drsteveyoung.com/config/asf/login.php
45.56.110.40301 Moved Permanently 253 B URL HTTP/1.1 drsteveyoung.com/config/asf/login.php
IP 45.56.110.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 75da1f55e724c95a84d6dec0e5ac220b
05fbba5a6ff53cd7e41e712002de262849f1642a
04bf58912a2b0aae36888a8ec977ed6f0380953a2de4541e1fa16b20c94d8ba2
Analyzer Verdict Alert fortinet Phishing
GET /config/asf/login.php HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 03 Feb 2023 09:31:13 GMT
Server: Apache
Location: https://drsteveyoung.com/config/asf/login.php
Content-Length: 253
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8903
Expires: Fri, 03 Feb 2023 11:59:37 GMT
Date: Fri, 03 Feb 2023 09:31:14 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e935ea42be4feaed61a824b0b903913e
f966cfa80d65a805cb9d7c6a53b3340865d7c51a
eb0ce9ae50d156fe5924b2d77346735e4e93b5240cff301c9aa835bb0b385815
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB0CE9AE50D156FE5924B2D77346735E4E93B5240CFF301C9AA835BB0B385815"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8253
Expires: Fri, 03 Feb 2023 11:48:47 GMT
Date: Fri, 03 Feb 2023 09:31:14 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 03 Feb 2023 08:43:34 GMT
content-type: application/json
age: 2860
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10539
Expires: Fri, 03 Feb 2023 12:26:53 GMT
Date: Fri, 03 Feb 2023 09:31:14 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: YhtQB2VSEmuGCzr+h1l4QSL7YPLP13BCng8FyjI9mPimBZErpCojgE0jTdM2s12GW/qf15G/Gn8=
x-amz-request-id: JWNSYST5Z185266N
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 03 Feb 2023 08:52:20 GMT
age: 2334
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 03 Feb 2023 09:31:14 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 03 Feb 2023 08:49:06 GMT
age: 2529
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12827
Expires: Fri, 03 Feb 2023 13:05:02 GMT
Date: Fri, 03 Feb 2023 09:31:15 GMT
Connection: keep-alive
push.services.mozilla.com/
52.39.62.124101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.62.124:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IoUsQuAgg4jzEI3XiQG36w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SJhKi+8fzqcvEG6VzYZ9l0u8gqQ=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:31:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
drsteveyoung.com/wp-content/plugins/facebook-comment-by-vivacity/css/fb-comments-hidewpcomments.css?ver=b272165a27057ad7c29e1796117a99d2
45.56.110.40200 OK 270 B URL HTTP/2 drsteveyoung.com/wp-content/plugins/facebook-comment-by-vivacity/css/fb-comments-hidewpcomments.css?ver=b272165a27057ad7c29e1796117a99d2
IP 45.56.110.40:0
Hash b647119f33ffef14f7fbd40aaadfb43a
1d03f41669d2bc042ed57ea2a1d299dffd45f57a
64f9c967d1b96020d96c7d2fdfb69e703aac616540d718202402e66e8971d84e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/facebook-comment-by-vivacity/css/fb-comments-hidewpcomments.css?ver=b272165a27057ad7c29e1796117a99d2 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2016 03:16:00 GMT
accept-ranges: bytes
content-length: 270
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:31:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:31:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
drsteveyoung.com/wp-content/plugins/atomic-blocks/dist/assets/fontawesome/css/all.min.css?ver=1596425729
45.56.110.40200 OK 47 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/atomic-blocks/dist/assets/fontawesome/css/all.min.css?ver=1596425729
IP 45.56.110.40:0
File type ASCII text, with very long lines (46750)
Hash 20a9ce516eaea76da29a23adc43e8998
cf1a3fd771900af34f2af22142beecfb47367548
8891a160f8a2afb81de5259f9f68e5af3782348ea2927ad9e969bc88c7d39984
GET /wp-content/plugins/atomic-blocks/dist/assets/fontawesome/css/all.min.css?ver=1596425729 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Aug 2020 03:35:29 GMT
accept-ranges: bytes
content-length: 46930
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash bbeb609cbf32a8842bf96a124588e65e
40c0f548bcb714731f62df5a27cad21adef0463d
502c60a18a13b84598933731d182aafd4b83576bfc56451b36f9238c621a571d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:31:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
drsteveyoung.com/wp-content/themes/genesis-sample/style.css?ver=3.3.0
45.56.110.40200 OK 31 kB URL HTTP/2 drsteveyoung.com/wp-content/themes/genesis-sample/style.css?ver=3.3.0
IP 45.56.110.40:0
File type ASCII text, with very long lines (1726)
Hash 63509e0ef931339a15e3d45758f678a5
e1858212af225db14806733d67c391a97b6886e0
d516ec7b4ae7f85cdd6a9cb408eaa2ed90cb1f39be51a76ecd0e2c9f8d3782c1
GET /wp-content/themes/genesis-sample/style.css?ver=3.3.0 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Aug 2020 02:38:46 GMT
accept-ranges: bytes
content-length: 30810
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.3
45.56.110.40200 OK 776 B URL HTTP/2 drsteveyoung.com/wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.3
IP 45.56.110.40:0
Hash a5bf64d5859ee94a3e8e93d592d6d2a0
049eb63b42dbb820b06870a430f523bf06880721
25825611ade7ceaed7df3862ec56dc91ad1d2be539966ef7bbe84306e51cfb08
GET /wp-content/plugins/header-footer-elementor/assets/css/header-footer-elementor.css?ver=1.5.3 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Aug 2020 15:00:26 GMT
accept-ranges: bytes
content-length: 776
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.7
45.56.110.40200 OK 3.9 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.7
IP 45.56.110.40:0
File type ASCII text, with very long lines (3815)
Hash eb9d16cc905b80ca9e4bbd893bbf1d38
f411705987c66b98605fc37857472f32fecead2a
e0560e548e9e4a67ad8f4bafa32e30a2d6e5a6ce5af3dfe0158ec13b83fccbea
GET /wp-content/plugins/elementor/assets/css/frontend-legacy.min.css?ver=3.0.7 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:11 GMT
accept-ranges: bytes
content-length: 3854
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/uploads/elementor/css/post-1901.css?ver=1599784049
45.56.110.40200 OK 1.6 kB URL HTTP/2 drsteveyoung.com/wp-content/uploads/elementor/css/post-1901.css?ver=1599784049
IP 45.56.110.40:0
File type ASCII text, with very long lines (1316)
Hash b456ea40809d30c28740c3752768a905
371612179c233d7872a4ef5fed102d2acf5de558
153c78bcae000e55cb3fc7254fe4fe13432d67f3eafedb89479e31527a376d64
