neuropraxisrehab.com/uotp/
302 Found 1 B URL User Request GET HTTP/2 neuropraxisrehab.com/uotp/
IP
ASN #398101 GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type very short file (no magic)
Hash eccbc87e4b5ce2fe28308fd9f2a7baf3
77de68daecd823babbb58edb1c8e14d7106e83bb
4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /uotp/ HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
x-powered-by: PHP/7.4.33
cache-control: no-store
location: /
vary: Accept-Encoding
content-encoding: br
content-length: 1
content-type: text/html; charset=UTF-8
date: Fri, 08 Dec 2023 06:37:41 GMT
server: Apache
X-Firefox-Spdy: h2
200 OK 35 kB URL User Request GET HTTP/2 IP
ASN #398101 GO-DADDY-COM-LLC
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (52557), with CRLF, LF line terminators
Hash ff3109918f88896b991eca8dc2407d69
002413483544742a630b53c56906214a769134db
67fac002bfeb9654de34212c2751e0b5e4cd518b94cd2e3569e16a593b52c225
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
cache-control: no-cache
link: <https://neuropraxisrehab.com/wp-json/>; rel="https://api.w.org/", <https://neuropraxisrehab.com/wp-json/wp/v2/pages/11>; rel="alternate"; type="application/json", <https://neuropraxisrehab.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: br
content-length: 34753
content-type: text/html; charset=UTF-8
date: Fri, 08 Dec 2023 06:37:41 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.3.1
200 OK 7.8 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.3.1
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (39343)
Hash a0b3a11fd4ebcad236cff2bc51e9b434
32450d8097e971f4b59044e979289903beffc85d
4c0561c2c4810cbb09911bc45252c68724f181aa5bd16455493e31d2bfeba8b3
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/astra/assets/css/minified/main.min.css?ver=4.3.1 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 05 Sep 2023 09:36:58 GMT
etag: "2942859-a235-604995e456bc9-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 7820
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/bdthemes-prime-slider-lite/assets/css/prime-slider-site.css?ver=3.10.2
200 OK 2.7 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/bdthemes-prime-slider-lite/assets/css/prime-slider-site.css?ver=3.10.2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (20556), with no line terminators
Hash 311610576b0eeed8dc57d79620eabcf8
0577a5e12a5e71e0b45cedc76d671565bc02fed9
52dfcaabe6d58eb0c85c64d4be88ba722dc84782b99de969c4736647f3cc58bd
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/bdthemes-prime-slider-lite/assets/css/prime-slider-site.css?ver=3.10.2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:34:01 GMT
etag: "47610a6-504c-607ac634bb372-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2661
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/bdthemes-prime-slider-lite/assets/css/bdt-uikit.css?ver=3.15.1
200 OK 15 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/bdthemes-prime-slider-lite/assets/css/bdt-uikit.css?ver=3.15.1
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators
Hash 819442864fc4795375f49619bb2f9ed2
e8ae66bfa84793ea31889d60c02e1520fce4b02a
ef760a7d51b53fc309749d657453ea99e8a3c2010ba7aad04dbbef2e09065301
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/bdthemes-prime-slider-lite/assets/css/bdt-uikit.css?ver=3.15.1 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:34:01 GMT
etag: "476109c-17342-607ac634baba2-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 14696
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.23.0
200 OK 3.7 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.23.0
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (19487)
Hash 3683d21c678ef9e264a1cb0fa2007285
180b55f2045971d357af3183c4126432f0c383f9
941b1493157dfb7316bcb3c7357a94e9ba173607d80559408620f4ab4c39c88d
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.23.0 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "47606bd-4c4d-607ac6321d468-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3675
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-includes/css/dist/block-library/style.min.css?ver=0621ff1d1a7a69c31fa9c0bd192756a5
200 OK 13 kB URL GET HTTP/2 neuropraxisrehab.com/wp-includes/css/dist/block-library/style.min.css?ver=0621ff1d1a7a69c31fa9c0bd192756a5
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (53449)
Hash 03c0f2128c8dd615b1691c168f1d4456
defa44bed1f35ec899cfd358ca911390bca53e67
67447c3656caad630373253691f3e8f64467eafd6e7305c9b0e98111b0b41694
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/css/dist/block-library/style.min.css?ver=0621ff1d1a7a69c31fa9c0bd192756a5 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 19 Jul 2023 23:43:54 GMT
etag: "26616b8-19824-600df9abc4280-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 12822
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6
200 OK 2.2 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (12876), with no line terminators
Hash bcad7781b3e74db2565b8424c45232cd
41b0d94434ef667897c06e1184b703064ffceda1
d622534d53d3ac1095af275f0b30274fcd835785577df2dde6d9398e6f7a2c8f
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/swiper/css/swiper.min.css?ver=5.3.6 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "476080d-324c-607ac632dfdc6-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2180
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/elementor/css/post-5.css?ver=1697287339
200 OK 467 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/elementor/css/post-5.css?ver=1697287339
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (1851), with no line terminators
Hash 53b815affb8206c23ef5290fb944af93
314de0d1109f215e0de64e61914a7c09b93500fc
b7cc23b3fb4fe4e42cdd2064bc51dc4756330ee562cc49d3cbdf959603aa3d12
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/elementor/css/post-5.css?ver=1697287339 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:42:19 GMT
etag: "4fa0001-73b-607ac80f5594b-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 467
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.16.2
200 OK 1.5 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.16.2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (11720)
Hash c0ebad42a3c96f626e8d32d64779e58e
dbf5066f0e541f61297476f0b588533d15aec738
41eac43c1137e23dc691d5605126f42c477b739d40867c3022a1c9a857dd3194
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.16.2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Sep 2023 11:38:27 GMT
etag: "2b42b2b-2df4-60641836eaaca-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1513
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.16.5
200 OK 13 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.16.5
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (65496)
Hash f953a5ce07cfc033712ea9792a3e477d
6e949f57cbc5b5f5ad5421f9118ce2babba49b81
1c483c83318c93d883f638129fe28dbd41f8b7d6881d94b0d99c93f5d87bb934
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.16.5 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:57 GMT
etag: "4760516-1ca4c-607ac63007536-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 12884
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.16.5
200 OK 12 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.16.5
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (59158)
Hash 74bab4578692993514e7f882cc15c218
b6293bcfd851f963edbe859498570c4c0c7eaae4
d87ddf917b7a1449ab45e2b8e3c98354629bdd65b6659c37e6023bbea1ce1386
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=3.16.5 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "47606cd-e7d0-607ac63220731-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 12402
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.54
200 OK 2.2 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.54
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (10066), with no line terminators
Hash a587f139f769419d022d22d4cfa93d91
8a33ca20fec87e30c8281ee57abf30708a2c9277
6c4ca119cf1bceba15e6b59d19c9a913dcfa12dd54b9ca0900890819adfae5e5
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/sassy-social-share/public/css/sassy-social-share-public.css?ver=3.3.54 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 04 Oct 2023 09:34:03 GMT
etag: "4aa054c-2752-606e0b538e46d-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2247
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/happy-elementor-addons/assets/fonts/style.min.css?ver=3.8.9
200 OK 4.9 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/happy-elementor-addons/assets/fonts/style.min.css?ver=3.8.9
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (25442)
Hash 2a122fab955f87f5d0f9662a8fc5fc24
023894fc44c62548e62b53f265ba80da0c87a609
a526f7e1a82516f99f2639fc48cd8033545c9d1ddae99c01942dede8116d4ee5
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/happy-elementor-addons/assets/fonts/style.min.css?ver=3.8.9 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Sep 2023 09:05:22 GMT
etag: "2b22f17-6363-6059e712ea582-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4859
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
200 OK 6.7 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (30837)
Hash 008e0bb5ebfa7bc298a042f95944df25
93897ebc560b38a1d2bff43c22dd6a3b7ee90c0c
c4047043368afb4baf1aed25d358a5c2a333842a3b436b58491ab36aeee65b9d
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "47606d2-7917-607ac6327b843-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 6662
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.8.11
200 OK 724 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.8.11
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (3442)
Hash ac793cfd8de80e4763d4f9ded0d96508
49cde1c37571cba1f76f9d038b4670e7f023a3b9
3e584003b5c6df9bc2854b2775e527ef7240f3d1cae4047e9aa504cdfbc109f9
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/css/view/general.min.css?ver=5.8.11 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Oct 2023 08:51:55 GMT
etag: "2aa143e-d73-60744b3cba845-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 724
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/elementor/css/global.css?ver=1697287340
200 OK 4.2 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/elementor/css/global.css?ver=1697287340
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (40481)
Hash 8866b20d28643fefd63cd5efc5c2fbb4
fbac9303a624d5f695eb51fe5c6ed353847b2697
603ca24978a86cc6d2c097fcac3020f3288d647f667e212bde50f6627902fd3d
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/elementor/css/global.css?ver=1697287340 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:42:20 GMT
etag: "4fa0002-10019-607ac8105c09f-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4248
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/elementor/css/post-11.css?ver=1701975445
200 OK 5.1 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/elementor/css/post-11.css?ver=1701975445
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 35293df116859febc004ee3a683a4467
c3527fdc251a0005a72220253b09ce758ac82257
c20af551ed4f2b578f46a4f85e1641295ce9b02c4fb316ac9e96a28e1aa8da8b
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/elementor/css/post-11.css?ver=1701975445 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 07 Dec 2023 18:57:25 GMT
etag: "4fa0003-12655-60bf009d1f21c-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 5103
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
200 OK 286 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (483)
Hash 9eb2d3c87feb6bb2ffa63b70532b1477
38f226335a05ab0e30497bc7419eb5e243a9e26c
37bab6cd583982e8eff58501a99d7c5c4d63664c1ca34f9e3b7cf526c5b73ae2
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "47606d8-29d-607ac6327bc2b-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 286
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
200 OK 282 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (491)
Hash 3eef8c9e589a6fd58292e79bbac4ba5d
d3ebdb629b8d9c92380b14b1676b123398f0841b
eea3d6ccda7f6503078cce9dc41176c1357af1c93a5b3625131ef7cf21c9d7c4
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "47606d6-2a5-607ac6327bc2b-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 282
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/elementor/css/post-43.css?ver=1697287341
200 OK 1.5 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/elementor/css/post-43.css?ver=1697287341
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (6360)
Hash c87342f2024a8338c2a918e8468170bf
e09795891a153c79c060d2047f13c55664562b18
72b9e12756451d0850f01a43d20776aa994bafe11b18b387106973082e3ad15f
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/elementor/css/post-43.css?ver=1697287341 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:42:21 GMT
etag: "4fa0004-35aa-607ac810c2d33-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1509
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.16.5
200 OK 4.0 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.16.5
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (26516)
Hash c55205bce667f5d812354fd1353e7389
f22de0af271eba636a022c873c94fbcd81b4c89a
c55902832fb84522d02ea1a60a30747403a140d8651fa748f13ba398b0c0df3a
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/v4-shims.min.css?ver=3.16.5 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "47606dc-684e-607ac6327bc2b-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3986
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/2022/07/12-01-e1659215895851.png
200 OK 6.0 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/2022/07/12-01-e1659215895851.png
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type PNG image data, 254 x 268, 8-bit/color RGBA, non-interlaced\012- data
Hash 95939a8bb0a02f5c03d6e7d8f1c25145
531da7c379b1c543fac4ae16d7e42f5c530a6549
f55c0531d484ad2ea504c8d0787927bc4d9b188029975677b299a3dfced228d3
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/07/12-01-e1659215895851.png HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Sun, 31 Jul 2022 14:19:48 GMT
etag: "5b42008-1792-5e51a935fe900"
accept-ranges: bytes
content-length: 6034
vary: Accept
content-type: image/png
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
200 OK 3.1 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type Unicode text, UTF-8 text, with very long lines (26551)
Hash 317ee333565e88410e45417ff55d3753
e0a1e837a636e031ff09e70b5c63e13f00412583
20aad078c190cf5e3ff7c4a1471020f97a232dbc06b41b80f6a5fc782bd3493d
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Sep 2023 11:38:27 GMT
etag: "2b42af6-67e4-60641836e741a-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3142
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
img1.wsimg.com/traffic-assets/js/tccl.min.js
301 Moved Permanently 0 B URL GET HTTP/2 img1.wsimg.com/traffic-assets/js/tccl.min.js
IP
ASN #20940 Akamai International B.V.
