firefox.settings.services.mozilla.com/v1/
13.224.132.72200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 13.224.132.72:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 20:05:45 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 3fbb1f22a07ea64de9c80aefc9230214.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR3-C2
X-Amz-Cf-Id: 1veCFiWyY19slD49I7D9mlqt1Dykn5QAabjZLWJvcaPwpn1z7P5Mbw==
Age: 1055
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6098
Expires: Sat, 24 Sep 2022 22:04:58 GMT
Date: Sat, 24 Sep 2022 20:23:20 GMT
Connection: keep-alive
pain-wellness.com/
162.0.209.92301 Moved Permanently 707 B IP 162.0.209.92:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
keep-alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Sat, 24 Sep 2022 20:23:20 GMT
server: LiteSpeed
location: https://pain-wellness.com/
x-turbo-charged-by: LiteSpeed
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
13.224.132.77200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 13.224.132.77:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 24 Sep 2022 04:13:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 95b26b715ee81beaff56d7e9f185da2e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR3-C2
x-amz-cf-id: pCuUV66PH0D8tgE0_1AMZ8TOF6R7e8t8AYHV3pqH5rJpF3VQ2ENYoQ==
age: 58217
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 20:23:20 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
13.224.132.72200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 13.224.132.72:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Expires, Alert, Content-Length, ETag, Cache-Control, Content-Type, Backoff, Pragma, Last-Modified
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sat, 24 Sep 2022 20:20:46 GMT
Expires: Sat, 24 Sep 2022 21:02:43 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a1f249a9bf642aa76e446956825f42a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR3-C2
X-Amz-Cf-Id: psrMss4w9h6oNO_dXgK_NML1zCPXh_L37Jhs9APHlJMwsDlFw61Z7Q==
Age: 154
ocsp.sectigo.com/
104.18.32.68200 OK 471 B IP 104.18.32.68:0
Hash aebb10601557daee4d894770b1f1b53a
516566d9add2020e30671ee92bb2ee36d7b60f46
b552019daa4963b410dfd27b16bff0b7f79d002b2756dfba59dd953c739165a3
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 20:23:20 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Fri, 23 Sep 2022 16:44:25 GMT
Expires: Fri, 30 Sep 2022 16:44:24 GMT
Etag: "516566d9add2020e30671ee92bb2ee36d7b60f46"
Cache-Control: max-age=504663,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74fe3cc38fd40b61-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a7809de115ea73f8b61f3d20a9978493
01fc65a2b694d7aadd5204d21801e87b2b55b73e
72692486033feeb149424c59576c6c75b17228dfc89b4c369d2e17cc4bff3d52
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3747
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 20:23:21 GMT
Last-Modified: Sat, 24 Sep 2022 19:20:54 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.70.239.215101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.70.239.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: d3bkCBI80FGE7VBQyiezTA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: y1D+pTQteB8kTSLKxX5aWdiCsP4=
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 14c4f50e0f41f858e858b124dcc866ec
1ad2814c77a84887c0f1547a775737e3e6c83f01
fa075971e9f184bf8d79929bbd7e981414d78f12ea06e3246ea4adfa2fbf4eeb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3939
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 20:23:21 GMT
Last-Modified: Sat, 24 Sep 2022 19:17:42 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 20:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 23ba09c14e337ac70d877d2ed33dc795
175d5155889b45711d0a9050116591ad25e74891
cb117ac56fe205bfca3b512ed3d8ddb46a7115446d099739cc4d111c853696ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 20:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4de431d1f0b2fb15b71b607b17be7d3d
60f7beb2f1cf28d72cb159ca92a20cfb9105b493
a19c5c057f664ba912b3b7d03f9491cc81336b9e836158b795fd18a1ff1a654f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 20:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
104.17.25.14200 OK 6.2 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.12.9/umd/popper.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (19015)
Hash 7b4114faa411d059a9a5ac4b5b4d9dee
277da4486916fa3a4ab3375f47bc98f58dbf90f6
60b3528de2f7d48cbb335d19dddef756aaacc70f73d4254a2ef17978a14ca0d9
GET /ajax/libs/popper.js/1.12.9/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pain-wellness.com
Connection: keep-alive
Referer: https://pain-wellness.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 24 Sep 2022 20:23:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 6157
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-4af4"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1995426
expires: Thu, 14 Sep 2023 20:23:21 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MstLyg4MEBP8Ft9H0UU7KzEcaEBbDLAEb9YGjyt32A1QAnmAMKE9gTu1LYla8juV6q0LIxIXXJ0BVK4KsV8cglKnBhESUGoxUXwLfnZv73mrPpW2ovLhBtumzB9E9WqnewOmr1O%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74fe3cc7afebb4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js
142.250.74.164200 OK 554 B URL HTTP/2 www.google.com/recaptcha/api.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (850), with no line terminators
Hash 2311f1fa9653aad9f269b060d254e517
5616b0baad9134f8e12ab3fb911578740aa392fb
51f53051cf837a6d1e0de5e5db5bb5d5a2c1e4b23d4e7323ce306e24a80ba2b7
GET /recaptcha/api.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
expires: Sat, 24 Sep 2022 20:23:21 GMT
date: Sat, 24 Sep 2022 20:23:21 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 554
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pain-wellness.com/images/mail_icon.png
162.0.209.92200 OK 2.5 kB URL HTTP/2 pain-wellness.com/images/mail_icon.png
IP 162.0.209.92:0
File type PNG image data, 38 x 33, 8-bit/color RGBA, non-interlaced\012- data
Hash 3bab9b87f774b27d46896b7ba65ce321
129f079be11be4d5a3403fb93866ffd7c0352fe0
5a886aa3f463f37809e0c79cdf7c928dd50c141bb8b31cce873910cf37ab03f9
GET /images/mail_icon.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/png
last-modified: Thu, 29 Oct 2020 18:16:40 GMT
accept-ranges: bytes
content-length: 2539
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.6.0/slick.js
104.17.25.14200 OK 12 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.6.0/slick.js
IP 104.17.25.14:0
Hash fab824518fd82853ed2698f39d8ec43e
df19bf45131085a88eb2cd4c07e2bda44cef0e98
d55908906f498a577e0f9cc6ffeac157765acb67643c23d22c0d51b352e208c4
GET /ajax/libs/slick-carousel/1.6.0/slick.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 24 Sep 2022 20:23:21 GMT
content-type: application/javascript; charset=utf-8
content-length: 12032
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fd5-14929"
last-modified: Mon, 04 May 2020 16:16:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9491349
expires: Thu, 14 Sep 2023 20:23:21 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tFZBZy%2FYqtSnItXzn1CsRg%2Fu3l5RFAwD5NOnoTH2csRUwjHwrBJfm2f2Yh8b3MmND0JqmwsmBKwPv9gA2tu9hNfgHNs8W8%2Fwb%2BXJoriLXREHE1RpqU31Boyjg7QQkQu5m3S5wzwY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74fe3cc7bd88b52d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pain-wellness.com/
162.0.209.92200 OK 14 kB IP 162.0.209.92:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2082), with CRLF line terminators
Hash 6737e2709441334578724749382faf80
4e4a71efebc8eab740bbd3ee644e5aa8106687c9
c52310af6e9fd79c291f579d6c707645775237b580d5153db2c4915c63b76307
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/8.0.23
set-cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd; path=/; secure
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 23ba09c14e337ac70d877d2ed33dc795