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-1901.css?ver=1599784049 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:29 GMT
accept-ranges: bytes
content-length: 1551
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-includes/css/classic-themes.min.css?ver=1
45.56.110.40200 OK 217 B URL HTTP/2 drsteveyoung.com/wp-includes/css/classic-themes.min.css?ver=1
IP 45.56.110.40:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 22 Jan 2023 23:04:00 GMT
accept-ranges: bytes
content-length: 217
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/uploads/elementor/css/post-2005.css?ver=1599784049
45.56.110.40200 OK 6.1 kB URL HTTP/2 drsteveyoung.com/wp-content/uploads/elementor/css/post-2005.css?ver=1599784049
IP 45.56.110.40:0
File type ASCII text, with very long lines (6071), with no line terminators
Hash f4a914a828ab7359d21b1e9a17001b0d
afe68c10a83edddd99816de54671341b4b6dfcab
d5398715b1070e6ba95a12835c920150c3d6b09b1adcf338411ff09771bed451
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-2005.css?ver=1599784049 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:29 GMT
accept-ranges: bytes
content-length: 6071
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1
45.56.110.40200 OK 17 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1
IP 45.56.110.40:0
File type ASCII text, with very long lines (16591)
Hash 02f5d3618a9ca5e3063527265d39fbae
827b9d475645ae6891f427b3b20ce084444cca60
c6c2559bbfbd75165fa07056d46bf0403d126ed4cdb71e6de2e624b534a3bcd7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.9.1 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:11 GMT
accept-ranges: bytes
content-length: 16636
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.7
45.56.110.40200 OK 18 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.7
IP 45.56.110.40:0
File type ASCII text, with very long lines (10019)
Hash 4601ba55044413706c2022cb6c1c3d05
5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.0.7 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:11 GMT
accept-ranges: bytes
content-length: 18468
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/atomic-blocks/dist/blocks.style.build.css?ver=1596425729
45.56.110.40200 OK 45 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/atomic-blocks/dist/blocks.style.build.css?ver=1596425729
IP 45.56.110.40:0
File type ASCII text, with very long lines (7310)
Hash 1c94a911ca641af6dc06652fee7a5a61
e505378cb4a2d1fe566b90191dbc95a6d4cd6a71
df5e9981355c666f6246e1b10b57f9e219b2c2a16a47a8b09726053d1836ea78
GET /wp-content/plugins/atomic-blocks/dist/blocks.style.build.css?ver=1596425729 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Aug 2020 03:35:29 GMT
accept-ranges: bytes
content-length: 44914
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/FreeListMachine_Plugin/css/style.css?ver=0.1.1
45.56.110.40200 OK 82 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/FreeListMachine_Plugin/css/style.css?ver=0.1.1
IP 45.56.110.40:0
File type ASCII text, with very long lines (677)
Hash 742bf93f34038f3e0b4b222f726f5e4a
d251aa7d7d52631a0e18bd198ced859b2c478471
8ef210eca495ffd97361eb816aabfd4f518f55a32bab923371a09fe5c9513f4d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/FreeListMachine_Plugin/css/style.css?ver=0.1.1 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 25 Jan 2016 03:33:10 GMT
accept-ranges: bytes
content-length: 81751
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
45.56.110.40200 OK 661 B URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
IP 45.56.110.40:0
File type ASCII text, with very long lines (475)
Hash db3b745079e4606a70685c661ea1324b
23bfc45721cc05a6aa4182bae9a8ba67d05fe16b
f2f6359c178cbd3efbd8710d9e811f70d788ab2a77fe8d2a90dfd1453b8d38a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:11 GMT
accept-ranges: bytes
content-length: 661
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
45.56.110.40200 OK 11 kB URL HTTP/2 drsteveyoung.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 45.56.110.40:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 22 Jan 2023 23:04:00 GMT
accept-ranges: bytes
content-length: 11224
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.2
45.56.110.40200 OK 1.2 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.2
IP 45.56.110.40:0
Hash 81e8538f7aa726a386fd42cbdca9c255
dfcfea7c71944942d7bea1bd541fb238c8109e8d
f230538018f9156f925bd667c6ac4f437ae4541b9d421424728592d359b499c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/simple-social-icons/css/style.css?ver=3.0.2 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Aug 2020 03:35:33 GMT
accept-ranges: bytes
content-length: 1228
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/laserfocusedleads-multi/css/lfl_default.css
45.56.110.40200 OK 3.0 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/laserfocusedleads-multi/css/lfl_default.css
IP 45.56.110.40:0
Hash cc9a567e85b7cf4a20ae5fe2050f36ff
51ad37ef9eba24913e77e2a56c6a6c2e875b16ea
472560c6ad87bf26f8416921896df4401f51562be9edec8650a53ff55f3d5174
GET /wp-content/plugins/laserfocusedleads-multi/css/lfl_default.css HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2016 03:17:07 GMT
accept-ranges: bytes
content-length: 3011
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/FreeListMachine_Plugin/js/jquery.uniform.min.js?ver=0.1.1
45.56.110.40200 OK 8.3 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/FreeListMachine_Plugin/js/jquery.uniform.min.js?ver=0.1.1
IP 45.56.110.40:0
File type ASCII text, with very long lines (8308), with no line terminators
Hash 2842654782a75cbbc8cd66c60b72631d
ef3a49fe1bcf31cca95cdee5563928a850a1b154
8a41d60f7762f2db0792fd909c3c09725f93d8fe1e94efcb2ca04293921e277a
GET /wp-content/plugins/FreeListMachine_Plugin/js/jquery.uniform.min.js?ver=0.1.1 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 25 Jan 2016 03:33:10 GMT
accept-ranges: bytes
content-length: 8308
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend.min.js?ver=6.2.2
45.56.110.40200 OK 9.3 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend.min.js?ver=6.2.2
IP 45.56.110.40:0
File type ASCII text, with very long lines (1019)
Hash c8c95f0d378a2395cfc455065f470642
9ea4d1e7dc2671553e281f8732e9fcee06944b1b
dab98b1d5558dd15c7db5ada4438fe03a424a7c1f5e0f29567d39a0a892bcc41
