Overview

URL allwellinst.com/
IP198.54.126.9
ASNNAMECHEAP-NET
Location United States
Report completed2022-09-01 07:36:46 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-01 2 allwellinst.com/ Phishing
2022-09-01 2 www.allwellinst.com/ Phishing
2022-09-01 2 www.allwellinst.com/ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js Phishing
2022-09-01 2 www.allwellinst.com/js/bootstrap.min.js Phishing
2022-09-01 2 www.allwellinst.com/js/animations.min.js Phishing
2022-09-01 2 www.allwellinst.com/js/jssor.slider-21.1.5.mini.js Phishing
2022-09-01 2 www.allwellinst.com/js/jquery-1.11.3.min.js Phishing
2022-09-01 2 www.allwellinst.com/js/jquery.plugin.js Phishing
2022-09-01 2 www.allwellinst.com/js/jquery.main.js Phishing
2022-09-01 2 www.allwellinst.com/js/jquery.countdown.js Phishing
2022-09-01 2 www.allwellinst.com/js/timber.master.min.js Phishing
2022-09-01 2 www.allwellinst.com/js/bootstrap-dropdownhover.min.js Phishing
2022-09-01 2 www.allwellinst.com/owl-carousel/owl.carousel.js Phishing
2022-09-01 2 www.allwellinst.com/assets1/js/bootstrap-transition.js Phishing
2022-09-01 2 www.allwellinst.com/assets1/js/bootstrap-collapse.js Phishing
2022-09-01 2 www.allwellinst.com/assets1/js/bootstrap-tab.js Phishing
2022-09-01 2 www.allwellinst.com/assets1/js/google-code-prettify/prettify.js Phishing
2022-09-01 2 www.allwellinst.com/assets1/js/jquery-1.9.1.min.js Phishing
2022-09-01 2 www.allwellinst.com/assets1/js/application.js Phishing
2022-09-01 2 www.allwellinst.com/fonts/icomoon.woff Phishing
2022-09-01 2 www.allwellinst.com/ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js Phishing
2022-09-01 2 www.allwellinst.com/fonts/fontawesome-webfont.woff2?v=4.7.0 Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (12)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-01 05:48:00 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-08-31 05:14:10 UTC 44.233.140.213
mnemonic passive DNS fonts.gstatic.com (6) 0 2014-08-29 13:43:22 UTC 2022-09-01 04:49:08 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-01 04:47:54 UTC 23.36.77.32
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-08-31 05:05:02 UTC 34.117.237.239
mnemonic passive DNS allwellinst.com (1) 0 2019-05-31 15:08:34 UTC 2022-08-31 07:38:20 UTC 198.54.126.9 Unknown ranking
mnemonic passive DNS www.allwellinst.com (52) 0 2019-05-31 15:08:36 UTC 2022-07-07 07:25:56 UTC 198.54.126.9 Unknown ranking
mnemonic passive DNS ocsp.pki.goog (7) 175 2017-06-14 07:23:31 UTC 2022-09-01 04:47:53 UTC 142.250.74.3
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-01 04:41:03 UTC 34.120.237.76
mnemonic passive DNS fonts.googleapis.com (2) 8877 2014-07-21 13:19:55 UTC 2022-09-01 05:48:13 UTC 142.250.74.10
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-01 04:49:28 UTC 143.204.55.36
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-01 04:51:03 UTC 143.204.55.25


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 198.54.126.9

Date UQ / IDS / BL URL IP
2022-12-01 09:50:17 +0000
0 - 0 - 36 newpak.edu.pk/ 198.54.126.9
2022-11-04 23:26:53 +0000
0 - 0 - 24 vinayakinterior.com/urr/LP/uC/3XFf2xTT.zip 198.54.126.9
2022-10-09 07:36:43 +0000
0 - 0 - 22 allwellinst.com/ 198.54.126.9
2022-09-08 07:37:03 +0000
0 - 0 - 22 allwellinst.com/ 198.54.126.9
2022-09-06 12:01:48 +0000
0 - 0 - 21 allwellinst.com/ 198.54.126.9

Last 5 reports on ASN: NAMECHEAP-NET

Date UQ / IDS / BL URL IP
2022-12-03 20:59:46 +0000
0 - 0 - 16 skatingkits.com/ 162.0.215.53
2022-12-03 20:59:28 +0000
0 - 0 - 1 bazareafghan.com/ 198.54.125.234
2022-12-03 20:27:18 +0000
0 - 0 - 1 zupermann.com/s/as.hta 198.54.114.214
2022-12-03 20:19:15 +0000
0 - 0 - 21 igniapp.com/Login.php?sslchannel=true&session (...) 198.54.126.42
2022-12-03 20:04:01 +0000
1 - 0 - 7 scrapella.com/zozo/sp/ 185.61.153.111

Last 5 reports on domain: allwellinst.com

Date UQ / IDS / BL URL IP
2022-11-06 07:37:07 +0000
0 - 0 - 22 allwellinst.com/ 142.4.9.224
2022-11-04 07:37:06 +0000
0 - 0 - 2 allwellinst.com/ 142.4.9.224
2022-10-23 07:37:15 +0000
0 - 0 - 22 allwellinst.com/ 142.4.9.224
2022-10-09 07:36:43 +0000
0 - 0 - 22 allwellinst.com/ 198.54.126.9
2022-09-08 07:37:03 +0000
0 - 0 - 22 allwellinst.com/ 198.54.126.9