Requested by https://neuropraxisrehab.com/
Certificate IssuerStarfield Technologies, Inc.
Subject*.wsimg.com
FingerprintB7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD
ValidityTue, 19 Sep 2023 21:06:14 GMT - Sun, 20 Oct 2024 21:06:14 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /traffic-assets/js/tccl.min.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
content-length: 0
location: https://img1.wsimg.com/signals/js/clients/tccl/tccl.min.js
cache-control: max-age=31536000
expires: Sat, 07 Dec 2024 06:37:43 GMT
date: Fri, 08 Dec 2023 06:37:43 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
200 OK 4.7 kB URL GET HTTP/2 neuropraxisrehab.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (13479)
Hash 9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 09 Jun 2023 18:19:24 GMT
etag: "28e0d38-3509-5fdb66894a300-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4685
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/elementor/css/post-17.css?ver=1697287341
200 OK 1.7 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/elementor/css/post-17.css?ver=1697287341
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (17039), with no line terminators
Hash 4de15c2ef7da2ea10315c06491f9abb2
f8c1144033df4ab66ebe8a38c4a32dd77cc3c924
5088f97eb23a5c31152505b45d286a26d8c188496f8a5064111d52419bcb1e16
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/elementor/css/post-17.css?ver=1697287341 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:42:21 GMT
etag: "4fa0005-428f-607ac810d88dd-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1707
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.16.5
200 OK 4.0 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.16.5
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (14869)
Hash 7a5dea0a705cc2f4cd87dbaaa6666bc6
678bc6f750f13adb29bbc158eb0d9cd813b736fa
97cf1307c16a437b77b5f7f5c9bc0b985d0745a14be5a279019aca5a3432e264
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver=3.16.5 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "4760706-3acf-607ac6327faab-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4035
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
200 OK 12 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (57726)
Hash eeb705d0bdccfd645d3bbd46dd1fbab3
066def290f42ed8c00860e573cc880bd46e9ced4
d01a2ba2805c78957e15a2958135de0f3cb88e95159dd0f6c0a032bd76b1b0e9
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "47606d3-e238-607ac6327b843-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 12147
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=3.0.0
200 OK 12 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=3.0.0
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9323fd320e12c4d0d865a254138147d4
93218fbf674488be2feccebf36055c6fc1d8a1ee
49ebaf0bfad5aaf0c66de0bb84a2c7d1e32f33add8d6cb75897ae56cb07bcda9
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=3.0.0 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Oct 2023 08:51:49 GMT
etag: "2a804ab-1e7a5-60744b3657f3a-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 11745
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=3.0.0
200 OK 2.9 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=3.0.0
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (30299), with no line terminators
Hash 317fbc87772718eb181ec7feba35e148
e08708d82fba6bdb5d2a6826cc5099662f7daab1
12c3f7bc60c99d1b6b634d6cd16fbb0e26ae75ddda15d7a6e5106cd5dad83f14
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/responsive.css?ver=3.0.0 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Oct 2023 08:51:49 GMT
etag: "2aa0ef0-765b-60744b3698a69-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2855
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.r2m03.amazontrust.com/
471 B URL ocsp.r2m03.amazontrust.com/
IP
Hash e29039894516e12b391d6eaf8d12dc93
38fea9e261042286aa58a7950e643f34b75ed5b2
5112e5d1eb7b3825f03653fc5b4f9c75d587e2aaf1abffbcca6149be0e684df3
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 08 Dec 2023 06:37:43 GMT
Last-Modified: Fri, 08 Dec 2023 05:28:20 GMT
Server: ECAcc (amb/6BDA)
X-Cache: Miss from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hZsZ90NF00ADJZQylxpsB-BuTmD7XOZ1Fqy6txSOJynbU4i61kZPQQ==
Age: 4163
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
200 OK 286 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (489)
Hash 144e43c3b3d8ea5b278c062c202c92f2
3c037057a419245849747b4762d09d88cab66fc1
9cd63b8cea25045c14623c538d26752518a58c0c682795ce6ad3078976c65a37
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "47606cf-2a3-607ac63220731-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 286
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/css/widget-theme-elements.min.css
200 OK 1.7 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/css/widget-theme-elements.min.css
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (9936)
Hash 79914289a03c1ed163c6c3945b22aaf2
1c88e563d135367ecebff8828bc36c480ec8756e
f7c57b37232dd200e7b27fc6bfce78ec413a3a718e94818248f4fe16570780bd
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/css/widget-theme-elements.min.css HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Sep 2023 11:38:27 GMT
etag: "2b42acf-26fc-606418368b750-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1708
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/css/widget-call-to-action.min.css
200 OK 1.1 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/css/widget-call-to-action.min.css
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (8590)
Hash 85b7dd2890f4b41ad880ea9b2926f3fd
0ce7761d72a30791a27204e31158b87533098ed7
55d0f57d5699edb7b5472257e184d4baaff8c9787d8b1191a82707d442b2352a
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/css/widget-call-to-action.min.css HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Sep 2023 11:38:27 GMT
etag: "2b42b00-21ba-60641836e83ba-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1147
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/elementor/css/post-637.css?ver=1697287341
200 OK 696 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/elementor/css/post-637.css?ver=1697287341
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (3849), with no line terminators
Hash 6a7bb1264425cd4a24c98f56fc14d44e
6e1d3338c2969004d17a0357cc8c976de91834f0
8d3545b8c3d8f201f142437e570f561f475c9c3debc71e7af49f43029549fefc
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/elementor/css/post-637.css?ver=1697287341 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:42:21 GMT
etag: "4fa0006-f09-607ac81138040-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 696
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/elementor/css/post-640.css?ver=1697287341
200 OK 694 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/elementor/css/post-640.css?ver=1697287341
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (3849), with no line terminators
Hash e7acc1a1ba337f3d3911c106848a13b8
f967cbbeba5b3375ba3679d90fab95074ff745bd
eda5e34ebebb210036f7abb4abcf6006144f75ebb947e565c6a32c0cfec9093c
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/elementor/css/post-640.css?ver=1697287341 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:42:21 GMT
etag: "4fa0007-f09-607ac81140128-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 694
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/happyaddons/css/ha-640.css?ver=3.8.9.1701946643
200 OK 626 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/happyaddons/css/ha-640.css?ver=3.8.9.1701946643
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (2629), with no line terminators
Hash 50ed610e8ab4c0be6c7c5aadb13ebc12
4bbfbae6cb0b24401306362131163ba6e0e12ff7
2aa95dfaeae3b57bb80e5d18c1a7a16ca2ac2524d451479cc368f8e8646f402e
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/happyaddons/css/ha-640.css?ver=3.8.9.1701946643 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Sep 2023 16:18:00 GMT
etag: "4e20093-a45-605a47c6c96b2-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 626
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/bdthemes-prime-slider-lite/assets/css/ps-general.css?ver=3.10.2
200 OK 3.7 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/bdthemes-prime-slider-lite/assets/css/ps-general.css?ver=3.10.2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (29602), with no line terminators
Hash c4a63d9ae55b4aa5eb23bd97402b008f
8b27d965695d5fae5378b1f49a7b03f6d4a25331
59bfeb10f4f52d44fe10d7acbc7f7fac8e683d4a79956aacc7587024346ee30e
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/bdthemes-prime-slider-lite/assets/css/ps-general.css?ver=3.10.2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:34:01 GMT
etag: "47610bc-73a2-607ac634bbb42-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3659
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css
200 OK 653 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/css/widget-icon-box.min.css
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (10061)
Hash 5185d08c5d5fcc92c0c8824e10955a04
2869eeb0c65fa6c2639a2ac16dc61082604f88f7
326884b379b7684daeb1ed585fc9f1692db49986b76ac30150e57505c1784e24
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/css/widget-icon-box.min.css HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:57 GMT
etag: "476056c-2775-607ac6300a7fe-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 653
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
200 OK 30 kB URL GET HTTP/2 neuropraxisrehab.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.0
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (65447)
Hash ff04dd1ef5c67998d8652330c0441689
5e6ff5bd5240181a8bdea983837f39ac231dac4d
5c93f77799d122fb5255ee24da285f9f228cc118cba11e6ceb2b6bda8cdf4164
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.0 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 27 May 2023 00:03:34 GMT
etag: "28e0d47-155ba-5fca195a36180-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 29741
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/2022/07/couple-talking-to-family-counselor-e1659188568622-768x557.jpg
200 OK 41 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/2022/07/couple-talking-to-family-counselor-e1659188568622-768x557.jpg