GET /wp-content/plugins/google-analytics-dashboard-for-wp/assets/js/frontend.min.js?ver=6.2.2 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Sep 2020 21:30:12 GMT
accept-ranges: bytes
content-length: 9265
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/FreeListMachine_Plugin/js/idle-timer.min.js?ver=0.1.1
45.56.110.40200 OK 2.5 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/FreeListMachine_Plugin/js/idle-timer.min.js?ver=0.1.1
IP 45.56.110.40:0
File type ASCII text, with very long lines (2400), with CRLF line terminators
Hash fed675427ce4e42480a88e441d6e7a5b
155df63101ceef522c951550928441200d35123f
5cd5ce2462c59be3866adb63c7ded551e6c9b0eefe98b35b7faca3c7e44f453b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/FreeListMachine_Plugin/js/idle-timer.min.js?ver=0.1.1 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 25 Jan 2016 03:33:10 GMT
accept-ranges: bytes
content-length: 2519
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/themes/genesis-sample/lib/gutenberg/front-end.css?ver=3.3.0
45.56.110.40200 OK 8.8 kB URL HTTP/2 drsteveyoung.com/wp-content/themes/genesis-sample/lib/gutenberg/front-end.css?ver=3.3.0
IP 45.56.110.40:0
Hash 856d0ea58a288cb08c974bc196cf545c
8fb9ca7dbc280a405c75d471c6c769f6201cc218
4536433ffda11db9f14f6836f19a946256149c03e72a2e416c695f672b0bb40b
GET /wp-content/themes/genesis-sample/lib/gutenberg/front-end.css?ver=3.3.0 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 29 Jul 2020 14:32:49 GMT
accept-ranges: bytes
content-length: 8804
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/atomic-blocks/dist/assets/js/dismiss.js?ver=1596425729
45.56.110.40200 OK 923 B URL HTTP/2 drsteveyoung.com/wp-content/plugins/atomic-blocks/dist/assets/js/dismiss.js?ver=1596425729
IP 45.56.110.40:0
Hash 5dccdb539f2edcbadd56c95eaf9f9211
8c7ffbc627f350836d2b93723b3b17b4924c7a24
91690ac97c038313496895a305a808da41d7702f5568ebc6b34a4c3cdd549961
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/atomic-blocks/dist/assets/js/dismiss.js?ver=1596425729 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Aug 2020 03:35:29 GMT
accept-ranges: bytes
content-length: 923
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10
45.56.110.40200 OK 4.5 kB URL HTTP/2 drsteveyoung.com/wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10
IP 45.56.110.40:0
File type ASCII text, with very long lines (4270)
Hash af42109dbc91e0d99fd0041dd9c3395a
7266b5e6ef8e7fc633511d669af04220f1569fbb
ece565a1f66a32347dfed83562c428ff7736648de72b0027dd8f0e0f27e0c327
GET /wp-content/themes/genesis/lib/js/menu/superfish.min.js?ver=1.7.10 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 14:56:17 GMT
accept-ranges: bytes
content-length: 4499
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
45.56.110.40200 OK 1.5 kB URL HTTP/2 drsteveyoung.com/wp-includes/js/hoverIntent.min.js?ver=1.10.2
IP 45.56.110.40:0
File type ASCII text, with very long lines (1464)
Hash 8c0498e2f1f7a684a8d2a3feb934b64b
76099689ccaee466d4608da621c403b368dcae03
ed5b5df9ceacfe76857ac51964972b0b417a215b2f50e837fd6b64bad7339c40
GET /wp-includes/js/hoverIntent.min.js?ver=1.10.2 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 22 Jan 2023 23:04:00 GMT
accept-ranges: bytes
content-length: 1499
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=3.3.3
45.56.110.40200 OK 132 B URL HTTP/2 drsteveyoung.com/wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=3.3.3
IP 45.56.110.40:0
File type ASCII text, with no line terminators
Hash c94b7aeed7521dc95699cd74f9609b19
7b19e24f0d95007f896156fe38283b39f32b9988
20550f7bcb2a817ac9a5879e04260da8268e971c0b8031a6b7a2f48a55ee60d5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/genesis/lib/js/menu/superfish.args.min.js?ver=3.3.3 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 14:56:17 GMT
accept-ranges: bytes
content-length: 132
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/themes/genesis/lib/js/menu/responsive-menus.min.js?ver=1.1.3
45.56.110.40200 OK 3.7 kB URL HTTP/2 drsteveyoung.com/wp-content/themes/genesis/lib/js/menu/responsive-menus.min.js?ver=1.1.3
IP 45.56.110.40:0
File type ASCII text, with very long lines (546)
Hash 5f882c8d0c80aeaa7a57c21953f17e4e
081ce86389d44420483e9356dacdf552048797af
ce0e81b6a3315a2bc4da2c35329f773884b8c7a8896070c590af3462951e0a2a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/genesis/lib/js/menu/responsive-menus.min.js?ver=1.1.3 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 14:56:17 GMT
accept-ranges: bytes
content-length: 3676
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/themes/genesis/lib/js/skip-links.min.js?ver=3.3.3
45.56.110.40200 OK 386 B URL HTTP/2 drsteveyoung.com/wp-content/themes/genesis/lib/js/skip-links.min.js?ver=3.3.3
IP 45.56.110.40:0
File type ASCII text, with very long lines (386), with no line terminators
Hash 8a54cf62ffe6cbbf248c36d67fbeb45a
9d8b81dbb0fd63fc43818a49c8536d789ca06f20
ade38136058fcd75880d3673855aff859ee377d5915e59cccf24a973d418bebb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/genesis/lib/js/skip-links.min.js?ver=3.3.3 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 12 Aug 2020 14:56:17 GMT
accept-ranges: bytes
content-length: 386
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/simple-social-icons/svgxuse.js?ver=1.1.21
45.56.110.40200 OK 9.2 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/simple-social-icons/svgxuse.js?ver=1.1.21
IP 45.56.110.40:0
Hash df359d8ed4dfab28e65067d535bf9ca4
8a1dd77c7ef8b118bcac1962ad3d26e82d2b3bee
860e4b944663ab48a4929f7f995379090822e06521ab6321612490be84de42fd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/simple-social-icons/svgxuse.js?ver=1.1.21 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Aug 2020 03:35:33 GMT
accept-ranges: bytes
content-length: 9238
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-includes/js/wp-emoji-release.min.js?ver=b272165a27057ad7c29e1796117a99d2
45.56.110.40200 OK 19 kB URL HTTP/2 drsteveyoung.com/wp-includes/js/wp-emoji-release.min.js?ver=b272165a27057ad7c29e1796117a99d2
IP 45.56.110.40:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=b272165a27057ad7c29e1796117a99d2 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 22 Jan 2023 23:04:00 GMT
accept-ranges: bytes
content-length: 18617
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/FreeListMachine_Plugin/js/custom.js?ver=0.1.1
45.56.110.40200 OK 22 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/FreeListMachine_Plugin/js/custom.js?ver=0.1.1
IP 45.56.110.40:0
Hash b23a42f9b50db7aab8c6f4a577220d59
a88922caa3b01c194d4be0542434354ab8c13007
b23f7ad38f3dc36c362764a0e4ab18ae35b6c2064f4461dce32fdc275c35774b
GET /wp-content/plugins/FreeListMachine_Plugin/js/custom.js?ver=0.1.1 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 25 Jan 2016 03:33:10 GMT
accept-ranges: bytes
content-length: 22163
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.7
45.56.110.40200 OK 64 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.7
IP 45.56.110.40:0
File type Unicode text, UTF-8 text, with very long lines (47302), with LF, NEL line terminators
Hash 66db1d26f591f829c535e396f6ac0f79
6e7f9645667d947def1318f9252407960b407b91
e211ca8030940febe250f6d5dfa42eaf683e8879bc6801c00ef9bb35012bcfa8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.0.7 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:11 GMT
accept-ranges: bytes
content-length: 64119
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-includes/css/dist/block-library/style.min.css?ver=b272165a27057ad7c29e1796117a99d2
45.56.110.40200 OK 95 kB URL HTTP/2 drsteveyoung.com/wp-includes/css/dist/block-library/style.min.css?ver=b272165a27057ad7c29e1796117a99d2
IP 45.56.110.40:0
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
GET /wp-includes/css/dist/block-library/style.min.css?ver=b272165a27057ad7c29e1796117a99d2 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 22 Jan 2023 23:04:00 GMT
accept-ranges: bytes
content-length: 94889
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/cornerstone/assets/dist/js/site/cs-head.min.js?ver=1.3.0
45.56.110.40200 OK 29 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/cornerstone/assets/dist/js/site/cs-head.min.js?ver=1.3.0
IP 45.56.110.40:0
File type ASCII text, with very long lines (29391), with no line terminators
Hash 8b4587403b18b656b85fba86acaa0661
4c279c55011c95b32434d2e3b19800b95e273a3a
3a4851f542ec1c28a6319a3e0426a6c5fa0d7c65bcb0357cb98b7e964dd90b9e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cornerstone/assets/dist/js/site/cs-head.min.js?ver=1.3.0 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2016 03:17:32 GMT
accept-ranges: bytes
content-length: 29391
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.7
45.56.110.40200 OK 112 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.7
IP 45.56.110.40:0
File type ASCII text, with very long lines (65497)
Size 112 kB (112503 bytes)
Hash f95622cb9e85bc1f4f86ddf1a2b5a6c9
2ff7285ed8320824af2f190fa5d6e23ef393b850
339a9f53756b58046c49b02dc1525d80674fe4aafaeec24195adf228cc4165f5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend.min.css?ver=3.0.7 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:11 GMT
accept-ranges: bytes
content-length: 112503
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-includes/css/dashicons.min.css?ver=b272165a27057ad7c29e1796117a99d2
45.56.110.40200 OK 59 kB URL HTTP/2 drsteveyoung.com/wp-includes/css/dashicons.min.css?ver=b272165a27057ad7c29e1796117a99d2
IP 45.56.110.40:0
File type ASCII text, with very long lines (58981)
Hash d68d6bf519169d86e155bad0bed833f8
27ba9c67d0e775fc4e6dd62011daf4c3902698fc
c21e5a2b32c47bc5f9d9efc97bc0e29fd081946d1d3ebffc5621cfafb1d3960e
GET /wp-includes/css/dashicons.min.css?ver=b272165a27057ad7c29e1796117a99d2 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 22 Jan 2023 23:04:00 GMT
accept-ranges: bytes
content-length: 59016
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0
45.56.110.40200 OK 56 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0
IP 45.56.110.40:0
File type ASCII text, with very long lines (55567)
Hash fc6ece0b999d414f53c25c3999397fee
c114a2225aa88cdd1bd3f6f58e22047709eab086
8a814f594ba0f0aa1b298a89c192f7afe2e7d22bfa6b5016d01fce2ce2941996
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.12.0 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:11 GMT
accept-ranges: bytes
content-length: 55753
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.3
45.56.110.40200 OK 6.6 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.3
IP 45.56.110.40:0
File type ASCII text, with very long lines (6595), with no line terminators
Hash e16a8821e5f099c3a619889ea7cf0399
a38e0c736aaf0b019b29b63b00e68c1381502217
a48dea362116d7516a2cf97066a32758d353760ee02dbf900ddff86b02a16473
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.0.3 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Sep 2020 01:45:04 GMT
accept-ranges: bytes
content-length: 6595
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
45.56.110.40200 OK 21 kB URL HTTP/2 drsteveyoung.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 45.56.110.40:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 034bd11ecaf6fb9240d905245e42e202
ff136c394ed95badfc0107fb98a890dcff642828
ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 22 Jan 2023 23:04:00 GMT
accept-ranges: bytes
content-length: 21440
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
45.56.110.40200 OK 90 kB URL HTTP/2 drsteveyoung.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 45.56.110.40:0
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 22 Jan 2023 23:04:00 GMT
accept-ranges: bytes
content-length: 89684
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.3
45.56.110.40200 OK 172 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.3
IP 45.56.110.40:0
File type Unicode text, UTF-8 text, with very long lines (39674), with LF, NEL line terminators
Size 172 kB (172151 bytes)
Hash 2e12500f9fa41f7217de088ba4412653
0baff8ec2a137aad3d26fedea914626e15c13035
4bb3ef741318f1ae918b656db513288cd6e0fec1387f3da390f05d53f0f1ca47
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.0.3 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Sep 2020 01:45:04 GMT
accept-ranges: bytes
content-length: 172151
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.3
45.56.110.40200 OK 213 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.3
IP 45.56.110.40:0
File type ASCII text, with very long lines (65493)
Size 213 kB (212813 bytes)
Hash 1a19ad6d0708275ee142e04b3c03c198
9d79045349fc10463832a5445bdb3fcf424e74ec
db27c9d80a26359a3e9b3f36ae00e88becb0a26ab004adb9d43799df8ec76248
