firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 29 Sep 2022 00:15:46 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: dVto6e-XpTq4asJZE7lKIMHLlhVurkApQ-ihnDDZcm9ElIqCKjPqaQ==
Age: 322
advholistichealth.com/contact/
45.79.86.40301 Moved Permanently 333 B URL HTTP/1.1 advholistichealth.com/contact/
IP 45.79.86.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 94092620dca367bab68d95ee30abda09
5d190a84db993ed3f8c8929f643bf88408c5dd0d
372c12bf68f49906ef01ef87f6230ad357631a01e052780af4687d82110c48c6
Analyzer Verdict Alert fortinet Malware
GET /contact/ HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 29 Sep 2022 00:21:08 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 333
Location: https://advholistichealth.com/contact/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 490c003436e215e91596f285fcba92f5
0c4c9a5802e7cdb699f4918c252dbdf8431c25ec
9fe6beb1cb3851018168765a243b6de69ec71d30770f8c2dcc57cae7d9978cc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9FE6BEB1CB3851018168765A243B6DE69EC71D30770F8C2DCC57CAE7D9978CC1"
Last-Modified: Wed, 28 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5036
Expires: Thu, 29 Sep 2022 01:45:04 GMT
Date: Thu, 29 Sep 2022 00:21:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8afc4649e99d0e42b9bf5b133eebed5c
e3e7e0e614af3262b74bd4b6267ef23293bdb5f0
e16e8b782b441ecb9a57c3fc3db9884b5a3034967b846cca67b2f53644fcabdf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E16E8B782B441ECB9A57C3FC3DB9884B5A3034967B846CCA67B2F53644FCABDF"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3157
Expires: Thu, 29 Sep 2022 01:13:45 GMT
Date: Thu, 29 Sep 2022 00:21:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Y8zOgs0HISZ7q4YD3/XihT2U+YHzrYXhUzme57qtvyWTiFgsTrWsr+MpXNxuaFjaxzniKPr4+Ag=
x-amz-request-id: 3XP5JK0TFRTFMCAT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 28 Sep 2022 23:47:40 GMT
age: 2008
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 28 Sep 2022 23:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Thu, 29 Sep 2022 00:14:31 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Ugg4Cxoz9CwMCDmf74ehUNll7PvfLa1g7YHXh-dRbyK1JYUGdmuDww==
Age: 3096
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7e94d2c02b179a69f435caa1f2189489
22525907c58be2473fc0bff4ea004a7ad72289b4
b5da525a46c1c51a8596dc209c7f8a2a8b8423d8dae254e62cec97001dcb6a44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5DA525A46C1C51A8596DC209C7F8A2A8B8423D8DAE254E62CEC97001DCB6A44"
Last-Modified: Wed, 28 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21590
Expires: Thu, 29 Sep 2022 06:20:59 GMT
Date: Thu, 29 Sep 2022 00:21:09 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3526d5ce1381ba26cbc553db057e1915
fe01c920696448e8bf12e6fff877bce8281d34a2
09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4345
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 00:21:09 GMT
Last-Modified: Wed, 28 Sep 2022 23:08:44 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
advholistichealth.com/contact/
45.79.86.40200 OK 15 kB URL HTTP/2 advholistichealth.com/contact/
IP 45.79.86.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (26761), with CRLF, LF line terminators
Hash 7cbc02ca4d7cc7f6de0690ae0cda6c1c
8e5b9219d41409b6e8a1734be5b22ddb0358619b
fbd235596fe5723978880949c666c42ae34e38a52bad9eae4d09764606824485
Analyzer Verdict Alert fortinet Malware
GET /contact/ HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:09 GMT
content-type: text/html; charset=UTF-8
content-length: 15312
link: <https://advholistichealth.com/wp-json/>; rel="https://api.w.org/", <https://advholistichealth.com/wp-json/wp/v2/pages/970>; rel="alternate"; type="application/json", <https://advholistichealth.com/?p=970>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.89.20.60101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.20.60:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Ut2Fzj8kUbIZPvvx9t9AzQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 7p2LxmHDQ6yycJs6UKPFtHBP1Xo=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3e9d3eab1fba386c4fdf3af9a757cfa9
b50127a1072c95ed71110b07dd58eab72747e6f8
869e09d135cff97a1073e32fa1808d0068195421369d138ad6bba86cfef18091
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 00:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3e9d3eab1fba386c4fdf3af9a757cfa9
b50127a1072c95ed71110b07dd58eab72747e6f8
869e09d135cff97a1073e32fa1808d0068195421369d138ad6bba86cfef18091
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 00:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3e9d3eab1fba386c4fdf3af9a757cfa9
b50127a1072c95ed71110b07dd58eab72747e6f8
869e09d135cff97a1073e32fa1808d0068195421369d138ad6bba86cfef18091
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 00:21:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext
216.58.211.10200 OK 1.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext
IP 216.58.211.10:0
Hash 7171d9e1eaf56def02ad88bbfaaa8c33
819f6557b17d015bab7bc83d75e5a912e2bde13a
0c73c382342bf9b443273c80c264263acb04cb1f004032fb376e13119aab545d
GET /css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 29 Sep 2022 00:21:09 GMT
date: Thu, 29 Sep 2022 00:21:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.1.0
45.79.86.40200 OK 3.7 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.1.0
IP 45.79.86.40:0
Hash 973c5d16c9ec134e9a71e6c1f7eea375
f63f3d830b0811f3d179a2d5d505a88c34b695b1
620dded1d79508934921a35ef2d757e0ef8603ca400c3b3c31d5345300121432
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.1.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:09 GMT
content-type: text/css
content-length: 3677
last-modified: Fri, 03 Mar 2017 08:18:01 GMT
etag: "4bc5-549cf2f1c6040-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/extern/animate.css/animate.min.css?ver=1.57.0
45.79.86.40200 OK 4.4 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/extern/animate.css/animate.min.css?ver=1.57.0
IP 45.79.86.40:0
Hash b2d34f77af61287dbb241bc0dac5f1f7
28683f9ea3db7a1948d1fe46dac3205e82dae022
fa94f672744e7493127791a1f264ea1a4d22fc72e2f10140397ea2b0fbabc0ad