Last 4 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-11-06 07:37:07 +0000
0 - 0 - 22 allwellinst.com/ 142.4.9.224
2022-10-23 07:37:15 +0000
0 - 0 - 22 allwellinst.com/ 142.4.9.224
2022-09-08 07:37:03 +0000
0 - 0 - 22 allwellinst.com/ 198.54.126.9
2022-09-06 12:01:48 +0000
0 - 0 - 21 allwellinst.com/ 198.54.126.9


JavaScript

Executed Scripts (21)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (87)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 01 Sep 2022 06:41:12 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ASHEkpthay4wFp-8Hza6LpmzJVN-CegLXH5PbiQUPhIxqjWI7UPZYg==
Age: 3323


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149"
Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6307
Expires: Thu, 01 Sep 2022 09:21:42 GMT
Date: Thu, 01 Sep 2022 07:36:35 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
date: Thu, 01 Sep 2022 01:15:17 GMT
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: KnNAQdMmm8CrLPNZQVmXWtBRzCqycebRyvGFwI_81WQeV9zW-qbK3Q==
age: 22879
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 01 Sep 2022 07:36:35 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET / HTTP/1.1 
Host: allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         198.54.126.9
HTTP/1.1 301 Moved Permanently
content-type: text/html; charset=iso-8859-1
                                        
date: Thu, 01 Sep 2022 07:36:35 GMT
server: Apache
location: http://www.allwellinst.com/
content-length: 235


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   235
Md5:    2348f6ab9a5a61b3e3d100cee86b029b
Sha1:   3e4a79ba4235b4325eef5da5379529b225fd1188
Sha256: 046e2e8d5a5e775450f3f5309c0235250c45ad8a7d848b07040c1e58c41a9221

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 01 Sep 2022 06:57:05 GMT
Cache-Control: max-age=3600
Expires: Thu, 01 Sep 2022 07:53:53 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2yU_2rBiPnyyrV0q5RLUtsdqJzXgYnm5m8c1nz63tDTmN-cvld4KWw==
Age: 2371


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5417
Cache-Control: 'max-age=158059'
Date: Thu, 01 Sep 2022 07:36:36 GMT
Last-Modified: Thu, 01 Sep 2022 06:06:19 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Thu, 01 Sep 2022 07:36:36 GMT
server: Apache
x-powered-by: PHP/5.6.40
set-cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2; path=/
vary: Accept-Encoding
content-encoding: gzip
content-length: 7106


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   7106
Md5:    1c4993f2fab8a2ea6ef08605318f37c1
Sha1:   b94638b92abf820c0bd34bf580f2888b552ba841
Sha256: 1a322e3d802f6f220b30056f4cf133b0b7c8e18c4721905009cd20f6c3dece6a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hsiLRz7vuLTzXmJcr/AdFQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.233.140.213
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AVvcWTrDGVCCdhWLa/6DybGeeXE=

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 07:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 07:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css/colors.css HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: text/css
                                        
date: Thu, 01 Sep 2022 07:36:36 GMT
server: Apache
last-modified: Sat, 10 Feb 2018 17:53:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 863


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   863
Md5:    db1d77b55ac3f1e77d539360cd656fd4
Sha1:   f38141c4a42b479f7022eb6428298b496cea1328
Sha256: e64ad777fc524fc1b284359f5ad96dc47cda8e951729dd251f5b792db9f65f3c
                                        
                                            GET /css/bootstrap.css HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: text/css
                                        
date: Thu, 01 Sep 2022 07:36:36 GMT
server: Apache
last-modified: Sat, 10 Feb 2018 21:16:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 21931


--- Additional Info ---
Magic:  ASCII text, with very long lines (540), with CRLF line terminators
Size:   21931
Md5:    fbc86d068745fc184b27acf5b4c9e537
Sha1:   c79328d2be5383098c1908060994cf3605f86933
Sha256: 22e3c1acaf4a838c3917d2bd13327f6f65f91c28fcfd7bcdd3b99ce951301cbb
                                        
                                            GET /css/jquery.countdown.css HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: text/css
                                        
date: Thu, 01 Sep 2022 07:36:36 GMT
server: Apache
last-modified: Sun, 29 May 2016 02:25:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 557


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   557
Md5:    f479f2ac3253e87e11b968e75df1c4d8
Sha1:   6cf4e4d3c6d134183c9ff5437abdaca29665e212
Sha256: 3d327674671ca969cb98f4e27a138821b62c5a310c122a162ed4695c6d4e7828
                                        
                                            GET /css/font-awesome.css HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: text/css
                                        
date: Thu, 01 Sep 2022 07:36:36 GMT
server: Apache
last-modified: Mon, 26 Feb 2018 11:24:40 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7439


--- Additional Info ---
Magic:  troff or preprocessor input, ASCII text, with very long lines (372)
Size:   7439
Md5:    57a8ee32de25312ab303210ef3c556a9
Sha1:   388f783ee7c84801442370bf8d3812213a1198f5
Sha256: 8bdd62fda01c7b19a4d2ee31cfb4d2fc6123a958cb23bf902c9fead7fc6a9c0d
                                        
                                            GET /css/font-awesome.min.css HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: text/css
                                        
date: Thu, 01 Sep 2022 07:36:36 GMT
server: Apache
last-modified: Mon, 26 Feb 2018 11:24:39 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7053