GET /wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.3 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 08 Sep 2020 01:45:04 GMT
accept-ranges: bytes
content-length: 212813
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
45.56.110.40200 OK 11 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1
IP 45.56.110.40:0
File type ASCII text, with very long lines (10725)
Hash 58baf0f238d7afc7ab926b8d51e5b559
8515e5f578269e29c048450f78c107935d325dff
2989e0b9e836cb9de3274d641ec6a58c2052f039e790ddd59b22303930bfdeeb
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.8.1 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:11 GMT
accept-ranges: bytes
content-length: 10863
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
45.56.110.40200 OK 12 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 45.56.110.40:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash 3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:11 GMT
accept-ranges: bytes
content-length: 12198
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
45.56.110.40200 OK 139 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 45.56.110.40:0
File type ASCII text, with very long lines (65280)
Size 139 kB (139153 bytes)
Hash 15bb2b8491fc7e84137d65f610e1685a
cd76b70a5426893e9c022b9a75c50a7c1348e2d0
b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:11 GMT
accept-ranges: bytes
content-length: 139153
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.7
45.56.110.40200 OK 2.6 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.7
IP 45.56.110.40:0
File type ASCII text, with very long lines (2638)
Hash 235bb1bc8ea1ef2923245d1e3da04191
27b3638dc518391ca2d73d9d3d89f8514bbf2b6c
fdc677edb9a45a4095c0f305c7b7bd5d76ba4fc6fdf0e976ef0c759d7121d2ec
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.0.7 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:11 GMT
accept-ranges: bytes
content-length: 2639
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.7
45.56.110.40200 OK 120 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.7
IP 45.56.110.40:0
File type Unicode text, UTF-8 text, with very long lines (47240), with LF, NEL line terminators
Size 120 kB (120117 bytes)
Hash 3bba41ad8ae7b0d20d837c6909b21b8a
34bf01e26040960addcb4c039bcb752bfacdac67
ada088ee46ce839261260f182cc1437f178afa7df203e09bb368182655976dc9
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.0.7 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:11 GMT
accept-ranges: bytes
content-length: 120117
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d719402de0cd695e55dab2767247da49
f12f4795987a284820f6785ec16b5032b9861d79
98a14bd950cec10aeb3d76fa956fe13514f52c742adbded7a0fcef218c7195ba
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "98A14BD950CEC10AEB3D76FA956FE13514F52C742ADBDED7A0FCEF218C7195BA"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8580
Expires: Fri, 03 Feb 2023 11:54:16 GMT
Date: Fri, 03 Feb 2023 09:31:16 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02123eef9faa8560ff66b058d4e13a28
decf26282993d7f0b14cf4112d14fa39c97fa89f
28889ff20f1b2fe0b73f8f97e6569f1d68d77fe436eeb47cc06ee4f0822ff239
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15f2ebc9-82b4-4f1b-b0b8-978571cb123b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9130
x-amzn-requestid: 09ad3fbb-1e71-4455-82df-6e59f65239a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuxiYEkqIAMFVZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2fa8-1dca116e4317f9bd14f6d45a;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:48:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _Bc2svrG-wX63DK9RPUyjh-n6AHVHaQe3QRmEL27L-amwCH2I_f_9g==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:05:17 GMT
age: 41159
etag: "decf26282993d7f0b14cf4112d14fa39c97fa89f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5314f1087266189144982b464f4aa7a6
438b5a17b9060f6825331348aa3797ab1c15895d
fb7d5ec834d28c99f6430703c002c24a9caf50b7701a369cbd69e51576f1e73c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feed96488-989b-49ab-8eef-5c9dea89a5ca.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5898
x-amzn-requestid: 50d6181d-6804-48ab-bc38-9fcaf4da1bc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fZALWF5IIAMFv5g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d37a48-2e2e53124ce2f9eb31290ec4;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:16:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 9Jus6UYlOGiDdqLBxJ387FMtEAST6THfW-oz6gjgFzKzchCdwUCcvQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 03:13:49 GMT
age: 22647
etag: "438b5a17b9060f6825331348aa3797ab1c15895d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fff49ad64-ed0c-4270-8972-02b93a55c3b8.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fff49ad64-ed0c-4270-8972-02b93a55c3b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b67f1de5050f7e32226bb0b279e5f450
058dc594601de546ae391ffa47269b404fee0f02
268b5f2557e4f171f33641cc7923d6cd786cba6e056f6656c82113b49b70a3df
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fff49ad64-ed0c-4270-8972-02b93a55c3b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12514
x-amzn-requestid: e5e536fd-15ec-4a9f-a678-c24e6202d0f1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY_y3HRSoAMFxUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d379ab-5137ec566a8ccb4a3628e17a;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:13:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: KvaWZ_Re1oRbOGg3MDxp5BKPCMAzYqCfVo4n3rf67ppjVO9Pmey4wg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:05:20 GMT
age: 41156
etag: "058dc594601de546ae391ffa47269b404fee0f02"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg
34.120.237.76200 OK 3.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 703c7834618fd34f3d7ce5c82a51abc0
4bdaa7e9e8d6408b73ea457e7aabb26fa2a5c81c
1f467ce5825e3f8b8f841293d1ce945dc7a577abbe2cb8a2caa16ace165f4857
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fde7081-1c8d-41df-98c8-c063731c6202.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3385
x-amzn-requestid: 30717e1a-7a08-4b11-90e7-cd175aa667d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fuvzrEo4oAMF1qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc2ce4-3bc1302b4cf47fa2520e3033;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 21:36:36 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AnMRlC-rgJLk6OwzHDFeaGBuDfEuRj_n0S2o1o7QSTZqMwCIr-20-A==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 21:46:35 GMT