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/extern/animate.css/animate.min.css?ver=1.57.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:09 GMT
content-type: text/css
content-length: 4430
last-modified: Wed, 16 Mar 2022 00:35:34 GMT
etag: "11a43-5da4b176d9620-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/freshGrid.css?ver=1.57.0
45.79.86.40200 OK 3.9 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/freshGrid.css?ver=1.57.0
IP 45.79.86.40:0
File type ASCII text, with very long lines (540)
Hash 18794590e1970da3057136f88c646703
476cfc0a76d556b2b46bf2e401d682247ccf636f
3108edd222c808098b2ab36e2af1c139042cccdcdffae982ed5b0ec1c2fb1235
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/freshGrid.css?ver=1.57.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:09 GMT
content-type: text/css
content-length: 3877
last-modified: Wed, 16 Mar 2022 00:35:34 GMT
etag: "4a6a-5da4b176d9620-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
45.79.86.40200 OK 972 B URL HTTP/2 advholistichealth.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
IP 45.79.86.40:0
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:09 GMT
content-type: text/css
content-length: 972
last-modified: Wed, 16 Mar 2022 00:35:06 GMT
etag: "aab-5da4b15c34ded-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
45.79.86.40200 OK 12 kB URL HTTP/2 advholistichealth.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:09 GMT
content-type: text/css
content-length: 11681
last-modified: Wed, 13 Jul 2022 01:22:12 GMT
etag: "15b64-5e3a59d544074-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?v=3&key=AIzaSyDR5Vhuu9OH2tSAIuLgADP5BHf5ZN_bMmw&ver=6.0.2
216.58.211.10200 OK 55 kB URL HTTP/2 maps.googleapis.com/maps/api/js?v=3&key=AIzaSyDR5Vhuu9OH2tSAIuLgADP5BHf5ZN_bMmw&ver=6.0.2
IP 216.58.211.10:0
File type ASCII text, with very long lines (2456)
Hash 1a599bdf5a1b77f91122430762bd88de
23b66f0bb51ddfca2b8e87e6ca2c90f81e13b5b2
da3140793ff9a7093e7c4176350e0996299c5373f51e03a25d3eb43790e3d109
GET /maps/api/js?v=3&key=AIzaSyDR5Vhuu9OH2tSAIuLgADP5BHf5ZN_bMmw&ver=6.0.2 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Thu, 29 Sep 2022 00:21:10 GMT
expires: Thu, 29 Sep 2022 00:51:10 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 55021
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=25
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.1
45.79.86.40200 OK 9.6 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.1
IP 45.79.86.40:0
File type Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Hash 720fc0a8dbcc1bd2c6bc2e2d8f1a1ea5
141d498396c9688411ebba4a9490116f09b04049
f2656c8581ad8ba6fd6bad6bcb19d57cba2015438df8e85ae6019de5b1751a62
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.1 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:09 GMT
content-type: text/css
content-length: 9562
last-modified: Tue, 21 May 2019 03:58:08 GMT
etag: "9b8c-5895ddb507400-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/owl-carousel/assets/owl.carousel.css?ver=1.3.2
45.79.86.40200 OK 1.1 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/owl-carousel/assets/owl.carousel.css?ver=1.3.2
IP 45.79.86.40:0
Hash 042f29996138d1bcf7cb97244315fd18
58b1caca2589ab9fa3450c806b87c943a395f698
805f1a42e4fdb3133675843c9069f16924e04aff18b73cb6a7d888394a374dfd
GET /wp-content/themes/ark/assets/plugins/owl-carousel/assets/owl.carousel.css?ver=1.3.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:09 GMT
content-type: text/css
content-length: 1089
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "11df-5da4b18f77536-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/wp-job-manager/assets/dist/css/job-listings.css?ver=d866e43503c5e047c6b0be0a9557cf8e
45.79.86.40200 OK 1.4 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/wp-job-manager/assets/dist/css/job-listings.css?ver=d866e43503c5e047c6b0be0a9557cf8e
IP 45.79.86.40:0
File type Unicode text, UTF-8 text, with very long lines (8452)
Hash e9b8898ace18d7e1cde38379396d298e
978ccfcd37618825fb50d7ef4e4811c89d6bfa6a
663c048c8d08f0cc4ca99b64929461a5bb528a3be3ce8afa64c32fb2b7b2c72e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-job-manager/assets/dist/css/job-listings.css?ver=d866e43503c5e047c6b0be0a9557cf8e HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:09 GMT
content-type: text/css
content-length: 1353
last-modified: Wed, 16 Mar 2022 00:35:13 GMT
etag: "2107-5da4b1634b607-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/scrollbar/jquery.mCustomScrollbar.css?ver=3.1.12
45.79.86.40200 OK 4.0 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/scrollbar/jquery.mCustomScrollbar.css?ver=3.1.12
IP 45.79.86.40:0
File type ASCII text, with very long lines (42867)
Hash ce0f50eaff0708e1206eaa9ad01c0679
fd235fa0c7d357530808d97aafbfb83d62df19d2
8f5be2b27dfaf342e23b3ec9bb932a87254fc315a1f0d367c0f3bbc4c14827ab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/scrollbar/jquery.mCustomScrollbar.css?ver=3.1.12 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:09 GMT
content-type: text/css
content-length: 3970
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "a774-5da4b18f77536-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/bootstrap/css/bootstrap.min.css?ver=3.3.6
45.79.86.40200 OK 20 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/bootstrap/css/bootstrap.min.css?ver=3.3.6
IP 45.79.86.40:0
File type ASCII text, with very long lines (65371)
Hash f6fd8790f1d560aab890a85a78b6d67d
98adac8aece45e55b10c8d0d645038a990b0ee00
ceae5c3fdd35600e1de72b94f59efb2fc3b51163640a180431c8d59b95e2ef0f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/bootstrap/css/bootstrap.min.css?ver=3.3.6 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:09 GMT
content-type: text/css
content-length: 19744
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "1d970-5da4b18f448b0-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/css/landing.css?ver=6.0.2
45.79.86.40200 OK 6.3 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/css/landing.css?ver=6.0.2
IP 45.79.86.40:0
File type Unicode text, UTF-8 text, with very long lines (334)
Hash b66389bf350d5e2cb0b29d081ae1aabd
d105c9796de81e7f1d1aa7106b2773299c0455c3