175d5155889b45711d0a9050116591ad25e74891
cb117ac56fe205bfca3b512ed3d8ddb46a7115446d099739cc4d111c853696ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 20:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 23ba09c14e337ac70d877d2ed33dc795
175d5155889b45711d0a9050116591ad25e74891
cb117ac56fe205bfca3b512ed3d8ddb46a7115446d099739cc4d111c853696ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 20:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 23ba09c14e337ac70d877d2ed33dc795
175d5155889b45711d0a9050116591ad25e74891
cb117ac56fe205bfca3b512ed3d8ddb46a7115446d099739cc4d111c853696ae
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 20:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pain-wellness.com/images/twitter.png
162.0.209.92200 OK 1.9 kB URL HTTP/2 pain-wellness.com/images/twitter.png
IP 162.0.209.92:0
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 8317b0992f5aaa6e55aa991bdf3e6497
5f652bd6aa95c63ce990885c4d7c8737eb1aad18
91ea91f8a5737acbc59999d09f946fac00ce1d9d7cb248317f76c353ea16589c
GET /images/twitter.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/png
last-modified: Thu, 29 Oct 2020 18:17:18 GMT
accept-ranges: bytes
content-length: 1899
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ajax.aspnetcdn.com/ajax/jquery/jquery-1.10.2.min.js
152.199.19.160200 OK 42 kB URL HTTP/2 ajax.aspnetcdn.com/ajax/jquery/jquery-1.10.2.min.js
IP 152.199.19.160:0
File type ASCII text, with very long lines (32072)
Hash 54998ffa3c6e8385b98b3c6495644f92
e49357ddbe3491d9d0c8e83783b525cbd0d0f420
e475f0b97f212acf9e817003d9f8813ae08c8f484207d05faf152246f5d062be
GET /ajax/jquery/jquery-1.10.2.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 8440239
cache-control: public,max-age=31536000
content-type: application/javascript
date: Sat, 24 Sep 2022 20:23:21 GMT
etag: "f168924cc33d21:0"
last-modified: Mon, 31 Oct 2016 23:10:49 GMT
server: ECAcc (ska/F79E)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 41705
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cfbe772bfdcc656e94ceed53256863ca
34055ed3761ab4b69af25a2cb70ca7a337a9f79b
7464464772c70e6a9f1b516b9fc3b60f4e567c10f968c573d5a187f5f22d0722
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 20:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 14c4f50e0f41f858e858b124dcc866ec
1ad2814c77a84887c0f1547a775737e3e6c83f01
fa075971e9f184bf8d79929bbd7e981414d78f12ea06e3246ea4adfa2fbf4eeb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3939
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 20:23:21 GMT
Last-Modified: Sat, 24 Sep 2022 19:17:42 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 279
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 267300d587831dda7559c30c40cc614e
d7ff0b9754e61f5d4178eddb5e63c3390ab559c8
ec7aad1a3116ce8ef5258b49de87cf3456c8c4890206fa5d46c8e510ded80ac0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 20:23:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pain-wellness.com/images/add_icon.png
162.0.209.92200 OK 3.1 kB URL HTTP/2 pain-wellness.com/images/add_icon.png
IP 162.0.209.92:0
File type PNG image data, 38 x 34, 8-bit/color RGBA, non-interlaced\012- data
Hash ac9189efbc8890715a70bd6bdac3a320
9e6b3c9dfb50be3e9dbb19a9bcb95fbcedc62421
5e4e885ab8b0901e147fc26b974578053ad2c9c5545fbb967d64aa85da592fd9
GET /images/add_icon.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/png
last-modified: Thu, 29 Oct 2020 18:16:16 GMT
accept-ranges: bytes
content-length: 3149
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/images/facebook.png
162.0.209.92200 OK 1.2 kB URL HTTP/2 pain-wellness.com/images/facebook.png
IP 162.0.209.92:0
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 3012e7b3c2a66fc3a0009f29cbb24b20
af20a567e0c7ba688ffafe516c3b7117e1f90422
e2ce46c92d5ff5c65387222f8bf18d04ec327e519870f428aca46d35f45c3920
GET /images/facebook.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/png
last-modified: Thu, 29 Oct 2020 18:16:32 GMT
accept-ranges: bytes
content-length: 1240
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/images/call_icon.png
162.0.209.92200 OK 1.6 kB URL HTTP/2 pain-wellness.com/images/call_icon.png
IP 162.0.209.92:0
File type PNG image data, 30 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash ed52996e6864d62d6d66ce78cbeb79a6
bbc20d0e6ef9855633c735b908762a65b194c16c
ecb8810c3225ce887164c6b3c60d364a386246739dad650cc8150556f19a6cf1
GET /images/call_icon.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/png
last-modified: Thu, 29 Oct 2020 18:16:22 GMT
accept-ranges: bytes
content-length: 1605
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/images/linkedin.png
162.0.209.92200 OK 1.3 kB URL HTTP/2 pain-wellness.com/images/linkedin.png
IP 162.0.209.92:0
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Hash 7c9f80a927b0e6663c8f8f830493a10e
fcf367455e5c73973b0c7d9dc11147d89aaf1410
f01def9f10f2631f8d3208ac3fd5d5afd53a777677c4bd6cf8a1462a3efd8d1d
GET /images/linkedin.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/png
last-modified: Thu, 29 Oct 2020 18:16:36 GMT
accept-ranges: bytes
content-length: 1317
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/images/logo.png
162.0.209.92200 OK 13 kB URL HTTP/2 pain-wellness.com/images/logo.png
IP 162.0.209.92:0
File type PNG image data, 586 x 129, 8-bit colormap, non-interlaced\012- data
Hash 5a1ed2e6016dfe1ca3d6357047e5476e
3810635dcd7cbe02f2084f4e950c36e28026964c
9c428eb0865ea53f84b0e9c00b13ea6cf28ad387bc16bc837ca8750125966302
GET /images/logo.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/png
last-modified: Thu, 29 Oct 2020 18:16:40 GMT
accept-ranges: bytes
content-length: 12697
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3320.5865932562115!2d-117.8591785!3d33.6678722!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80dcde5f3ef4e441%3A0x416941ea6a7cfc41!2s4700%20Von%20Karman%20Ave%20%231000%2C%20Newport%20Beach%2C%20CA%2092660%2C%20USA!5e0!3m2!1sen!2sin!4v1656409546541!5m2!1sen!2sin
142.250.74.164200 OK 921 B URL HTTP/2 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3320.5865932562115!2d-117.8591785!3d33.6678722!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80dcde5f3ef4e441%3A0x416941ea6a7cfc41!2s4700%20Von%20Karman%20Ave%20%231000%2C%20Newport%20Beach%2C%20CA%2092660%2C%20USA!5e0!3m2!1sen!2sin!4v1656409546541!5m2!1sen!2sin
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1586)
Hash f1c8888c10cdb5dfd4e143bccccb12eb
4d685c90c7d7d05a92e1e4a0af26d413630543a5
9e8d0a12f63b5f26ef1581e1bcb2e63d6b4a1aade030c76daa7646ad3e9bd498
GET /maps/embed?pb=!1m18!1m12!1m3!1d3320.5865932562115!2d-117.8591785!3d33.6678722!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80dcde5f3ef4e441%3A0x416941ea6a7cfc41!2s4700%20Von%20Karman%20Ave%20%231000%2C%20Newport%20Beach%2C%20CA%2092660%2C%20USA!5e0!3m2!1sen!2sin!4v1656409546541!5m2!1sen!2sin HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sat, 24 Sep 2022 20:23:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-7dMN94X7ttfYCr5eBoKf_w' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 921
x-xss-protection: 0
server-timing: gfet4t7; dur=204
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3317.313767294071!2d-117.83557528442279!3d33.75255694090995!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80dcd97dd08726e7%3A0x3d391c2cf90c4a72!2s801%20N%20Tustin%20Ave%20%23507%2C%20Santa%20Ana%2C%20CA%2092705%2C%20USA!5e0!3m2!1sen!2sin!4v1603897327658!5m2!1sen!2sin
142.250.74.164200 OK 915 B URL HTTP/2 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3317.313767294071!2d-117.83557528442279!3d33.75255694090995!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80dcd97dd08726e7%3A0x3d391c2cf90c4a72!2s801%20N%20Tustin%20Ave%20%23507%2C%20Santa%20Ana%2C%20CA%2092705%2C%20USA!5e0!3m2!1sen!2sin!4v1603897327658!5m2!1sen!2sin
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1554)
Hash 7318fd52b6d692a0b8a1910fec9825e4
91382fd7f8df0a98a4ed1fdb18153e789b19078d
f0d99679e988b99e9b4743b21fa2d8f6e88a3653003de92cb15c7eeb02de1963
GET /maps/embed?pb=!1m18!1m12!1m3!1d3317.313767294071!2d-117.83557528442279!3d33.75255694090995!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80dcd97dd08726e7%3A0x3d391c2cf90c4a72!2s801%20N%20Tustin%20Ave%20%23507%2C%20Santa%20Ana%2C%20CA%2092705%2C%20USA!5e0!3m2!1sen!2sin!4v1603897327658!5m2!1sen!2sin HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sat, 24 Sep 2022 20:23:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-5DTxk4aWAO9_0XOMcJC4Tg' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 915
x-xss-protection: 0
server-timing: gfet4t7; dur=246
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3313.1520392573143!2d-118.15143998479!3d33.85997238065871!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80dd32e5db54db45%3A0x9116318ce63bfc05!2s3650%20South%20St%20%23208%2C%20Lakewood%2C%20CA%2090712%2C%20USA!5e0!3m2!1sen!2sin!4v1646478149696!5m2!1sen!2sin
142.250.74.164200 OK 971 B URL HTTP/2 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3313.1520392573143!2d-118.15143998479!3d33.85997238065871!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80dd32e5db54db45%3A0x9116318ce63bfc05!2s3650%20South%20St%20%23208%2C%20Lakewood%2C%20CA%2090712%2C%20USA!5e0!3m2!1sen!2sin!4v1646478149696!5m2!1sen!2sin
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1633)
Hash 75d25e83fd075d253b54896539fddb0b
6aef1a95c6d72b19ba3d1da0e39e421af78ed964
f270fa760fac7b8f78c0ff31ec78b7096b6af23efe40fcd2ce9b7d55dcec43fd
GET /maps/embed?pb=!1m18!1m12!1m3!1d3313.1520392573143!2d-118.15143998479!3d33.85997238065871!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80dd32e5db54db45%3A0x9116318ce63bfc05!2s3650%20South%20St%20%23208%2C%20Lakewood%2C%20CA%2090712%2C%20USA!5e0!3m2!1sen!2sin!4v1646478149696!5m2!1sen!2sin HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sat, 24 Sep 2022 20:23:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-gagscJaxT-VNpGucVj_q_Q' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 971
x-xss-protection: 0
server-timing: gfet4t7; dur=183
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3303.6630173516032!2d-117.5687410844166!3d34.10377222245959!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80c335e4321a1c2b%3A0xfecd520531f55c28!2s10841%20White%20Oak%20Ave%20%23201%2C%20Rancho%20Cucamonga%2C%20CA%2091730%2C%20USA!5e0!3m2!1sen!2sin!4v1603897300396!5m2!1sen!2sin
142.250.74.164200 OK 926 B URL HTTP/2 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3303.6630173516032!2d-117.5687410844166!3d34.10377222245959!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80c335e4321a1c2b%3A0xfecd520531f55c28!2s10841%20White%20Oak%20Ave%20%23201%2C%20Rancho%20Cucamonga%2C%20CA%2091730%2C%20USA!5e0!3m2!1sen!2sin!4v1603897300396!5m2!1sen!2sin
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1597)
Hash 2389914199056f88244b36f7c53bf330
e8e5aa9a02325b61c8af60ab8b3b5b2d9bdadff5
abfa2cedb39e0cdf59dab9febfae0554b4b6082b0c7aa5c7860d55fb3f6c26b6
GET /maps/embed?pb=!1m18!1m12!1m3!1d3303.6630173516032!2d-117.5687410844166!3d34.10377222245959!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80c335e4321a1c2b%3A0xfecd520531f55c28!2s10841%20White%20Oak%20Ave%20%23201%2C%20Rancho%20Cucamonga%2C%20CA%2091730%2C%20USA!5e0!3m2!1sen!2sin!4v1603897300396!5m2!1sen!2sin HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sat, 24 Sep 2022 20:23:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-dkl-8z1wZrDWVkq9YGafYQ' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 926
x-xss-protection: 0
server-timing: gfet4t7; dur=193
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3310.5875153770207!2d-117.44067108478825!3d33.92601428064042!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80dcb0db533fe8a1%3A0x391ccaf99f5c11ff!2s9041%20Magnolia%20Ave%20Suite%2003%2C%20Riverside%2C%20CA%2092503%2C%20USA!5e0!3m2!1sen!2sin!4v1646389436930!5m2!1sen!2sin
142.250.74.164200 OK 918 B URL HTTP/2 www.google.com/maps/embed?pb=!1m18!1m12!1m3!1d3310.5875153770207!2d-117.44067108478825!3d33.92601428064042!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80dcb0db533fe8a1%3A0x391ccaf99f5c11ff!2s9041%20Magnolia%20Ave%20Suite%2003%2C%20Riverside%2C%20CA%2092503%2C%20USA!5e0!3m2!1sen!2sin!4v1646389436930!5m2!1sen!2sin
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1571)
Hash ef523e3e3f2a83999affbd51b032eed7
69559b290fc37b745e6e2982c727c60fe111cd2e
bfd8340d2b94c41d1d65b63f11cec3df19297c367cc4ccb1af9204859582aca0
GET /maps/embed?pb=!1m18!1m12!1m3!1d3310.5875153770207!2d-117.44067108478825!3d33.92601428064042!2m3!1f0!2f0!3f0!3m2!1i1024!2i768!4f13.1!3m3!1m2!1s0x80dcb0db533fe8a1%3A0x391ccaf99f5c11ff!2s9041%20Magnolia%20Ave%20Suite%2003%2C%20Riverside%2C%20CA%2092503%2C%20USA!5e0!3m2!1sen!2sin!4v1646389436930!5m2!1sen!2sin HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
date: Sat, 24 Sep 2022 20:23:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
vary: Accept-Language
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-NeDvcrXbXrxbRlV0SAHJjw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
content-encoding: gzip
server: mafe
content-length: 918
x-xss-protection: 0
server-timing: gfet4t7; dur=209
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pain-wellness.com/css/conditional.css
162.0.209.92200 OK 14 kB URL HTTP/2 pain-wellness.com/css/conditional.css
IP 162.0.209.92:0
File type ASCII text, with very long lines (14065)
Hash 9cef993abaee7190c95847fc25564c19
649c81da7e838aa14ba61da55943089de39ed211
f0d1a5fca8cb5cfb2f2925083b43f028274ed1c33534f9ff327de9dfc25345ab
GET /css/conditional.css HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: text/css
last-modified: Tue, 23 Nov 2021 14:02:14 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13574
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 20:23:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash fa5a7fd1c3d5eed2a8816ac62ad73e51
6536f3880457c6ced9534d5cf10615b6daf42aea
3c3a74be5d72d9e2b5ecdaeafbbf3d0029cd5848d2483cfa10da14859deff436
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 20:23:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash da681c2f112645651e5b32be2cfcd052
2e57e4163b8ed8ceebe8c6dde5ff1aa5efc7b946
302a7e1f8156051b7c793c61fbe3e81096374431e22bd9821b4aa38e1a5772f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 20:23:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pain-wellness.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 262154
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pain-wellness.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 19:34:08 GMT
expires: Thu, 21 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 262154
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
142.250.74.163200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Hash fe424f96cb627d8b835cb001af17f56e
c5b4368fed99812a99036fba86d01367b5549505
35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pain-wellness.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 21:14:35 GMT
expires: Tue, 19 Sep 2023 21:14:35 GMT
cache-control: public, max-age=31536000
age: 428927
last-modified: Mon, 18 Jul 2022 19:24:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pain-wellness.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 14:52:00 GMT
expires: Thu, 21 Sep 2023 14:52:00 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 279082
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pain-wellness.com/Scripts/script.int.dg.js
162.0.209.92200 OK 1.9 kB URL HTTP/2 pain-wellness.com/Scripts/script.int.dg.js
IP 162.0.209.92:0
File type ASCII text, with very long lines (1795)
Hash ddbe00cdceef3962c6324a35b9a20785