age: 42281
etag: "4bdaa7e9e8d6408b73ea457e7aabb26fa2a5c81c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 352e4166a431e781e56cc7f169c7f8ca
866b76c34076cf2e18c6a071336fcf4f581f3c4d
75ba13b601f4b00c5b091eb29e7f6739ffee3e127bd6d3c4b35cc967bb6d354a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d1adf44-5bff-4d36-99c4-8dd0dc2e5ac2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9779
x-amzn-requestid: 101b984b-9c04-4d07-b1fe-3d888f4bcd49
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ftcNRFV_oAMF2_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dba721-72679ba0378015034e17b8ca;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 12:05:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: p74tt3doRE9DKoD5cpPKriYPFEQhq7f3Xf8vhgNNz7QhZNIvdc6NQQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 22:05:18 GMT
age: 41158
etag: "866b76c34076cf2e18c6a071336fcf4f581f3c4d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 1350cdd1-10c2-44e0-993d-2335a082fb91
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fstgNH0moAMF3OA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63db5c67-02211c3d5ca147c718348860;Sampled=0
x-amzn-remapped-date: Thu, 02 Feb 2023 06:47:03 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: t7OYoLCzzQakW2lqiAUaeKA00Beq4J5elQ5qF7yGUb2L7JSNUJCPNA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 05:40:54 GMT
age: 13822
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:31:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:31:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:31:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
142.250.74.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 13036, version 1.0\012- data
Hash 0ad032b3d07aaf33b160ac4799dda40f
06b931e0d0bf37f5037d9e66d6feedfddd21c0ba
c124c88ca4fcb4336e97617647ef0d32441329371120c8eabaea0fea226560b0
GET /s/sourcesanspro/v21/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7l.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://drsteveyoung.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13036
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 07:28:23 GMT
expires: Fri, 02 Feb 2024 07:28:23 GMT
cache-control: public, max-age=31536000
age: 93773
last-modified: Wed, 27 Apr 2022 16:04:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
142.250.74.163200 OK 25 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 25372, version 1.0\012- data
Hash fe424f96cb627d8b835cb001af17f56e
c5b4368fed99812a99036fba86d01367b5549505
35c92598a5f32c018dc630f57b183b0284c211ce9c222e5b36840a62115262f1
GET /s/oswald/v49/TK3iWkUHHAIjg752GT8G.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://drsteveyoung.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 Feb 2023 13:13:41 GMT
expires: Fri, 02 Feb 2024 13:13:41 GMT
cache-control: public, max-age=31536000
age: 73055
last-modified: Mon, 18 Jul 2022 19:24:05 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:31:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
drsteveyoung.com/wp-includes/js/wp-util.min.js?ver=b272165a27057ad7c29e1796117a99d2
45.56.110.40200 OK 1.4 kB URL HTTP/2 drsteveyoung.com/wp-includes/js/wp-util.min.js?ver=b272165a27057ad7c29e1796117a99d2
IP 45.56.110.40:0
File type ASCII text, with very long lines (1391)
Hash 19d386c9004e54941c1cc61d357efa5d
0a77594006c8d86fdcc0adbc2b9aecaef3869586
3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=b272165a27057ad7c29e1796117a99d2 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 22 Jan 2023 23:04:00 GMT
accept-ranges: bytes
content-length: 1426
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.6.2.2
45.56.110.40200 OK 705 B URL HTTP/2 drsteveyoung.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.6.2.2
IP 45.56.110.40:0
File type ASCII text, with very long lines (705), with no line terminators
Hash 697fde09408821cbcce53628e4107b71
a0ac5da86ef699334743f5945a52f3285994229d
f3d3e4b6c0772fd114f620c3e15f30f184234ac2c0d1b9b3a69a44e3a26eface
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.6.2.2 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 03 Sep 2020 21:30:18 GMT
accept-ranges: bytes
content-length: 705
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-includes/js/underscore.min.js?ver=1.13.4
45.56.110.40200 OK 19 kB URL HTTP/2 drsteveyoung.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP 45.56.110.40:0
File type ASCII text, with very long lines (18798)
Hash f88d5720bb454ed5d204cbdb56901f6b
f1952292fde4b15936e9aac16b2b9896684db95b
726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 22 Jan 2023 23:04:00 GMT
accept-ranges: bytes
content-length: 18833
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
45.56.110.40200 OK 76 kB URL HTTP/2 drsteveyoung.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 45.56.110.40:0
File type Web Open Font Format (Version 2), TrueType, length 75936, version 330.-16253\012- data
Hash 822d94f19fe57477865209e1242a3c63
f356aa2e4d9b7245985d312d3bfba180f774e3b7
8e4560c16c7970efa47680450b2cf239d4a482c056d308acea12bb9022906c8b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://drsteveyoung.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.12.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Sep 2020 00:27:11 GMT
accept-ranges: bytes
content-length: 75936
content-type: font/woff2
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/uploads/2020/08/Dr-Steve-1536x1024.jpg
45.56.110.40200 OK 193 kB URL HTTP/2 drsteveyoung.com/wp-content/uploads/2020/08/Dr-Steve-1536x1024.jpg
IP 45.56.110.40:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1536x1024, components 3\012- data
Size 193 kB (193227 bytes)
Hash 745cf14e7cfedababc8abfa8997f6e27
130378a142f9823ad2306a4d0258bdf79efe2598
f9b531ed0db71a44b74f38405ff9c520ea67f53e76bb13dc1ac061a0711ec66a
GET /wp-content/uploads/2020/08/Dr-Steve-1536x1024.jpg HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 09 Aug 2020 17:07:14 GMT
accept-ranges: bytes
content-length: 193227
content-type: image/jpeg
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/uploads/2020/08/Optin-Image-283x300.png