425e5da4ebbb535f74dbafb50ed5b8ec2b76911e31af9a1043ea634afe43737c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/css/landing.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: text/css
content-length: 6275
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "cb2b-5da4b18f448b0-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fusion-builder/css/fusion-shortcodes.min.css?ver=1.0.6
45.79.86.40200 OK 475 B URL HTTP/2 advholistichealth.com/wp-content/plugins/fusion-builder/css/fusion-shortcodes.min.css?ver=1.0.6
IP 45.79.86.40:0
File type ASCII text, with very long lines (1384), with no line terminators
Hash db570aec525ceef3c73ebf51cc680af8
1e3e9355c73011b0a482f2eb1520d167a0cfc5b4
ddffbf36eed0886d1c75fc963000062e57688d4e768a7186e25df6bde0a94382
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/css/fusion-shortcodes.min.css?ver=1.0.6 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: text/css
content-length: 475
last-modified: Fri, 03 Mar 2017 08:14:49 GMT
etag: "568-549cf23aab040-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/uploads/2020/04/advholistichealth_logo_500px-1.png
45.79.86.40301 Moved Permanently 386 B URL HTTP/1.1 advholistichealth.com/wp-content/uploads/2020/04/advholistichealth_logo_500px-1.png
IP 45.79.86.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2bd2e1f6959359cc5e8c0ed146660f7a
42f04a8e022e891b42c22566acf2cf9561034d76
3725fc1b1b61267d7e0fcfda757837dc4c001d9b0562afb7e0b28e37d0694af4
GET /wp-content/uploads/2020/04/advholistichealth_logo_500px-1.png HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Thu, 29 Sep 2022 00:21:10 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 386
Location: https://advholistichealth.com/wp-content/uploads/2020/04/advholistichealth_logo_500px-1.png
advholistichealth.com/wp-content/themes/ark-child/style.css?ver=6.0.2
45.79.86.40200 OK 448 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark-child/style.css?ver=6.0.2
IP 45.79.86.40:0
Hash 20511e8d2b9779a83dbb4df386d13c04
324f1f24ca6ec5d541e4a8aed648f5b20194ee33
f890b3f13d1aef4a2e0cfb924982069137ac04745a601099193929028d510994
GET /wp-content/themes/ark-child/style.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: text/css
content-length: 448
last-modified: Fri, 24 Apr 2020 00:00:25 GMT
etag: "355-5a3fe0d607840-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-awesome4/ff-font-awesome4.css?ver=6.0.2
45.79.86.40200 OK 9.0 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-awesome4/ff-font-awesome4.css?ver=6.0.2
IP 45.79.86.40:0
Hash e1c5bf2cc68e03e704f16933df084ed1
ffaca125a345c8efb9050f357360f72d99d1fa76
089e30abb1cf4e2d95f70b6772429aff7b08ad1e3e12c77f32bc188b0da08b5e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-awesome4/ff-font-awesome4.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: text/css
content-length: 8978
last-modified: Wed, 16 Mar 2022 00:35:33 GMT
etag: "10819-5da4b176c6d3e-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/magnific-popup/magnific-popup.css?ver=1.1.0
45.79.86.40200 OK 1.9 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/magnific-popup/magnific-popup.css?ver=1.1.0
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash 9e623741186a11c25fe890664773ff40
7f0be6e9426addc6ccdbd41654d7ed3b0f7108a5
0fc93b8ded6d1b45efb53764c2eef92b46f33dbd72571e2621bdd5b6a97e9deb
GET /wp-content/themes/ark/assets/plugins/magnific-popup/magnific-popup.css?ver=1.1.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: text/css
content-length: 1904
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "1e25-5da4b18f48730-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/uploads/freshframework/css/colors.css?ver=6.0.2
45.79.86.40200 OK 6.2 kB URL HTTP/2 advholistichealth.com/wp-content/uploads/freshframework/css/colors.css?ver=6.0.2
IP 45.79.86.40:0
Hash 94fbc0a6177ca541d5b8f35e75f14ddf
8ff1cfd194b6dc2d21944e37579e412e1be9f912
9836cfda99096c659da15987964282da066acd83e894f96fb6e9228ada25fdda
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/freshframework/css/colors.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: text/css
content-length: 6162
last-modified: Thu, 29 Sep 2022 00:21:09 GMT
etag: W/"dec8-5e9c5daa38983-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-simple-line-icons/ff-font-simple-line-icons.css?ver=6.0.2
45.79.86.40200 OK 1.8 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-simple-line-icons/ff-font-simple-line-icons.css?ver=6.0.2
IP 45.79.86.40:0
Hash 99d72549dc12161738d354586559f075
2dab62df1eb7b4a258bc637ad88ccf000df6f44c
a247e332e3501da13b8d4d5dff98fe3f6b5ce542ee54299e08e8b8b16743aed9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-simple-line-icons/ff-font-simple-line-icons.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: text/css
content-length: 1760
last-modified: Wed, 16 Mar 2022 00:35:33 GMT
etag: "3009-5da4b176c1f1e-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/cubeportfolio/css/cubeportfolio.min.css?ver=3.8.0
45.79.86.40200 OK 11 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/cubeportfolio/css/cubeportfolio.min.css?ver=3.8.0
IP 45.79.86.40:0
File type ASCII text, with very long lines (65254)
Hash f6fe1b2f2b30665d56f269644556046e
a5439a520b5386114f9f63c3233c85b3b03425f7
0436f0fb70fcfb3f81c5cc205f1e6350e4a904a7e21b1f5ee87b6f049f5f84bf
GET /wp-content/themes/ark/assets/plugins/cubeportfolio/css/cubeportfolio.min.css?ver=3.8.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: text/css
content-length: 11096
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "1336d-5da4b18f48730-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/twentytwenty/css/twentytwenty.css?ver=6.0.2
45.79.86.40200 OK 1.1 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/twentytwenty/css/twentytwenty.css?ver=6.0.2
IP 45.79.86.40:0
Hash d9d0d8bed91e68e688f23efe74b19dc7
e1f940a1022b4a119ffc01335e91da84bc1f0c3a
94c3404f88918f501c9b7935180532edc3a533274d8a5488596a261b386cb994
GET /wp-content/themes/ark/assets/plugins/twentytwenty/css/twentytwenty.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: text/css
content-length: 1066
