Date: Sun, 29 Jan 2023 11:35:35 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3669
Expires: Sun, 29 Jan 2023 12:36:44 GMT
Date: Sun, 29 Jan 2023 11:35:35 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7cfa685-1688-424d-b352-82b8ce19495a.jpeg

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7cfa685-1688-424d-b352-82b8ce19495a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6158 bytes)
Hash
2cbbc57c4e469baec1bda006407877cc
e988f007b1f9ec2327e7817f38cf56202096aeae
5237a8a8a7aa1fe59548582abf726fe77ad9e1fad8535bb5f88519dc6e779a86

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7cfa685-1688-424d-b352-82b8ce19495a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6158
x-amzn-requestid: f6073f30-9a9c-4674-8ca9-a43e1982ab44
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLzV7FHtoAMFRGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce328c-08806a615c478d443f76119f;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:09:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5AeWdtII3LLgHysTJsa4Kn5-SSmF0rkM0uYXZwtpBC0p60eJ_VSjBw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 15:00:59 GMT
age: 74076
etag: "e988f007b1f9ec2327e7817f38cf56202096aeae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
86352d15c37831cf9bf1e41325029224
ac8b28bcc1e6dd026e1f62d1ef8b9f80a42eee21
154f5f5e116df41f5d3bd414c671138b2afc198071529a0f3573109277566cd8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4475 bytes)
Hash
4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:56:46 GMT
age: 49129
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df8e551-afc5-4ea3-a9ef-8af42c4cbea5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.2 kB (7201 bytes)
Hash
47514f1386d4e6962ac2c931647f60f4
c8da685b6a5aee80c98d4173ffe226b672f054c3
474d462b5d4dbd15b7f759457fe1ed084819cea563ef7c1285028dad9a4a404c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df8e551-afc5-4ea3-a9ef-8af42c4cbea5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7201
x-amzn-requestid: ba830369-3a5f-45bc-9af9-5ad9ee58f43f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbvRREJqIAMF8Uw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4926e-6983a44e506dcd4d203c2688;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 03:11:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k8zu8NNW1XfVlVQuIh495I2sE9YzQQXRooJmVFb2Yqav_D5UCehhLw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:53:26 GMT
age: 66533
etag: "c8da685b6a5aee80c98d4173ffe226b672f054c3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9167 bytes)
Hash
3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:46:16 GMT
age: 53359
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.6 kB (5594 bytes)
Hash
4c77437e3a7361861aed8bfecbfe6bd6
fefd238c13c0fdfb7d964c90fcc8a8cbbf953034
282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: d56c9b84-dc1f-4d5c-91bf-7db55058bf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fLyeEGOloAMFpzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ce3126-5013a6b971d6800c5c85a4eb;Sampled=0
x-amzn-remapped-date: Mon, 23 Jan 2023 07:03:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uPJu2SzvWcfqukF9t0PKG5iK7LrTnk1Cn5nioD4MklQgDAZnbiH8Gw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 14:55:48 GMT
age: 74387
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11470 bytes)
Hash
10a6491e2c1dfde68c7cd7297e70700f
d0f195319825a6d3e5e50ad15b2fcab27cb65896
4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 04:01:15 GMT
age: 27260
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.google.com/js/th/J0Wtb-3apQjiEgHhOVup9kp7pTLa1a3i127gprViyoA.js

142.250.74.164

200 OK

14 kB

URL HTTP/2
www.google.com/js/th/J0Wtb-3apQjiEgHhOVup9kp7pTLa1a3i127gprViyoA.js
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (36008)
Size
14 kB (14261 bytes)
Hash
8a1e64e80c9189aaa07733ae98ea030b
de788d5e003c05a2b43c8f16557e6a4f27eb00ff
cdfd098bd8fb947a53ebeaf0e8e0bdd0d6a31eb6a7c0e1403331403cc48a5a1e

HTTP Headers

GET /js/th/J0Wtb-3apQjiEgHhOVup9kp7pTLa1a3i127gprViyoA.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14261
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 10:05:58 GMT
expires: Fri, 26 Jan 2024 10:05:58 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 03 Jan 2023 15:00:00 GMT
content-type: text/javascript
age: 264577
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d2ade408af91f717110cf07d8d89c02a
997134ef254ea49d8aa40d48e55a715e06f9c315
81199c2fc337d94312e50e72a57ccf22e2f47060ddbd623ae9d836f24410a55a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bc7c4f207ec97cacb1eedd94d2f6b371
5f0948a39435ace8bacc4ac5fb3df19045908e42
bfb24fe4a1cb45a068b0a6432b03c20d00ea178aabea23498f2d1f0273bf6e1b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

i.ytimg.com/vi_webp/CxrKvyg0d8c/sddefault.webp

216.58.207.246

200 OK

17 kB

URL HTTP/2
i.ytimg.com/vi_webp/CxrKvyg0d8c/sddefault.webp
IP
216.58.207.246:0
ASN
#15169 GOOGLE