45.56.110.40200 OK 142 kB URL HTTP/2 drsteveyoung.com/wp-content/uploads/2020/08/Optin-Image-283x300.png
IP 45.56.110.40:0
File type PNG image data, 283 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size 142 kB (141931 bytes)
Hash 28511b33af472c60faf5701f0594daae
78471aec4dd7cc37c9a18155cdf3058438c29c34
029c4e518f6b201ff50f40b4af1d4566e995dd8a5b311e596edeb988026bbb98
GET /wp-content/uploads/2020/08/Optin-Image-283x300.png HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Aug 2020 04:21:39 GMT
accept-ranges: bytes
content-length: 141931
content-type: image/png
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash a62fb196730dab6ac28eab662fcbbc25
6ebf23821a92ee8fb4b1b1407549cff3bcee7723
2509e4cd4cd3dc8149a22a79f78be468d1ca3649d4b58bbedf969019a177c619
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3399
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:31:17 GMT
Last-Modified: Fri, 03 Feb 2023 08:34:38 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2031
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:31:17 GMT
Last-Modified: Fri, 03 Feb 2023 08:57:27 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:31:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
216.239.32.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.32.178:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 03 Feb 2023 07:44:08 GMT
expires: Fri, 03 Feb 2023 09:44:08 GMT
cache-control: public, max-age=7200
age: 6429
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
157.240.205.11200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.205.11:0
File type ASCII text, with very long lines (1957)
Hash 5aa244e200d87a0eece68c6e08b123fe
ca8ca930ec980436bd6a7bd1b492843875abf873
fbc03ac7382c04cadbd7cbfe3a92115a8c0f6d02f7fddcac0e73716ce63a5f03
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 99529b79b83807bf511a0ca2cee9ff1f
etag: "18f574b3a3a83eaf49885077dbe44a5a"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Fri, 03 Feb 2023 09:41:45 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: WqJE4gDYeg7s5oxuCLEj/g==
x-fb-debug: 0FKEtA1ef4RdgzQQUJGlKlXBVtGhTQOTwcGcn5aKtIMFs5vZoltQLv+MYvLEl2bALdu3rmMtTWK4d2nsJjDnHw==
content-length: 1685
x-fb-trip-id: 1679558926
date: Fri, 03 Feb 2023 09:31:17 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/uploads/2020/08/cropped-Full_Horizontal_Color-32x32.png
45.56.110.40200 OK 2.0 kB URL HTTP/2 drsteveyoung.com/wp-content/uploads/2020/08/cropped-Full_Horizontal_Color-32x32.png
IP 45.56.110.40:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash b4ed64b4cd991f161c31c4cde28abfbb
b920babaca5b3faaa2be4f1f95f30bc67cafed9a
52af3a831fa73035d02dbca5867248d78da804ac463ec39f5bf4488bd66e26ce
GET /wp-content/uploads/2020/08/cropped-Full_Horizontal_Color-32x32.png HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Aug 2020 01:30:04 GMT
accept-ranges: bytes
content-length: 2019
content-type: image/png
date: Fri, 03 Feb 2023 09:31:16 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/uploads/2020/08/cropped-Full_Horizontal_Color-192x192.png
45.56.110.40200 OK 28 kB URL HTTP/2 drsteveyoung.com/wp-content/uploads/2020/08/cropped-Full_Horizontal_Color-192x192.png
IP 45.56.110.40:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 72b83fa577bf63e049ea39fc1c93605c
aa9fb3a47cddd60e5ef5642150be3e7f435d4e27
c50defadb4852b4e916dad19f90ea8f4d3f89f08c29183066e19cc63bd158f79
GET /wp-content/uploads/2020/08/cropped-Full_Horizontal_Color-192x192.png HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Aug 2020 01:30:04 GMT
accept-ranges: bytes
content-length: 28161
content-type: image/png
date: Fri, 03 Feb 2023 09:31:16 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ede42358dbe8cf2e6b7e6a2653774d01
5dc8ca0b929f04fb15c7ff81d0a9decda023b7fb
8e841815d41c4ade06e328cb1ffb9be342640167ec6acb658f6b4b373e23a52a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2031
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:31:17 GMT
Last-Modified: Fri, 03 Feb 2023 08:57:27 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/j/collect?v=1&_v=j99&a=624567716&t=pageview&_s=1&dl=https%3A%2F%2Fdrsteveyoung.com%2Fconfig%2Fasf%2Flogin.php&dp=%2F404.html%3Fpage%3D%2Fconfig%2Fasf%2Flogin.php%26from%3D&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20Dr.%20Steve%20Young&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABCAAAACAAI~&jid=168906373&gjid=917429160&cid=2029699275.1675416707&tid=UA-31545378-2&_gid=643876669.1675416707&_r=1&_slc=1&z=40560201
216.239.32.178200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=624567716&t=pageview&_s=1&dl=https%3A%2F%2Fdrsteveyoung.com%2Fconfig%2Fasf%2Flogin.php&dp=%2F404.html%3Fpage%3D%2Fconfig%2Fasf%2Flogin.php%26from%3D&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20Dr.%20Steve%20Young&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABCAAAACAAI~&jid=168906373&gjid=917429160&cid=2029699275.1675416707&tid=UA-31545378-2&_gid=643876669.1675416707&_r=1&_slc=1&z=40560201
IP 216.239.32.178:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=624567716&t=pageview&_s=1&dl=https%3A%2F%2Fdrsteveyoung.com%2Fconfig%2Fasf%2Flogin.php&dp=%2F404.html%3Fpage%3D%2Fconfig%2Fasf%2Flogin.php%26from%3D&ul=en-us&de=UTF-8&dt=Page%20not%20found%20-%20Dr.%20Steve%20Young&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABCAAAACAAI~&jid=168906373&gjid=917429160&cid=2029699275.1675416707&tid=UA-31545378-2&_gid=643876669.1675416707&_r=1&_slc=1&z=40560201 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://drsteveyoung.com
Connection: keep-alive
Referer: https://drsteveyoung.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://drsteveyoung.com
date: Fri, 03 Feb 2023 09:31:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9c45ea25709afbea416f215ee34611b0
117c52c0ee3ff15a2485c0b1e39cc12c7c2021ed
7fbc3c806c7fc6d70d70b55723dbbfc00698b14fcad55014218bc5e03e92a118
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 03 Feb 2023 09:31:17 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/sdk.js?hash=0c30f95d096e2e5e7bca46592113a667
157.240.205.11200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=0c30f95d096e2e5e7bca46592113a667
IP 157.240.205.11:0
File type ASCII text, with very long lines (13192)
Hash fe80cea2652b4279ce37d9f1b660b0c4
9ea40989ec6dadb6b29fd1b97af0a36294c8bd34
8c5a987afe37ac0dc6755c1a7b9718c6fa60c70fec14964783d445178fff1a6a