b1906b3e65785837c7a00c1c144fb279d80c6610
fd79b6ac33cfd2403193e341f697bb38b787bd53089b37f205b7cd97c91f0488
Analyzer Verdict Alert fortinet Malware
GET /Scripts/script.int.dg.js HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: application/javascript
last-modified: Thu, 29 Oct 2020 18:05:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1895
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5608
Expires: Sat, 24 Sep 2022 21:56:50 GMT
Date: Sat, 24 Sep 2022 20:23:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5608
Expires: Sat, 24 Sep 2022 21:56:50 GMT
Date: Sat, 24 Sep 2022 20:23:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5608
Expires: Sat, 24 Sep 2022 21:56:50 GMT
Date: Sat, 24 Sep 2022 20:23:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5608
Expires: Sat, 24 Sep 2022 21:56:50 GMT
Date: Sat, 24 Sep 2022 20:23:22 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5608
Expires: Sat, 24 Sep 2022 21:56:50 GMT
Date: Sat, 24 Sep 2022 20:23:22 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:59:08 GMT
age: 80654
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lAQOV9_fZ2RFvhRKMtDOeRTWJc-Jo1u-DrtJshcQuCSOUXVbNMjhaw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:56:56 GMT
age: 80786
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a4b36e1bf29c9c82f069cdd3c50874c
d2180d40ceb16924a87a41aad90dedb0bb912085
aab96d28ea8e21e6d37449eba400cac45acced1825ebdb27853d17ae4f993b00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F96ebb238-493f-4ccc-a8d9-7a7c6f8ab469.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7963
x-amzn-requestid: cadfa4ff-473d-4927-bdf6-3aad64cddf18
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQbHTCIAMFfZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2735-41d711e5210099aa6273dd86;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: g0NS7XamCzSMKmm1-mLnWLwUuBoJczvwSmTb0c_7klsY78wbrg4bRw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:57:02 GMT
age: 80780
etag: "d2180d40ceb16924a87a41aad90dedb0bb912085"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8d9af95acfc8b9b431eb1e020157f6d
f6f926be6e265a597aaede424f05fcd7c76fcc20
0b61d6cb0e0908cb8d303b9e951e2854166bd232e0291b5d698a6b757c064e88
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6386
x-amzn-requestid: 4380489e-d0ba-4f67-ac4f-67619ba34422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shGHryIAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-005f9c783c7722f16c178026;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RuUOjTDRTkcaGFf_hTWrHZ89edOajgGUdl5PjbaUV7CUppat6IYsRg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:52:36 GMT
age: 81046
etag: "f6f926be6e265a597aaede424f05fcd7c76fcc20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4V65GTXIAMF9-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NcnEyVD-vG10pOpPCBMjKGqVw-rstkPIt-oqkIc5urAGE934fxL0VQ==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 04:12:38 GMT
age: 58244
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 55d224ac83a417772c98bc5080fb6689
a30f9044330824e70dde0dcc785890d981e6fdf5
b2ea4dea200109019a65834b98e31e8fac718a199513810a2819858be2b4470a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5039669-74cb-4d54-9208-94257c765b35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9935
x-amzn-requestid: 9eb8463d-172a-40a2-8eed-3c97b1260afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQ5FARoAMFXQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2738-3709a2f22ecc033532223b26;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:38:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e5eETCL5yFnoG4HPx0Qv8hjGnlXx5vOL4syMx9uato8nuIHkSvMezg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:53:50 GMT
age: 80972
etag: "a30f9044330824e70dde0dcc785890d981e6fdf5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/602651a23bb90.jpg
162.0.209.92200 OK 28 kB URL HTTP/2 pain-wellness.com/cms/service/602651a23bb90.jpg
IP 162.0.209.92:0
File type JPEG image data, baseline, precision 8, 300x223, components 3\012- data
Hash 624ffa0ec1ecb56e2884bc7dd2a8e9cc
7190b338bcd635cb1da40fc0907bc61b51c09e45
bad24f24575dc3880a288c3a3e1750b9b2686822b0c559f6c24595152a47cf3b
GET /cms/service/602651a23bb90.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Fri, 12 Feb 2021 10:00:02 GMT
accept-ranges: bytes
content-length: 28121
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/partners/5ffedbe2d574c.gif
162.0.209.92200 OK 8.4 kB URL HTTP/2 pain-wellness.com/cms/partners/5ffedbe2d574c.gif
IP 162.0.209.92:0
File type GIF image data, version 89a, 609 x 121\012- data
Hash 4664aec69cbebb1aaa7d0dacf3c3607e
31a23196f927293028d3d0f6d3ed55582234490f
d6c43c8b6976809f7856c8109d2614cbeb56bdb7b058e2cf80f20da828e4bcaf
GET /cms/partners/5ffedbe2d574c.gif HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/gif
last-modified: Wed, 13 Jan 2021 11:39:14 GMT
accept-ranges: bytes
content-length: 8399
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/60389976b28ca.jpg
162.0.209.92200 OK 26 kB URL HTTP/2 pain-wellness.com/cms/service/60389976b28ca.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 250x303, components 3\012- data
Hash eb719b0ea7ecf96e49f67be6ecbfd49e
1258483db52b6e53849630023936cfa031ba1155
5cf27da3a999f0433f4b4ea4f121a029352d3e96d6a08a55ed9c492ff9bb4a38
GET /cms/service/60389976b28ca.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Fri, 26 Feb 2021 06:47:18 GMT
accept-ranges: bytes
content-length: 25583
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/partners/601a4bc74b1c9.png
162.0.209.92200 OK 20 kB URL HTTP/2 pain-wellness.com/cms/partners/601a4bc74b1c9.png
IP 162.0.209.92:0
File type PNG image data, 1013 x 259, 8-bit/color RGBA, non-interlaced\012- data
Hash 07c0ce4f1852aa014c80219293e2c736
166ffdf41b72ddbe81bad2106ce73445a94ee827
c29f873bff71747bc0a9871745fd53b500198e965bf137dbb58e63f59ff8837c
GET /cms/partners/601a4bc74b1c9.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/png
last-modified: Wed, 03 Feb 2021 07:07:51 GMT
accept-ranges: bytes
content-length: 19464
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/slid4.jpeg
162.0.209.92200 OK 25 kB URL HTTP/2 pain-wellness.com/cms/slid4.jpeg
IP 162.0.209.92:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 392x128, components 3\012- data
Hash 83a02e7eee5469e9d05d4c5c58be9cd5
4dbeda6fc13f4e73a2ee83ca2b83a06deb7cfea4
83d04f8896dfb48068b1034620a1bd95bf608999945991b1fce1877404633b8e
Analyzer Verdict Alert fortinet Malware
GET /cms/slid4.jpeg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Wed, 07 Sep 2022 15:48:38 GMT
accept-ranges: bytes
content-length: 24643
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/slid3.jpeg
162.0.209.92200 OK 17 kB URL HTTP/2 pain-wellness.com/cms/slid3.jpeg
IP 162.0.209.92:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 392x128, components 3\012- data
Hash eec3c77d7865f4503be776b1f77a5e4d
239851d0deed66d13ed1318ab6542deeae9805f4
0d585c448e85a82cabd571f8ae5616614df18486fabcc5a807e8e3d6d7853de5
Analyzer Verdict Alert fortinet Malware
GET /cms/slid3.jpeg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Wed, 07 Sep 2022 15:48:36 GMT
accept-ranges: bytes
content-length: 16942
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/partners/5ffedc5c98ee2.jpg
162.0.209.92200 OK 27 kB URL HTTP/2 pain-wellness.com/cms/partners/5ffedc5c98ee2.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, datetime=2015:11:08 02:50:51], baseline, precision 8, 609x163, components 3\012- data
Hash 49f43a690468b554edb9c219469af863
d9f7e0cc72db239c77d01e8c8d279c2bc7a9164e
a948e902596670ff09a6de7e638b74ccbb48004ceb5713fb2a8175038f1fc38f
GET /cms/partners/5ffedc5c98ee2.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Wed, 13 Jan 2021 11:41:16 GMT
accept-ranges: bytes
content-length: 27335
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/images/ft-logo.png
162.0.209.92200 OK 8.2 kB URL HTTP/2 pain-wellness.com/images/ft-logo.png
IP 162.0.209.92:0
File type PNG image data, 300 x 66, 8-bit/color RGBA, non-interlaced\012- data
Hash 9351fb656b4b49cfcbc6206960c5e0cb
f9c580c4332b735e7ffa33526809fa669af9371e
5b5e67010ef753c82a2e84e0e3d18d6374fbf00bfeff56969f972025e16e71a8
GET /images/ft-logo.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/png
last-modified: Thu, 29 Oct 2020 18:16:32 GMT
accept-ranges: bytes
content-length: 8201
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/images/blog-user.png
162.0.209.92200 OK 17 kB URL HTTP/2 pain-wellness.com/images/blog-user.png
IP 162.0.209.92:0
File type PNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash e442d1a27cdc7bf640e91eb3bd91f8a1
3d724f092b16af36ee4567c9747608b9e4468ad5
5bcb7fc6d6f8bfed4d5e6ced9fe144ffaa7a9ec40449be21c525a4140bd95c04
GET /images/blog-user.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/png
last-modified: Thu, 29 Oct 2020 18:16:20 GMT
accept-ranges: bytes
content-length: 17122
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/604370680ceeb.jpg
162.0.209.92200 OK 42 kB URL HTTP/2 pain-wellness.com/cms/service/604370680ceeb.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 300x223, components 3\012- data
Hash 97142e923be1d44ec577a5a9b90aa04e
650f9b439cdc9de1fbf6f2ac76f45da3806895e2
211ec3b9a86f30d6bd89f73878896f20a189243ca8908f389fb59ee9ed89fd8f
GET /cms/service/604370680ceeb.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Sat, 06 Mar 2021 12:07:04 GMT
accept-ranges: bytes
content-length: 41633
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/slid1.jpeg
162.0.209.92200 OK 22 kB URL HTTP/2 pain-wellness.com/cms/slid1.jpeg
IP 162.0.209.92:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 392x128, components 3\012- data
Hash 9a2c0e0e06c93fc478cbe6fa0db7ef9a
a75e4f79b684e213d882f25074abb031b1b1f3d0
576256cdc2833ff194f7e4f6788720e20107fd5ff08350383b511cc97e9cab5f
Analyzer Verdict Alert fortinet Malware
GET /cms/slid1.jpeg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Wed, 07 Sep 2022 15:48:25 GMT
accept-ranges: bytes
content-length: 22407
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/blogs/6038dec8bd87d.jpg
162.0.209.92200 OK 20 kB URL HTTP/2 pain-wellness.com/cms/blogs/6038dec8bd87d.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 388x225, components 3\012- data
Hash b1af5c3f43f4c26122c7db71f5160cc2
723e46d523c3dcacbc9447df37dd76a039a95aa3
4eaa6cebd04ca6f4eb721022089da6dad27c15f48d1114fe41dee3a0d39b469c
GET /cms/blogs/6038dec8bd87d.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Fri, 26 Feb 2021 11:43:04 GMT
accept-ranges: bytes
content-length: 20494
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/slid2.jpeg
162.0.209.92200 OK 19 kB URL HTTP/2 pain-wellness.com/cms/slid2.jpeg
IP 162.0.209.92:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 392x128, components 3\012- data
Hash 5e8a74f756fd499aa57c4a7e35054fd2
afac5c5fb39871e59012fa1a0613a8967724d407
dce8dc1161fca2cca828c72182ca817a7eb45c5e9a16929d93ccd15a3de30f92
Analyzer Verdict Alert fortinet Malware
GET /cms/slid2.jpeg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Wed, 07 Sep 2022 15:48:27 GMT
accept-ranges: bytes
content-length: 18696
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/slid5.jpeg
162.0.209.92200 OK 18 kB URL HTTP/2 pain-wellness.com/cms/slid5.jpeg
IP 162.0.209.92:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 392x128, components 3\012- data
Hash c496d26f503ec4e12eb374b51dc02d95
d4d2283b6cdd5674ec8d0e64a31f297a19918d5d
9c3f887d6156d35ce163845a51457a7bd493c671ca03b10a334d6ecdbd8094c7
Analyzer Verdict Alert fortinet Malware
GET /cms/slid5.jpeg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Wed, 07 Sep 2022 15:48:41 GMT
accept-ranges: bytes
content-length: 18244
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/partners/5ffedcbc06d76.jpg
162.0.209.92200 OK 18 kB URL HTTP/2 pain-wellness.com/cms/partners/5ffedcbc06d76.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=8, orientation=upper-left, datetime=2015:11:08 02:50:51], baseline, precision 8, 576x151, components 3\012- data
Hash e0e90e45575a19bf7eb10df188c67a9c
00d6316d5544e9107b51ab15d464c561878c0bc0
50dcb55f6e7bcd463a488c7d38ecea2ab1812184a37f0a949fefddc1aee842b2
GET /cms/partners/5ffedcbc06d76.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Wed, 13 Jan 2021 11:42:52 GMT
accept-ranges: bytes
content-length: 17986
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/60436ca50ea05.jpg
162.0.209.92200 OK 77 kB URL HTTP/2 pain-wellness.com/cms/service/60436ca50ea05.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 357x326, components 3\012- data
Hash 9740febf2d04473cd6266d901373305a
67c3ddb29553a71013f938ddae48eee56d2148fa
0587f237138a3124edf0269e5d3731efcea30082962f602e0e9b4b9fb11c34f8
GET /cms/service/60436ca50ea05.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Sat, 06 Mar 2021 11:51:01 GMT
accept-ranges: bytes
content-length: 77269
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/604358f5305a1.jpg
162.0.209.92200 OK 63 kB URL HTTP/2 pain-wellness.com/cms/service/604358f5305a1.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 300x300, components 3\012- data
Hash 04d8ac0967169682b8873488e50e9b1d
17c88cf047993f0f69198bf62cf53a91ccd41cc4
0cc767a78fdbc4bf105dff60d776a0c2c2aaf02b765f034472c29af4035d3d6b
GET /cms/service/604358f5305a1.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Sat, 06 Mar 2021 10:27:01 GMT
accept-ranges: bytes
content-length: 63100
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/partners/5ffed97cec418.jpg
162.0.209.92200 OK 53 kB URL HTTP/2 pain-wellness.com/cms/partners/5ffed97cec418.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1000x540, components 3\012- data
Hash 9c518f3df45cedbf10cb2180a4310635
dfed9948bfc129d0361f410c53890a67b338b87d
15d6011f8cdbba47669928379ef087b8e106d331d25653ca34f35335d1801152
GET /cms/partners/5ffed97cec418.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Wed, 13 Jan 2021 11:29:00 GMT
accept-ranges: bytes
content-length: 52772
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd5109e27f7c.jpg
162.0.209.92200 OK 92 kB URL HTTP/2 pain-wellness.com/cms/service/5fd5109e27f7c.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 95", baseline, precision 8, 900x600, components 3\012- data
Hash 363373f5ba545ef5e2b4787fbb1637fe
2ac266e08637ac544db5cea397f333c776792591
718791e6791f590c96196bada7c587626b89bc8b9a15ca0ac8fbfc227c55e239
GET /cms/service/5fd5109e27f7c.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Sat, 12 Dec 2020 18:49:02 GMT
accept-ranges: bytes
content-length: 92325
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/partners/5ffedb8de5d32.jfif
162.0.209.92200 OK 79 kB URL HTTP/2 pain-wellness.com/cms/partners/5ffedb8de5d32.jfif
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 2000x1047, components 3\012- data
Hash 7553352c343f23e6de8af4f550f8ada6
23d1e126cee00ec81a8ecfc798ada607d11c7f75
c3c7a8131ee174f979cbb706b7c8a4ef2c173f68e80d09d34fd1333005431acc
Analyzer Verdict Alert fortinet Malware
GET /cms/partners/5ffedb8de5d32.jfif HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/octet-stream
last-modified: Wed, 13 Jan 2021 11:37:49 GMT
accept-ranges: bytes
content-length: 78644
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/6038bccac4760.jpg
162.0.209.92200 OK 87 kB URL HTTP/2 pain-wellness.com/cms/service/6038bccac4760.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 450x300, components 3\012- data
Hash 0187588f272c952bd34eddfea071f49a
2df0a53396d88851a3dfd260892d4bd920583b0a
d2aac9279506b52e176a8e1d422015680fe4e7a1cff3f5a9d13d0ec90b31371d
GET /cms/service/6038bccac4760.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Fri, 26 Feb 2021 09:18:02 GMT
accept-ranges: bytes
content-length: 86764
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/partners/5ffedb302362b.jpg
162.0.209.92200 OK 68 kB URL HTTP/2 pain-wellness.com/cms/partners/5ffedb302362b.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 1000x573, components 3\012- data
Hash ae0a6adf36a7c8ad47c5303a4b96735f
3f091d88240059a43dd9d2014aca9d4a9d79f1ae
f9fdf32774bff44fe0e56abecc9c8269aa237f9a21cdaeb3d4ffaf2dc6e4a8d0
GET /cms/partners/5ffedb302362b.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Wed, 13 Jan 2021 11:36:16 GMT
accept-ranges: bytes
content-length: 68004
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/partners/5ffed9fa18414.jpg
162.0.209.92200 OK 76 kB URL HTTP/2 pain-wellness.com/cms/partners/5ffed9fa18414.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 100", baseline, precision 8, 740x400, components 3\012- data
Hash f58f746f89d1ccde6bf7604f9e9fccfb
bac6cf72183d8520cd1f25dde22be7b7335c7378
18d0261a39a1ca561438f117df08c772f166436585ef57c54f8a2f70535c7b8c
GET /cms/partners/5ffed9fa18414.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Wed, 13 Jan 2021 11:31:06 GMT
accept-ranges: bytes
content-length: 75619
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/images/nav-bg.jpg
162.0.209.92200 OK 1.5 kB URL HTTP/2 pain-wellness.com/images/nav-bg.jpg
IP 162.0.209.92:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 3000x1, components 3\012- data
Hash cddb4f93110c49ce95d142f069afabcc
4426570cbf2849c0a0e5e3b20e2887d57f3a2bf6
6ae88f7bdb3fbf4b2a587bd0dc4a9235ba3e8a81ac42a4b7ac325bb402c7e686
GET /images/nav-bg.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/css/conditional.css
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: image/jpeg
last-modified: Thu, 29 Oct 2020 18:16:42 GMT
accept-ranges: bytes
content-length: 1523
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/Scripts/animations.js
162.0.209.92200 OK 2.5 kB URL HTTP/2 pain-wellness.com/Scripts/animations.js
IP 162.0.209.92:0
File type ASCII text, with very long lines (6538)
Hash 7be002fb4c98f369829c3cb64851184f
b1461a8f04193aa94e72ff1c69e37c3d973750f4
2680ff47dede0d741f2a8b4209dbd690e80b1edb44b1ece6b4f0cf254a4e2caa
Analyzer Verdict Alert fortinet Malware
GET /Scripts/animations.js HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: application/javascript
last-modified: Thu, 29 Oct 2020 18:05:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2459
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/6038b85e7525e.6038b85e75282.jpg
162.0.209.92200 OK 45 kB URL HTTP/2 pain-wellness.com/cms/service/6038b85e7525e.6038b85e75282.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2021:02:26 14:28:55], baseline, precision 8, 900x824, components 3\012- data
Hash 89348c96d667bd26e9be2e8964362210
bcca665f7c18428289574cb306e2ea743efb5d47
0b69b991caca9833fa58a7b91db9442a768dd4d7789f08e79557abe4d22aa455
GET /cms/service/6038b85e7525e.6038b85e75282.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: image/jpeg
last-modified: Fri, 26 Feb 2021 08:59:10 GMT
accept-ranges: bytes
content-length: 44787
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/6038b8f1a0dba.6038b8f1a0ddd.jpg
162.0.209.92200 OK 19 kB URL HTTP/2 pain-wellness.com/cms/service/6038b8f1a0dba.6038b8f1a0ddd.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 7.0, datetime=2021:02:26 14:22:21], baseline, precision 8, 250x303, components 3\012- data
Hash 85d2ef7526c7f287bc497a7a69575f3d
18dd089f2b413e13956c313926e64cea8ecf13ef
b80e12f03c608106a0c4e12e2800b52cb80073d8a2d89ab11adaafa167badaa0
GET /cms/service/6038b8f1a0dba.6038b8f1a0ddd.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: image/jpeg
last-modified: Fri, 26 Feb 2021 09:01:37 GMT
accept-ranges: bytes
content-length: 18934
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/images/top.png
162.0.209.92200 OK 1.7 kB URL HTTP/2 pain-wellness.com/images/top.png
IP 162.0.209.92:0
File type PNG image data, 30 x 58, 8-bit/color RGB, non-interlaced\012- data
Hash 29e847c3dc145d984c203dbd36bff53f
9f3efdbc2513c432a5af872d261089e4f9ffb758
7439275e481eb9a69c117ab0811b81288f5769900d1c603e34f26d30b1011989
GET /images/top.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/css/conditional.css
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:23 GMT
content-type: image/png
last-modified: Thu, 29 Oct 2020 18:17:18 GMT
accept-ranges: bytes
content-length: 1668
date: Sat, 24 Sep 2022 20:23:23 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/images/wlcm_bg.jpg
162.0.209.92200 OK 41 kB URL HTTP/2 pain-wellness.com/images/wlcm_bg.jpg
IP 162.0.209.92:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=12, height=619, bps=158, PhotometricIntepretation=RGB, orientation=upper-left, width=1599], progressive, precision 8, 1599x529, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 0--8419, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset -869494482440028160.000000, slope 66814060.000000\012- data
Hash a9795757f9e4f016655e247bb73f68f8
ae592732577ec151e311acf2a88ca60f6e621456
d6088dfc2dc4c686857a1f59d22f2250cc48aea0e2a11980f436cd466a941eb2
GET /images/wlcm_bg.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/css/conditional.css
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: image/jpeg
last-modified: Thu, 29 Oct 2020 18:17:20 GMT
accept-ranges: bytes
content-length: 40948
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/Scripts/fluid_dg.min.js
162.0.209.92200 OK 9.0 kB URL HTTP/2 pain-wellness.com/Scripts/fluid_dg.min.js
IP 162.0.209.92:0
File type ASCII text, with very long lines (38082)
Hash 1612249a78e450f93e8ae29d521b9241
39ab67dce2dbaf9476c5f831c26c7982e3d9850f
be75876a694d7edd8e6782d21014a36288056c59fa15a72b0d933bf68d19d8c1
Analyzer Verdict Alert fortinet Malware
GET /Scripts/fluid_dg.min.js HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: application/javascript
last-modified: Thu, 29 Oct 2020 18:05:46 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 8999
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/Scripts/helpers.min.js
162.0.209.92200 OK 32 kB URL HTTP/2 pain-wellness.com/Scripts/helpers.min.js
IP 162.0.209.92:0
File type Unicode text, UTF-8 text, with very long lines (31997)
Hash c1d860014d959abd55051958c80d97b4
0008bac3021eb0f314428e04207a2ace2f9be1bd
039c49d7200a3e530ab7aca6c7d34d8fa8bf5b6e4a6a1fba850848c54a100bde
Analyzer Verdict Alert fortinet Malware
GET /Scripts/helpers.min.js HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: application/javascript
last-modified: Thu, 29 Oct 2020 18:05:48 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 31974
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/images/test-bg.jpg
162.0.209.92200 OK 56 kB URL HTTP/2 pain-wellness.com/images/test-bg.jpg
IP 162.0.209.92:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x779, components 3\012- data
Hash c3611c1205d598ee4e494b298607546a
f34358755a7eeca44fd44ba93ba34c4bd62a6216
e046bbabfc9eeff04d616043d7965c6c137cf66626fff1fded94ea86872379d9
GET /images/test-bg.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/css/conditional.css
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: image/jpeg
last-modified: Thu, 29 Oct 2020 18:17:14 GMT
accept-ranges: bytes
content-length: 56162
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/6038951da8ba6.jpg
162.0.209.92200 OK 220 kB URL HTTP/2 pain-wellness.com/cms/service/6038951da8ba6.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=2, orientation=upper-left], baseline, precision 8, 900x824, components 3\012- data
Size 220 kB (219980 bytes)
Hash dfd75033a7bcdc878c9c2b6d537bf52d
68c1735c4104ab07892bbfcc121657ae73eb7175
6cff5f78b13373ca2b2fdde0cd77369bdd70ad1281136e98695c09e9044e0291
GET /cms/service/6038951da8ba6.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Fri, 26 Feb 2021 06:28:45 GMT