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "195b-5da4b18f79476-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/css/one-page-business.css?ver=6.0.2
45.79.86.40200 OK 5.6 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/css/one-page-business.css?ver=6.0.2
IP 45.79.86.40:0
Hash b85247d6b8fa1deff7e32219ecbdd38b
149f36e1171c08c3e25b078b83b94d487fd45734
3f42ffbdefc377f4e011f906e2336e78c5da3b5ee89844e36781f2edede22c95
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/css/one-page-business.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: text/css
content-length: 5588
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "c995-5da4b18f4296f-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.1.0
45.79.86.40200 OK 3.4 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.1.0
IP 45.79.86.40:0
File type Unicode text, UTF-8 text, with very long lines (23514)
Hash e682e2089813dab2b3bf25ae1070fb7c
e149e2fc55475788aa6c0f22b62cead6bff3f72b
8bd666be461ded776faf00ba915a54e85076a1ab959149cbe886bbb8cd1eff38
GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.1.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 3396
last-modified: Fri, 03 Mar 2017 08:18:01 GMT
etag: "5d17-549cf2f1c6040-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0
45.79.86.40200 OK 39 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0
IP 45.79.86.40:0
File type ASCII text, with very long lines (32006)
Hash 86f8c1fad2409b0b5fedeb92e3131103
65f31d92d9a8b4c32a234d893a3686910d46f36b
83a6cd537d4883082902348b0c38abdda5390664b34af61ccfd3871ca5dd641a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 39407
last-modified: Fri, 03 Mar 2017 08:18:01 GMT
etag: "1c9f6-549cf2f1c6040-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
45.79.86.40200 OK 4.2 kB URL HTTP/2 advholistichealth.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 45.79.86.40:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 4169
last-modified: Wed, 23 Dec 2020 16:40:58 GMT
etag: "2bd8-5b7245b0f7a80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1
45.79.86.40200 OK 38 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1
IP 45.79.86.40:0
File type ASCII text, with very long lines (27287), with CRLF line terminators
Hash 33ad97fbd5f6d0ad97af5461cc857da3
a975057df83659e526059661a2dae1a5a4d23fe2
ba0476734001e6e0808e7882a24852cf298dacac37b2beaf2c17718d2032afb2
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 38337
last-modified: Tue, 21 May 2019 03:58:08 GMT
etag: "1afe4-5895ddb507400-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
45.79.86.40200 OK 2.5 kB URL HTTP/2 advholistichealth.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 45.79.86.40:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 2457
last-modified: Wed, 25 May 2022 01:39:52 GMT
etag: "194b-5dfcc2653316b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fresh-framework//framework/frslib/src/frslib.js?ver=1.57.0
45.79.86.40200 OK 9.9 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework//framework/frslib/src/frslib.js?ver=1.57.0
IP 45.79.86.40:0
Hash af6934c6b883d274457b4ca42796adfa
4f78d0a316c4eed6a83c461889c05ffdfe590341
fa257239e3754b512a015ddfd7f8d67df4c204be718239a650eb6273632dee0b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework//framework/frslib/src/frslib.js?ver=1.57.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 9942
last-modified: Wed, 16 Mar 2022 00:35:34 GMT
etag: "8002-5da4b176dd4a1-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/magnific-popup.js?ver=6.0.2
45.79.86.40200 OK 953 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/magnific-popup.js?ver=6.0.2
IP 45.79.86.40:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 3d8f6fdbe1a1cbec88d86123445dffd4
6accfd38b53e2b3285ef0c7054fcf57c0a5df087
78179b6dd334167a00a16e9740d788ae7705567ac88e825d154f7ee548b4f723
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/scripts/components/magnific-popup.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 953
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "e90-5da4b18f79476-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.1.0
45.79.86.40200 OK 42 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.1.0
IP 45.79.86.40:0
File type ASCII text, with very long lines (65335)
Hash 446e58f23216b7d8523e040d7558ba5d
34266767f99f839543609e6267f90161ca79e8e4
ca148f853fd760380822a68b419d7fc7979116f2469daf7141e8c0f5847d0f17
GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.1.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 42176
last-modified: Fri, 03 Mar 2017 08:18:01 GMT
etag: "1ad83-549cf2f1c6040-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/jquery.back-to-top.js?ver=6.0.2
45.79.86.40200 OK 446 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/jquery.back-to-top.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash fb1b4b8079036802464089fbf298aa64
dd55e48f0a1725da5113614bf33f8e6cefb35157
d1e0af52ea90bb7a57a0e99d84ee4779f7f27ed13be8cb2e5fc8c10bf1cac333
GET /wp-content/themes/ark/assets/plugins/jquery.back-to-top.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 446
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "444-5da4b18f76596-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1
45.79.86.40200 OK 18 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1
IP 45.79.86.40:0
File type ASCII text, with very long lines (64614), with CRLF line terminators
Hash b300af7280cf82d31e7f0b75c128598c
66b506bb8254f08ffe57c2b1e42722b73464670f
feffecee338ad546654ada73f52882c96356f6882a3e59cb540878415d77db1d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 18090
last-modified: Tue, 21 May 2019 03:58:08 GMT
etag: "fdb5-5895ddb507400-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1
45.79.86.40200 OK 6.5 kB URL HTTP/2 advholistichealth.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1
IP 45.79.86.40:0
File type ASCII text, with very long lines (15439)
Hash 0748a982f068af9766c253cb21601ff2
9994f710f5450ee963f9714f715c6c9dbd64d417
2caf6897d004cd4727e5ab8b9992bb08d96b6ac38917142d1c2a49f74e1e4114
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 6502
last-modified: Wed, 25 May 2022 01:39:52 GMT
etag: "43b3-5dfcc2653ae6c-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/bootstrap/js/bootstrap.min.js?ver=3.3.7
45.79.86.40200 OK 9.8 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/bootstrap/js/bootstrap.min.js?ver=3.3.7
IP 45.79.86.40:0
File type ASCII text, with very long lines (32033)
Hash c83dab682eea0b37ac9522e2856cbb6b
db1fb35549a4ac9cc12811f09bc4b07b48c51434
a9611bc805de07c98225bb878876a24b063fa52559adaf2ba4e997566d5cf3a1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/bootstrap/js/bootstrap.min.js?ver=3.3.7 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 9833
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "90b5-5da4b18f47790-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/style.css?ver=6.0.2
45.79.86.40200 OK 60 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/style.css?ver=6.0.2
IP 45.79.86.40:0
File type Unicode text, UTF-8 text, with very long lines (65005)
Hash 3df13b69363f7ce794780920970d387d
781a52b6c8c0998b7248fe157900e437df9d16fb
e65fa936fc2f795a970c84d80253d95ea9c4acf3c0c061ce5098d2bd84768436
GET /wp-content/themes/ark/style.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: text/css
content-length: 60488
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "7c210-5da4b18ef85e6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/jquery.touchSwipe.min.js?ver=6.0.2
45.79.86.40200 OK 5.0 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/jquery.touchSwipe.min.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with very long lines (20000)
Hash fb4b13a45c215e614b076c96c91837ad
0a97631e12a769a31e68cb2394c499ccf1422429
0a0fd07fe02a859bd977639e1750050d0a0dced1198907773f94e0047be3a95c
GET /wp-content/themes/ark/assets/plugins/jquery.touchSwipe.min.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 5048
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "4fbc-5da4b18f755f6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/wow.js?ver=6.0.2
45.79.86.40200 OK 350 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/wow.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash 533b2bcdcb0f8b324225534702dde950
9172e693c8469c097ec7e2b8e286314c08b7e071
50f6a0eb13c9eaa927f754f29d5d6f38633b9038b8d821e37fcb634cce4578c9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/scripts/components/wow.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 350
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "2e0-5da4b18f7a416-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/jquery.freshGrid.js?ver=1.57.0
45.79.86.40200 OK 6.4 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/jquery.freshGrid.js?ver=1.57.0
IP 45.79.86.40:0
Hash 497f68a5d66e8ff3efdc23533768cf87
8e592b04886fa5579998061fc1c737af7be3795f
0bac85a4aa4cee414aa3198e8ac3e1eb73db8243c3215396472a7e009d3c13cd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/jquery.freshGrid.js?ver=1.57.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 6352
last-modified: Wed, 16 Mar 2022 00:35:34 GMT
etag: "8759-5da4b176d9620-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/jquery.imagesloaded.pkgd.min.js?ver=3.2.0
45.79.86.40200 OK 2.6 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/jquery.imagesloaded.pkgd.min.js?ver=3.2.0
IP 45.79.86.40:0
File type ASCII text, with very long lines (7996), with CRLF line terminators
Hash 2dc01b108309dc8385bf52879b336bcc
9062f3f6ef2a4be57526c81b48623a556744e197
8f341781ce21e730f1dc6be0fe6c9158efdfaeede0bbb0eac07e49eb6cf4a3cb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/jquery.imagesloaded.pkgd.min.js?ver=3.2.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 2556
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "1fb7-5da4b18f76596-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/header-sticky.js?ver=6.0.2
45.79.86.40200 OK 643 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/header-sticky.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash 7c76ae6737cbc3e720e5fa1ffb2e06ad
e773057aa2220fea887052a6a3063d03fa7c04fd
1c642eaf9f738dd36c9bccffc4351f71371429fe44c6fc8b754f11e8ed57b7d2
GET /wp-content/themes/ark/assets/scripts/components/header-sticky.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 643
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "80b-5da4b18f7a416-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/magnific-popup/jquery.magnific-popup.min.js?ver=6.0.2
45.79.86.40200 OK 7.7 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/magnific-popup/jquery.magnific-popup.min.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with very long lines (21014), with CRLF line terminators
Hash 33e0b253c9471b17ba83efadcef1e311
672f8cac41d111ebb2d7e7d33ebeb8c23e170f15
ce700bc495ab11705ffd44079e91171f64bdd5ca738773744125506e447036a3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/magnific-popup/jquery.magnific-popup.min.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 7690
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "529a-5da4b18f48730-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/owl-carousel.js?ver=6.0.2
45.79.86.40200 OK 2.0 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/owl-carousel.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash d454c07fc447957d8e878e9298fe6662
3020c0f5bfebd61ef3eda8c9c44d1a4d1c4cf27e
92b01fc3357ae178b1d2914a2235e852c8d12496e25d1283f89d087f8d52d8f9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/scripts/components/owl-carousel.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 1981
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "3e9a-5da4b18f7a416-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/owl-carousel/owl.carousel.min.js?ver=1.3.2
45.79.86.40200 OK 10 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/owl-carousel/owl.carousel.min.js?ver=1.3.2
IP 45.79.86.40:0
File type ASCII text, with very long lines (32068)
Hash 8c8653b76bf5d033f23559751222ff93
062740fdc84cc223fd69055281346dafae2f6f5c
b3e7add5da93565978346f1b6d9829689f0dbf6341a031cc8190f96cb69e6d62
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/owl-carousel/owl.carousel.min.js?ver=1.3.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 10534