GET /en_US/sdk.js?hash=0c30f95d096e2e5e7bca46592113a667 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://drsteveyoung.com
Connection: keep-alive
Referer: https://drsteveyoung.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: df152021c93ff4b993925b20a676df23
etag: "ff3ba7ff5d218867b4da022d97ad032b"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 03 Feb 2024 08:49:07 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-frame-options: DENY
origin-agent-cluster: ?0
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: /oDOomUrQnnON9nxtmCwxA==
x-fb-debug: aYzLJtlQs08UA6zWBylzFRNrHMv99g6S2DELxb1KQ8oITlwXJDHj9vPLzyCnq+HmddEpSKqMKsLRdp4ynRUoyA==
priority: u=3,i
content-length: 86979
x-fb-trip-id: 1679558926
date: Fri, 03 Feb 2023 09:31:17 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
script.crazyegg.com/pages/scripts/0016/6031.js
104.19.147.8200 OK 2.2 kB URL HTTP/2 script.crazyegg.com/pages/scripts/0016/6031.js
IP 104.19.147.8:0
File type ASCII text, with very long lines (6087)
Hash 0da7e430620161d417e98b7a28bf03c2
56dd7e6227d7b9b42c43493ab7194e4a28d74cd2
7815052782940a038d0485f5cc8e8abdf034ab94c3436dc119488e0e1e9a7600
GET /pages/scripts/0016/6031.js HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 09:31:17 GMT
content-type: text/javascript
content-length: 2198
access-control-expose-headers: CE-Version
ce-version: 11.5.22
cache-control: public, max-age=300, s-maxage=1209600
timing-allow-origin: *
last-modified: Fri, 03 Feb 2023 09:31:17 GMT
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793a27185992b524-OSL
X-Firefox-Spdy: h2
script.crazyegg.com/pages/data-scripts/0016/6031/site/drsteveyoung.com.json?t=1
104.19.147.8200 OK 363 B URL HTTP/2 script.crazyegg.com/pages/data-scripts/0016/6031/site/drsteveyoung.com.json?t=1
IP 104.19.147.8:0
File type JSON data\012- , ASCII text, with very long lines (704), with no line terminators
Hash f22060124de6a8fffa50fe7a83799497
6f629179e8396af69c259f655e571171d6e86285
ed39c15cd6a910894ed94b9a5b34cd7be5b05f03f72cc986937208d2eaccc1e5
GET /pages/data-scripts/0016/6031/site/drsteveyoung.com.json?t=1 HTTP/1.1
Host: script.crazyegg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://drsteveyoung.com
Connection: keep-alive
Referer: https://drsteveyoung.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 03 Feb 2023 09:31:18 GMT
content-type: application/json
content-length: 363
access-control-expose-headers: CE-Version
ce-version: 11.5.22
cache-control: public, max-age=300, s-maxage=1209600
timing-allow-origin: *
last-modified: Fri, 03 Feb 2023 09:31:18 GMT
content-encoding: gzip
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 793a271c3bdfb4fd-OSL
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.3
45.56.110.40200 OK 0 B URL HTTP/2 drsteveyoung.com/wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.3
IP 45.56.110.40:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/header-footer-elementor/inc/widgets-css/frontend.css?ver=1.5.3 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 13 Aug 2020 15:00:26 GMT
accept-ranges: bytes
content-length: 74372
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/cornerstone/assets/dist/js/site/cs-body.min.js?ver=1.3.0
45.56.110.40200 OK 0 B URL HTTP/2 drsteveyoung.com/wp-content/plugins/cornerstone/assets/dist/js/site/cs-body.min.js?ver=1.3.0
IP 45.56.110.40:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cornerstone/assets/dist/js/site/cs-body.min.js?ver=1.3.0 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2016 03:17:32 GMT
accept-ranges: bytes
content-length: 72335
content-type: application/javascript
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Source+Sans+Pro%3A400%2C400i%2C600%2C700&display=swap&ver=3.3.0
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Source+Sans+Pro%3A400%2C400i%2C600%2C700&display=swap&ver=3.3.0
IP 142.250.74.106:0
GET /css?family=Source+Sans+Pro%3A400%2C400i%2C600%2C700&display=swap&ver=3.3.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 09:31:16 GMT
date: Fri, 03 Feb 2023 09:31:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/uploads/2020/08/Full_Horizontal_Color-1536x352.png
45.56.110.40200 OK 0 B URL HTTP/2 drsteveyoung.com/wp-content/uploads/2020/08/Full_Horizontal_Color-1536x352.png
IP 45.56.110.40:0
GET /wp-content/uploads/2020/08/Full_Horizontal_Color-1536x352.png HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 06 Aug 2020 01:28:36 GMT
accept-ranges: bytes
content-length: 163475
content-type: image/png
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/wp-content/plugins/cornerstone/assets/dist/css/site/style.css?ver=1.3.0
45.56.110.40200 OK 0 B URL HTTP/2 drsteveyoung.com/wp-content/plugins/cornerstone/assets/dist/css/site/style.css?ver=1.3.0
IP 45.56.110.40:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cornerstone/assets/dist/css/site/style.css?ver=1.3.0 HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/config/asf/login.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 12 Aug 2016 03:17:32 GMT
accept-ranges: bytes
content-length: 99631
content-type: text/css
date: Fri, 03 Feb 2023 09:31:15 GMT
server: Apache
X-Firefox-Spdy: h2
drsteveyoung.com/config/asf/login.php
45.56.110.40404 Not Found 0 B URL HTTP/2 drsteveyoung.com/config/asf/login.php
IP 45.56.110.40:0
Analyzer Verdict Alert fortinet Phishing
GET /config/asf/login.php HTTP/1.1
Host: drsteveyoung.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://drsteveyoung.com/wp-json/>; rel="https://api.w.org/"
content-type: text/html; charset=UTF-8
date: Fri, 03 Feb 2023 09:31:13 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=b272165a27057ad7c29e1796117a99d2
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=b272165a27057ad7c29e1796117a99d2
IP 142.250.74.106:0
GET /css?family=Oswald%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&ver=b272165a27057ad7c29e1796117a99d2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 09:31:16 GMT
date: Fri, 03 Feb 2023 09:31:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700
IP 142.250.74.106:0
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://drsteveyoung.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 03 Feb 2023 09:31:16 GMT
date: Fri, 03 Feb 2023 09:31:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2