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 768x557, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 04387085153772787f5fdef2b8cc542a
80784d6f79c769cc75d5e98f94bc637430a1fff2
e03cc0bffd6c7ee554846b9d51c5f2fe83a659d5827982d33888ce49636d746d
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/07/couple-talking-to-family-counselor-e1659188568622-768x557.jpg HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept,Accept-Encoding
last-modified: Mon, 12 Sep 2022 15:20:04 GMT
etag: "29013fd-a0c0-5e87c6e2266fe-br"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 07 Dec 2024 06:37:43 GMT
content-encoding: br
content-length: 41156
content-type: image/webp
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-137826220-1
200 OK 69 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-137826220-1
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (4189)
Hash df227bd78c544d89dbcdf78ff9d48656
5a1503acbf5a2b81e8222c6d819cd3745c35a6e8
a562a52b792c1d3b5244dc4419741432cc3a4707468647a7d47fc8de367332c7
GET /gtag/js?id=UA-137826220-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Dec 2023 06:37:43 GMT
expires: Fri, 08 Dec 2023 06:37:43 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69200
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/happyaddons/css/ha-637.css?ver=3.8.9.1701946643
200 OK 626 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/happyaddons/css/ha-637.css?ver=3.8.9.1701946643
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (2629), with no line terminators
Hash 50ed610e8ab4c0be6c7c5aadb13ebc12
4bbfbae6cb0b24401306362131163ba6e0e12ff7
2aa95dfaeae3b57bb80e5d18c1a7a16ca2ac2524d451479cc368f8e8646f402e
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/happyaddons/css/ha-637.css?ver=3.8.9.1701946643 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Sep 2023 16:18:00 GMT
etag: "4e20092-a45-605a47c6c0df9-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 626
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-909S3FZC3K
200 OK 93 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-909S3FZC3K
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (5955)
Hash e4fd70afe484adb6202bd0031c5a8dfa
9409f777f6e3d7793bf996d2d3846cee729087da
ddc5fa796be751f852f241388c97bac7658774408dfb67a5479c6e476a4a0897
GET /gtag/js?id=G-909S3FZC3K HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Dec 2023 06:37:43 GMT
expires: Fri, 08 Dec 2023 06:37:43 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93132
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.3.1
200 OK 4.7 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.3.1
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (20638), with no line terminators
Hash bf21071dfece4935becfdfec3a3ac1e9
41eb68194ed1f7d8091efae3323e9f3dbe803911
4949400420298d43ab430c5caf706e848af8fff7db19c0031542b02e71c26b89
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=4.3.1 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 05 Sep 2023 09:36:58 GMT
etag: "294286e-509e-604995e457b69-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 4675
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css
200 OK 3.1 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (32466)
Hash 4ac4b8c86dc118f0d309ddd264450632
581ad41908464f620c4d787d251bf9c55c6c46df
4fd1ad8dfc93f71afb233a8e96e96f206f6676f7a51f5e8d358e887813e38cfa
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/css/widget-carousel.min.css HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Sep 2023 11:38:27 GMT
etag: "2b42aff-7efe-60641836e83ba-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3099
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/elementor/css/post-643.css?ver=1697287341
200 OK 695 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/elementor/css/post-643.css?ver=1697287341
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (3849), with no line terminators
Hash 17aa3101d63ad7e25bf528666576531e
55f444700e1b6b87744fae2f42ff5f5badb751a2
5a5e36cabd2339de44d62a5ab8ea45ff112ba3ef028390fce0a3216e1032da83
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/elementor/css/post-643.css?ver=1697287341 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:42:21 GMT
etag: "4fa0008-f09-607ac81149599-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 695
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/happyaddons/css/ha-643.css?ver=3.8.9.1701946643
200 OK 626 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/happyaddons/css/ha-643.css?ver=3.8.9.1701946643
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (2629), with no line terminators
Hash 50ed610e8ab4c0be6c7c5aadb13ebc12
4bbfbae6cb0b24401306362131163ba6e0e12ff7
2aa95dfaeae3b57bb80e5d18c1a7a16ca2ac2524d451479cc368f8e8646f402e
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/happyaddons/css/ha-643.css?ver=3.8.9.1701946643 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Sep 2023 16:18:00 GMT
etag: "4e20094-a45-605a47c6d273b-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 626
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
200 OK 859 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (9881)
Hash 95cd6a1fd50ae95ff218476726f70fb9
907ecc3e001b6b3176b2dc4a3c68fcb53552d155
cab7bbd892acfe6576a42c06c77aeaf7f1a160400ceae3c486c156104adaa9ad
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:57 GMT
etag: "4760575-26c1-607ac6300a7fe-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 859
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.16.5
200 OK 2.4 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.16.5
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (10019)
Hash 4601ba55044413706c2022cb6c1c3d05
5103ec2fbb389568ebf5cfe4fd721f3df2ff7aec
fe513ef974b767510d0a2b9f1b4d3afa53185b89ab617c869e5e3d6db960192c
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3.16.5 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "47606b0-4824-607ac6321c4c8-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2445
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=3.0.0
200 OK 46 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=3.0.0
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 62f33c1c0a15ea6522c6b50f80fb52a0
b40a72cb8f23701d251d4ec7ba0aa4190c8ef7c8
98b7c81a3d941cfd682164fff98d5ff67d96c37656eb8fd5c111a8764a146010
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/css/widget-styles.css?ver=3.0.0 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Oct 2023 08:51:49 GMT
etag: "2aa0f13-6cba9-60744b3699621-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 46014
content-type: text/css
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/2022/12/3.png
200 OK 56 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/2022/12/3.png
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 900x600, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ce50d079e6dbd1dbdb9270d42acf367b
b7efae2e37efd26ce63b54f484c53a4abe84e74e
9867c750b74a6c0bcd93b876bf9c9fc02bf68be1d6ac23c5449eda5e697e319e
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/12/3.png HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept,Accept-Encoding
last-modified: Mon, 19 Dec 2022 20:40:10 GMT
etag: "2901f05-da2a-5f03453530030-br"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 07 Dec 2024 06:37:43 GMT
content-encoding: br
content-length: 55854
content-type: image/webp
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/happy-elementor-addons/assets/js/happy-addons.min.js?ver=3.8.9
200 OK 8.8 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/happy-elementor-addons/assets/js/happy-addons.min.js?ver=3.8.9
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
Hash 3f8a7895e76bc26eca2a5bb3b21e3ffe
fa4bbafebf82638ce6248d1390abe208b725aca7
36fe13eb7b91edf7c78330917907ecc709ead04ced47a90a7af3d658a7ace01e
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/happy-elementor-addons/assets/js/happy-addons.min.js?ver=3.8.9 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Sep 2023 09:05:22 GMT
etag: "2b41bd5-a055-6059e712ee7eb-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 8753
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=3.0.0
200 OK 41 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=3.0.0
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with no line terminators
Hash 94d041d462db321cdb888066586f2068
717d2f9da7fb9f9e2bf2058a8177a0344f8a8647
b8166c5475df6a64ab2456e95f64564164ed697d258e8bfed8cebca40efd6fa5
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementskit-lite/libs/framework/assets/js/frontend-script.js?ver=3.0.0 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Oct 2023 08:51:49 GMT
etag: "2a80469-28-60744b3655ff9-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 41
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/bdthemes-prime-slider-lite/assets/js/prime-slider-site.min.js?ver=3.10.2
200 OK 805 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/bdthemes-prime-slider-lite/assets/js/prime-slider-site.min.js?ver=3.10.2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (4931), with no line terminators
Hash e2d5bf0f7b65e354322186ec8f0597bc
107fe93c00035fb04b6cd65754d8b979817c83ab
e00ba4b8f5a99b26429a5adc1c3accb4652e48c71e5eefab70646741ba48c0fa
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/bdthemes-prime-slider-lite/assets/js/prime-slider-site.min.js?ver=3.10.2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:34:01 GMT
etag: "4761166-1343-607ac634c28a3-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 805
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
200 OK 6.9 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (25115)
Hash 046405de007ff73e52d17dab2af75258
887cfb8a9de27005875f6e1c1d1ead43bd0865c8
533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Sep 2023 11:38:27 GMT
etag: "2b4298c-6272-606418367c136-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 6938
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.8.11
200 OK 3.1 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.8.11
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (9223), with no line terminators
Hash b8935fb76a794d27524f8696fcba58ea