accept-ranges: bytes
content-length: 219980
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd519298b0e4.jpg
162.0.209.92200 OK 236 kB URL HTTP/2 pain-wellness.com/cms/service/5fd519298b0e4.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=14, height=3744, bps=0, PhotometricIntepretation=RGB, manufacturer=Canon, model=Canon EOS 5D Mark II, orientation=upper-left, width=5616], baseline, precision 8, 1404x936, components 3\012- data
Size 236 kB (235923 bytes)
Hash 13bbeba36190d844480bbaa6fb065fb0
d68ca4105d09bfef8108d6ea98136797fbcb57cb
11c49ff68606f5c123a3f51bfeed4662d8ecf3086fec659bc30fbbd09768fa33
GET /cms/service/5fd519298b0e4.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Sat, 12 Dec 2020 19:25:29 GMT
accept-ranges: bytes
content-length: 235923
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/602e308b333c4.602e308b333e4.png
162.0.209.92200 OK 108 kB URL HTTP/2 pain-wellness.com/cms/service/602e308b333c4.602e308b333e4.png
IP 162.0.209.92:0
File type PNG image data, 718 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size 108 kB (107584 bytes)
Hash 0c0b78d59589c3ae2ad56509b75810a3
6742ce673c19dcca014864b7cb90499eaa461468
0e8b62cbda5a923fbe475c0c128cc5fc4bf2d9ebddffd3f4f81bc50ee12ccd09
GET /cms/service/602e308b333c4.602e308b333e4.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: image/png
last-modified: Thu, 18 Feb 2021 09:16:59 GMT
accept-ranges: bytes
content-length: 107584
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/blogs/6038da0e06d3b.png
162.0.209.92200 OK 226 kB URL HTTP/2 pain-wellness.com/cms/blogs/6038da0e06d3b.png
IP 162.0.209.92:0
File type PNG image data, 624 x 384, 8-bit/color RGB, non-interlaced\012- data
Size 226 kB (226246 bytes)
Hash b8f698264644bd6daeac380e4fb8d0dc
5c422eab9a45c9f561edea52d208af5b7d898f19
bd1c9af52b35a291172e2234841542e14995b3a4bb29958596d2d4b4a3fbd2a3
GET /cms/blogs/6038da0e06d3b.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/png
last-modified: Fri, 26 Feb 2021 11:22:54 GMT
accept-ranges: bytes
content-length: 226246
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd5183e00ae2.jpg
162.0.209.92200 OK 379 kB URL HTTP/2 pain-wellness.com/cms/service/5fd5183e00ae2.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=Woman sitting on sofa stretching and rubbing stiff back muscles after too much computer work on. Stressed lady suffering from b, manufacturer=Canon, model=Canon EOS 6D, orientation=upper-left, xresolution=356, yresolution=364, resolutionunit=2, software=Adobe Photoshop Lightroom 5.6 (Windows), datetime=2019:01:29 21:52:02], baseline, precision 8, 2179x1453, components 3\012- data
Size 379 kB (379205 bytes)
Hash 12e050894422ba3fd8acfc49bc5fe651
a6b9c5f11f222efdfd714089d69541c72c47a05e
69a77aa65bb9e263c617044278908f7812c199bbad40f4d743f30cf4784cbaf6
GET /cms/service/5fd5183e00ae2.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Sat, 12 Dec 2020 19:21:34 GMT
accept-ranges: bytes
content-length: 379205
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd5178c29723.jpg
162.0.209.92200 OK 309 kB URL HTTP/2 pain-wellness.com/cms/service/5fd5178c29723.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=Sports injuries and health concept., manufacturer=NIKON CORPORATION, model=NIKON D800E, orientation=upper-left, xresolution=200, yresolution=208, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2018:09:16 00:50:19], baseline, precision 8, 1417x946, components 3\012- data
Size 309 kB (309426 bytes)
Hash a499ba0133c8d4a18060874c6d0a9915
60acac10f7de7d8483c27a168bbeb709ad7db508
40620381aed81981577564253fbe7d0c974c406dc9ae9d63913e0c5de0941e81
GET /cms/service/5fd5178c29723.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Sat, 12 Dec 2020 19:18:36 GMT
accept-ranges: bytes
content-length: 309426
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd513c04edaa.png
162.0.209.92200 OK 246 kB URL HTTP/2 pain-wellness.com/cms/service/5fd513c04edaa.png
IP 162.0.209.92:0
File type PNG image data, 626 x 417, 8-bit/color RGBA, non-interlaced\012- data
Size 246 kB (246524 bytes)
Hash 532c3183f1d781900b057ad6f15c5398
2d12a0487e81f099bd54b4419281ab42e9282a8a
92162b89f62dcca2ed5b363ec0dc9df5bb4520b4e03f7f529fdc3a857a11c2f8
GET /cms/service/5fd513c04edaa.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: image/png
last-modified: Sat, 12 Dec 2020 19:02:24 GMT
accept-ranges: bytes
content-length: 246524
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd517e65e64e.jpg
162.0.209.92200 OK 353 kB URL HTTP/2 pain-wellness.com/cms/service/5fd517e65e64e.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=17], baseline, precision 8, 1168x1000, components 3\012- data
Size 353 kB (352627 bytes)
Hash c8a42a695804937366d457dc6e80b526
52c495975ef87cf1b4912c527ac151b9d22cb183
1b7b39f8128d4879811e9d891696b06486961b303f861309ce90d42ba8bdd00a
GET /cms/service/5fd517e65e64e.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Sat, 12 Dec 2020 19:20:06 GMT
accept-ranges: bytes
content-length: 352627
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd51620726c4.jpg
162.0.209.92200 OK 401 kB URL HTTP/2 pain-wellness.com/cms/service/5fd51620726c4.jpg
IP 162.0.209.92:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 216x216, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, orientation=upper-left], baseline, precision 8, 1957x1392, components 3\012- data
Size 401 kB (400857 bytes)
Hash 97df047545386928548ebefb3bf98037
79e3d83dbb636d3e251eaf90f86dd24e56d64fce
746626058afcd688791649e8a074efab40f07f719cdb87637f810828e1d4bbe8
GET /cms/service/5fd51620726c4.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Sat, 12 Dec 2020 19:12:32 GMT
accept-ranges: bytes
content-length: 400857
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd5109e28184.png
162.0.209.92200 OK 411 kB URL HTTP/2 pain-wellness.com/cms/service/5fd5109e28184.png
IP 162.0.209.92:0
File type PNG image data, 900 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size 411 kB (411364 bytes)
Hash f0051db34a5f6374972e5ef8299e0d64
29d07b8ce944cd9da0010b79109ad6da276157de
075c32a1f1dd351306c92dacc61020a1aa0f3f389783234e03889784d8d9f0da
GET /cms/service/5fd5109e28184.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: image/png
last-modified: Sat, 12 Dec 2020 18:49:02 GMT
accept-ranges: bytes
content-length: 411364
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/blogs/6038dca312ed6.jpg
162.0.209.92200 OK 718 kB URL HTTP/2 pain-wellness.com/cms/blogs/6038dca312ed6.jpg
IP 162.0.209.92:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=5000, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=5000], baseline, precision 8, 2100x2100, components 3\012- data
Size 718 kB (717860 bytes)
Hash 593a65576275afc5475b7066506fafe8
388e80ff68165273cb0215abe6c244b5d3e3aa08
2c8464ba151653ffbb3f7800ddcee46326915da499f8743737e11604fca0677b
GET /cms/blogs/6038dca312ed6.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Fri, 26 Feb 2021 11:33:55 GMT
accept-ranges: bytes
content-length: 717860
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd519298b53a.png
162.0.209.92200 OK 708 kB URL HTTP/2 pain-wellness.com/cms/service/5fd519298b53a.png
IP 162.0.209.92:0
File type PNG image data, 1404 x 936, 8-bit/color RGBA, non-interlaced\012- data
Size 708 kB (707876 bytes)
Hash f36fcc244cdbc1d77d960c5613474570
bf236570d82d03ae5f5aae6f8e5b86eaefef0a5a
a6548153e8b18627c87345bc5b41b6b59ab3d05578d0b0efb825fd2181e55d9c
GET /cms/service/5fd519298b53a.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: image/png
last-modified: Sat, 12 Dec 2020 19:25:29 GMT
accept-ranges: bytes
content-length: 707876
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd517e65eb55.png
162.0.209.92200 OK 1.0 MB URL HTTP/2 pain-wellness.com/cms/service/5fd517e65eb55.png
IP 162.0.209.92:0
File type PNG image data, 1168 x 1000, 8-bit/color RGBA, non-interlaced\012- data