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
17 kB (17088 bytes)
Hash
a6611e6513a20ad43e5ad458f671bb38
e4e464a34f361f97d2e93508becdb9e72a06dd0b
07ad4bad950a18a43de02b1523b96cca3965c72af8f03a29303c1468a50f2f21

HTTP Headers

GET /vi_webp/CxrKvyg0d8c/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 17088
date: Sun, 29 Jan 2023 11:35:35 GMT
expires: Sun, 29 Jan 2023 13:35:35 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true

142.250.74.42

200 OK

23 B

URL HTTP/2
maps.googleapis.com/maps/api/mapsjs/gen_204?csp_test=true
IP
142.250.74.42:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text
Size
23 B (23 bytes)
Hash
e3981ca10169a319d5aa062bf43a5fa1
2c6ed584767b65688ce99b1ebe1a3b7448a67421
8b0b8749aba12de93f3cf5d86f9fac9d6de7cac400a17473718f182a34ebb7e9

HTTP Headers

GET /maps/api/mapsjs/gen_204?csp_test=true HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jeevottamahealth.com
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sun, 29 Jan 2023 11:35:35 GMT
server: scaffolding on HTTPServer2
cache-control: private
content-length: 23
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://jeevottamahealth.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d2ade408af91f717110cf07d8d89c02a
997134ef254ea49d8aa40d48e55a715e06f9c315
81199c2fc337d94312e50e72a57ccf22e2f47060ddbd623ae9d836f24410a55a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

yt3.ggpht.com/ytc/AL5GRJVpurFSaVSMkL0lJTTwOYvrJwrr2lVmhpubdFYR=s68-c-k-c0x00ffffff-no-rj

142.250.74.161

200 OK

2.2 kB

URL HTTP/2
yt3.ggpht.com/ytc/AL5GRJVpurFSaVSMkL0lJTTwOYvrJwrr2lVmhpubdFYR=s68-c-k-c0x00ffffff-no-rj
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 68x68, components 3\012- data
Size
2.2 kB (2247 bytes)
Hash
74ab2f95418c4ffc09ab55d0e8e6b35e
61d5f59379303150e92709657237f5d847498996
7d314b5a1dc5d8852a7c09f967c57c482be872adab568654f7fa617c1b521c52

HTTP Headers

GET /ytc/AL5GRJVpurFSaVSMkL0lJTTwOYvrJwrr2lVmhpubdFYR=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v14"
expires: Mon, 30 Jan 2023 11:35:35 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="unnamed.jpg"
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Sun, 29 Jan 2023 11:35:35 GMT
server: fife
content-length: 2247
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
bc7c4f207ec97cacb1eedd94d2f6b371
5f0948a39435ace8bacc4ac5fb3df19045908e42
bfb24fe4a1cb45a068b0a6432b03c20d00ea178aabea23498f2d1f0273bf6e1b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
b788ebf7dc724cd71953ba0393e222b6
86d34caaec688c4cfd9e77e7920fe0e8d82c31de
86d19f0bee3a0a799d8a7c869367457e640789a0c60a6b492a74cbe4dfa55520

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3
Cache-Control: max-age=106664
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 11:35:36 GMT
Etag: "63d557ad-116"
Expires: Mon, 30 Jan 2023 17:13:20 GMT
Last-Modified: Sat, 28 Jan 2023 17:13:17 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 278

www.nourishdoc.com/images/buttons/nourishdoc_5.png

172.67.145.2

404 Not Found

0 B

URL HTTP/2
www.nourishdoc.com/images/buttons/nourishdoc_5.png
IP
172.67.145.2:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /images/buttons/nourishdoc_5.png HTTP/1.1
Host: www.nourishdoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
date: Sun, 29 Jan 2023 11:35:36 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: max-age=14400, must-revalidate
link: <https://www.nourishdoc.com/wp-json/>; rel="https://api.w.org/"
x-cache: MISS
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wHbEYPU5utV8l7rB6NL2Afv1CyHfEI%2BmZPA3udcA4fgPmsXr0hS951pFSlp52p67VaCSAKPdsti%2BTG7RmOsr60V2xIV83gHf4Rcy2%2F2J6a23eJJjWkD5w6AMoZusyP%2B7SE40JmY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7911aa438fb3b4eb-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

104.18.10.207

200 OK

0 B

URL HTTP/2
stackpath.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jeevottamahealth.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sun, 29 Jan 2023 11:35:33 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 11/15/2021 21:49:00
cdn-proxyver: 1.0
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 2729ae8f2fc6c761bdc17d91cc795f58
cdn-cache: HIT
cf-cache-status: HIT
age: 20438887
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7911aa406c0a1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (149)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML