r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16407
Expires: Sun, 29 Jan 2023 20:30:54 GMT
Date: Sun, 29 Jan 2023 15:57:27 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2341
Expires: Sun, 29 Jan 2023 16:36:28 GMT
Date: Sun, 29 Jan 2023 15:57:27 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 29 Jan 2023 15:43:08 GMT
content-type: application/json
age: 859
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18199
Expires: Sun, 29 Jan 2023 21:00:46 GMT
Date: Sun, 29 Jan 2023 15:57:27 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: LLriAmC+q4GLeaIpcmATrnm2e+TCGSmpm9Dey21uTo/JMCqdJnuKanxMEjfRZR+da8+wqu+twyrRsfCHBTJT/A==
x-amz-request-id: P3N38YMTCPJRTE60
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 29 Jan 2023 15:21:26 GMT
age: 2161
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 29 Jan 2023 15:57:28 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 29 Jan 2023 15:41:41 GMT
age: 947
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
intuitivehealthhub.com.au/cb/OwaRe20202.zip
104.247.74.39301 Moved Permanently 0 B URL HTTP/1.1 intuitivehealthhub.com.au/cb/OwaRe20202.zip
IP 104.247.74.39:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /cb/OwaRe20202.zip HTTP/1.1
Host: intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 29 Jan 2023 15:57:27 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Location: https://www.intuitivehealthhub.com.au
Referrer-Policy:
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15046
Expires: Sun, 29 Jan 2023 20:08:14 GMT
Date: Sun, 29 Jan 2023 15:57:28 GMT
Connection: keep-alive
push.services.mozilla.com/
54.201.99.205101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.201.99.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +CCQLrc8f8Nr9QMA4X1AvQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5/GXxL/DdyCxr5TvicMK6hqH4zo=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4951
Expires: Sun, 29 Jan 2023 17:20:01 GMT
Date: Sun, 29 Jan 2023 15:57:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4951
Expires: Sun, 29 Jan 2023 17:20:01 GMT
Date: Sun, 29 Jan 2023 15:57:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4951
Expires: Sun, 29 Jan 2023 17:20:01 GMT
Date: Sun, 29 Jan 2023 15:57:30 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4951
Expires: Sun, 29 Jan 2023 17:20:01 GMT
Date: Sun, 29 Jan 2023 15:57:30 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 20:46:16 GMT
age: 69074
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 21:56:46 GMT
age: 64844
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10a6491e2c1dfde68c7cd7297e70700f
d0f195319825a6d3e5e50ad15b2fcab27cb65896
4d9353d5874e5ea03c25e1562db5f479c222a48db526fdd10ede7c2e6a4dd874
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce27f1aa-8d31-4110-a47f-73de0b95926d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 62d61967-9380-4ca9-b11a-531425dbd2ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIf6WFgAIAMF6gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cce042-6d9fe51029094b7f37c0a648;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 07:05:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rUIvvkZQ028ey3klplI-x9oZFugon5HsAWT-SN2GQo5hBeBJWqoMAg==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 04:01:15 GMT
age: 42975
etag: "d0f195319825a6d3e5e50ad15b2fcab27cb65896"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c77437e3a7361861aed8bfecbfe6bd6
fefd238c13c0fdfb7d964c90fcc8a8cbbf953034
282d15c443cb6232ae0a30046a0dc24360617355a4651cdba59b11e6f7313d8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d4cfe7c-2bbe-4efd-b73a-59ea603c332f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5594
x-amzn-requestid: a13a8181-5783-42c1-9fda-1fcf8db4f0f9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVpetFv-oAMF_Kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d222c4-68165b34525ca2a054f0b505;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 06:50:44 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: rJbdYq3bZDatEVvC83VR5WiWOFwNwVZEB16ez21KdnQJJrgJ-yKPCg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 14:55:48 GMT
age: 3702
etag: "fefd238c13c0fdfb7d964c90fcc8a8cbbf953034"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d5ed99a9aed6f367efc5c9498ce87ff1
3123eb6f550c51fe17fc62eff943b3739e239a9b
536f45bf2eb41f7056df8b34964538005d6a0a4c6157def3fbdd9487f8c79027
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5dcfee7f-f43c-4828-8113-8ba8eb26f727.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10168
x-amzn-requestid: fe58fe3c-dd23-4614-b5a2-e91ef68c2ab7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fFOD7H-NIAMFcxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cb907f-687fc51741d7ff97182d1955;Sampled=0
x-amzn-remapped-date: Sat, 21 Jan 2023 07:13:03 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: SORDxKQP-GudaCfRIbrmexyEeJXBExRipfF8sPHI-UkaYhR_RkDjvQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 00:55:27 GMT
age: 54123
etag: "3123eb6f550c51fe17fc62eff943b3739e239a9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43c4a8e963936a8064dbd2bd3c67b905
8508727c97127c98b886833af28b3470306216c2
070c29fe7c0a227029483d675eac863904ab6b291467acdf62167f4845699c21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdf6aeac1-fd74-4724-86b5-f0e86d98c915.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8652
x-amzn-requestid: 21c734f0-cd73-4691-812e-7cd3908f8f89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fRbH4HtPIAMFUGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d07232-291e20fb41c53db7664d04b2;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 00:05:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: j2zDtHz3pZLHJKG3-PaITyUzHOQBEELzuDIt7sbB8X_B10OxG394tg==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 06:49:29 GMT
age: 32881
etag: "8508727c97127c98b886833af28b3470306216c2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.intuitivehealthhub.com.au/
104.247.74.39200 OK 24 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/
IP 104.247.74.39:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 9ad28aa3ecf5a14d933851287655e119
f419a6145dd0228cef9e1be54dcebba0e08f129a
b3d78babdd524dd7307a3c31699fd207b28d2e5b1d2870df2e246199689d23c9
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:29 GMT
Server: Apache
Link: <https://www.intuitivehealthhub.com.au/wp-json/>; rel="https://api.w.org/", <https://www.intuitivehealthhub.com.au/wp-json/wp/v2/pages/192>; rel="alternate"; type="application/json", <https://www.intuitivehealthhub.com.au/>; rel=shortlink
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 23823
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-115178373-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-115178373-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash 9c07545c2c06adbd37fc0171976d0a9f
c08430a27a11ac3f01c4c433187c6dae231ffbd2
0220d9cf94dedb8be3c5caa6de8b92d7cdbeef7986edff66799233021f8c433b
GET /gtag/js?id=UA-115178373-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 29 Jan 2023 15:57:30 GMT
expires: Sun, 29 Jan 2023 15:57:30 GMT
cache-control: private, max-age=900
last-modified: Sun, 29 Jan 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44094
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.55.0
142.250.74.106200 OK 5.4 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.55.0
IP 142.250.74.106:0
File type ASCII text, with very long lines (2134)
Hash 30ca3165d143baf2835023bfcf463450
62c662c0873b79a314c040fef28dcd29abb14480
4f405d00e8ced09d5826e3e070b7e4d3f3556f856ca790b0b4a2c2eaaf58d33b
GET /ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.55.0 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 08:20:28 GMT
expires: Wed, 24 Jan 2024 08:20:28 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 459422
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c3fa8c0d3d9045fff6a6da164946a6b2
3f49c2ca05a7a78f25950345231980b544a790e1
82258db78bc0594ae354753c0933d4defdd28c88d5f134635b888f3ca68d2f72
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4334
Cache-Control: max-age=96327
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:30 GMT
Etag: "63d55bc3-117"
Expires: Mon, 30 Jan 2023 18:42:57 GMT
Last-Modified: Sat, 28 Jan 2023 17:30:43 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
www.intuitivehealthhub.com.au/wp-content/plugins/formidable/css/formidableforms.css?ver=1131050
104.247.74.39200 OK 8.6 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/formidable/css/formidableforms.css?ver=1131050
IP 104.247.74.39:0
File type ASCII text, with very long lines (52296)
Hash d4d94a7ae3647850de32e225bfec4fbc
1b2b92758ad5262d6b52b0aecc3fcc3b4a6fc690
cfb6d4aefac326ff266e4ac1a46084e285741de18d2fd30f1e534191b4cdc4c9
GET /wp-content/plugins/formidable/css/formidableforms.css?ver=1131050 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:30 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 10:50:45 GMT
ETag: "ccad-5f22301761f84-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 8649
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/192-layout.css?ver=7039c00efe26e5b62950c83b8bce3a8a
104.247.74.39200 OK 10 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/192-layout.css?ver=7039c00efe26e5b62950c83b8bce3a8a
IP 104.247.74.39:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 276fd71a03e8db09218568e55fe44f0f
011850b695b2355009e348656e73e490faa64f4e
c8e8eef5c4afcf9fae0bc3d9b4a6513c157408a3a207deac77865e20a39abb3f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/bb-plugin/cache/192-layout.css?ver=7039c00efe26e5b62950c83b8bce3a8a HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:30 GMT
Server: Apache
Last-Modified: Mon, 04 Jul 2022 09:52:40 GMT
ETag: "141fe-5e2f7b25f4dec-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 10295
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
www.intuitivehealthhub.com.au/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1.1
104.247.74.39200 OK 3.5 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1.1
IP 104.247.74.39:0
File type ASCII text, with very long lines (24704), with no line terminators
Hash 5476a5ab9aed61fbcfb2421a78bc8ee7
269f2c18e1034a745819bb719efb0eae70a31bd2
f78d4cf1bcae271095b1c6bfed7d3d9a5da654f5bbf7d01c90b9e2bfb2460662
GET /wp-content/plugins/instagram-feed/css/sbi-styles.min.css?ver=6.1.1 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:30 GMT
Server: Apache
Last-Modified: Wed, 25 Jan 2023 10:06:13 GMT
ETag: "6080-5f313c84c058c-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 3473
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.intuitivehealthhub.com.au/wp-content/themes/gallery-pro/style.css?ver=1.1
104.247.74.39200 OK 9.7 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/themes/gallery-pro/style.css?ver=1.1
IP 104.247.74.39:0
File type assembler source, ASCII text, with very long lines (1900)
Hash dff3a722ef8accbc70b950271e942dcc
367d09fec914ad7dfb7450adc6ff4ae1fe8a5f56
2f98e1b1d42125615a6cb32cdb34c34813435c334e90baef5339594e9afb0ccf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/gallery-pro/style.css?ver=1.1 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:30 GMT
Server: Apache
Last-Modified: Thu, 18 Apr 2019 00:13:40 GMT
ETag: "be65-586c2dfcbb500-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 9678
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.intuitivehealthhub.com.au/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
104.247.74.39200 OK 11 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP 104.247.74.39:0
File type ASCII text, with very long lines (39791)
Hash 68c55e0e26ede0ee6d29668c5e7ff18a
ea17cd26ac9dd53fdfb6b227d5737bc2714c4db5
ad7d949e15ee2ea92473b1fcdfa56cc6239de0aeceed78065aa3a060523c0e00
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:30 GMT
Server: Apache
Last-Modified: Wed, 06 Apr 2022 03:52:53 GMT
ETag: "145db-5dbf44bcacb6a-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 11206
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.intuitivehealthhub.com.au/wp-content/plugins/bb-plugin/css/jquery.bxslider.css?ver=2.6.2
104.247.74.39200 OK 946 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/bb-plugin/css/jquery.bxslider.css?ver=2.6.2
IP 104.247.74.39:0
File type ASCII text, with very long lines (2910)
Hash dfb2a3491156fcb9cab66f7edb01a9e3
ee2778c66dc1d196ef9907c9e57118d9f70686e6
4e9111a2da0c94a36e760a92fbdd0b7343e4ff9c639878f710de7f962a64188f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bb-plugin/css/jquery.bxslider.css?ver=2.6.2 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:30 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 10:10:21 GMT
ETag: "c1c-5f2af41d29f14-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 946
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/icons/ultimate-icons/style.css?ver=2.6.2
104.247.74.39200 OK 3.4 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/icons/ultimate-icons/style.css?ver=2.6.2
IP 104.247.74.39:0
Hash 018d7d5da45f68533ac505df8a60dd5a
652598bc4d2c1081a96fb9fe5e2bc8188edb5a62
0761ebbc54f3aa937fdc1db6355833762af52f6a81ae945fc4c02f4f99fdca21
GET /wp-content/uploads/bb-plugin/icons/ultimate-icons/style.css?ver=2.6.2 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:30 GMT
Server: Apache
Last-Modified: Thu, 18 Apr 2019 02:26:25 GMT
ETag: "5000-586c4ba8bf640-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 3350
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash bab8a4c1e6bb2e6c9cc00222eef1235d
1a5dd108e9f9aaf33bc048b0097a9f510d295cad
fd182297a143655a9142e3ee5bbafefd76ca974094f43fb695611f6876f3ab63
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Cormorant%3A400%2C400i%2C700%2C700i%7CArimo%3A300%2C300i%2C600%2C600i%2C700%2C700i%7COpen+Sans%3A300%2C300i%2C600%2C600i%2C700%2C700i&ver=1.1
142.250.74.74200 OK 1.8 kB URL HTTP/2 fonts.googleapis.com/css?family=Cormorant%3A400%2C400i%2C700%2C700i%7CArimo%3A300%2C300i%2C600%2C600i%2C700%2C700i%7COpen+Sans%3A300%2C300i%2C600%2C600i%2C700%2C700i&ver=1.1
IP 142.250.74.74:0
Hash 74f03f4e439b9510c33571fd8a2fc271
5c4704e73b8749ba96fb9156a08195f64b81b65f
e9d14a51c9adb971e0f37b19ebdbbed3c541e6fe3ea75b598f637f265e2aaabc
GET /css?family=Cormorant%3A400%2C400i%2C700%2C700i%7CArimo%3A300%2C300i%2C600%2C600i%2C700%2C700i%7COpen+Sans%3A300%2C300i%2C600%2C600i%2C700%2C700i&ver=1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 15:57:30 GMT
date: Sun, 29 Jan 2023 15:57:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8c630e9bbc930d1c367efa81b67be3f7
ec536695531d40a813d99a06271c7c2d698d51d3
39ca0a60c3e2e85712757ead0830d0da82beac1e4f44b6e90243e5ca9326bf4b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.intuitivehealthhub.com.au/wp-content/plugins/m-wp-popup/css/popup-styles.css?ver=1.0
104.247.74.39200 OK 1.9 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/m-wp-popup/css/popup-styles.css?ver=1.0
IP 104.247.74.39:0
Hash e8959c24dbe5a45744af288f9ff0f7e0
91fa49535c770697985e06a2ade004977b578c2c
7444568ab19d9d35b8876eff1fb3818b8d21634e764738204bee2ca0bb81eea9
GET /wp-content/plugins/m-wp-popup/css/popup-styles.css?ver=1.0 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:30 GMT
Server: Apache
Last-Modified: Sun, 09 Jan 2022 10:12:04 GMT
ETag: "1bdc-5d52373af5e53-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:30 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 1875
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 79a9c27f692b14db321f43631a44c691
cf96a4a1a69c2d955dc6156922ec41765bf166b6
b9810c89ed860ee5ed6d276ea15654616212e3687dc8b037ee79e94c1f30537c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5830
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:30 GMT
Last-Modified: Sun, 29 Jan 2023 14:20:20 GMT
Server: ECS (amb/6BA6)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash c3fa8c0d3d9045fff6a6da164946a6b2
3f49c2ca05a7a78f25950345231980b544a790e1
82258db78bc0594ae354753c0933d4defdd28c88d5f134635b888f3ca68d2f72
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4334
Cache-Control: max-age=96327
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:30 GMT
Etag: "63d55bc3-117"
Expires: Mon, 30 Jan 2023 18:42:57 GMT
Last-Modified: Sat, 28 Jan 2023 17:30:43 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 279
www.intuitivehealthhub.com.au/wp-content/plugins/wp-ultimate-recipe/assets/wpurp-public-forced.css?ver=3.13.0
104.247.74.39200 OK 12 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/wp-ultimate-recipe/assets/wpurp-public-forced.css?ver=3.13.0
IP 104.247.74.39:0
File type ASCII text, with very long lines (61392)
Hash 5cc0811fa420fd880f13f429abcd6de5
6da91dc7bfccf812b51caf4404947d3e96160377
911876913977f1937f021c25b365f566969cec3d5787e650397248e1452bfd67
GET /wp-content/plugins/wp-ultimate-recipe/assets/wpurp-public-forced.css?ver=3.13.0 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Sat, 13 Feb 2021 03:36:33 GMT
ETag: "f0fe-5bb2f7586fdec-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 12480
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.intuitivehealthhub.com.au/wp-content/plugins/wp-ultimate-recipe/vendor/font-awesome/css/font-awesome.min.css?ver=3.13.0
104.247.74.39200 OK 6.2 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/wp-ultimate-recipe/vendor/font-awesome/css/font-awesome.min.css?ver=3.13.0
IP 104.247.74.39:0
File type ASCII text, with very long lines (27303)
Hash f14f185447db679e05c7b381ec56b6a9
f3e14686cab8519fd93955410d5b281ae86d6e69
26c6be13c6ab47c65829a0584e5c8af70013edb222abb8eb94f5a92bb7702863
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-ultimate-recipe/vendor/font-awesome/css/font-awesome.min.css?ver=3.13.0 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Sat, 13 Feb 2021 03:36:33 GMT
ETag: "6b4a-5bb2f7586e67c-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 6243
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.intuitivehealthhub.com.au/wp-content/plugins/wp-email-capture/inc/css/wp-email-capture-styles.css?ver=3.9.3
104.247.74.39200 OK 115 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/wp-email-capture/inc/css/wp-email-capture-styles.css?ver=3.9.3
IP 104.247.74.39:0
File type ASCII text, with CRLF line terminators
Hash d96b61175b1d856fa9d4dab85ef34833
42dae3304be3dd40241a72b64b116983aa091894
505f63617595c7274d9405808a822ceaef897fe19f51a554c467ba983a28e7d3
GET /wp-content/plugins/wp-email-capture/inc/css/wp-email-capture-styles.css?ver=3.9.3 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Thu, 19 May 2022 09:00:29 GMT
ETag: "6a-5df599b095ce6-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 115
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.intuitivehealthhub.com.au/wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.2