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   7053
Md5:    52f1a8a2ce85fa8432308b33bc1a2e79
Sha1:   fd80917af5371c8ecad0198592a1e7cce4b77b0e
Sha256: 07bd6a9ea0213e20f362485aadc17a88c486ecfb394004b41b8b38db6e6a35f6
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 07:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /css/style.css HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: text/css
                                        
date: Thu, 01 Sep 2022 07:36:36 GMT
server: Apache
last-modified: Wed, 28 Feb 2018 10:53:29 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 17700


--- Additional Info ---
Magic:  ASCII text
Size:   17700
Md5:    f5bbe4867d6da98768e6ff6f0e40bce3
Sha1:   02ab966cf1f7b5506db89abd1c73b108292f58b6
Sha256: 35a8b1acdf7256f32a48efe6caa00aca6094aedd9ac175cb23f7537f6d23e310
                                        
                                            GET /css/animations.min.css HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: text/css
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Tue, 24 May 2016 01:59:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 10969


--- Additional Info ---
Magic:  ASCII text, with very long lines (59107), with CRLF line terminators
Size:   10969
Md5:    a294b31e76b68602c2093a027964968d
Sha1:   e2f0eb819471aa19d77af62f9466f1fcb25d2a8c
Sha256: 94d551bf5d5c33c98843e986d3f117b642504ba8d38ccc7881a1da694b85b894
                                        
                                            GET /css/bootstrap-dropdownhover.min.css HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: text/css
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Sun, 29 May 2016 02:25:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 480


--- Additional Info ---
Magic:  ASCII text, with very long lines (1161), with CRLF line terminators
Size:   480
Md5:    71671aa52fd73b7ff21a09d8b483afad
Sha1:   d55037ffbe361394be87684749205796984405cf
Sha256: 6c6f489c2020cb8e856c85095e7586fa83e4c278a34c7b7abce30175e90ab1bc
                                        
                                            GET /css/animate.min.css HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: text/css
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Sun, 29 May 2016 02:25:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3601


--- Additional Info ---
Magic:  ASCII text, with very long lines (53660), with CRLF line terminators
Size:   3601
Md5:    edfa4a796d55b7ec4882b9c12e1c1939
Sha1:   38d363c6ecbbbec1187594f3847f7a293623878b
Sha256: 04e6f08ffbdeb5c867fc1ef6b2dba674d17443a0a460f07e14a25d9a039d9933
                                        
                                            GET /owl-carousel/owl.carousel.css HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: text/css
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Tue, 13 May 2014 14:56:20 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 528


--- Additional Info ---
Magic:  ASCII text
Size:   528
Md5:    a70757c9c5b45b8b3e693066dee5c63c
Sha1:   4ddc02d2eac2bb1a9ccc446ff1e19641ee8f7279
Sha256: 97e2ca1b06a80ecd57e1514d54bec8904727d25dc47f878b41d204c72e8535de
                                        
                                            GET /owl-carousel/owl.theme.css HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: text/css
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Tue, 28 Jun 2016 05:13:38 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 617


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   617
Md5:    717116511b7dd6e0d932945564d48b5d
Sha1:   e38c19fff93b9be8e44fe467812bf8dc826b62ba
Sha256: 62ddc65aab06a9df9a42f02c06d3b255479f55b8e02cce890cf8ed0b1874132f
                                        
                                            GET /assets1/js/google-code-prettify/prettify.css HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: text/css
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Tue, 15 Apr 2014 10:33:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 337


--- Additional Info ---
Magic:  ASCII text
Size:   337
Md5:    580c1f43a19d99824ec9c82f3af5afa1
Sha1:   2822fab5d742813c39307c0fc895092f30d72e6d
Sha256: 19e851fe4220853358642e096e2f74d11134a5c5c4b625f414551284df042dcb
                                        
                                            GET /ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 404 Not Found
content-type: text/html; charset=iso-8859-1
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
content-length: 315


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/bootstrap.min.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Wed, 18 May 2016 21:31:18 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9753


--- Additional Info ---
Magic:  ASCII text, with very long lines (32034), with CRLF line terminators
Size:   9753
Md5:    8f033e5279d721a6b7b83b823106a831
Sha1:   b2034937c603bfb5bd10a8706b9997ce1e48422a
Sha256: 37c0bad76bc5d0678f54d41811131bb0f89421a39cf009ed8508e97da70bb531

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 07:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 07:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.allwellinst.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 43349
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 07:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.allwellinst.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 27 Aug 2022 02:02:22 GMT
expires: Sun, 27 Aug 2023 02:02:22 GMT
cache-control: public, max-age=31536000
age: 452055
last-modified: Wed, 11 May 2022 19:24:45 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size:   15920
Md5:    3a44e06eb954b96aa043227f3534189d
Sha1:   23cef6993ddb2b2979e8e7647fc3763694e2ba7d
Sha256: b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.allwellinst.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:21 GMT
expires: Thu, 31 Aug 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 43336
last-modified: Wed, 11 May 2022 19:24:56 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size:   15740
Md5:    b9c29351c46f3e8c8631c4002457f48a
Sha1:   e57e59c5780995ff2937ab2b511a769212974a87
Sha256: f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
                                        
                                            GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.allwellinst.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 43349
last-modified: Wed, 11 May 2022 19:24:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size:   15860
Md5:    e9f5aaf547f165386cd313b995dddd8e
Sha1:   acdef5603c2387b0e5bffd744b679a24a8bc1968
Sha256: f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
                                        
                                            GET /js/animations.min.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Tue, 24 May 2016 01:59:44 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 896


--- Additional Info ---
Magic:  ASCII text, with very long lines (1984), with CRLF line terminators
Size:   896
Md5:    59a80dad15d80721e03dbe32d579d524
Sha1:   c4e52939216121a6aa32352a3da1561e1c86f2a5
Sha256: 019bc22e048a00b9259bdc98b595a5026807357162447e4947d65a145584a2e0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/jssor.slider-21.1.5.mini.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Mon, 05 Sep 2016 11:11:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 18516


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (45340)
Size:   18516
Md5:    4f156d967ee1b02dec81b65bde2425ba
Sha1:   7a68c479ef675d0b25ce9a87000c92c1e7e677ca
Sha256: 0f176f7705a6d1400229bcdc337d09c746830c790c60e81ad1984e773597440a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 07:36:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/jquery-1.11.3.min.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Mon, 05 Sep 2016 11:11:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 33325


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (32038), with CRLF line terminators
Size:   33325
Md5:    9ce1aed52fb8705862f1fe577d2e32ee
Sha1:   6dd527958b075fb9d9bee25a79fef3da2068e7a8
Sha256: cd7fce434a5bab178c3bee88ee5faf69cbcb7a6b802a9d6e3c3a5b01eefa7817

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/jquery.plugin.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Sat, 28 May 2016 02:21:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3707


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   3707
Md5:    71713fa2e9a97b2955421a491410feb2
Sha1:   032e3d4f3a81541f6bc76e23bc143de652b53245
Sha256: 9129efcab5de3069b545261f1d3cc51989ba43c1568863e9a7ebfe1a0cff345a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/jquery.main.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Mon, 04 Jul 2016 19:16:24 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 24872


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with CRLF line terminators
Size:   24872
Md5:    98ab334a2b8ea90c03be8e7d4be821c2
Sha1:   754087e3c79b6a245cc45f0f3aa46277a23a7028
Sha256: 33eff417c1d5eeb88f350268cdc71b7dcfee57020e51d6efafee876be6964065

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/jquery.countdown.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Sat, 28 May 2016 02:21:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9425


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   9425
Md5:    dabc32f05087e41c4b8e677447198af9
Sha1:   8c21f62946e7cdb89a22d300eb1cfebeebfa15e6
Sha256: c202f013418847e602f7b1e068185d610b48c39efed9f0c6d06292c83a0b7c83

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /s/ptsanscaption/v18/0FlJVP6Hrxmt7-fsUFhlFXNIlpcSwSrkTA-v.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.allwellinst.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35208
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 06:42:53 GMT
expires: Fri, 01 Sep 2023 06:42:53 GMT
cache-control: public, max-age=31536000
age: 3224
last-modified: Wed, 27 Apr 2022 16:09:37 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 35208, version 1.0\012- data
Size:   35208
Md5:    533b904aeb71d52d4ed3d58ee59a7603
Sha1:   e86c7ca5fe5f70ed2e47b3874e779716acf65f0d
Sha256: 106eafbee08b482008e6c88cf642224c8e1bddfd0edac403bb6222574e4f7d2a
                                        
                                            GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.allwellinst.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:47:56 GMT
expires: Thu, 31 Aug 2023 19:47:56 GMT
cache-control: public, max-age=31536000
age: 42521
last-modified: Wed, 11 May 2022 19:24:42 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Size:   17368
Md5:    abe083d96b58eb02ada8b7c30d7b09f2
Sha1:   61447d66d13a8c8f4335696777a85c438c46f749
Sha256: db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
                                        
                                            GET /js/timber.master.min.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Sat, 28 May 2016 02:21:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 7483


--- Additional Info ---
Magic:  ASCII text, with very long lines (13394), with CRLF line terminators
Size:   7483
Md5:    4ec7d67f088a89412db086b2649cf98b
Sha1:   7a0cd55298193f117eebcf36354dff01b09602d4
Sha256: cfe1eb89541742ab9a9cf73e13d58bb9daf829497e33bdaa88b0c318c9dc7616

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /js/bootstrap-dropdownhover.min.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Sun, 29 May 2016 02:25:42 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1365


--- Additional Info ---
Magic:  ASCII text, with very long lines (3959), with CRLF line terminators
Size:   1365
Md5:    25a9a16a8cfad2825d0951f959506b3d
Sha1:   fe68cb14fed7e82170bcf927f2e14840d99e8b23
Sha256: e53701d7e509800745dd1c8ca58316bd8bfcdb48b9a7a9ed88d2a85c2ca3c315

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /owl-carousel/owl.carousel.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Tue, 13 May 2014 14:54:58 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 8751


--- Additional Info ---
Magic:  ASCII text
Size:   8751
Md5:    39c690419159637e1f3977c8dfb5718d
Sha1:   202b2d75966f313aec83f414d0845154e2d9384b
Sha256: 04a284e3609cc5cc5be472faf440515595190574f61b9f46c5c6fbec298a684f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /assets1/js/bootstrap-transition.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Tue, 15 Apr 2014 10:33:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 764


--- Additional Info ---
Magic:  ASCII text
Size:   764
Md5:    9285f62d3f1a619b4fb654930f15c955
Sha1:   0f16aa087880fef969fe456c3202ed56e8ab638c
Sha256: eb45f464f9f34ecbb4f2aadc2d99a934387a77e7bae28d3239890690f9e5ae14

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /assets1/js/bootstrap-collapse.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Tue, 15 Apr 2014 10:33:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1644


--- Additional Info ---
Magic:  ASCII text
Size:   1644
Md5:    501207e775d7b24f2c32f313e0fa6d41
Sha1:   8dfa9dc9fcb5fbcf6b628165ca1af40d2bff292d
Sha256: 3c742629def498f8b8393df8f4ca0fa512bf9c66de1eb7f7a9c646efce2bfa68

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /assets1/js/bootstrap-tab.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Tue, 15 Apr 2014 10:33:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1381


--- Additional Info ---
Magic:  ASCII text
Size:   1381
Md5:    2f2760fbba9ad4b94394d939c69a36ed
Sha1:   7a9ebdd9eca0df9f889074d7ff51e6bf654327cf
Sha256: 5043be95433c08755452b29f006744b9c5f90bb2d2f838b101ec2e6a598116e2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /assets1/js/google-code-prettify/prettify.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Tue, 15 Apr 2014 10:33:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 6025


--- Additional Info ---
Magic:  ASCII text, with very long lines (592)
Size:   6025
Md5:    d8b175afa3794445f44221b4dc35785b
Sha1:   a4b89d7a71601eba286b09ac88f781b0c4c9c599
Sha256: 5bcaa348ba6c0862c9a3127595f3be54502913fc77a0e4922c190a1db9f5fd3a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /assets1/js/jquery-1.9.1.min.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Tue, 15 Apr 2014 10:33:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 32775


--- Additional Info ---
Magic:  ASCII text, with very long lines (32089)
Size:   32775
Md5:    fcf0a7201168a979dd4b222a54471e0f
Sha1:   9056c50ea859db10d2d959654d0f8dde367360ee
Sha256: c40969745be3d2181fd5d40425f9080ac2c62e63d298c1de8bb4bbda5e4ea0f7

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /assets1/js/application.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: application/javascript
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Tue, 15 Apr 2014 10:33:26 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 338


--- Additional Info ---
Magic:  ASCII text
Size:   338
Md5:    898881ed4d5e40fdf4c61a85ca56c1a8
Sha1:   798e22f25e99ec0eb8120f86b9825f652bb46560
Sha256: 1d170e4aab3df843ec6d38b80cbb9d2259d2a0719dc629ab728cfba2efd4739b

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /fonts/icomoon.woff HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.allwellinst.com/css/style.css
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: font/woff
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Tue, 24 May 2016 01:59:44 GMT
accept-ranges: bytes
content-length: 2808


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 2808, version 0.0\012- data
Size:   2808
Md5:    31a3e4e78a3e107ef72d075070a3eda7
Sha1:   0de50feacd42e03edc520af87e7b7c29f814619b
Sha256: ac79434b1348cc08f2b9c430d3884730cce55e3738c04d0d9787d16397ecc998

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /ajax.googleapis.com/ajax/libs/jquery/3.0.0/jquery.min.js HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 404 Not Found
content-type: text/html; charset=iso-8859-1
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
content-length: 315


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   315
Md5:    a34ac19f4afae63adc5d2f7bc970c07f
Sha1:   a82190fc530c265aa40a045c21770d967f4767b8
Sha256: d5a89e26beae0bc03ad18a0b0d1d3d75f87c32047879d25da11970cb5c4662a3

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5510
Expires: Thu, 01 Sep 2022 09:08:27 GMT
Date: Thu, 01 Sep 2022 07:36:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5510
Expires: Thu, 01 Sep 2022 09:08:27 GMT
Date: Thu, 01 Sep 2022 07:36:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5510
Expires: Thu, 01 Sep 2022 09:08:27 GMT
Date: Thu, 01 Sep 2022 07:36:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5510
Expires: Thu, 01 Sep 2022 09:08:27 GMT
Date: Thu, 01 Sep 2022 07:36:37 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5510
Expires: Thu, 01 Sep 2022 09:08:27 GMT
Date: Thu, 01 Sep 2022 07:36:37 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 16818
x-amzn-requestid: fa921878-2054-453b-b313-681cdd9c9068
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj-Z_HUNIAMFltg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b110c-053ce81943fea70c2de7daa0;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 06:54:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 69fDjN-ZeYA8RVO_WGTY1KQHZ1t3PNdWIwq3ax1e1wKmuPODyGCMcQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 14:46:29 GMT
age: 60609
etag: "9fef9b071daea6793cbbdfe391254ac4326b1aa2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   16818
Md5:    12756903aaa74164feb5f8525398ca36
Sha1:   9fef9b071daea6793cbbdfe391254ac4326b1aa2
Sha256: 6d474a6d96aebfed43a4f6812f18a1be8d100c590f75eb0fbf4ec7277dd0c442
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcce30929-1614-4a6d-80aa-fd9b2f12af34.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9305
x-amzn-requestid: 3ec274e1-6e02-4099-ba20-f622b20da568
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv4ibGU-oAMFj9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd475-7f2b1dc86353361e105c6f7d;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:36:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 31J99N3FeSApJbAZbYRpIfPdeiBm4bucT3RwaoGFTwhQWxhncPHL8w==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:54:54 GMT
age: 34904
etag: "2a66e9c2654e04097031304feca86eea7ab0395e"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9305
Md5:    4b629767aa19f78c2734128d2cb1e93d
Sha1:   2a66e9c2654e04097031304feca86eea7ab0395e
Sha256: 2bf73bd574a294029803eb25c23442a12519c5d186d806d165ea4fa9b8961b87
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff48464b4-ee99-46c1-8a3e-aa01e1b670f8.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11031
x-amzn-requestid: bd49a4c9-205b-4553-90a3-308ebc6be818
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv4hOHzVoAMFl8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd46e-783de8c2461d7cb9167f734e;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mDad6prX28HjnDw7hq0B9vE_BaX9qqrjaOo7A46jhu2S505prB5SJA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:11 GMT
age: 35967
etag: "2082e9f809e97bbcaf6ff11846398aca472f9f0f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11031
Md5:    494ba0180ab4b2b80ca11aeb67ae69ab
Sha1:   2082e9f809e97bbcaf6ff11846398aca472f9f0f
Sha256: c6a707e79315677912fa7cf6ab592abf4377aa76e51ae5149d4bae7e663d6801
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2b14395b-3f2d-4aeb-b43c-253963035eaa.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8084
x-amzn-requestid: 743404c1-6c84-4232-9b7c-3cae4ebb3d4f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3i5EeioAMFygw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2df-6e6460e844f676d671797ff0;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 4sryJq3FD4jgCCkSjTSMMpvOJ3k9V6i3tF2Pd8dXyqDw7cmnojV0KQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:47:20 GMT
age: 35358
etag: "deec914bf1f10646d923db48ab3d4ec21af27381"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8084
Md5:    e3091a7a992a2ad059e486d4e0d93c02
Sha1:   deec914bf1f10646d923db48ab3d4ec21af27381
Sha256: 8819908ab1f13fd13fe5980883502b6131ab74c2a716b8576d95e89b980df149
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbfc1af67-f228-4148-a5f1-b9d751d203d5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4138
x-amzn-requestid: 3b1ef400-294f-48c1-8301-2477e3470941
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XaI01Fh1IAMF4bw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630721b8-4694e207780cccd0322c9562;Sampled=0
x-amzn-remapped-date: Thu, 25 Aug 2022 07:16:08 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wrwJHPH9x2dRikIMo2KY25USqv908NuZSEFb32iGnl453dPRNIOyQA==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 07:23:26 GMT
age: 792
etag: "5a81f8462cfc9f17689152bb3a77407227099d41"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4138
Md5:    6e6bf286fe74ee70a2819dba1d843cd9
Sha1:   5a81f8462cfc9f17689152bb3a77407227099d41
Sha256: 4678c57ae3e892d1a39414992fe248b4638e6e1ba1ff9310c47c906e3a717cd3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8d6b6055-c5ff-4cd3-8fc3-8d3437f9e72f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9241
x-amzn-requestid: 6d595a25-c0c6-4d74-9937-666d3e3a0ed5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XaHbkHPKIAMF6OQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63071f7d-0f6bf45a3295ada653e69dc2;Sampled=0
x-amzn-remapped-date: Thu, 25 Aug 2022 07:06:37 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZLPEALVOWDTOlj4rgArk5bwHskko8LIP5GmDp84iGjaDyHaco38PYw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 11:52:52 GMT
age: 71026
etag: "14ef9f1a86db7d0c273d05955455163b5bfc5dc4"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9241
Md5:    16e1935fd65e2d2ae1ed579f4c8ddf00
Sha1:   14ef9f1a86db7d0c273d05955455163b5bfc5dc4
Sha256: d88b18ecda4b37d39cc4168e2c502a2fe744873170bfaea3351c52f60081ff8a
                                        
                                            GET /images/searchicon2.png HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/png
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Sat, 10 Feb 2018 19:31:02 GMT
accept-ranges: bytes
content-length: 933


--- Additional Info ---
Magic:  PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size:   933
Md5:    eaa74d5858e4d2ea34c1e3a0c2da2715
Sha1:   11f38a7b7accbd4b8aa92ff813c82b3051355059
Sha256: 95f62d694c27788a74dfca029eea30d061447cde8680a16e28600543347ffe86
                                        
                                            GET /pictures/1_logo.png HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/png
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Sat, 17 Feb 2018 06:57:56 GMT
accept-ranges: bytes
content-length: 15557


--- Additional Info ---
Magic:  PNG image data, 343 x 72, 8-bit/color RGBA, non-interlaced\012- data
Size:   15557
Md5:    2f779c35970815d7c72de4a6dca659f6
Sha1:   58cfc2576b8582d0dae9f2972136b319a5d02cdc
Sha256: d3a03c404e32e2c559ccdcd687bc862ee43668a399abac4b708c34d5d6899ce1
                                        
                                            GET /fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.allwellinst.com/css/font-awesome.min.css
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: font/woff2
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Mon, 26 Feb 2018 11:24:57 GMT
accept-ranges: bytes
content-length: 77160


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /images/image4.jpg HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/css/style.css
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
date: Thu, 01 Sep 2022 07:36:37 GMT
server: Apache
last-modified: Thu, 11 Aug 2016 07:52:36 GMT
accept-ranges: bytes
content-length: 73459


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1600x472, components 3\012- data
Size:   73459
Md5:    d18024f0d7bffef630da7f4d70850c68
Sha1:   8a769685fd506b661275f6856e2b8c37efc28d2e
Sha256: 9473d69bc397185f7d28f206d3d7e5aef38534d24c14ea56e9f2f94e672da871
                                        
                                            GET /pictures/7_pic_1.jpg HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
date: Thu, 01 Sep 2022 07:36:38 GMT
server: Apache
last-modified: Sat, 10 Feb 2018 18:31:04 GMT
accept-ranges: bytes
content-length: 59760


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 555x178, components 3\012- data
Size:   59760
Md5:    d12b50e8aaab2de86b36684b675d0664
Sha1:   1e9cdc52c88484b4500973f09dd628e2bd4782af
Sha256: 9d0a5ad518c6eff7794e3e3ff23d26f2b33d46213f8966d397d57ab6cb52b98f
                                        
                                            GET /images/loading.gif HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/gif
                                        
date: Thu, 01 Sep 2022 07:36:38 GMT
server: Apache
last-modified: Mon, 05 Sep 2016 11:11:24 GMT
accept-ranges: bytes
content-length: 4765


--- Additional Info ---
Magic:  GIF image data, version 89a, 24 x 24\012- data
Size:   4765
Md5:    dd78ac008009bd821d2bf2da98108854
Sha1:   d3665f292d71f9ea2b9a61c476e6e2a9d0d35062
Sha256: 03acb263b1d85f824676b3cad66f9660c73d278f06e519c7ea727593ab4f5a13
                                        
                                            GET /images/b05.png HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/png
                                        
date: Thu, 01 Sep 2022 07:36:38 GMT
server: Apache
last-modified: Mon, 05 Sep 2016 11:11:24 GMT
accept-ranges: bytes
content-length: 1415


--- Additional Info ---
Magic:  PNG image data, 120 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size:   1415
Md5:    b5b353c4ec92a0f8be543f33741618f3
Sha1:   5ebf2f04f513217db1173fa0fb8a9be3983269d6
Sha256: 95434f5c547a4f70a55e95b0e836b0f37c09f3ecf6e58b27de19222c47a8910e
                                        
                                            GET /pictures/2_pic_1.jpg HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
date: Thu, 01 Sep 2022 07:36:38 GMT
server: Apache
last-modified: Tue, 11 Jun 2019 07:10:34 GMT
accept-ranges: bytes
content-length: 94934


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 555x178, components 3\012- data
Size:   94934
Md5:    77e6c4e8563675626f3b7fde95df40ec
Sha1:   e120f757c9651fea908b1c9025b4093088aa2a98
Sha256: 94cb704bb8a20849e9c6b2a757a4ca6dc0afe0b96c6f717d373efdfc6735fdd1
                                        
                                            GET /images/a12.png HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/png
                                        
date: Thu, 01 Sep 2022 07:36:38 GMT
server: Apache
last-modified: Mon, 05 Sep 2016 11:11:24 GMT
accept-ranges: bytes
content-length: 2483


--- Additional Info ---
Magic:  PNG image data, 400 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size:   2483
Md5:    bb9fcee03a7288c2083eb15e31f18e1d
Sha1:   7d2a90b91ab8891d4071ea412cf805a737ae5d8c
Sha256: 5e9ddb467a2a395462d2bebf1ab0424c92b081e250497106b1105ea10efe5b55
                                        
                                            GET /pictures/8_pic_1.jpg HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
date: Thu, 01 Sep 2022 07:36:38 GMT
server: Apache
last-modified: Thu, 21 Mar 2019 09:55:44 GMT
accept-ranges: bytes
content-length: 108703


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS Windows, datetime=2014:01:02 16:56:12], baseline, precision 8, 1060x334, components 3\012- data
Size:   108703
Md5:    4d9bea88a1847747d99e37c65db0231c
Sha1:   8767ce4f5e883456e328a68f080be0d2db535f5e
Sha256: fdab77b9963c66345daf9abecc69ffba8e889e60ae9a1b46c9e6bc824e0086d3
                                        
                                            GET /images/pdficon.png HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/png
                                        
date: Thu, 01 Sep 2022 07:36:38 GMT
server: Apache
last-modified: Sat, 10 Feb 2018 18:17:28 GMT
accept-ranges: bytes
content-length: 11032


--- Additional Info ---
Magic:  PNG image data, 109 x 114, 8-bit/color RGBA, non-interlaced\012- data
Size:   11032
Md5:    59099d4d98e3d966e7d30955afeeb58f
Sha1:   19bda665c297c6a52b5d5a25dac1b96a8dffa844
Sha256: 079c59279d9a4ae1feb0086a299d06b6efe1bc6549d3c8529fb023f7234858b6
                                        
                                            GET /pictures/120588221_90_pic_2.jpg HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
date: Thu, 01 Sep 2022 07:36:38 GMT
server: Apache
last-modified: Wed, 05 Sep 2018 06:33:26 GMT
accept-ranges: bytes
content-length: 56782


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 10000", baseline, precision 8, 386x386, components 3\012- data
Size:   56782
Md5:    67b37ed9ab9bb9f97abf9e27342d8f6a
Sha1:   17fa86cee1e3bc59f79f254f46999506c6699a62
Sha256: fcb467fd6e1e471080a974f970c47cad2550f2eab9c7d961e17285dc9662b25c
                                        
                                            GET /pictures/1_pic_1.jpg HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
date: Thu, 01 Sep 2022 07:36:38 GMT
server: Apache
last-modified: Sat, 17 Feb 2018 08:43:58 GMT
accept-ranges: bytes
content-length: 264696


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2014 (Windows), datetime=2018:02:17 13:43:07], baseline, precision 8, 559x179, components 3\012- data
Size:   264696
Md5:    ffd3032acef349a342a1b0d22cd2089d
Sha1:   c51f1196805f8d61b16d0d9a7a2c619d2561d1c2
Sha256: 88ca28ae7cae709d27fc0561821c7f180b25b5ac5ce2627c0bbe560753658fc5
                                        
                                            GET /pictures/59_banner.jpg HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
date: Thu, 01 Sep 2022 07:36:38 GMT
server: Apache
last-modified: Tue, 27 Feb 2018 12:38:58 GMT
accept-ranges: bytes
content-length: 283598