fc8ba7554babf97bd540e5019a51663e1fd4de99
948240da929defbe2f377b6a2173cf7c0988edc05972424cb3872abc739aa024
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/essential-addons-for-elementor-lite/assets/front-end/js/view/general.min.js?ver=5.8.11 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Oct 2023 08:51:56 GMT
etag: "2aa1caa-2407-60744b3d4ef55-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3117
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.5
200 OK 2.1 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.5
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (4957)
Hash 05d26af7e844a12180c27977d2cac604
4aa2696e8d5a82e1dda2643e8521e60a01f01ef6
e2fac582fdf894c636e3c703267d799d0f8807750322c8ec51810be815a8c669
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.16.5 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "47606aa-1385-607ac6321c4c8-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2073
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.16.2
200 OK 2.4 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.16.2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (5696)
Hash cbd6a74d032952bed81213ec1331fde2
1ceff0ece97b62e16e91c370d17d2c8edfef575c
4030d0913b43f85cc5f54944e834ba01e0111b642e9e6c1978cefbda687e7dcf
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.16.2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Sep 2023 11:38:27 GMT
etag: "2b42a27-166c-6064183683e37-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2420
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
200 OK 2.9 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (12198), with no line terminators
Hash 3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:34:00 GMT
etag: "4760818-2fa6-607ac6331a364-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2869
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
200 OK 2.3 kB URL GET HTTP/2 neuropraxisrehab.com/wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (8171), with no line terminators
Hash dda652db133fddb9b80a05c6d1b5c540
60c8514c57a5db2980c4b046b0dd479bd427357b
c1a9a3e223bad631dff12d33b5499eb145cb08d8621c20d9d73870e78d97afe4
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill-inert.min.js?ver=3.1.2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Jan 2023 23:46:32 GMT
etag: "28e0c97-1feb-5f2926d08e600-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2323
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1
200 OK 1.5 kB URL GET HTTP/2 neuropraxisrehab.com/wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (4592)
Hash 7bd48eb3bd568033e96caf0fb62e6690
b38066999294b99d92d95db5f38bc15707eb1f22
7868467c94a5aa0b3f11ef542f45287967f9627b3b5acdc86e47f8f77a126596
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/hooks.min.js?ver=c6aec9a8d4e5a5d543a1 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Jun 2023 02:54:18 GMT
etag: "28e0b41-1213-5ff27b3266a80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1487
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
200 OK 1.7 kB URL GET HTTP/2 neuropraxisrehab.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (5477)
Hash 3a56752b736635bf69cb069b8818cbfd
42e0951fe74bb3f56a30f51291823bcd4a84d76e
ff4bd34aa98a0214833619d3d751838db015722dfbbec15cd14dadc66cd67869
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 14 Jun 2020 07:23:26 GMT
etag: "28e0d25-15fd-5a8062fa27780-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1733
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.min.js?ver=3.0.0
200 OK 392 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.min.js?ver=3.0.0
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (681), with no line terminators
Hash f5945db2f3337fd9f1cbef5b07b2a493
8a11439d56af9fb27836bb5f2a30aeb35b93bb5a
a8642bcd147ba3528345f5bd17f788cd524931e093255b2c1c8344677a1ab505
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/animate-circle.min.js?ver=3.0.0 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Oct 2023 08:51:49 GMT
etag: "2aa1009-2a9-60744b369c8e9-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 392
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
200 OK 6.8 kB URL GET HTTP/2 neuropraxisrehab.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash c4e68a0f3463c0bd3c39eab38815e881
0ce58644e9f3c5063a11453ff287c5ec096465a7
ca7dce2391845e8aec7da135f33fabd10f74eed28a532ac66fd01f761fcfb42f
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 03 Feb 2023 05:06:32 GMT
etag: "28e0d5c-53be-5f3c4a5104600-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 6810
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
200 OK 2.4 kB URL GET HTTP/2 neuropraxisrehab.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (6607), with no line terminators
Hash 9a4f28a615173df36cb84be2b345816e
f709263841708d9e40268f24a0072ff4fe811b35
6974bfd8fa06b7831f05cb4b25860c851a5ad3f02a6699ebe688987dd7a6ebe6
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.11 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 08 Feb 2023 04:26:36 GMT
etag: "28e0c8d-19cf-5f428ab751700-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 2401
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.5
200 OK 12 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.5
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (40396)
Hash ac7624f04566920dae03f91eb66dd97b
d9b51553e1aaa1440a16437050f496277fc10bc5
07571bc50f1998b305037b073daebec638f70ad32390a63d151cdbac2180d386
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.16.5 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:58 GMT
etag: "476061f-9df4-607ac63172dc6-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 11918
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
200 OK 5.7 kB URL GET HTTP/2 neuropraxisrehab.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type Unicode text, UTF-8 text, with very long lines (16142), with no line terminators
Hash 94dfdbe80f36b3be63ce74ff1135b996
5e05077d99e736af42b2da70e428e7f7df556dd4
4c0ced2cb3830d045cdd74f745fd4d6dcb082d8edd3a9fe46e39295e30cb8032
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 28 Jun 2023 02:54:18 GMT
etag: "28e0cb3-3f12-5ff27b3266a80-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 5735
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
200 OK 3.6 kB URL GET HTTP/2 neuropraxisrehab.com/wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
Hash c2c4e2a562e06e1cb22293a5b920aca6
a7b5a369ac4883f1ee7fa701b238d20238b675ca
698e93fe491cc7bbf07a470579a33dbd0db53c19142b7be41ebfd39a23aef11f
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-includes/js/dist/i18n.min.js?ver=7701b0c3857f914212ef HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 29 Jun 2023 08:38:46 GMT
etag: "28e0b45-24e5-5ff40a0e67180-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 3567
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.16.2
200 OK 8.1 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.16.2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (35389)
Hash 0349709707f2bf6b61d2d016e2279838
e0edf40fff63da241194f82b6687aa00f6416ff2
499508bc917f97fb2d5355f304d796948866d1a1d72e0977e0bb06d16fd43fc1
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.16.2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Sep 2023 11:38:27 GMT
etag: "2b42a36-8a69-60641836849ef-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 8106
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.16.2
200 OK 6.4 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.16.2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (24630)
Hash dc30904e01a8d30a036ac6699c4cdf91
298421ec47684254c4fdcf456006709145549b72
0fee2c84f4e4a94f2b2e99a7f73d82203d1c72e7290f9738d897d1418a6a2545
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.16.2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Sep 2023 11:38:27 GMT
etag: "2b42a51-6062-60641836870ff-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 6401
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.5
200 OK 16 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.5
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type Unicode text, UTF-8 text, with very long lines (58819)
Hash 476a794e6dd191bc328f929b76dd6b62
a92898f64eed7b852d988aca9e6727be7544a54a
32e2e41504973c112a8a2c46ecdaa75acf39b9074b2fcdc216ddabf265d346fb
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.16.5 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:58 GMT
etag: "4760622-e5ec-607ac631731ae-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 16264
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=3.0.0
200 OK 35 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=3.0.0
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (45047)
Hash 6c087aaba5bcb76bc96366600b854e20
6de8049f8f4e6c83300be31ffa9e54d652f10f1a
03ca8c38633872b885f1e54e729c4597da2f1c52d06f9a5289ddda7ca3a9930c
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/widget-scripts.js?ver=3.0.0 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Oct 2023 08:51:49 GMT
etag: "2aa1014-2194d-60744b369d889-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 34946
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/sassy-social-share/public/js/sassy-social-share-public.js?ver=3.3.54
200 OK 40 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/sassy-social-share/public/js/sassy-social-share-public.js?ver=3.3.54
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (2747), with CRLF line terminators
Hash c1531d05498fd2bd3253a7e52b1696e4
949bf6c8ef676f44c11ed684023caf23c61479f3
f496f0b2acb488f65713f60c528a3ee405d53c6dff6c3ec27e7e691d39221e0e
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/sassy-social-share/public/js/sassy-social-share-public.js?ver=3.3.54 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 04 Oct 2023 09:34:03 GMT
etag: "4aa054f-1e868-606e0b538e855-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 39858
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
img1.wsimg.com/signals/js/clients/tccl/tccl.min.js
200 OK 13 kB URL GET HTTP/2 img1.wsimg.com/signals/js/clients/tccl/tccl.min.js
IP
ASN #20940 Akamai International B.V.
Requested by https://neuropraxisrehab.com/
Certificate IssuerStarfield Technologies, Inc.
Subject*.wsimg.com
FingerprintB7:FF:50:92:4F:A1:64:14:99:A1:DE:DB:55:C9:FA:92:78:6B:89:DD
ValidityTue, 19 Sep 2023 21:06:14 GMT - Sun, 20 Oct 2024 21:06:14 GMT
File type ASCII text, with very long lines (46628)
Hash 8e70743bdf9b3d3adbb26471c84a006c
628d9f8f60b9055384bb3a0878e63683122ab616
53861a013923acea8c682704f3fbcaf994d38a0d2c857e9ba45ae77483b5baf0
GET /signals/js/clients/tccl/tccl.min.js HTTP/1.1
Host: img1.wsimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neuropraxisrehab.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-amz-id-2: f2Ir87/IyY88GbV/s2iamETvSbo0Hisoj9bXnQRYdEx1Yv+UbxT/Yk1MNKVxIYjT1IpY5HGnsJQ=
x-amz-request-id: 7VKFJMEAY09XCZJ0
last-modified: Wed, 18 Oct 2023 16:44:03 GMT
etag: "8e70743bdf9b3d3adbb26471c84a006c"
x-amz-server-side-encryption: AES256
x-amz-meta-version: 2.0.2
x-amz-version-id: CxfOTvM4.aC7Uz8TppF8SLs_Z6HB3PMp
accept-ranges: bytes
content-type: text/javascript
vary: Accept-Encoding
content-encoding: gzip
content-length: 13404
cache-control: max-age=1800
expires: Fri, 08 Dec 2023 07:07:43 GMT
date: Fri, 08 Dec 2023 06:37:43 GMT
timing-allow-origin: *
access-control-allow-origin: *
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.16.2
200 OK 1.4 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.16.2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (3720)
Hash 3e31a0ddb1f910fc672d22e6435b95ed
f478fd262840bfb394da94a2f5dd95eed4991194
34bbd1c367ffc7d80fcff86c7e5f8777e70f4911bb324e8ecfc7dd3604a96e68
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.16.2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Sep 2023 11:38:27 GMT
etag: "2b429e6-e89-606418367e076-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1446
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=3.0.0
200 OK 5.0 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=3.0.0
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (18566), with no line terminators
Hash dd0095e8309ed211bb1dc51bc748b085
80bcc7b7eb73b9c52bd60f038b5943041f666011
9052d860b48b3135cddc62024e388cfbf5d47acd0fca2077043ec23d7f273036
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementskit-lite/widgets/init/assets/js/elementor.js?ver=3.0.0 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Oct 2023 08:51:49 GMT
etag: "2aa100d-4886-60744b369d0b9-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 5024
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/bdthemes-prime-slider-lite/assets/js/bdt-uikit.min.js?ver=3.15.1
200 OK 46 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/bdthemes-prime-slider-lite/assets/js/bdt-uikit.min.js?ver=3.15.1
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 926d94b98a576c806f69a75d30c14ad4
d7b3a0a5c1516fb6642446386f572871f5a40e17
5731ab128cd2ae128aaa509a739295b0b3294d3c035bb568d8060ed63c352e96
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/bdthemes-prime-slider-lite/assets/js/bdt-uikit.min.js?ver=3.15.1 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:34:01 GMT
etag: "4761150-22f8b-607ac634c1903-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 46139
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:43 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
200 OK 29 kB URL GET HTTP/2 fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 28600, version 1.0\012- data
Hash de104ab8acb1088aebea1aae24724a91
b613f95c303c539ef3fe4fe65db0fbc5e5a55fe1
c94f080a550a1f2d4fe07d371969b7a40c01606bd5624e8c03c976cbf5e06058
GET /s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Dec 2023 21:37:20 GMT
expires: Thu, 05 Dec 2024 21:37:20 GMT
cache-control: public, max-age=31536000
age: 118824
last-modified: Thu, 24 Aug 2023 20:50:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
200 OK 29 kB URL GET HTTP/2 fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 28600, version 1.0\012- data
Hash de104ab8acb1088aebea1aae24724a91
b613f95c303c539ef3fe4fe65db0fbc5e5a55fe1
c94f080a550a1f2d4fe07d371969b7a40c01606bd5624e8c03c976cbf5e06058
GET /s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Dec 2023 21:37:20 GMT
expires: Thu, 05 Dec 2024 21:37:20 GMT
cache-control: public, max-age=31536000
age: 118824
last-modified: Thu, 24 Aug 2023 20:50:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
200 OK 17 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Hash abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:48:27 GMT
expires: Fri, 06 Dec 2024 04:48:27 GMT
cache-control: public, max-age=31536000
age: 92957
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
200 OK 34 kB URL GET HTTP/2 fonts.gstatic.com/s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 34328, version 1.0\012- data
Hash 6581ab53c220b5828e37162349375431
1922912ca5ab6eb5a55db138b183b38d066e85c8
a8e429611131e3fdc2018ec943a36100dbabb4aaa788c8dead6bdcf927917293
GET /s/robotoslab/v34/BngMUXZYTXPIvIBgJJSb6ufN5qU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 34328
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:53:27 GMT
expires: Fri, 06 Dec 2024 04:53:27 GMT
cache-control: public, max-age=31536000
age: 92657
last-modified: Tue, 24 Oct 2023 01:54:50 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 04:57:34 GMT
expires: Fri, 06 Dec 2024 04:57:34 GMT
cache-control: public, max-age=31536000
age: 92410
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/2022/07/portrait-of-adult-woman-lovingly-caring-for-her-el-4A6DRZL-1-768x512.jpg
200 OK 36 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/2022/07/portrait-of-adult-woman-lovingly-caring-for-her-el-4A6DRZL-1-768x512.jpg
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 768x512, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash d36e98f307028cfff621c6d17977a8ee
df8aa43fc2f12739c880d0035801492f747603c7
7d8a8121af56ad0a3910b465d0ee4c7cf6cab70d5bd841a2b675f5a857a8db16
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/07/portrait-of-adult-woman-lovingly-caring-for-her-el-4A6DRZL-1-768x512.jpg HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept,Accept-Encoding
last-modified: Mon, 12 Sep 2022 15:19:10 GMT
etag: "29011db-8b30-5e87c6addb1f8-br"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 07 Dec 2024 06:37:44 GMT
content-encoding: br
content-length: 35636
content-type: image/webp
date: Fri, 08 Dec 2023 06:37:44 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2
200 OK 17 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 17336, version 1.0\012- data
Hash eec8dbfc49267c4d33cf31b49661bf37
0f49d4563cf9e22e3af6907d0785b9a6facadbf0
661d4b208656c006e7aab58acf7784857963123675de2302279fbe6c05313547
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51S7ACc6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:14:08 GMT
expires: Fri, 06 Dec 2024 05:14:08 GMT
cache-control: public, max-age=31536000
age: 91416
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/2022/07/a-diagnostics-session-of-a-child-with-development-25Y3KZQ-2-e1663103787412.jpg
200 OK 19 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/2022/07/a-diagnostics-session-of-a-child-with-development-25Y3KZQ-2-e1663103787412.jpg
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x266, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash aeab5d2e35929332e10919de13cd2c9c
dd72a248eb955022cb91572f6668b51bb3b62e48
fc2a5a5ea60d4d5fc62b42b2361f53cb2d05f9b038dfafb8746f9a19cafb9541
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/07/a-diagnostics-session-of-a-child-with-development-25Y3KZQ-2-e1663103787412.jpg HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept,Accept-Encoding
last-modified: Tue, 13 Sep 2022 21:16:27 GMT
etag: "29044be-4a5c-5e89586806077-br"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 07 Dec 2024 06:37:44 GMT
content-encoding: br
content-length: 19040
content-type: image/webp
date: Fri, 08 Dec 2023 06:37:44 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
200 OK 29 kB URL GET HTTP/2 fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 28600, version 1.0\012- data
Hash de104ab8acb1088aebea1aae24724a91
b613f95c303c539ef3fe4fe65db0fbc5e5a55fe1
c94f080a550a1f2d4fe07d371969b7a40c01606bd5624e8c03c976cbf5e06058
GET /s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Dec 2023 21:37:20 GMT
expires: Thu, 05 Dec 2024 21:37:20 GMT
cache-control: public, max-age=31536000
age: 118824
last-modified: Thu, 24 Aug 2023 20:50:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
200 OK 24 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v24/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:40:33 GMT
expires: Fri, 06 Dec 2024 15:40:33 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:17:22 GMT
content-type: font/woff2
age: 53831
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.hs-scripts.com/22807356.js?integration=WordPress&ver=10.2.5
200 OK 24 kB URL GET HTTP/2 js.hs-scripts.com/22807356.js?integration=WordPress&ver=10.2.5
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5A:DE:00:16:F4:3C:EB:0D:2A:0C:6E:27:59:94:38:E3:D9:B1:20:3E
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (542)
Hash 397273a328f9739ad9902da4238a89fb
21be94d01d047bbdd2adde2bf35412473df55e6d
e4f170752469caf69b34ed1ec01e73a7e913ce4f33d964d7709109920f48f5d8
GET /22807356.js?integration=WordPress&ver=10.2.5 HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Dec 2023 06:37:43 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2BD2A2BB6515E28D589654918897431AEE6F9119C2000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