104.247.74.39200 OK 437 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.2
IP 104.247.74.39:0
Hash 1a75f2e142f7df4a7a9e13a373fb20be
3cda90ae7201f0f0f1eeb63da8aede886180fffd
a75d399cddfdfff7bb8e46f0be1e5f83e415e2306abcfb2bc696b755a499f07b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.2 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Fri, 29 Jul 2022 09:01:50 GMT
ETag: "4cc-5e4ede694de0f-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 437
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.intuitivehealthhub.com.au/wp-content/plugins/genesis-dambuster/styles/full-width.css?ver=1.11.0
104.247.74.39200 OK 363 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/genesis-dambuster/styles/full-width.css?ver=1.11.0
IP 104.247.74.39:0
File type ASCII text, with CRLF line terminators
Hash bc3e743789fdb7ed6a6ee6640d01701e
36f4e5d38c50d0f20142505500250febe368cd13
2cfa01f5be453a3c247a561b6d05b90ad056eb62636561b5c562e496d356fe6d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/genesis-dambuster/styles/full-width.css?ver=1.11.0 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Sat, 13 Feb 2021 03:34:19 GMT
ETag: "433-5bb2f6d8c3885-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 363
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
www.intuitivehealthhub.com.au/wp-content/plugins/call-now-button/resources/style/modern.css?ver=1.3.7
104.247.74.39200 OK 1.1 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/call-now-button/resources/style/modern.css?ver=1.3.7
IP 104.247.74.39:0
Hash 755f697ddd308f2f8634766519c1f184
a16290c1a20fd723a2bc5c83e289b73ccb46fb66
6be2c577fd6bf63080c7e007f8c32cc7c2d61e1d9135774b0c3d6aad8b96d156
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/call-now-button/resources/style/modern.css?ver=1.3.7 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Tue, 17 Jan 2023 10:01:35 GMT
ETag: "1133-5f272c8f53aa3-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 1109
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.intuitivehealthhub.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
104.247.74.39200 OK 4.2 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 104.247.74.39:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Thu, 19 Nov 2020 09:31:13 GMT
ETag: "2bd8-5b472638cda40-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 4169
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.12.1
104.247.74.39200 OK 3.2 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.12.1
IP 104.247.74.39:0
File type ASCII text, with very long lines (1577)
Hash c34cd9056898ce3e7925aadfcccde46a
9ce2c46a7477b6da5dd635e5692d260ee02b7415
0bfed6a25c6d1ef5549ef4fc25cee8a871fdd6b85235bf61e2eb2830dbbc1294
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.12.1 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Fri, 13 Jan 2023 10:06:31 GMT
ETag: "2e7a-5f2226343ee20-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 3246
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/plugins/m-wp-popup/js/wpp-popup-frontend.js?ver=1.0
104.247.74.39200 OK 11 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/m-wp-popup/js/wpp-popup-frontend.js?ver=1.0
IP 104.247.74.39:0
File type Unicode text, UTF-8 text, with very long lines (20087)
Hash 74e85f4cfdbc29304a9da2382ecf19cc
f8ba9ce2a03d96b79da158910cec16db6071aa25
b84b53a1237aa2aa9bc6c9310b1e918b4c188d8669cbc8eda279d1a94b7cb588
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/m-wp-popup/js/wpp-popup-frontend.js?ver=1.0 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Sun, 09 Jan 2022 10:12:04 GMT
ETag: "8cd5-5d52373af4acb-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 11107
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/themes/gallery-pro/js/jquery.fitvids.js?ver=1.1
104.247.74.39200 OK 1.2 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/themes/gallery-pro/js/jquery.fitvids.js?ver=1.1
IP 104.247.74.39:0
File type HTML document, ASCII text
Hash ec303bd0746d5aeddec5276fbefdada6
100344834adf4e69d74f905c52c595b862103a7e
cc8ffb821675e8b7feb639ef1fdced47026dcdd0cc034f56b7b71e73c6b12410
GET /wp-content/themes/gallery-pro/js/jquery.fitvids.js?ver=1.1 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Sat, 03 Jun 2017 00:55:38 GMT
ETag: "a89-55103ba6cd680-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 1186
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
www.yummly.com/js/widget.js?wordpress&ver=3.13.0
104.18.26.71200 OK 1.9 kB URL HTTP/2 www.yummly.com/js/widget.js?wordpress&ver=3.13.0
IP 104.18.26.71:0
Hash 84b8866500478bb9c5588902fcb4a459
b0b19dd03ee7b038b3eb135b5619fe2b8d41c98b
f6f3d0d6325344ef088711d0c9e2645a4276a34910d73064954e25c217124049
GET /js/widget.js?wordpress&ver=3.13.0 HTTP/1.1
Host: www.yummly.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:57:31 GMT
content-type: application/javascript; charset=UTF-8
x-powered-by: Express
cache-control: public, max-age=1200
last-modified: Mon, 23 Jan 2023 14:45:24 GMT
etag: W/"1763-185df174ba0"
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src wss://ws.ttsep.com/ accounts.google.com 'self' blob: data: 'unsafe-inline' 'unsafe-eval' https:; form-action https:; upgrade-insecure-requests;
x-content-security-policy: default-src wss://ws.ttsep.com/ accounts.google.com 'self' blob: data: 'unsafe-inline' 'unsafe-eval' https:; form-action https:; upgrade-insecure-requests;
referrer-policy: origin-when-cross-origin
cf-cache-status: REVALIDATED
set-cookie: __cf_bm=FO1tOnU34fYYGeC90JC_2xx9J5NYZjinjImZMHeqo88-1675007851-0-AVwoQtttzrbX2v5PRhLKozlY6GO+fw7zCOqVYuNjWswyobXGyBbqBsoeOGaY52EMD1jzr61vKPR24tKQfuuQuS0=; path=/; expires=Sun, 29-Jan-23 16:27:31 GMT; domain=.yummly.com; HttpOnly; Secure; SameSite=None
vary: Accept-Encoding
server: cloudflare
cf-ray: 791329fcb82eb506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.intuitivehealthhub.com.au/wp-content/themes/gallery-pro/js/global.js?ver=1.1
104.247.74.39200 OK 171 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/themes/gallery-pro/js/global.js?ver=1.1
IP 104.247.74.39:0
Hash f07177e1a057adafd93e15e357e256c6
da92c4072638c67348fda22e61ea2d697c611a94
54f588b069129a200b6c4769cc9a42ec416ea953d4bd12dd304b7917cf390e9b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/gallery-pro/js/global.js?ver=1.1 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Sat, 03 Jun 2017 00:55:38 GMT
ETag: "d5-55103ba6cd680-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 171
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/themes/gallery-pro/js/headhesive.min.js?ver=1.1
104.247.74.39200 OK 1.0 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/themes/gallery-pro/js/headhesive.min.js?ver=1.1
IP 104.247.74.39:0
File type Unicode text, UTF-8 text, with very long lines (2374)
Hash 4b20a9685bf9e98bac54360e5fc76d79
cc2f9eba29b25f99ec6728627244a8c4ff13ddb7
e5e276f0f91e6a3bf6b86d40be12887499312e0d150d5272061771dfa71be5ab
GET /wp-content/themes/gallery-pro/js/headhesive.min.js?ver=1.1 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Sat, 03 Jun 2017 00:55:38 GMT
ETag: "a09-55103ba6cd680-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 1018
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/themes/gallery-pro/js/responsive-menu.js?ver=1.1
104.247.74.39200 OK 331 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/themes/gallery-pro/js/responsive-menu.js?ver=1.1
IP 104.247.74.39:0
Hash 39c2f8e2cc2a802720062c7547fc4d73
e1f38c5e0165548aaa07a1292735164d53fd1b9a
3a86e00d1aeec1e4a565256666a36cb4449a8791fffb98f243b083630208c12c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/gallery-pro/js/responsive-menu.js?ver=1.1 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Sat, 03 Jun 2017 00:55:38 GMT
ETag: "2b2-55103ba6cd680-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 331
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
104.247.74.39200 OK 31 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 104.247.74.39:0
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Mon, 16 Aug 2021 04:28:04 GMT
ETag: "15db1-5c9a5a098bd00-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 30908
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/plugins/pixelyoursite/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=5.9.5
104.247.74.39200 OK 689 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/pixelyoursite/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=5.9.5
IP 104.247.74.39:0
File type ASCII text, with very long lines (1146)
Hash 8d5b2533f035f2539f1d97e1beebf8ad
2bf30d91c2c77828df933ef94dfb2d73eac92ba9
c8697cecab68050b6683b26e3c9d7144d3b69e9703f49e62c5086b69e1a84d6d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/pixelyoursite/dist/scripts/jquery.bind-first-0.2.3.min.js?ver=5.9.5 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Thu, 26 Jan 2023 10:04:55 GMT
ETag: "525-5f327e178e482-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 689
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/plugins/pixelyoursite/dist/scripts/js.cookie-2.1.3.min.js?ver=2.1.3
104.247.74.39200 OK 874 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/pixelyoursite/dist/scripts/js.cookie-2.1.3.min.js?ver=2.1.3
IP 104.247.74.39:0
File type ASCII text, with very long lines (1709), with no line terminators
Hash 32ddc2fb56c3a3d7ea4f8b55fccb3f3f
70680fa9ed54959b4cd87b9705947203145802a6
87a0471cc3bc8f273252e5f58dd5b3f4c349046e8bcea525df9e7b185aa40bcb
GET /wp-content/plugins/pixelyoursite/dist/scripts/js.cookie-2.1.3.min.js?ver=2.1.3 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Thu, 26 Jan 2023 10:04:55 GMT
ETag: "6ad-5f327e178e09a-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 874
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/plugins/pixelyoursite/dist/scripts/public.js?ver=9.3.2
104.247.74.39200 OK 16 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/pixelyoursite/dist/scripts/public.js?ver=9.3.2
IP 104.247.74.39:0
File type C source, Unicode text, UTF-8 text
Hash d6ac309fde83006d8332ee286e845652
df69b6f02b4e66b4de62e8a5df1300338d1d0186
cd3f399e13aa2f188263fab2a31e464fa1e4ee1d72762b7548e553fa440065b3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/pixelyoursite/dist/scripts/public.js?ver=9.3.2 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Thu, 26 Jan 2023 10:04:55 GMT
ETag: "17dbb-5f327e178e482-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 16219
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
104.247.74.39200 OK 4.9 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP 104.247.74.39:0
File type ASCII text, with very long lines (15224)
Hash 3179794486ec4ca8f59329ccd67ae3e1
4b9c6e22ee7966479ef9844259f39f19d584f4a4
6e616b83910943042f683d5d21691f7e15aca8e2d8d154ff8f35bf09c612297a
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Mon, 16 Aug 2021 04:28:04 GMT
ETag: "4705-5c9a5a098a590-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 4930
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/uploads/my_custom_css/my_style.css?1564729729
104.247.74.39200 OK 911 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/my_custom_css/my_style.css?1564729729
IP 104.247.74.39:0
File type ASCII text, with CRLF, LF line terminators
Hash 4e94c65493347c2db0c348a3594c1874
62de03d9705cbafe7e054297d6b6d75021fa3052
5a24b9b8c4476c380cf039f3f74fd104ba69d8f9e0dd9fde7fbfd13939219ef7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/my_custom_css/my_style.css?1564729729 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Fri, 02 Aug 2019 07:08:49 GMT
ETag: "9f4-58f1d07aaa240-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 911
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
www.intuitivehealthhub.com.au/wp-content/plugins/bb-plugin/js/jquery.easing.min.js?ver=1.4
104.247.74.39200 OK 821 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/bb-plugin/js/jquery.easing.min.js?ver=1.4
IP 104.247.74.39:0
File type ASCII text, with very long lines (2538)
Hash a8a38b85ee6354ef0d0414385a417083
30e33b0704c5d2740986b701b4050bae8e9277e5
47a92ed411fa0bc947ebaef06925c01d802a9a56a37a9459184aa5e3dc84c8a0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bb-plugin/js/jquery.easing.min.js?ver=1.4 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 10:10:17 GMT
ETag: "9eb-5f2af4198fd43-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 821
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/plugins/bb-plugin/js/jquery.fitvids.min.js?ver=1.2
104.247.74.39200 OK 800 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/bb-plugin/js/jquery.fitvids.min.js?ver=1.2
IP 104.247.74.39:0
File type HTML document, ASCII text, with very long lines (1781)
Hash 2ef26beeb71ec946ed392e43b85931e6
27f42617f5d95307f266390f7ea56c3bbd0432f7
b71f9fe2f0221f2c9fc1b97daced69dc37fe076f08e45717ff23a2ee6daa5bab
GET /wp-content/plugins/bb-plugin/js/jquery.fitvids.min.js?ver=1.2 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 10:10:17 GMT
ETag: "6f6-5f2af4198f95b-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 800
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/plugins/bb-plugin/js/jquery.bxslider.min.js?ver=2.6.2
104.247.74.39200 OK 5.9 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/bb-plugin/js/jquery.bxslider.min.js?ver=2.6.2
IP 104.247.74.39:0
File type ASCII text, with very long lines (22701), with no line terminators
Hash 410d0004650384458e33e61d760ab316
35e7941a2b1f3e8de73a55b8326721ded7bef97b
3f11c2454f048801ea0e162e60f494f67e44d02f208217675e92740dadfc7870
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bb-plugin/js/jquery.bxslider.min.js?ver=2.6.2 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 10:10:17 GMT
ETag: "58ad-5f2af419d9509-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 5893
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/192-layout.js?ver=acb4cdbe1fafd06aa6f92e881807131e
104.247.74.39200 OK 9.3 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/192-layout.js?ver=acb4cdbe1fafd06aa6f92e881807131e
IP 104.247.74.39:0
File type ASCII text, with very long lines (5168)
Hash 22fe9cf3c928069a22715cac5aca29fd
bcc141be3fe0d8c0a4d656f261f3a4c285d4dcb0
d0541fceb2437bae8db0e8bd5bbdfbe8f93a31db606f269d19916aef3fbca63c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/bb-plugin/cache/192-layout.js?ver=acb4cdbe1fafd06aa6f92e881807131e HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Mon, 04 Jul 2022 09:52:40 GMT
ETag: "93b0-5e2f7b25fee14-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 9293
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/x-javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.intuitivehealthhub.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 23 Jan 2023 18:52:41 GMT
expires: Tue, 23 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 507890
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.intuitivehealthhub.com.au/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
104.247.74.39200 OK 6.9 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 104.247.74.39:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash db00d0b1ba5de8ecd62fb2b1e0de75f2
9668d4b505f6b5d5b5ba41956f8370563457bb10
92340b961ee884c2eb3cf0fef6a5eba1215e8daca8aedda6a2c41f46bf766ae0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 03:54:58 GMT
ETag: "50ea-5d8a76de44244-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 6875
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1
104.247.74.39200 OK 1.1 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1
IP 104.247.74.39:0
File type ASCII text, with very long lines (3228)
Hash 53a9152612a7fd4b3e86a52de11f2421
be4ab5f46cd66cd8da1be72fedda2277536c061b
5fd9190650d389968ceaf44129709c471c4104c26250e8f4ee2d4bd148561818
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/mouse.min.js?ver=1.13.1 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 03:54:58 GMT
ETag: "d4e-5d8a76de407ac-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 1077
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/plugins/mailoptin/src/core/src/assets/js/mailoptin.min.js?ver=1.2.55.0
104.247.74.39200 OK 14 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/mailoptin/src/core/src/assets/js/mailoptin.min.js?ver=1.2.55.0
IP 104.247.74.39:0
File type Unicode text, UTF-8 text, with very long lines (31986)
Hash 72234cb66014c5f46b34da02a8f46a98
6ed43755ad86bec2a93acec9cbb7bfa4c8cd6b40
c8574a1dca53c504ed8040a1aee3812c9c5e9259036610ead09f7b4364881295
GET /wp-content/plugins/mailoptin/src/core/src/assets/js/mailoptin.min.js?ver=1.2.55.0 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Tue, 24 Jan 2023 09:57:30 GMT
ETag: "b6c2-5f2ff8b43c44a-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 13865
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/x-javascript
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
142.250.74.35200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.intuitivehealthhub.com.au
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 25 Jan 2023 03:37:22 GMT
expires: Thu, 25 Jan 2024 03:37:22 GMT
cache-control: public, max-age=31536000
age: 390009
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.intuitivehealthhub.com.au/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1
104.247.74.39200 OK 4.8 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1
IP 104.247.74.39:0
File type ASCII text, with very long lines (18149)
Hash 512e1ae1b01a5d3c622f01f6ae6e11ec
2d96a6a87f9fe9b479a59f203905dccd34d2d835
03bf2a041143039ab33bba78806c62a351a85112e0a0b2002fde7307047d6068
GET /wp-includes/js/jquery/ui/draggable.min.js?ver=1.13.1 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 03:54:58 GMT
ETag: "479b-5d8a76de426ec-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 4831
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1
104.247.74.39200 OK 6.6 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1
IP 104.247.74.39:0
File type HTML document, ASCII text, with very long lines (25283)
Hash dc598a93386e51ad03715fb6cfd46f00
525d4b4875a822d28ae3ee5ee8eef71ce79ebaac
052665a790c2206f012e577997ad9cafab0b3c8aff80a65dd902adfe5b64cba8
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/sortable.min.js?ver=1.13.1 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 03:54:58 GMT
ETag: "6378-5d8a76de41b34-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 6564
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/x-javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 8cf65fcdafa84b63cf7005fe57927fcb
3f7d163a96e7f00eb2de9828624ec46e22b4b40a
dfcf629cc49444f646f3a014014a91e36251b4b43655ce2e2eca55263dd196e3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.intuitivehealthhub.com.au/wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1
104.247.74.39200 OK 2.0 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1
IP 104.247.74.39:0
File type ASCII text, with very long lines (6469)
Hash 09add2d57ea61acd752edac3da520459
074b2c1ba539fc958a1a8f758ad0d422272b13f1
f6447d59df31c6601be90695c76269e4f55420dd0eaf0bbe5e7ebad2f4d7659f
GET /wp-includes/js/jquery/ui/droppable.min.js?ver=1.13.1 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Wed, 23 Feb 2022 03:54:58 GMT
ETag: "19fb-5d8a76de42ad4-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 2036
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.2
104.247.74.39200 OK 369 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.2
IP 104.247.74.39:0
File type ASCII text, with CRLF line terminators
Hash dbcd09a3eec932ec409e4ec8fbffa7b6
f724362a7bdb90c1cf61345f62d850a36c8f5f89
68f6368451e1d8425b5ae218adae92a05128177bb6b5eb380e4c05179184fb99
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.2 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Fri, 18 Nov 2022 10:01:09 GMT
ETag: "5fa-5edbbc8f140fa-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 369
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-includes/js/jquery/suggest.min.js?ver=1.1-20110113
104.247.74.39200 OK 1.3 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-includes/js/jquery/suggest.min.js?ver=1.1-20110113
IP 104.247.74.39:0
File type ASCII text, with very long lines (2992)
Hash 061be3fe2134e92fc2ab46b5e82240dd
fa98944d8f680b4a1e18defbf73090f1bb2f36a5
2c22e116e4d36cfc52f77ffd02e8bf8179e449c0a4275ae976678a948f8905ef
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/suggest.min.js?ver=1.1-20110113 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Wed, 13 Jan 2016 17:22:27 GMT
ETag: "bb1-5293a6a035ac0-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 1340
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/plugins/wp-ultimate-recipe/assets/wpurp-public.js?ver=3.13.0
104.247.74.39200 OK 52 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/wp-ultimate-recipe/assets/wpurp-public.js?ver=3.13.0
IP 104.247.74.39:0
File type Unicode text, UTF-8 text, with very long lines (63978)
Hash 86b0b163fb32c9e713c8f5c0aebf5b39
ebf67d3dfe50b3d375b63977348a3f2ddedc3fa5
14cf8fb66cbca7ee9948d2be4774fb26cd2d88a0a619f7b4b24a823ed3772c0b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-ultimate-recipe/assets/wpurp-public.js?ver=3.13.0 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Sat, 13 Feb 2021 03:36:33 GMT
ETag: "308ed-5bb2f7586fa04-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 51547
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-includes/js/hoverIntent.min.js?ver=1.10.2
104.247.74.39200 OK 705 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 104.247.74.39:0
File type ASCII text, with very long lines (1465)
Hash 19bbc441740a1a6f3a64155bdfc3dba5
55a4beb22cd76a1d66c4a6947968408f337b4890
ed5fdb40d566079267ca224b2d9bbe7235a66ce393c083c28c64be9c24a0dfda
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Sun, 06 Feb 2022 14:17:50 GMT
ETag: "5dc-5d75a261ee83e-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 705
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=3.4.0
104.247.74.39200 OK 132 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=3.4.0
IP 104.247.74.39:0
File type ASCII text, with no line terminators
Hash bf4fe460b8cea77cc01f5dbb20da5da9
6253a2c2df2d410772d122b62fc286fd40fe3bf3
1911d773519773e70483c75a8a8faf59ccf51d189a66690edbbf553246ce93b3
GET /wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=3.4.0 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:31 GMT
Server: Apache
Last-Modified: Wed, 07 Sep 2022 09:07:18 GMT
ETag: "84-5e812a3d0b582-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:31 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 132
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/themes/genesis/lib/js/skip-links.min.js?ver=3.4.0
104.247.74.39200 OK 251 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/themes/genesis/lib/js/skip-links.min.js?ver=3.4.0
IP 104.247.74.39:0
File type ASCII text, with very long lines (386), with no line terminators
Hash 2d0b1905d07058a7a7fce935cc8daacf
93c5e93088524ab3ab1c6d944f433e7c9a9b2f74
cdfdf54e49bb9605726750451648eaef5536099a7fafe13dfb4d41af86c278c9
GET /wp-content/themes/genesis/lib/js/skip-links.min.js?ver=3.4.0 HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Wed, 07 Sep 2022 09:07:18 GMT
ETag: "182-5e812a3d0b96a-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 251
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/x-javascript
www.intuitivehealthhub.com.au/wp-content/uploads/2017/09/cropped-Intuitive-Health-Hub.png
104.247.74.39200 OK 17 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/2017/09/cropped-Intuitive-Health-Hub.png
IP 104.247.74.39:0
File type PNG image data, 356 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash bf168bf5d53d49dd1283314ca11d09d2
7b5b072e40d72ff4ee052d64d65da7fa38d614e5
f2d9c1d4878bbbc0c245e13558e3360d4deebc3f055079e31c0836e20e6ea985
GET /wp-content/uploads/2017/09/cropped-Intuitive-Health-Hub.png HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Cookie: pys_session_limit=true; pys_start_session=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Sun, 27 May 2018 02:31:15 GMT
ETag: "4326-56d26cb90c2c0"
Accept-Ranges: bytes
Content-Length: 17190
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Referrer-Policy:
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.intuitivehealthhub.com.au/wp-content/plugins/simple-social-icons/symbol-defs.svg
104.247.74.39200 OK 13 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/simple-social-icons/symbol-defs.svg
IP 104.247.74.39:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (4826)
Hash 25eabfad71cfb2b582de2dd6462e4a82
62518568a35963ad11f7be344aaa5c92cf1477e1
82e31831b73c2262f6fdba074fe9406d1e24d6bffdabb0096a9d8fd7a2af0f7c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/simple-social-icons/symbol-defs.svg HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Cookie: pys_session_limit=true; pys_start_session=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Fri, 29 Jul 2022 09:01:50 GMT
ETag: "8b8c-5e4ede694c2b7-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 12948
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/svg+xml
www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/Woman-with-tea-in-bed-500x500-landscape.jpeg
104.247.74.39200 OK 31 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/Woman-with-tea-in-bed-500x500-landscape.jpeg
IP 104.247.74.39:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 500x350, components 3\012- data
Hash 4a8b1086263acb91400efc868a72b99c
507f340fcacc5e98f972b21cd0a4b7962be83278
1d9a0588e7395d240acceb7bd7feff77eb2c23526defde4e1d36e5d0b6825852
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/bb-plugin/cache/Woman-with-tea-in-bed-500x500-landscape.jpeg HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Fri, 13 Jul 2018 04:38:39 GMT
ETag: "784b-570da0db991c0"
Accept-Ranges: bytes
Content-Length: 30795
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Referrer-Policy:
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/icons/ultimate-icons/fonts/Ultimate-Icons.ttf?1ddi1j
104.247.74.39200 OK 46 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/icons/ultimate-icons/fonts/Ultimate-Icons.ttf?1ddi1j
IP 104.247.74.39:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Ultimate-Icons\012- data
Hash a9a026975bda7f8f0a3cbdb8eb2a976c
2700fcc8c98c1ecd4cce1d04993fed3261205e0e
ffaa94f0b20c44fc00f70c92cf3dc65a12c183a75bab1311d6f640e1214be2ae
GET /wp-content/uploads/bb-plugin/icons/ultimate-icons/fonts/Ultimate-Icons.ttf?1ddi1j HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/icons/ultimate-icons/style.css?ver=2.6.2
Cookie: pys_session_limit=true; pys_start_session=true
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Thu, 18 Apr 2019 02:26:26 GMT
ETag: "16b60-586c4ba9b3880-gzip"
Accept-Ranges: bytes
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Referrer-Policy:
Content-Length: 45665
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/x-font-ttf
www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/dreamstimefree_6102736-1-500x500-landscape.jpg
104.247.74.39200 OK 37 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/dreamstimefree_6102736-1-500x500-landscape.jpg
IP 104.247.74.39:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 500x350, components 3\012- data
Hash 2712799e08dba76ba0eb5d7d518bfe46
bf04bab967fbc39eeaf2ad8f4e04b0b82b7b171f
d95949a4f2d290e5a89691ca1129ce44b163248c2553bd25273ece8d3d963f99
GET /wp-content/uploads/bb-plugin/cache/dreamstimefree_6102736-1-500x500-landscape.jpg HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Thu, 31 May 2018 21:54:20 GMT
ETag: "901b-56d878270db00"
Accept-Ranges: bytes
Content-Length: 36891
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Referrer-Policy:
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-15-500x500-landscape.jpg
104.247.74.39200 OK 20 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-15-500x500-landscape.jpg
IP 104.247.74.39:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 500x350, components 3\012- data
Hash dc668b390cc0846d239414662baa67ba
9b3f79593e4b83aa12293b1383f721cb98413f91
a01d29bbceb1fd851c6f23fbb928006473c0426921294502ed0d7c587aa138c0
GET /wp-content/uploads/bb-plugin/cache/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-15-500x500-landscape.jpg HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Thu, 05 Oct 2017 03:02:49 GMT
ETag: "4fe3-55ac3f5972840"
Accept-Ranges: bytes
Content-Length: 20451
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Referrer-Policy:
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/jpeg
www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-5-500x500-landscape.jpg
104.247.74.39200 OK 52 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-5-500x500-landscape.jpg
IP 104.247.74.39:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 500x350, components 3\012- data
Hash b76f0855df2e7a1f2b3caeb436f55ef3
500e2b8d83cc5d347d2264dafc08152d40ba9325
37576b2f6fe088ec0bd10e9bfd73831fcd7ee5765b9d5a6bf023fae6dc398ed0
GET /wp-content/uploads/bb-plugin/cache/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-5-500x500-landscape.jpg HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Thu, 05 Oct 2017 03:02:49 GMT
ETag: "c9f7-55ac3f5972840"
Accept-Ranges: bytes
Content-Length: 51703
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Referrer-Policy:
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 088d5aaa89319f1c6aed26c571993f13
5f8447ffddafe1dd092ba2dfc8777b83e7d228bf
7b26a998ea0d466614c8075d57faf034b46477ed1dd9185107ab4323f3018905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/ACS_0032-500x500-landscape.jpg
104.247.74.39200 OK 48 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/ACS_0032-500x500-landscape.jpg
IP 104.247.74.39:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 500x350, components 3\012- data
Hash d2078146146fa687cea30734b62d69fc
f79ec9a5069b3aaefa8977eb74426d1b94466de4
c2d0475898b960fd5d3980198892154187c4f447875a5524d20210e4c6e8d3ed
GET /wp-content/uploads/bb-plugin/cache/ACS_0032-500x500-landscape.jpg HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Thu, 31 May 2018 21:54:20 GMT
ETag: "bc1a-56d878270db00"
Accept-Ranges: bytes
Content-Length: 48154
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Referrer-Policy:
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/jpeg
www.googleadservices.com/pagead/conversion.js
142.250.74.162200 OK 17 kB URL HTTP/2 www.googleadservices.com/pagead/conversion.js
IP 142.250.74.162:0
File type ASCII text, with very long lines (2772)
Hash 04ec73ef2e5b66c5c39789225ef6f3b4
2ab347c238be13f67eca677342a5908069c0f7f4
5fe85656bf935a0c9eb402c514de0373da700f53a7bc64071c54c3a8cb6d4cf5
GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sun, 29 Jan 2023 15:57:32 GMT
expires: Sun, 29 Jan 2023 15:57:32 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 9276738928452068410
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 16812
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-10-circle.jpg
104.247.74.39200 OK 116 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-10-circle.jpg
IP 104.247.74.39:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 640x640, components 3\012- data
Size 116 kB (115643 bytes)
Hash 55b987eab48ce9a39522890b5095b37b
bebf8f2745f80393f99b893892be438bce335eaf
7091f50435782c560e32fd099e15131da3c305ee09db5c84f5e97f614889767a
GET /wp-content/uploads/bb-plugin/cache/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-10-circle.jpg HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Cookie: pys_session_limit=true; pys_start_session=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Wed, 20 May 2020 04:53:09 GMT
ETag: "1c3bb-5a60d2c2f77aa"
Accept-Ranges: bytes
Content-Length: 115643
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Referrer-Policy:
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ae45eeb8e62398ce3fc49c0234699163
f5506898f66248b331e84b573a010c5c1a8ad0d2
3d298a54e6d0f6e8f6a48a398e372720fb871623080b7408d66f296068ec6ddc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-11-500x500-landscape.jpg
104.247.74.39200 OK 49 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-11-500x500-landscape.jpg
IP 104.247.74.39:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 500x350, components 3\012- data
Hash 53fcaaecb967b79fb863e0954ef17215
e14bedff74f54372156298d13543f2fdb44d5eaa
e06a48cd16ea2df9970dc21023de08c20afd5dcd13f49569f85f230569f637f9
GET /wp-content/uploads/bb-plugin/cache/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-11-500x500-landscape.jpg HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Thu, 05 Oct 2017 03:02:49 GMT
ETag: "c0aa-55ac3f5972840"
Accept-Ranges: bytes
Content-Length: 49322
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Referrer-Policy:
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/jpeg
www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/Bad-Mood-Foods-yes-the-food-you-eat-can-make-you-depressed-500x500-landscape.png
104.247.74.39200 OK 200 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/Bad-Mood-Foods-yes-the-food-you-eat-can-make-you-depressed-500x500-landscape.png
IP 104.247.74.39:0
File type PNG image data, 500 x 350, 8-bit/color RGBA, non-interlaced\012- data
Size 200 kB (199659 bytes)
Hash a8489c14ed021c367f0e011ae91f6a92
53b57248f1a8376c9874654ecc7c56d071c92adf
08e15ceb7af703e33a2fbc602bc5316ac5fec6842ed0ecbaaeb2b5465ff5a74f
GET /wp-content/uploads/bb-plugin/cache/Bad-Mood-Foods-yes-the-food-you-eat-can-make-you-depressed-500x500-landscape.png HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Thu, 05 Oct 2017 03:02:49 GMT
ETag: "30beb-55ac3f5972840"
Accept-Ranges: bytes
Content-Length: 199659
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Referrer-Policy:
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
www.intuitivehealthhub.com.au/wp-content/uploads/2017/09/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-7.jpg
104.247.74.39200 OK 315 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/2017/09/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-7.jpg
IP 104.247.74.39:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 1920x1080, components 3\012- data
Size 315 kB (315122 bytes)
Hash f262700cded70a3eb463ed0f9554c23e
a0d8ca0960bba5c9138286c3e9098cd5e1cd37c2
caa1dfa8dae4224618dac7bbebae72bc7d0482e0e4fd27f788a7358b8218a661
GET /wp-content/uploads/2017/09/Gabriella-Ratner-Intuitive-Health-Hub-Clinical-Nutritionist-and-Health-Coach-7.jpg HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/wp-content/uploads/bb-plugin/cache/192-layout.css?ver=7039c00efe26e5b62950c83b8bce3a8a
Cookie: pys_session_limit=true; pys_start_session=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Fri, 29 Sep 2017 10:58:26 GMT
ETag: "4cef2-55a51e77af880"
Accept-Ranges: bytes
Content-Length: 315122
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Referrer-Policy:
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: image/jpeg
www.intuitivehealthhub.com.au/wp-content/plugins/bb-plugin/img/bxslider/bx_loader.gif
104.247.74.39200 OK 8.6 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/bb-plugin/img/bxslider/bx_loader.gif
IP 104.247.74.39:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash 931bdb6b50816b03206c66921760b246
f67f91dafbe0f846c8f8f67a005497d8bdea188a
6d46e2cf165a5a0584afba7bc9663da292ee08c97cfc7613de6013ed05be892a
GET /wp-content/plugins/bb-plugin/img/bxslider/bx_loader.gif HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/wp-content/plugins/bb-plugin/css/jquery.bxslider.css?ver=2.6.2
Cookie: pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.intuitivehealthhub.com.au/; last_pysTrafficSource=direct; last_pys_landing_page=https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Fri, 20 Jan 2023 10:10:21 GMT
ETag: "2185-5f2af41d26c4c"
Accept-Ranges: bytes
Content-Length: 8581
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Referrer-Policy:
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/gif
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7078b1d21bbac26012d93fc9501fbbb0
412189ffa7980709edc28b87a820aa1ae64fa3a7
6db1d0d3f3924d7e75e1fd087553cf4ec5fa938ecc52adf3f149570551eaf7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5464
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:32 GMT
Last-Modified: Sun, 29 Jan 2023 14:26:28 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Sun, 29 Jan 2023 15:46:59 GMT
expires: Sun, 29 Jan 2023 17:46:59 GMT
cache-control: public, max-age=7200
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
age: 633
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ed8a8c45dceab588456b222e04775919
0242859712655caa3c3e9b936878c7c7874b7b5a
669f0691b8bf32a10fb219ce47ad69495e5cd2a11317b672aecca53f50b51de3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/plugins/ua/linkid.js
142.250.74.110200 OK 859 B URL HTTP/2 www.google-analytics.com/plugins/ua/linkid.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1335)
Hash 904463ce35aee800847ab85ec948aaf6
904e4d2647466c7f7e0f7412019984e3b2ccfb24
057b4d29359dfe2536a2ec40243bdfa7b151222efcc1eb358608994a14c34237
GET /plugins/ua/linkid.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 859
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 29 Jan 2023 15:08:55 GMT
expires: Sun, 29 Jan 2023 16:08:55 GMT
cache-control: public, max-age=3600
age: 2917
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/824787183/?random=1675007860495&cv=9&fst=1675007860495&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.intuitivehealthhub.com.au%2F&tiba=Sydney%7C%20Eastern%20suburbs%20%7C%20Nutritionist&hn=www.googleadservices.com&rfmt=3&fmt=4
216.58.211.2200 OK 949 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/824787183/?random=1675007860495&cv=9&fst=1675007860495&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.intuitivehealthhub.com.au%2F&tiba=Sydney%7C%20Eastern%20suburbs%20%7C%20Nutritionist&hn=www.googleadservices.com&rfmt=3&fmt=4
IP 216.58.211.2:0
File type ASCII text, with very long lines (2165), with no line terminators
Hash dbe122c1b5a12f0fe42b1614b3aa654f
61f9768aaee1ece7eae4a8b206904c4f938c0d45
f09e7944b000e55baac0e8d3db7a0a040797a81a3b84e09655229efad3028b69
GET /pagead/viewthroughconversion/824787183/?random=1675007860495&cv=9&fst=1675007860495&num=1&guid=ON&resp=GooglemKTybQhCsO&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&ig=1&frm=0&url=https%3A%2F%2Fwww.intuitivehealthhub.com.au%2F&tiba=Sydney%7C%20Eastern%20suburbs%20%7C%20Nutritionist&hn=www.googleadservices.com&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 15:57:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 949
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 29-Jan-2023 16:12:32 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.205.11200 OK 28 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (64348)
Hash 541db4f3f0ba067bfb58cdac34cb86f4
20e6883f068568888ce37c6b9ef8f5d12be257c0
83898f3b2da2a11996d2eb3a5115ef301255030fdf231b8bf7971916769bc7be
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: 6iogMb8hvqqIdoakib5ky5Llo2PA1jXMxwjquOaibuweHqGziGy9RrtE+ui/3rN2ogLfgOhX8qefSwAw3GeK7g==
content-length: 27815
x-fb-trip-id: 1679558926
date: Sun, 29 Jan 2023 15:57:32 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7078b1d21bbac26012d93fc9501fbbb0
412189ffa7980709edc28b87a820aa1ae64fa3a7
6db1d0d3f3924d7e75e1fd087553cf4ec5fa938ecc52adf3f149570551eaf7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5464
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:32 GMT
Last-Modified: Sun, 29 Jan 2023 14:26:28 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash e9eba61fbe87bc53d60d0fdd1ba6adb4
8dbb3dfacfaad4ce0fd3a355790cb9b245e01e07
9c0233792f873315e75ce5396d1a210f2df665db23ab858a0724f66bbb4528e7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.hotjar.com/modules.dcdf252a9a6cf097c357.js
54.230.111.93200 OK 68 kB URL HTTP/2 script.hotjar.com/modules.dcdf252a9a6cf097c357.js
IP 54.230.111.93:0
File type Unicode text, UTF-8 text, with very long lines (48602)
Hash 4ab050de5a6437b8d1f5955ab1dbfb07
498e55a41dc3df84cf825bd946a1300a04b38677
87cbfe168c8537c46132cab67a16afe706796b7f301ac8dc5bd8f9ea847e4a72
GET /modules.dcdf252a9a6cf097c357.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 68336
date: Fri, 27 Jan 2023 09:04:05 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "4ab050de5a6437b8d1f5955ab1dbfb07"
last-modified: Fri, 27 Jan 2023 09:03:53 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 0O5_HlvbWZ50z0oJi9xDtT6nS-nlfHp4jXHVhc4uO8foaBf5UNXHJQ==
age: 197607
X-Firefox-Spdy: h2
www.intuitivehealthhub.com.au/wp-content/uploads/2017/09/icon.png
104.247.74.39200 OK 3.1 kB URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/uploads/2017/09/icon.png
IP 104.247.74.39:0
File type PNG image data, 245 x 245, 8-bit colormap, non-interlaced\012- data
Hash 92a30ad389d791089dbde62bfcf61d13
55ab39296bd32b523e99a2ff64990e615e8674cd
c2c4b48d56f11009d4a898f76cb2ab460651bdf2c758583b72d58d678fe3e821
GET /wp-content/uploads/2017/09/icon.png HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Cookie: pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.intuitivehealthhub.com.au/; last_pysTrafficSource=direct; last_pys_landing_page=https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:32 GMT
Server: Apache
Last-Modified: Sun, 27 May 2018 02:31:19 GMT
ETag: "c4d-56d26cbcdcbc0"
Accept-Ranges: bytes
Content-Length: 3149
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:32 GMT
Referrer-Policy:
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: image/png
vars.hotjar.com/box-fc6c0cda90900662e5160cde908b3e86.html
54.230.111.94200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-fc6c0cda90900662e5160cde908b3e86.html
IP 54.230.111.94:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash c34915675a9e912c93dac934322be7d1
1d0c20a805821d76fdef8b95eace30ac659a9454
091ab4e6d3f86a5e7bc8c7c3e9805df420c13f77627902dd204abc1f28b6336d
GET /box-fc6c0cda90900662e5160cde908b3e86.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1034
date: Fri, 27 Jan 2023 09:04:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "c34915675a9e912c93dac934322be7d1"
last-modified: Fri, 27 Jan 2023 09:03:53 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: npgLZrw2oP9quEtSANvmAzEIYt8CdAD1lbnEC71VbD6oWlQuV4DDPA==
age: 197606
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 86352d15c37831cf9bf1e41325029224
ac8b28bcc1e6dd026e1f62d1ef8b9f80a42eee21
154f5f5e116df41f5d3bd414c671138b2afc198071529a0f3573109277566cd8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/824787183/?random=1675007860495&cv=9&fst=1675004400000&num=1&guid=ON&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=0&url=https%3A%2F%2Fwww.intuitivehealthhub.com.au%2F&tiba=Sydney%7C%20Eastern%20suburbs%20%7C%20Nutritionist&fmt=3&is_vtc=1&random=4210688143&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/824787183/?random=1675007860495&cv=9&fst=1675004400000&num=1&guid=ON&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=0&url=https%3A%2F%2Fwww.intuitivehealthhub.com.au%2F&tiba=Sydney%7C%20Eastern%20suburbs%20%7C%20Nutritionist&fmt=3&is_vtc=1&random=4210688143&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/824787183/?random=1675007860495&cv=9&fst=1675004400000&num=1&guid=ON&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=0&url=https%3A%2F%2Fwww.intuitivehealthhub.com.au%2F&tiba=Sydney%7C%20Eastern%20suburbs%20%7C%20Nutritionist&fmt=3&is_vtc=1&random=4210688143&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 15:57:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/824787183/?random=1675007860495&cv=9&fst=1675004400000&num=1&guid=ON&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=0&url=https%3A%2F%2Fwww.intuitivehealthhub.com.au%2F&tiba=Sydney%7C%20Eastern%20suburbs%20%7C%20Nutritionist&fmt=3&is_vtc=1&random=4210688143&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/824787183/?random=1675007860495&cv=9&fst=1675004400000&num=1&guid=ON&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=0&url=https%3A%2F%2Fwww.intuitivehealthhub.com.au%2F&tiba=Sydney%7C%20Eastern%20suburbs%20%7C%20Nutritionist&fmt=3&is_vtc=1&random=4210688143&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/824787183/?random=1675007860495&cv=9&fst=1675004400000&num=1&guid=ON&eid=375603261&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&sendb=1&frm=0&url=https%3A%2F%2Fwww.intuitivehealthhub.com.au%2F&tiba=Sydney%7C%20Eastern%20suburbs%20%7C%20Nutritionist&fmt=3&is_vtc=1&random=4210688143&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 29 Jan 2023 15:57:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-100887170-1&cid=1352845591.1675007861&jid=1629496026&gjid=1485764583&_gid=432753801.1675007861&_u=aGDAAUIhAAAAACAAI~&z=1276589772
173.194.221.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-100887170-1&cid=1352845591.1675007861&jid=1629496026&gjid=1485764583&_gid=432753801.1675007861&_u=aGDAAUIhAAAAACAAI~&z=1276589772
IP 173.194.221.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-100887170-1&cid=1352845591.1675007861&jid=1629496026&gjid=1485764583&_gid=432753801.1675007861&_u=aGDAAUIhAAAAACAAI~&z=1276589772 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.intuitivehealthhub.com.au
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.intuitivehealthhub.com.au
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sun, 29 Jan 2023 15:57:32 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b7da7d1d3e5880d5d4e313ac7fcf2a83
60a1e887ccb7c7cdae0035c65ef7df9908547fef
af17efcd17df50324c29cff05cea79f18cba79f6b1134ec0e6d1637759b5e895
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ef589be52a3e55b643978f17949a73da
74545de6f144282252ff92c751f97cc835c80341
7bfa68c43e60a2627770163b5c1b96fbd7e4843984ad5ff6225c5490b8073b26
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 29 Jan 2023 15:57:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
script.hotjar.com/preact-incoming-feedback.4d81bb40a7c433820666.js
54.230.111.93200 OK 35 kB URL HTTP/2 script.hotjar.com/preact-incoming-feedback.4d81bb40a7c433820666.js
IP 54.230.111.93:0
Hash 15e02dd18c5936de49f1c5d85a9d0d7a
ed4b513bf027f1d42e9916547a5b3516e1000e70
2ff14e109a6852486be4590115fa48229801e488104ea4eb9eab55f5c0e6feb5
GET /preact-incoming-feedback.4d81bb40a7c433820666.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 34728
date: Fri, 27 Jan 2023 09:04:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "15e02dd18c5936de49f1c5d85a9d0d7a"
last-modified: Fri, 27 Jan 2023 09:03:53 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9p8MSwsMCin3F-F5BOY54Trlvmo1FC_HNYwbajKvSaPXaPd3Thi45Q==
age: 197607
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 27a24a18918421ed5c8461c36ca78f9c
cf7d4250a49626365947813989576793cfb7baf5
15256e5bfa97cb769ba56c713df3773f2a63c890b42b667f7f1aa555c6c37918
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 29 Jan 2023 15:57:33 GMT
Last-Modified: Sun, 29 Jan 2023 15:14:07 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 393nFfvUu1j35E71Z8NQuG6XCHr6sTDXxsKsslCX-qpnqZV8jt2sVQ==
Age: 2606
script.hotjar.com/font-hotjar_5.65042d.woff2
54.230.111.93200 OK 2.2 kB URL HTTP/2 script.hotjar.com/font-hotjar_5.65042d.woff2
IP 54.230.111.93:0
File type Web Open Font Format (Version 2), TrueType, length 2188, version 1.0\012- data
Hash c9fb9163f8b7be37023ebe649688bebf
8a045f40cc0f0035d41679c522334277f9f2de59
fab4fef6bbfa8d6464403a14be7de1be5e3e63637a96d994fab10266e1eaf6da
GET /font-hotjar_5.65042d.woff2 HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.intuitivehealthhub.com.au
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
content-length: 2188
date: Thu, 19 Jan 2023 03:50:33 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
cross-origin-resource-policy: cross-origin
etag: "c9fb9163f8b7be37023ebe649688bebf"
last-modified: Wed, 18 Jan 2023 16:09:03 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: L69-bpKVm2Lkpb23-sQWN8EAfiseWQxFlOY8rTfEu9AN9zLZJh7JRA==
age: 907620
X-Firefox-Spdy: h2
www.intuitivehealthhub.com.au/wp-content/plugins/m-wp-popup/images/green-tick.png
104.247.74.39200 OK 884 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-content/plugins/m-wp-popup/images/green-tick.png
IP 104.247.74.39:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 195332492dfe1e662f95fbc19f5b2fb2
a28b59c16099ed42ba4fd6452ce05280b38c2dcc
43f7e76f4304629b37fefe1b58522bdd85e22e9df10b69d7b8278d1c259893fc
GET /wp-content/plugins/m-wp-popup/images/green-tick.png HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Cookie: pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.intuitivehealthhub.com.au/; last_pysTrafficSource=direct; last_pys_landing_page=https://www.intuitivehealthhub.com.au/; _ga=GA1.3.1352845591.1675007861; _gid=GA1.3.432753801.1675007861; _gat_gtag_UA_115178373_1=1; _gat_UA-100887170-1=1; _hjSessionUser_813572=eyJpZCI6IjNlOWRiMDkwLTY1ODAtNTgwNy1hZGNmLWE0NDc0NWY1YzJiYyIsImNyZWF0ZWQiOjE2NzUwMDc4NjA5OTEsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_813572=eyJpZCI6ImVlOWRhOGIwLWJkMDgtNDI0Yi1iNWQ5LWQ0N2I1NzcxNDNiMSIsImNyZWF0ZWQiOjE2NzUwMDc4NjEwMTYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:33 GMT
Server: Apache
Last-Modified: Sun, 09 Jan 2022 10:12:04 GMT
ETag: "374-5d52373af335b"
Accept-Ranges: bytes
Content-Length: 884
Cache-Control: max-age=31536000
Expires: Mon, 29 Jan 2024 15:57:33 GMT
Referrer-Policy:
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: image/png
www.facebook.com/tr/?id=104940767016726&ev=PageView&dl=https%3A%2F%2Fwww.intuitivehealthhub.com.au%2F&rl=&if=false&ts=1675007861260&cd[page_title]=Home&cd[post_type]=page&cd[post_id]=192&cd[plugin]=PixelYourSite&cd[user_role]=guest&cd[event_url]=www.intuitivehealthhub.com.au%2F&sw=1280&sh=1024&v=2.9.92&r=stable&a=dvpixelyoursite&ec=0&o=28&fbp=fb.2.1675007861259.279318700&it=1675007860854&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=104940767016726&ev=PageView&dl=https%3A%2F%2Fwww.intuitivehealthhub.com.au%2F&rl=&if=false&ts=1675007861260&cd[page_title]=Home&cd[post_type]=page&cd[post_id]=192&cd[plugin]=PixelYourSite&cd[user_role]=guest&cd[event_url]=www.intuitivehealthhub.com.au%2F&sw=1280&sh=1024&v=2.9.92&r=stable&a=dvpixelyoursite&ec=0&o=28&fbp=fb.2.1675007861259.279318700&it=1675007860854&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=104940767016726&ev=PageView&dl=https%3A%2F%2Fwww.intuitivehealthhub.com.au%2F&rl=&if=false&ts=1675007861260&cd[page_title]=Home&cd[post_type]=page&cd[post_id]=192&cd[plugin]=PixelYourSite&cd[user_role]=guest&cd[event_url]=www.intuitivehealthhub.com.au%2F&sw=1280&sh=1024&v=2.9.92&r=stable&a=dvpixelyoursite&ec=0&o=28&fbp=fb.2.1675007861259.279318700&it=1675007860854&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Sun, 29 Jan 2023 15:57:33 GMT
X-Firefox-Spdy: h2
www.intuitivehealthhub.com.au/wp-admin/admin-ajax.php
104.247.74.39200 OK 57 B URL HTTP/1.1 www.intuitivehealthhub.com.au/wp-admin/admin-ajax.php
IP 104.247.74.39:0
File type ASCII text, with no line terminators
Hash e9ec570dc636840ba3e5147b4b78c369
9d4e0331865d162797a427c44098e091c584b766
ff03e2f62e5b80694bad177a5cc6cbb4897d6fa465ab2a4f19224e065c321f33
Analyzer Verdict Alert fortinet Phishing
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: www.intuitivehealthhub.com.au
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
X-Requested-With: XMLHttpRequest
Content-Length: 335
Origin: https://www.intuitivehealthhub.com.au
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Cookie: pys_session_limit=true; pys_start_session=true; pys_first_visit=true; pysTrafficSource=direct; pys_landing_page=https://www.intuitivehealthhub.com.au/; last_pysTrafficSource=direct; last_pys_landing_page=https://www.intuitivehealthhub.com.au/; _ga=GA1.3.1352845591.1675007861; _gid=GA1.3.432753801.1675007861; _gat_gtag_UA_115178373_1=1; _gat_UA-100887170-1=1; _hjSessionUser_813572=eyJpZCI6IjNlOWRiMDkwLTY1ODAtNTgwNy1hZGNmLWE0NDc0NWY1YzJiYyIsImNyZWF0ZWQiOjE2NzUwMDc4NjA5OTEsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjIncludedInSessionSample=1; _hjSession_813572=eyJpZCI6ImVlOWRhOGIwLWJkMDgtNDI0Yi1iNWQ5LWQ0N2I1NzcxNDNiMSIsImNyZWF0ZWQiOjE2NzUwMDc4NjEwMTYsImluU2FtcGxlIjp0cnVlfQ==; _hjIncludedInPageviewSample=1; _hjAbsoluteSessionInProgress=0; _fbp=fb.2.1675007861259.279318700
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 29 Jan 2023 15:57:33 GMT
Server: Apache
Access-Control-Allow-Origin: https://www.intuitivehealthhub.com.au
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Frame-Options: SAMEORIGIN
Referrer-Policy: strict-origin-when-cross-origin
Set-Cookie: slimstat_tracking_code=20086.b70da096b6e31d87a9290229f77dc81f; expires=Sun, 29-Jan-2023 16:27:34 GMT; Max-Age=1800; path=/
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 57
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
static.hotjar.com/c/hotjar-813572.js?sv=6
54.230.111.113200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-813572.js?sv=6
IP 54.230.111.113:0
GET /c/hotjar-813572.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Sun, 29 Jan 2023 15:57:32 GMT
cache-control: max-age=60
etag: W/999fef6f04d7626130a28ee6f83c8e37
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: RSUiBK3nYyWkxA0XE0pIXCrb9nmDxrfEwYIhqQTxkbQTtcdssocgoA==
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway%3A800%2C500&ver=5.9.5
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway%3A800%2C500&ver=5.9.5
IP 142.250.74.74:0
GET /css?family=Raleway%3A800%2C500&ver=5.9.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 15:57:30 GMT
date: Sun, 29 Jan 2023 15:57:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/813572/visit-data?sv=6
54.229.129.43200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/813572/visit-data?sv=6
IP 54.229.129.43:0
POST /api/v2/client/sites/813572/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 112
Origin: https://www.intuitivehealthhub.com.au
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:57:33 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2
code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css?ver=1.1
104.26.7.173200 OK 0 B URL HTTP/2 code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css?ver=1.1
IP 104.26.7.173:0
GET /ionicons/2.0.1/css/ionicons.min.css?ver=1.1 HTTP/1.1
Host: code.ionicframework.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:57:30 GMT
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Fri, 28 Oct 2022 02:55:05 GMT
access-control-allow-origin: *
etag: W/"635b4489-c854"
expires: Sat, 28 Jan 2023 15:14:32 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 80AE:452F:15A3BC2:168D3DE:63D5397F
via: 1.1 varnish
age: 62043
x-served-by: cache-bma1637-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1674945808.673475,VS0,VE113
vary: Accept-Encoding
x-fastly-request-id: 994aad9d1268a6f15571777c0e11a0258eac03f2
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s7JhrLq8gSvFYOpgyGhhnY0rfN%2FEJNJBdNvLR86RUgDxIJsO1o7WjcG%2F%2FvZpaS4eU87xk9%2FsjsOK6bi5h4W3tsLAsZNpOegJGBoKm37QAYc0FFlENz5fJa4PbHnniHxz%2Fee42uMVQSFo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791329f97a670b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/wp/wp-slimstat/tags/4.9.1.1/wp-slimstat.min.js
104.16.86.20200 OK 0 B URL HTTP/2 cdn.jsdelivr.net/wp/wp-slimstat/tags/4.9.1.1/wp-slimstat.min.js
IP 104.16.86.20:0
GET /wp/wp-slimstat/tags/4.9.1.1/wp-slimstat.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 29 Jan 2023 15:57:30 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
etag: W/"95f0-AfiROFbgBVg9OYMczak98MKgabU"
x-served-by: cache-fra-eddf8230066-FRA, cache-yyz4533-YYZ
x-cache: HIT, MISS
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cf-cache-status: HIT
age: 7063354
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ge8AtKlex3ERLn7TBAlrybv74exTNt5CPcVVkLXadk6PcKEWVrtHYaIwMnh8RiM3Ql5O62q0vifDfjZ%2BCYdxgRxhTqEhxjzQKrWtv02cEeFIljqkPBZh%2FwnHZIdMl%2FTFBXA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791329fa58e9b51e-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans&ver=3.13.0
142.250.74.74200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans&ver=3.13.0
IP 142.250.74.74:0
GET /css?family=Open+Sans&ver=3.13.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.intuitivehealthhub.com.au/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 29 Jan 2023 15:57:30 GMT
date: Sun, 29 Jan 2023 15:57:30 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2