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "9df4-5da4b18f77536-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/google-map-multiple-info-marker.js?ver=6.0.2
45.79.86.40200 OK 1.3 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/google-map-multiple-info-marker.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash cbc0c9f72f9278fdb95ea09632eee10a
688c1a9329813d41511881e73e169f575c048b81
54df519ac09f11f492800741b11bfa8a5ae91abe28b72567294858bfc5d1a2ef
GET /wp-content/themes/ark/assets/scripts/components/google-map-multiple-info-marker.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 1260
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "e7c-5da4b18f79476-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/google-map.js?ver=0.4.21
45.79.86.40200 OK 13 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/google-map.js?ver=0.4.21
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash a0acb9a6d026184cc8a636c8f6789730
f15fa7f98b81f86d44dcf39edc2e0aefdca8df06
24ae7478f3f1b91f1bfda0e2ef793f8ec48d57b89d325f7bec2ed286674d223c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/google-map.js?ver=0.4.21 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 12832
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "f1cc-5da4b18f755f6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/auto-hiding-navbar.js?ver=6.0.2
45.79.86.40200 OK 634 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/auto-hiding-navbar.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash 45a41207d252e7269bae57aa42d95288
e551c63e3984e37ec37f0f43bafebb9c044df4dd
38c6240660950c409416fbf179828faaf6fce3e2997e7913905d09adf96accb4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/scripts/components/auto-hiding-navbar.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 634
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "7a4-5da4b18f7a416-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/validation/additional-methods.min.js?ver=1.14.0
45.79.86.40200 OK 5.0 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/validation/additional-methods.min.js?ver=1.14.0
IP 45.79.86.40:0
File type Unicode text, UTF-8 text, with very long lines (17072), with CRLF line terminators
Hash b4da1282c2676ef6ca5dce215d42bd85
8a0eed59c9ed02c15b983dbb6f52967ba110d8d1
2eee34d6fd8b647d07ac9ac174e84134b9d1f647c43ab2e5772383ccc89884cc
GET /wp-content/themes/ark/assets/plugins/validation/additional-methods.min.js?ver=1.14.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 5025
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "434b-5da4b18f79476-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/extern/wow.js/wow.min.js?ver=1.57.0
45.79.86.40200 OK 2.7 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/extern/wow.js/wow.min.js?ver=1.57.0
IP 45.79.86.40:0
File type ASCII text, with very long lines (8385)
Hash 642cdb5c8cacc5096438747217356e26
096d52889973afaa9e73bb4b76463c6af8f69df0
c929db744440739263b08afd47af845626a5f7b5b879177c194a91d72f668f02
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/extern/wow.js/wow.min.js?ver=1.57.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 2741
last-modified: Wed, 16 Mar 2022 00:35:34 GMT
etag: "20df-5da4b176d9620-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/custom-contact-form.js?ver=6.0.2
45.79.86.40200 OK 3.0 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/custom-contact-form.js?ver=6.0.2
IP 45.79.86.40:0
Hash abfbbd272bf3442868e970dffab2637d
905ec33a4f18f5770dfe5d8cac285b003dfcd06b
b971870e290e1cf7771ec51c8e4839d4bcdd5a05cbf1300281cd661cf5c7ffab
GET /wp-content/themes/ark/assets/scripts/components/custom-contact-form.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 3046
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "3e8d-5da4b18f7a416-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/app.js?ver=6.0.2
45.79.86.40200 OK 6.6 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/app.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash 66264c3b4c5178263e0ae9112c154ab6
3f9b4230d7522ab58f161f86fcb57fa37223889d
4f30a7fd5f5cad6fa3038de0e1740d754d43facc26a67653c159ff5017d11a1e
GET /wp-content/themes/ark/assets/scripts/app.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 6617
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "7769-5da4b18f7a416-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
45.79.86.40200 OK 5.0 kB URL HTTP/2 advholistichealth.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 5009
last-modified: Wed, 25 May 2022 01:39:52 GMT
etag: "48b9-5dfcc26539ecc-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
45.79.86.40200 OK 3.3 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
IP 45.79.86.40:0
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash 4ac0d5ab8d83806d59c4e1f7bf0a855a
81153a2f5e3a21febe9ede53c9f0073da3e14829
605fd4e7f4d3fbb5505bb81e3f72c685b6ef411c27cde2f7bab2787c3d870b10
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 3286
last-modified: Wed, 16 Mar 2022 00:35:06 GMT
etag: "25f8-5da4b15c34ded-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/validation/jquery.validate.min.js?ver=1.14.0
45.79.86.40200 OK 6.8 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/validation/jquery.validate.min.js?ver=1.14.0
IP 45.79.86.40:0
File type ASCII text, with very long lines (20952), with CRLF line terminators
Hash 4c3448abfe9ad3a150a9d2f8613edd56
24aff8953db9d6342ef00aadd31a89c4de0e361c
79ffebcdbfc82689fb4553bb6886610ab101af0dc0a693352022d78d139245a7
GET /wp-content/themes/ark/assets/plugins/validation/jquery.validate.min.js?ver=1.14.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 6801
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "5264-5da4b18f79476-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/uploads/2020/04/advholistichealth_logo_500px-1.png
45.79.86.40200 OK 12 kB URL HTTP/2 advholistichealth.com/wp-content/uploads/2020/04/advholistichealth_logo_500px-1.png
IP 45.79.86.40:0
File type PNG image data, 500 x 184, 8-bit/color RGBA, non-interlaced\012- data
Hash 99de601c1e62be8462c40f55a80b15a9
ae66851d37529ddcd5af88f3086ac00715d9e86b
6764bd5e3246fe19d065404ba86e045729489aeff8c1060611705610a3fa6b1e