access-control-allow-credentials: true
x-content-type-options: nosniff
access-control-max-age: 3600
access-control-allow-origin: https://neuropraxisrehab.com
x-envoy-upstream-service-time: 6
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-6ffdd984b9-2khrm
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 2dbd75e7-6a7d-4734-8566-84afc7c001b7
x-request-id: 2dbd75e7-6a7d-4734-8566-84afc7c001b7
last-modified: Thu, 07 Dec 2023 15:40:54 GMT
cf-cache-status: EXPIRED
expires: Fri, 08 Dec 2023 06:38:43 GMT
server: cloudflare
cf-ray: 83230058ede1b51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
200 OK 77 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "4760714-12bdc-607ac632819eb"
accept-ranges: bytes
content-length: 76764
vary: Accept-Encoding
content-type: font/woff2
date: Fri, 08 Dec 2023 06:37:44 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
200 OK 78 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "476076c-13174-607ac632dee26"
accept-ranges: bytes
content-length: 78196
vary: Accept-Encoding
content-type: font/woff2
date: Fri, 08 Dec 2023 06:37:44 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
200 OK 29 kB URL GET HTTP/2 fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 28600, version 1.0\012- data
Hash de104ab8acb1088aebea1aae24724a91
b613f95c303c539ef3fe4fe65db0fbc5e5a55fe1
c94f080a550a1f2d4fe07d371969b7a40c01606bd5624e8c03c976cbf5e06058
GET /s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Dec 2023 21:37:20 GMT
expires: Thu, 05 Dec 2024 21:37:20 GMT
cache-control: public, max-age=31536000
age: 118824
last-modified: Thu, 24 Aug 2023 20:50:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh7USSwiPGQ.woff2
200 OK 23 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh7USSwiPGQ.woff2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 23236, version 1.0\012- data
Hash 716309aab2bca045f9627f63ad79d0bf
38804233a29aaf975d557fe14e762c627bef76e0
115f6a626ca115d4ad5581b59275327e0e860b30330a52b0f785561332dd2429
GET /s/lato/v24/S6u9w4BMUTPHh7USSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:42:53 GMT
expires: Fri, 06 Dec 2024 15:42:53 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:08:26 GMT
content-type: font/woff2
age: 53691
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/happy-elementor-addons/assets/fonts/happy-icons.woff2
200 OK 124 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/happy-elementor-addons/assets/fonts/happy-icons.woff2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type Web Open Font Format (Version 2), TrueType, length 123520, version 1.0\012- data
Size 124 kB (123520 bytes)
Hash 65b418982e980e35329f48b809af9952
714d39746df218f6e265577d29e7f95a294fb410
fd8ddb0d294e553a4f88d25a9bbe2090a21a06b6b218674ee2baccb2069c7808
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/happy-elementor-addons/assets/fonts/happy-icons.woff2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/wp-content/plugins/happy-elementor-addons/assets/fonts/style.min.css?ver=3.8.9
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Sep 2023 09:05:21 GMT
etag: "2b22ee0-1e280-6059e712913b0"
accept-ranges: bytes
content-length: 123520
vary: Accept-Encoding
content-type: font/woff2
date: Fri, 08 Dec 2023 06:37:44 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
200 OK 13 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type Web Open Font Format (Version 2), TrueType, length 13276, version 331.-31261\012- data
Hash f0f8230116992e521526097a28f54066
0447c6b10bbf73f97b23dcfd6e6a48510822cb6e
8afc6e5e842baab16010c2ce6fcf48ec4ded8e1579a37c1f1bc027e120d04951
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "4760720-33dc-607ac632821bc"
accept-ranges: bytes
content-length: 13276
vary: Accept-Encoding
content-type: font/woff2
date: Fri, 08 Dec 2023 06:37:44 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
200 OK 29 kB URL GET HTTP/2 fonts.gstatic.com/s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 28600, version 1.0\012- data
Hash de104ab8acb1088aebea1aae24724a91
b613f95c303c539ef3fe4fe65db0fbc5e5a55fe1
c94f080a550a1f2d4fe07d371969b7a40c01606bd5624e8c03c976cbf5e06058
GET /s/josefinsans/v32/Qw3aZQNVED7rKGKxtqIqX5EUDXx4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28600
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Dec 2023 21:37:20 GMT
expires: Thu, 05 Dec 2024 21:37:20 GMT
cache-control: public, max-age=31536000
age: 118824
last-modified: Thu, 24 Aug 2023 20:50:09 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/josefinsans/v32/Qw3EZQNVED7rKGKxtqIqX5EUCEx6XHg.woff2
200 OK 31 kB URL GET HTTP/2 fonts.gstatic.com/s/josefinsans/v32/Qw3EZQNVED7rKGKxtqIqX5EUCEx6XHg.woff2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 31144, version 1.0\012- data
Hash c6184619b8f02691783302d193452b5f
503b42e4c919ed0e38074235c5d440f6cabe8fd1
a935298fd3d8cffacd1974d1337768f591d882245d3e44ac9444ea95c9c6c706
GET /s/josefinsans/v32/Qw3EZQNVED7rKGKxtqIqX5EUCEx6XHg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:01:44 GMT
expires: Fri, 06 Dec 2024 05:01:44 GMT
cache-control: public, max-age=31536000
age: 92160
last-modified: Thu, 24 Aug 2023 20:50:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/josefinsans/v32/Qw3EZQNVED7rKGKxtqIqX5EUCEx6XHg.woff2
200 OK 31 kB URL GET HTTP/2 fonts.gstatic.com/s/josefinsans/v32/Qw3EZQNVED7rKGKxtqIqX5EUCEx6XHg.woff2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 31144, version 1.0\012- data
Hash c6184619b8f02691783302d193452b5f
503b42e4c919ed0e38074235c5d440f6cabe8fd1
a935298fd3d8cffacd1974d1337768f591d882245d3e44ac9444ea95c9c6c706
GET /s/josefinsans/v32/Qw3EZQNVED7rKGKxtqIqX5EUCEx6XHg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31144
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 05:01:44 GMT
expires: Fri, 06 Dec 2024 05:01:44 GMT
cache-control: public, max-age=31536000
age: 92160
last-modified: Thu, 24 Aug 2023 20:50:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-6KLG2L27BX&l=dataLayer&cx=c
200 OK 76 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-6KLG2L27BX&l=dataLayer&cx=c
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (3026)
Hash 24e95f22ac1c1f2eab5edee2a1042636
1e538fe1177389a47632c58f5327c6a4ea6da7d5
73f7ed53370a85709e91e6b33c8004ea63fd41a27a032b9636aed4e653f32230
GET /gtag/js?id=G-6KLG2L27BX&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Dec 2023 06:37:44 GMT
expires: Fri, 08 Dec 2023 06:37:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75514
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.googletagmanager.com/gtag/js?id=G-ERZP8N52QH&l=dataLayer&cx=c
200 OK 91 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-ERZP8N52QH&l=dataLayer&cx=c
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (4179)
Hash b6a1e1e7b74ac66fccf0b9c8ab3d4749
d54f8c2a7380458febfd8deece7d40b6334e1269
a61e20905850d424826d96c6a679c02f7954af2c57cd4ef3d9ac7b9631f4dfb6
GET /gtag/js?id=G-ERZP8N52QH&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Dec 2023 06:37:44 GMT
expires: Fri, 08 Dec 2023 06:37:44 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91435
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
neuropraxisrehab.com/wp-content/uploads/2022/07/footer-bg-1.png
200 OK 21 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/2022/07/footer-bg-1.png
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type PNG image data, 1920 x 433, 4-bit colormap, non-interlaced\012- data
Hash 0bce78f5d98797be1c71f509d5160393
5713e44d06189deda5aa9c41fc8afc74d46ee2df
aaa75db9233b67d457f8ed32b33ff333b2a0cc47f3bb2ad7333dc4c5637ac45e
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/07/footer-bg-1.png HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/wp-content/uploads/elementor/css/post-17.css?ver=1697287341
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Sun, 31 Jul 2022 14:19:23 GMT
etag: "5b4204d-50a4-5e51a91e270c0"
accept-ranges: bytes
content-length: 20644
vary: Accept
content-type: image/png
date: Fri, 08 Dec 2023 06:37:44 GMT
server: Apache
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1702017471111&dh=neuropraxisrehab.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=799804660&cv=2.0.2&z=1798481281&vg=9cedaed2-446c-52f9-aed3-dff3c279adf1&vtg=9cedaed2-446c-52f9-aed3-dff3c279adf1&dp=%2F&ap=cpsh-oh&trfd=%7B%22ap%22%3A%22cpsh-oh%22%2C%22server%22%3A%22p3plzcpnl450553%22%2C%22dcenter%22%3A%22p3%22%2C%22cp_id%22%3A%227548391%22%2C%22cp_cache%22%3A%22%22%2C%22cp_cl%22%3A%226%22%7D&hit_id=2d4a5b92-5260-512a-83e0-52df3c98d435&ht=pageview
200 OK 43 B URL GET HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1702017471111&dh=neuropraxisrehab.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=799804660&cv=2.0.2&z=1798481281&vg=9cedaed2-446c-52f9-aed3-dff3c279adf1&vtg=9cedaed2-446c-52f9-aed3-dff3c279adf1&dp=%2F&ap=cpsh-oh&trfd=%7B%22ap%22%3A%22cpsh-oh%22%2C%22server%22%3A%22p3plzcpnl450553%22%2C%22dcenter%22%3A%22p3%22%2C%22cp_id%22%3A%227548391%22%2C%22cp_cache%22%3A%22%22%2C%22cp_cl%22%3A%226%22%7D&hit_id=2d4a5b92-5260-512a-83e0-52df3c98d435&ht=pageview
IP
ASN #20940 Akamai International B.V.
Requested by https://neuropraxisrehab.com/
Certificate IssuerStarfield Technologies, Inc.