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x635, components 3\012- data
Size:   283598
Md5:    2f7d666c2a31446e6a64ae271420752c
Sha1:   598601e5cb989380e5522f3fa4b053b0c26c26df
Sha256: b9c21749c2f59b012ee76cd61095115a14622e7af1cf86e38d83010dc8fd4d81
                                        
                                            GET /pictures/776475135_91_pic_2.jpg HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
date: Thu, 01 Sep 2022 07:36:38 GMT
server: Apache
last-modified: Wed, 05 Sep 2018 06:44:18 GMT
accept-ranges: bytes
content-length: 119975


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 10000", baseline, precision 8, 450x450, components 3\012- data
Size:   119975
Md5:    e19efa17a71185e7e8d1752aa6cb14d7
Sha1:   c596f42b3fe416deeb9c3d2a6328beb5eb207b7b
Sha256: fb3c03fdb6b486d1498b0ec42945e6b35b29f7fd0eff9224b796ac5635a57997
                                        
                                            GET /images/searchicon.png HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/png
                                        
date: Thu, 01 Sep 2022 07:36:39 GMT
server: Apache
last-modified: Sat, 13 Jan 2018 23:20:08 GMT
accept-ranges: bytes
content-length: 1391


--- Additional Info ---
Magic:  PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced\012- data
Size:   1391
Md5:    a79ce09b335d10eb2cc6ea14793e72b3
Sha1:   6d306d36329b4a366922ed40ef6a4ab7a04f2589
Sha256: 017b7570cace05d49c60dc2a7a8f5940434c8dd7b6210fdda6bbb77dac2bc155
                                        
                                            GET /pictures/61_banner.jpg HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
date: Thu, 01 Sep 2022 07:36:38 GMT
server: Apache
last-modified: Mon, 26 Feb 2018 07:27:47 GMT
accept-ranges: bytes
content-length: 419483


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x635, components 3\012- data
Size:   419483
Md5:    4d3a486afcdc2cd7f73852b8c4a14460
Sha1:   635e4e3f99cf2f0626f8c7d9287be15e77df7b4b
Sha256: 1170e189732b2bb206e44e1e68a09fc5b3954d84ab25df23aa980c37a4186a26
                                        
                                            GET /images/favicon.ico HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/x-icon
                                        
date: Thu, 01 Sep 2022 07:36:39 GMT
server: Apache
last-modified: Fri, 13 Sep 2019 09:55:57 GMT
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 879


--- Additional Info ---
Magic:  PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Size:   879
Md5:    b8d8715a9ace301b1bcbc0bfedaf6373
Sha1:   a9325828ed128143fbb60f59388070210f586458
Sha256: fe618ff54d22041554a6ec72b3baed694ef2f8461c6b935456c4e7c0cfe00d36
                                        
                                            GET /pictures/60_banner.jpg HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
date: Thu, 01 Sep 2022 07:36:38 GMT
server: Apache
last-modified: Mon, 26 Feb 2018 07:27:35 GMT
accept-ranges: bytes
content-length: 378840


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1600x635, components 3\012- data
Size:   378840
Md5:    ef0dade9d3d8c3b63c9fbc5e7e9fa32a
Sha1:   f4d375b92280bdab1f0edfa7062a2994d71e5790
Sha256: c76b12b1306abe8bfe76eb5689866c25b428700308c7de32378e06cd8a65eb18
                                        
                                            GET /pictures/64_banner.jpg HTTP/1.1 
Host: www.allwellinst.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.allwellinst.com/
Cookie: PHPSESSID=io9jvaphqi0r50skiiq80v2cn2

                                         
                                         198.54.126.9
HTTP/1.1 200 OK
content-type: image/jpeg
                                        
date: Thu, 01 Sep 2022 07:36:39 GMT
server: Apache
last-modified: Fri, 13 Sep 2019 10:41:33 GMT
accept-ranges: bytes
content-length: 481486


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1900x700, components 3\012- data
Size:   481486
Md5:    8fb225d84f69eec7beaaa157f7e52333
Sha1:   8a10621483afbdc05ff78668d0bcb96b884fd173
Sha256: 4399febb736e5cc4e81aa23a0680d0052af7101692d6c7bdab33edbf269403e4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bffab86-e623-4ccd-9297-981c9dc6e4cd.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9674
x-amzn-requestid: 79dc68ea-ea2e-4eab-bab9-1c89b0a955a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjMSvHJ-oAMF6Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630ac0de-2370cf5363d5f308121f0ca4;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 01:11:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qAEve6mBQ9a1hr2fBR8xq42pxeG9Kjn4yWaMr4z4On46QC9R1K91pw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 14:58:03 GMT
age: 59921
etag: "b691ef5e7a302e2678302818130a9637c3efbe3a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9674
Md5:    b0f6c541f6335bb709d2270147bd5aed
Sha1:   b691ef5e7a302e2678302818130a9637c3efbe3a
Sha256: e63922331a4463519e6df77ae7a1ad3316a36e54dd03c00ff6b119ee3fa684c5
                                        
                                            GET /css?family=Roboto:400,400italic,300italic,300,500,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.allwellinst.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Sep 2022 07:36:37 GMT
date: Thu, 01 Sep 2022 07:36:37 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=PT+Sans+Caption:700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.allwellinst.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Sep 2022 07:36:37 GMT
date: Thu, 01 Sep 2022 07:36:37 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---