GET /wp-content/uploads/2020/04/advholistichealth_logo_500px-1.png HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: image/png
content-length: 11911
last-modified: Fri, 10 Apr 2020 00:51:56 GMT
etag: "2e87-5a2e523d62300"
accept-ranges: bytes
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/form-modal.js?ver=6.0.2
45.79.86.40200 OK 934 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/form-modal.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash dc22277aa9fb13ae040576bb3597abf8
5eb8ca0fbbe2b0037c36ef6719e712fc80b386ab
07944fdae1d3b2591d0849ea7483ef0212cecd9b205a724056b6fa30c5e5b315
GET /wp-content/themes/ark/assets/scripts/components/form-modal.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 934
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "11c1-5da4b18f79476-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3213
Expires: Thu, 29 Sep 2022 01:14:44 GMT
Date: Thu, 29 Sep 2022 00:21:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3213
Expires: Thu, 29 Sep 2022 01:14:44 GMT
Date: Thu, 29 Sep 2022 00:21:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3213
Expires: Thu, 29 Sep 2022 01:14:44 GMT
Date: Thu, 29 Sep 2022 00:21:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3213
Expires: Thu, 29 Sep 2022 01:14:44 GMT
Date: Thu, 29 Sep 2022 00:21:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facd7b538-d96a-4708-95ed-af68304277d4.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facd7b538-d96a-4708-95ed-af68304277d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dca86bc432ad7d82538e6edac4744212
06a379cb61f7d7f113225b46e3f5e7ced25c6878
55e111e036369e426b8f32f4a43ecec7fb8257b20de8445ae533676acbacb8de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Facd7b538-d96a-4708-95ed-af68304277d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9312
x-amzn-requestid: 0982fd37-74e6-4b48-8c8c-3a34fd383655
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZJo02EEQIAMFsIg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6333bb52-66367f6431f844e965b07df5;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 03:11:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: IFwIHiwv4TBfiiIZJ_Y8EYO1wA5sPyMRkCNbHrawIa_0MvfU27_rmQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 03:26:36 GMT
age: 75275
etag: "06a379cb61f7d7f113225b46e3f5e7ced25c6878"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3213
Expires: Thu, 29 Sep 2022 01:14:44 GMT
Date: Thu, 29 Sep 2022 00:21:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d0e9057-f203-4080-95b8-652ecd15effa.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d0e9057-f203-4080-95b8-652ecd15effa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c62a6368c456e9614ca4c8e360a2ef12
35ec6e80d324bb215796c590a7ffafbaea55d88e
90a37acc6beda1aa98a98cb84e00a7e469d6d919a14f4709c5f67a83ae95278d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d0e9057-f203-4080-95b8-652ecd15effa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7859
x-amzn-requestid: 34d0718f-46d4-446f-bb06-8449bd8f4287
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZIlO4FcBoAMFy0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63334f2b-58ae81c9077e4f1575750f15;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 19:29:47 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: XwUZAphoqael30FgWCRQlHqBpjBOSG7rnlbPNKyojhONZ625gCUI5g==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 08:28:02 GMT
age: 57189
etag: "35ec6e80d324bb215796c590a7ffafbaea55d88e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff61695e2-14b2-44b1-b2d0-93aed95788f3.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff61695e2-14b2-44b1-b2d0-93aed95788f3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 33d8a1c1782f57095619cfba8c58a4a5
9f21cefa8882ea63961ae2eb51b7cd406b2358d6
47c04dd3680f76a5bc54157c64d64dcb7dea517c8dace4fdcf8e46df43fa9cae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff61695e2-14b2-44b1-b2d0-93aed95788f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10272
x-amzn-requestid: 443e641f-25dc-456c-bb7f-ae23153dc52d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGVSwECzoAMFpeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633268de-20524e433a72428653175a94;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 03:07:10 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: k1I8tevinkxbPVl-cUWVt8vOEqQK5rxo5B17xyQGMSkCUbrbNj4AmA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 03:48:25 GMT
age: 73966
etag: "9f21cefa8882ea63961ae2eb51b7cd406b2358d6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6acbf011-a3c6-43cd-8ac6-b264d0806686.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6acbf011-a3c6-43cd-8ac6-b264d0806686.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2dae2d2b731dbea3d72711eb4dff2567
9d4b472b38d146bb1d9b46ee881628abb8cd5dc5
21f6b8a436e6ac990601a046f85ed78a2a4af899550d80ce66c43cfdfdcdaae7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6acbf011-a3c6-43cd-8ac6-b264d0806686.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12387
x-amzn-requestid: dd1dbee1-daca-4539-9c84-a64a1c1b1162
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGU0FFLroAMFXHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63326819-537af7437fe7e7141bee544c;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 03:03:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: IHmoS-ze77qiX6SYhy7-xFiMRLe-x_7qcK0AWcwcPjFvchtBRVyFIQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 04:25:00 GMT
age: 71771
etag: "9d4b472b38d146bb1d9b46ee881628abb8cd5dc5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 456968f691ae9464d69a37bffe9bd7ce
31b8538deb0f00d5b4182739a4a2fcc1b956a998
5cde1e3158e6c6c0b7a01d3bd32f2aa292b3b205f604e5c4ed71cafedad06bf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb2016911-a1a6-4bdf-a8f3-89e94a0aaff7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7810