Subject*.api.secureserver.net
Fingerprint86:0A:54:3C:14:92:76:57:19:E1:8B:86:AE:B6:C7:06:3C:C8:7A:58
ValidityMon, 10 Jul 2023 19:26:59 GMT - Sat, 10 Aug 2024 19:26:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1702017471111&dh=neuropraxisrehab.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=799804660&cv=2.0.2&z=1798481281&vg=9cedaed2-446c-52f9-aed3-dff3c279adf1&vtg=9cedaed2-446c-52f9-aed3-dff3c279adf1&dp=%2F&ap=cpsh-oh&trfd=%7B%22ap%22%3A%22cpsh-oh%22%2C%22server%22%3A%22p3plzcpnl450553%22%2C%22dcenter%22%3A%22p3%22%2C%22cp_id%22%3A%227548391%22%2C%22cp_cache%22%3A%22%22%2C%22cp_cl%22%3A%226%22%7D&hit_id=2d4a5b92-5260-512a-83e0-52df3c98d435&ht=pageview HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://neuropraxisrehab.com
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Fri, 08 Dec 2023 06:37:44 GMT
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e
200 OK 459 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type Web Open Font Format, TrueType, length 459244, version 1.0\012- data
Size 459 kB (459244 bytes)
Hash 407c921b145401549a255eafb621f326
6fc4e9882755a810a985ef82e93ced29aa881cd3
c1a14078be47bd4e4cf5ba42f7ebc1000a6ae1bfc084f1c7e6132f49823ed038
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/fonts/elementskit.woff?y24e1e HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/wp-content/plugins/elementskit-lite/modules/elementskit-icon-pack/assets/css/ekiticons.css?ver=3.0.0
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 09 Oct 2023 08:51:49 GMT
etag: "2a804ac-701ec-60744b3662b1b"
accept-ranges: bytes
content-length: 459244
vary: Accept-Encoding
content-type: font/woff
date: Fri, 08 Dec 2023 06:37:44 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/2022/07/a-smiling-client-is-having-a-confidential-conversation-with-a-consultant-psychologist-.jpg
200 OK 86 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/2022/07/a-smiling-client-is-having-a-confidential-conversation-with-a-consultant-psychologist-.jpg
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1080x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 780aa53e68817af356f4d28eac101dad
bc2b3fa3e98ebdf431207a8b6bd816f4fe8ea988
a17950e9af0156fafde9bdb9c223129c186961277b2a93b8847e179f6197aa04
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/07/a-smiling-client-is-having-a-confidential-conversation-with-a-consultant-psychologist-.jpg HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept,Accept-Encoding
last-modified: Mon, 12 Sep 2022 15:20:06 GMT
etag: "29014d3-14e8c-5e87c6e402c49-br"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 07 Dec 2024 06:37:44 GMT
content-encoding: br
content-length: 85649
content-type: image/webp
date: Fri, 08 Dec 2023 06:37:44 GMT
server: Apache
X-Firefox-Spdy: h2
js.usemessages.com/conversations-embed.js
200 OK 26 kB URL GET HTTP/2 js.usemessages.com/conversations-embed.js
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint28:4A:40:A2:36:B6:3B:19:87:43:1A:24:AA:7F:5D:16:80:D3:27:B6
ValiditySat, 13 May 2023 00:00:00 GMT - Sun, 12 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash fd68cbe9f5e45e1888547fb69994e1bc
cb1c73e48b2bcda2b125357f8d235b1820bfb268
cb5e6551bc912ec52096f95b530cce39fe3943eb2d2f94e0a18b51f446ea04b8
GET /conversations-embed.js HTTP/1.1
Host: js.usemessages.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Dec 2023 06:37:44 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Thu, 07 Dec 2023 18:36:31 UTC
etag: W/"fd68cbe9f5e45e1888547fb69994e1bc"
x-amz-server-side-encryption: AES256
x-amz-version-id: zktKlfEirCU0fkM2L3AON87ZA2TqO3iH
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 3d4bfc42e9575ee1f9559241c9e3f464.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: H3ZM2cJRqRdplgut46nm6QNMTfNripfkQSa-hAM8LhdQoJPzk4BpZA==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=conversations-embed/static-1.14900/bundles/project.js&cfRay=831eeed77c0f569a-ARN
cache-control: max-age=600
x-hs-target-asset: conversations-embed/static-1.14900/bundles/project.js
x-content-type-options: nosniff
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-b78fbd96d-5qxdk
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 7d8632a2-cef4-4e6a-82f3-0c299bf8be5f
x-request-id: 7d8632a2-cef4-4e6a-82f3-0c299bf8be5f
cache-tag: staticjsapp-conversations-embed-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 195
server: cloudflare
cf-ray: 832300620b4d568e-OSL
content-encoding: br
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/2022/07/cropped-1-1-32x32.png
200 OK 467 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/2022/07/cropped-1-1-32x32.png
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 2c73d9cbe2ff4d4d4f10832b441d7899
a659652d41929e2f56888d685db12b1cdf5a13f9
7702814d9aa485204c74257245ad73a1d35550760d71ca17f31b4645029627c1
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/07/cropped-1-1-32x32.png HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1; _ga_909S3FZC3K=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga=GA1.1.1943526978.1702017471; _ga_6KLG2L27BX=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga_ERZP8N52QH=GS1.1.1702017471.1.0.1702017471.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: private
last-modified: Mon, 12 Sep 2022 10:19:05 GMT
etag: "5b4202c-1d3-5e87839b1698b"
accept-ranges: bytes
content-length: 467
vary: Accept
content-type: image/png
date: Fri, 08 Dec 2023 06:37:45 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.70d63d6d093f3a45a0c6.bundle.min.js
200 OK 1.6 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.70d63d6d093f3a45a0c6.bundle.min.js
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (4607)
Hash bbebd8997825e9a3b95be2a189f53128
f97f287cd7ad8fabb50c37b6972485f198511f9e
b2e6635e04d9963d4ac52e813fb7c3da30dbc68d68cbd2b5d5e41dd13433f302
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.70d63d6d093f3a45a0c6.bundle.min.js HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1; _ga_909S3FZC3K=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga=GA1.1.1943526978.1702017471; _ga_6KLG2L27BX=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga_ERZP8N52QH=GS1.1.1702017471.1.0.1702017471.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Sep 2023 11:38:27 GMT
etag: "2b42a37-122b-60641836849ef-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1567
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:45 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/js/search-form.6eb419c467197ca411a7.bundle.min.js
200 OK 759 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/js/search-form.6eb419c467197ca411a7.bundle.min.js
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (2088)
Hash 286a59aa032c5c7c68afacc5f4a2a76f
6e09897e60875535cb7e889aa3efa093e650d1fa
5e313f46765c0fdfe7c15ccd57d464bc826711627c6909c7555b3be9611952bb
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/search-form.6eb419c467197ca411a7.bundle.min.js HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1; _ga_909S3FZC3K=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga=GA1.1.1943526978.1702017471; _ga_6KLG2L27BX=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga_ERZP8N52QH=GS1.1.1702017471.1.0.1702017471.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Sep 2023 11:38:27 GMT
etag: "2b42abe-854-6064183689fe0-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 759
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:45 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
200 OK 600 B URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (1320)
Hash ae70cc933237d32a2fd9fcbb65ddd278
09ceec73e77b098def16d3a08cf5066af0d8ba4f
20761fded39e04b5e4d50fd79554ea2cceb440a5c712d91892340460148507b3
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1; _ga_909S3FZC3K=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga=GA1.1.1943526978.1702017471; _ga_6KLG2L27BX=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga_ERZP8N52QH=GS1.1.1702017471.1.0.1702017471.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "476069d-550-607ac6321b140-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 600
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:45 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/js/carousel.9b02b45d7826c1c48f33.bundle.min.js
200 OK 1.6 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor-pro/assets/js/carousel.9b02b45d7826c1c48f33.bundle.min.js
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (4970)
Hash 4c72aba190e3340b9051b8bc76e30589
0432176f193128c2d3e242cfcce8489e5dd156ce
4804a9a3749bc22c88532456be34bd0a20ae5c47392542ba9d1becc2b36ac3a7
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor-pro/assets/js/carousel.9b02b45d7826c1c48f33.bundle.min.js HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1; _ga_909S3FZC3K=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga=GA1.1.1943526978.1702017471; _ga_6KLG2L27BX=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga_ERZP8N52QH=GS1.1.1702017471.1.0.1702017471.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 26 Sep 2023 11:38:27 GMT
etag: "2b42a08-1396-606418367ffb7-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 1594
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:45 GMT
server: Apache
X-Firefox-Spdy: h2
events.api.secureserver.net/t/1/tl/event?cts=1702017471906&dh=neuropraxisrehab.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=799804660&cv=2.0.2&z=1066902436&vg=9cedaed2-446c-52f9-aed3-dff3c279adf1&vtg=9cedaed2-446c-52f9-aed3-dff3c279adf1&dp=%2F&ap=cpsh-oh&trfd=%7B%22ap%22%3A%22cpsh-oh%22%2C%22server%22%3A%22p3plzcpnl450553%22%2C%22dcenter%22%3A%22p3%22%2C%22cp_id%22%3A%227548391%22%2C%22cp_cache%22%3A%22%22%2C%22cp_cl%22%3A%226%22%7D&hit_id=b7691601-dafe-5540-b580-17bfa9fd6fd1&ht=perf&tce=1702017468356&tcs=1702017468356&tdc=1702017471723&tdclee=1702017471157&tdcles=1702017471148&tdi=1702017471111&tdl=1702017469518&tdle=1702017468356&tdls=1702017468356&tfs=1702017468356&tns=1702017467262&trqs=1702017468357&tre=1702017469271&trps=1702017469269&tles=1702017471723&tlee=0&nt=navigate&nav_type=hard
200 OK 43 B URL GET HTTP/2 events.api.secureserver.net/t/1/tl/event?cts=1702017471906&dh=neuropraxisrehab.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=799804660&cv=2.0.2&z=1066902436&vg=9cedaed2-446c-52f9-aed3-dff3c279adf1&vtg=9cedaed2-446c-52f9-aed3-dff3c279adf1&dp=%2F&ap=cpsh-oh&trfd=%7B%22ap%22%3A%22cpsh-oh%22%2C%22server%22%3A%22p3plzcpnl450553%22%2C%22dcenter%22%3A%22p3%22%2C%22cp_id%22%3A%227548391%22%2C%22cp_cache%22%3A%22%22%2C%22cp_cl%22%3A%226%22%7D&hit_id=b7691601-dafe-5540-b580-17bfa9fd6fd1&ht=perf&tce=1702017468356&tcs=1702017468356&tdc=1702017471723&tdclee=1702017471157&tdcles=1702017471148&tdi=1702017471111&tdl=1702017469518&tdle=1702017468356&tdls=1702017468356&tfs=1702017468356&tns=1702017467262&trqs=1702017468357&tre=1702017469271&trps=1702017469269&tles=1702017471723&tlee=0&nt=navigate&nav_type=hard
IP
ASN #20940 Akamai International B.V.
Requested by https://neuropraxisrehab.com/
Certificate IssuerStarfield Technologies, Inc.