Size 1.0 MB (1011047 bytes)
Hash d57c6560658e2c7407477bbcc5ade48d
874b3929faf949375d17c2e5694d2a46b9df83f2
08852d3193314d4f9b8b360fe06dbe27c26a60a622cb39179f897424e881dbfe
GET /cms/service/5fd517e65eb55.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: image/png
last-modified: Sat, 12 Dec 2020 19:20:06 GMT
accept-ranges: bytes
content-length: 1011047
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js
142.250.74.163200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (826)
Size 158 kB (158248 bytes)
Hash db1b5789e9915e9c82f5df92e5982980
2e193e502995501c85f45fd89d9f83707a7f9573
db9c82b18117d7cff0f674de758f5bbb39bc6dee969cee679c741090968b9206
GET /recaptcha/releases/ovmhLiigaw4D9ujHYlHcKKhP/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pain-wellness.com
Connection: keep-alive
Referer: https://pain-wellness.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 158248
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 07:11:34 GMT
expires: Fri, 22 Sep 2023 07:11:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 19 Sep 2022 04:01:43 GMT
content-type: text/javascript
age: 220314
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd513c04e2a4.png
162.0.209.92200 OK 1.4 MB URL HTTP/2 pain-wellness.com/cms/service/5fd513c04e2a4.png
IP 162.0.209.92:0
File type PNG image data, 1440 x 960, 8-bit/color RGBA, non-interlaced\012- data
Size 1.4 MB (1399056 bytes)
Hash a215e972556bb9c52baf4a6b715f268b
894c663236e754757f7a63a780fc03f2434b78da
d6e7287ddfcd47dbf7f09d232d5cd941533aec890d1cdb9aedac0bd73bef69ce
GET /cms/service/5fd513c04e2a4.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/png
last-modified: Sat, 12 Dec 2020 19:02:24 GMT
accept-ranges: bytes
content-length: 1399056
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd5178c29c2d.png
162.0.209.92200 OK 0 B URL HTTP/2 pain-wellness.com/cms/service/5fd5178c29c2d.png
IP 162.0.209.92:0
GET /cms/service/5fd5178c29c2d.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: image/png
last-modified: Sat, 12 Dec 2020 19:18:36 GMT
accept-ranges: bytes
content-length: 1353235
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd516f32be37.jpg
162.0.209.92200 OK 0 B URL HTTP/2 pain-wellness.com/cms/service/5fd516f32be37.jpg
IP 162.0.209.92:0
GET /cms/service/5fd516f32be37.jpg HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:21 GMT
content-type: image/jpeg
last-modified: Sat, 12 Dec 2020 19:16:03 GMT
accept-ranges: bytes
content-length: 4892969
date: Sat, 24 Sep 2022 20:23:21 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5ffaca12a88b8.5ffaca12a88dc.png
162.0.209.92200 OK 0 B URL HTTP/2 pain-wellness.com/cms/service/5ffaca12a88b8.5ffaca12a88dc.png
IP 162.0.209.92:0
GET /cms/service/5ffaca12a88b8.5ffaca12a88dc.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: image/png
last-modified: Sun, 10 Jan 2021 09:34:10 GMT
accept-ranges: bytes
content-length: 11061610
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Oswald:wght@200;300;400;500;600;700&family=Roboto:wght@300;400;500;700;900&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Oswald:wght@200;300;400;500;600;700&family=Roboto:wght@300;400;500;700;900&display=swap
IP 142.250.74.10:0
GET /css2?family=Oswald:wght@200;300;400;500;600;700&family=Roboto:wght@300;400;500;700;900&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 24 Sep 2022 20:23:21 GMT
date: Sat, 24 Sep 2022 20:23:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/604358f5305a1.jpg604358f5305aa.
162.0.209.92200 OK 0 B URL HTTP/2 pain-wellness.com/cms/service/604358f5305a1.jpg604358f5305aa.
IP 162.0.209.92:0
Analyzer Verdict Alert fortinet Malware
GET /cms/service/604358f5305a1.jpg604358f5305aa. HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/8.0.23
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/60436ca50ea05.jpg60436ca50ea0f.
162.0.209.92200 OK 0 B URL HTTP/2 pain-wellness.com/cms/service/60436ca50ea05.jpg60436ca50ea0f.
IP 162.0.209.92:0
Analyzer Verdict Alert fortinet Malware
GET /cms/service/60436ca50ea05.jpg60436ca50ea0f. HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/8.0.23
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.10.2/css/all.css
172.64.133.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v5.10.2/css/all.css
IP 172.64.133.15:0
GET /releases/v5.10.2/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 24 Sep 2022 20:23:21 GMT
content-type: text/css
x-amz-id-2: JGfpDn0JCU7udODu6x4FQqRjB+AP6emq2vbtH2UJfI9HR480/v70CTHg+fTBCBP1dqLj/xUKF1g=
x-amz-request-id: Q3RQTFWA6RTYCFWQ
last-modified: Wed, 30 Jun 2021 15:36:08 GMT
etag: W/"164a58dcca37a5b00c22e06ee8e2fc68"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 28818015
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=po3LnSeST99vVjo%2BEBP4GlCjPdFJTPKqaRvYNL1dXpDPWukjyE%2BKVR%2BMdPBYoqJPLR1z7coDSlxwkJK8A7Ov9gA4QAkQ%2B%2F7qu9EG%2F70ch2TDtsEqEYSUM%2B6sJWJCs1GBnI60cjax"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74fe3cc6f8140081-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/604370680ceeb.jpg604370680cef3.
162.0.209.92200 OK 0 B URL HTTP/2 pain-wellness.com/cms/service/604370680ceeb.jpg604370680cef3.
IP 162.0.209.92:0
Analyzer Verdict Alert fortinet Malware
GET /cms/service/604370680ceeb.jpg604370680cef3. HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/8.0.23
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
content-encoding: br
vary: Accept-Encoding
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
188.114.99.202200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/css/bootstrap.min.css
IP 188.114.99.202:0
GET /bootstrap/4.0.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pain-wellness.com
Connection: keep-alive
Referer: https://pain-wellness.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 24 Sep 2022 20:23:21 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"450fc463b8b1a349df717056fbb3e078"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/20/2022 02:36:43
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 859debe7d82d96e5e1fa657899c300f6
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74fe3cc77d3bb52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
188.114.99.202200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
IP 188.114.99.202:0
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pain-wellness.com
Connection: keep-alive
Referer: https://pain-wellness.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 24 Sep 2022 20:23:21 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 08/20/2022 02:32:25
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 601
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 6ad627ab7a3569be8d0624a97df93cb2
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74fe3cc78d46b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd5183e00ae2.jpg5fd5183e00b46.png
162.0.209.92200 OK 0 B URL HTTP/2 pain-wellness.com/cms/service/5fd5183e00ae2.jpg5fd5183e00b46.png
IP 162.0.209.92:0
GET /cms/service/5fd5183e00ae2.jpg5fd5183e00b46.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: image/png
last-modified: Sat, 12 Dec 2020 19:21:34 GMT
accept-ranges: bytes
content-length: 1657579
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
pain-wellness.com/cms/service/5fd516f33a82e.png
162.0.209.92200 OK 0 B URL HTTP/2 pain-wellness.com/cms/service/5fd516f33a82e.png
IP 162.0.209.92:0
GET /cms/service/5fd516f33a82e.png HTTP/1.1
Host: pain-wellness.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pain-wellness.com/
Cookie: PHPSESSID=v46tu4gbmlpfenogrl7joc11jd
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 01 Oct 2022 20:23:22 GMT
content-type: image/png
last-modified: Sat, 12 Dec 2020 19:16:03 GMT
accept-ranges: bytes
content-length: 11061610
date: Sat, 24 Sep 2022 20:23:22 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2