x-amzn-requestid: f2d2333f-0b81-4875-9058-cc1f3d238dd4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGU0HEeVIAMFoQw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332681a-06d5f81114b0bb2547f4ca9a;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 03:03:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Nbkg06K87aXb-TZpPY0HPI_xlbQYgzgOwrv3FijeFZgG6mks4hiRHg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 04:07:24 GMT
age: 72827
etag: "31b8538deb0f00d5b4182739a4a2fcc1b956a998"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6362b4f1-5935-43c9-9147-6d019a1ea6cd.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6362b4f1-5935-43c9-9147-6d019a1ea6cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30471179bd7cdeecea2fa4ea98701aef
2bbcd6305b4da3204bf1c04b6db23d44cfc84fbb
967e070aec3942c64cc6c4cfdc13d430825c9e5c26dbec5bb3d66237d5978dfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6362b4f1-5935-43c9-9147-6d019a1ea6cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4235
x-amzn-requestid: 60825c64-7743-4b16-b80d-d1195ccb0f23
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMK2nFsDoAMFRwg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be90-1898e5d9111db7c843c1ebb4;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C-XC9qsktkENdI6lWZp5RQjeEvrrFMUfBq1mA5dxEjRq5tkfL5Jsxw==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:40:46 GMT
age: 9625
etag: "2bbcd6305b4da3204bf1c04b6db23d44cfc84fbb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eb2f3cc13b8ab763c5f346d6fc23054d
1768cc61721a6a6624c1ccbf2c874342f53abd99
3faee940dd222a051862bc2a4e090ecd2cc1f2ead8b1a5c84e10241f31461c5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 00:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 15dbf298fc5c3f79b34abf59118cc01c
c48dc908b9aa86adb5017683a23b625d8fd1b955
9061294bc67906630f52dfdb486941691a8b9291b938c032076cef3f7bf21ce7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 00:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://advholistichealth.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 17223
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://advholistichealth.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:21 GMT
expires: Thu, 28 Sep 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 17210
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://advholistichealth.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 17223
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 15dbf298fc5c3f79b34abf59118cc01c
c48dc908b9aa86adb5017683a23b625d8fd1b955
9061294bc67906630f52dfdb486941691a8b9291b938c032076cef3f7bf21ce7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 00:21:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-awesome4/ff-font-awesome4.woff?v=4.2.0
45.79.86.40200 OK 98 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-awesome4/ff-font-awesome4.woff?v=4.2.0
IP 45.79.86.40:0
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-awesome4/ff-font-awesome4.woff?v=4.2.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-awesome4/ff-font-awesome4.css?ver=6.0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:11 GMT
content-type: application/font-woff
content-length: 98024
last-modified: Wed, 16 Mar 2022 00:35:33 GMT
etag: "17ee8-5da4b176c6d3e"
accept-ranges: bytes
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/uploads/2020/04/cropped-advholistichealth_logo_square_01-2-192x192.png
45.79.86.40200 OK 16 kB URL HTTP/2 advholistichealth.com/wp-content/uploads/2020/04/cropped-advholistichealth_logo_square_01-2-192x192.png
IP 45.79.86.40:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 47e7a95e57d7b21b0690b6c3916e5814
08cdf8a00d2fdba6cafee671708a66c041008a42
cad78211ee1131a90cfefaae3fb31b3da513598e97a3f12382a2faa9456c09ae
GET /wp-content/uploads/2020/04/cropped-advholistichealth_logo_square_01-2-192x192.png HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:11 GMT
content-type: image/png
content-length: 15840
last-modified: Fri, 10 Apr 2020 00:55:29 GMT
etag: "3de0-5a2e530884240"
accept-ranges: bytes
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/uploads/2020/04/cropped-advholistichealth_logo_square_01-2-32x32.png
45.79.86.40200 OK 1.3 kB URL HTTP/2 advholistichealth.com/wp-content/uploads/2020/04/cropped-advholistichealth_logo_square_01-2-32x32.png
IP 45.79.86.40:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash cffbab927e90b531953f8abf869cec17
8bc0a3c4b5e286e608deefec3a98775920e20e87
71677e198a21a2ae7485e979ae9fefa8eb5dc7254f964bd401af2e38f7b793fd
GET /wp-content/uploads/2020/04/cropped-advholistichealth_logo_square_01-2-32x32.png HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:11 GMT
content-type: image/png
content-length: 1307
last-modified: Fri, 10 Apr 2020 00:55:29 GMT
etag: "51b-5a2e530884240"
accept-ranges: bytes
X-Firefox-Spdy: h2
advholistichealth.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
45.79.86.40200 OK 819 kB URL HTTP/2 advholistichealth.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 45.79.86.40:0
Size 819 kB (819121 bytes)
Hash 51705bd84d58b12c8daf8d9afc1ac57f
0e5812095db7f24d85040538802d478db474b70d
c3dee90c13a21317a51d48d6b8913e1f72d9178c426dfe5747b600a25cbf6bdd
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 00:21:10 GMT
content-type: application/javascript
content-length: 30908
last-modified: Wed, 01 Sep 2021 05:01:46 GMT
etag: "15db1-5cae7f6894280-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C600%2C700%2C300i%2C400i%2C700i%7CFjord+One%3A300%2C400%2C500%2C600%2C700%2C300i%2C400i%2C700i&subset=cyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin%2Clatin-ext%2Cvietnamese&ver=1.57.0
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C600%2C700%2C300i%2C400i%2C700i%7CFjord+One%3A300%2C400%2C500%2C600%2C700%2C300i%2C400i%2C700i&subset=cyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin%2Clatin-ext%2Cvietnamese&ver=1.57.0
IP 216.58.211.10:0
GET /css?family=Roboto%3A300%2C400%2C500%2C600%2C700%2C300i%2C400i%2C700i%7CFjord+One%3A300%2C400%2C500%2C600%2C700%2C300i%2C400i%2C700i&subset=cyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin%2Clatin-ext%2Cvietnamese&ver=1.57.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 29 Sep 2022 00:21:09 GMT
date: Thu, 29 Sep 2022 00:21:09 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2