Subject*.api.secureserver.net
Fingerprint86:0A:54:3C:14:92:76:57:19:E1:8B:86:AE:B6:C7:06:3C:C8:7A:58
ValidityMon, 10 Jul 2023 19:26:59 GMT - Sat, 10 Aug 2024 19:26:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash 325472601571f31e1bf00674c368d335
2daeaa8b5f19f0bc209d976c02bd6acb51b00b0a
b1442e85b03bdcaf66dc58c7abb98745dd2687d86350be9a298a1d9382ac849b
GET /t/1/tl/event?cts=1702017471906&dh=neuropraxisrehab.com&dr=&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&vci=799804660&cv=2.0.2&z=1066902436&vg=9cedaed2-446c-52f9-aed3-dff3c279adf1&vtg=9cedaed2-446c-52f9-aed3-dff3c279adf1&dp=%2F&ap=cpsh-oh&trfd=%7B%22ap%22%3A%22cpsh-oh%22%2C%22server%22%3A%22p3plzcpnl450553%22%2C%22dcenter%22%3A%22p3%22%2C%22cp_id%22%3A%227548391%22%2C%22cp_cache%22%3A%22%22%2C%22cp_cl%22%3A%226%22%7D&hit_id=b7691601-dafe-5540-b580-17bfa9fd6fd1&ht=perf&tce=1702017468356&tcs=1702017468356&tdc=1702017471723&tdclee=1702017471157&tdcles=1702017471148&tdi=1702017471111&tdl=1702017469518&tdle=1702017468356&tdls=1702017468356&tfs=1702017468356&tns=1702017467262&trqs=1702017468357&tre=1702017469271&trps=1702017469269&tles=1702017471723&tlee=0&nt=navigate&nav_type=hard HTTP/1.1
Host: events.api.secureserver.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/gif
content-length: 43
access-control-allow-origin: https://neuropraxisrehab.com
access-control-allow-credentials: true
x-robots-tag: noindex, nofollow
cache-control: private
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
strict-transport-security: max-age=31536000 ; includeSubDomains
x-frame-options: DENY
date: Fri, 08 Dec 2023 06:37:45 GMT
X-Firefox-Spdy: h2
forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=22807356&utk=
200 OK 137 B URL GET HTTP/2 forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=22807356&utk=
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA5:D1:D2:E1:EA:8D:D7:F7:79:F2:ED:55:66:75:F5:52:07:A7:F4:B3
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash adb79a29ca4d9a7f4524be2873e34b92
ab399e8f03718c82a862509bd22bdc2f747bb149
de5a22e89a2f3973dceea1b37d56580b0b70d79935e90fe53bbab3ddc5aeda2e
GET /collected-forms/v1/config/json?portalId=22807356&utk= HTTP/1.1
Host: forms.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 08 Dec 2023 06:37:45 GMT
content-type: application/json;charset=utf-8
vary: Accept-Encoding
cache-control: max-age=0
x-content-type-options: nosniff
access-control-allow-origin: https://neuropraxisrehab.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
x-envoy-upstream-service-time: 7
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-b78fbd96d-rjqc8
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 9683ac2b-189b-411a-9d4e-91ae33fa2085
x-request-id: 9683ac2b-189b-411a-9d4e-91ae33fa2085
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 832300652e3db51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
bsc-dataseed1.binance.org/
204 No Content 0 B URL OPTIONS HTTP/2 bsc-dataseed1.binance.org/
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerAmazon
Subjectbinance.org
FingerprintEF:4B:CA:8F:7A:A5:3A:BE:4E:F9:29:F1:D8:52:99:AE:8F:47:65:DC
ValidityFri, 30 Jun 2023 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.binance.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://neuropraxisrehab.com/
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 08 Dec 2023 06:37:45 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.23.0
200 OK 95 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.23.0
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type Web Open Font Format (Version 2), TrueType, length 94720, version 1.0\012- data
Hash f6fe937af0f714e8856c40e5a964a44b
27b5c35ded5f586025906e4497fcb5d29a0734ca
9434610f03b23074f9ae8ba5dbed66819c052a1d3c8e2256296c50ddeb4fe7f8
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.23.0 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.23.0
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1; _ga_909S3FZC3K=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga=GA1.1.1943526978.1702017471; _ga_6KLG2L27BX=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga_ERZP8N52QH=GS1.1.1702017471.1.0.1702017471.0.0.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "47606c3-17200-607ac6321f791"
accept-ranges: bytes
content-length: 94720
vary: Accept-Encoding
content-type: font/woff2
date: Fri, 08 Dec 2023 06:37:45 GMT
server: Apache
X-Firefox-Spdy: h2
bsc-dataseed1.binance.org/
204 No Content 0 B URL OPTIONS HTTP/2 bsc-dataseed1.binance.org/
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerAmazon
Subjectbinance.org
FingerprintEF:4B:CA:8F:7A:A5:3A:BE:4E:F9:29:F1:D8:52:99:AE:8F:47:65:DC
ValidityFri, 30 Jun 2023 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS / HTTP/1.1
Host: bsc-dataseed1.binance.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://neuropraxisrehab.com/
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Fri, 08 Dec 2023 06:37:45 GMT
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
200 OK 34 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type ASCII text, with very long lines (65280)
Hash 15bb2b8491fc7e84137d65f610e1685a
cd76b70a5426893e9c022b9a75c50a7c1348e2d0
b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1; _ga_909S3FZC3K=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga=GA1.1.1943526978.1702017471; _ga_6KLG2L27BX=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga_ERZP8N52QH=GS1.1.1702017471.1.0.1702017471.0.0.0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 14 Oct 2023 12:33:59 GMT
etag: "476080f-21f91-607ac632e097e-br"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-length: 33848
content-type: application/javascript
date: Fri, 08 Dec 2023 06:37:45 GMT
server: Apache
X-Firefox-Spdy: h2
bsc-dataseed1.binance.org/
204 No Content 45 B URL OPTIONS HTTP/2 bsc-dataseed1.binance.org/
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerAmazon
Subjectbinance.org
FingerprintEF:4B:CA:8F:7A:A5:3A:BE:4E:F9:29:F1:D8:52:99:AE:8F:47:65:DC
ValidityFri, 30 Jun 2023 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash 9fcc35a6af1d66d44cd2080df92dfbe8
60031095e2797c659d43017a0e4b86c34a61bcaf
353e3d3edc78ebd2e7ce43717cbf8756584bc56703bf9f2324981e69cb1a4923
POST / HTTP/1.1
Host: bsc-dataseed1.binance.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neuropraxisrehab.com/
content-type: application/json
Content-Length: 60
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 08 Dec 2023 06:37:45 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-nr-trace-id: 00000000000000000000000000000000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: br
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/2022/07/Jesus_Testimonials_2-150x150.jpg
200 OK 2.8 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/2022/07/Jesus_Testimonials_2-150x150.jpg
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 150x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 37f3b619659bf93f8faf5fd51b6d3386
040a024f98395a760178b644a4099f4dcc3a8436
58ea6fa703678dc21a94bbe8344dff9bfd237b5390770103c1b40a8461898a34
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/07/Jesus_Testimonials_2-150x150.jpg HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1; _ga_909S3FZC3K=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga=GA1.1.1943526978.1702017471; _ga_6KLG2L27BX=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga_ERZP8N52QH=GS1.1.1702017471.1.0.1702017471.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept,Accept-Encoding
last-modified: Mon, 12 Sep 2022 15:20:17 GMT
etag: "2901564-ad6-5e87c6edc80de-br"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 07 Dec 2024 06:37:45 GMT
content-encoding: br
content-length: 2778
content-type: image/webp
date: Fri, 08 Dec 2023 06:37:45 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/2022/07/Diana_Testimonials_2-150x150.jpg
200 OK 4.7 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/2022/07/Diana_Testimonials_2-150x150.jpg
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 150x150, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 709fab44e65c6d5acc24a9b2e2875dc1
e70f62b0ed064728c1b46040379b24e457b13a66
8a40d23f7538c2001edf229c43e8fb5112a62ed9ecc7d7a0aa32850a02286c5b
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/07/Diana_Testimonials_2-150x150.jpg HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1; _ga_909S3FZC3K=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga=GA1.1.1943526978.1702017471; _ga_6KLG2L27BX=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga_ERZP8N52QH=GS1.1.1702017471.1.0.1702017471.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept,Accept-Encoding
last-modified: Mon, 12 Sep 2022 15:20:21 GMT
etag: "2901582-127a-5e87c6f2751b7-br"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 07 Dec 2024 06:37:45 GMT
content-encoding: br
content-length: 4734
content-type: image/webp
date: Fri, 08 Dec 2023 06:37:45 GMT
server: Apache
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/2022/07/Jeremy_Testimonials_4-scaled-1-300x235.jpg
200 OK 8.0 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/2022/07/Jeremy_Testimonials_4-scaled-1-300x235.jpg
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x235, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash fe48e4f1675f344a59e34373e33f3f3d
c60f790182eb9f6130b59fbe314999966618c550
43afe894b49112769629fe07d656a8717b0e9093fe7d20fe624ecec32c173c3a
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/07/Jeremy_Testimonials_4-scaled-1-300x235.jpg HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1; _ga_909S3FZC3K=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga=GA1.1.1943526978.1702017471; _ga_6KLG2L27BX=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga_ERZP8N52QH=GS1.1.1702017471.1.0.1702017471.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
vary: Accept,Accept-Encoding
last-modified: Mon, 12 Sep 2022 15:20:18 GMT
etag: "290156c-1f18-5e87c6ef27a04-br"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 07 Dec 2024 06:37:45 GMT
content-encoding: br
content-length: 7964
content-type: image/webp
date: Fri, 08 Dec 2023 06:37:45 GMT
server: Apache
X-Firefox-Spdy: h2
marybskitchen.com/fEOV2v/
200 OK 694 B URL GET HTTP/1.1 marybskitchen.com/fEOV2v/
IP
ASN #49505 OOO Network of data-centers Selectel
Requested by https://neuropraxisrehab.com/
Certificate IssuerLet's Encrypt
Subjectmarybskitchen.com
FingerprintE4:F5:4F:9E:06:29:AD:41:59:2B:A0:82:AE:A4:17:78:54:04:0C:73
ValidityTue, 28 Nov 2023 16:43:21 GMT - Mon, 26 Feb 2024 16:43:20 GMT
File type ASCII text, with very long lines (694), with no line terminators
Hash a033ad38378e3091251bd08c716a7b01
51a55ed033c6542f1933f467f98ba70320a65032
4b099b1322fe2618e5c543a7acc4cf87907061a9b63c4dc341e1b72ba6f19655
Analyzer Verdict Alert ThreatFox malicious ClearFake
mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /fEOV2v/ HTTP/1.1
Host: marybskitchen.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 08 Dec 2023 06:37:46 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 694
Connection: keep-alive
Cache-Control: no-cache, no-store, must-revalidate
Expires: Fri, 08 Dec 2023 06:37:46 GMT
Set-Cookie: _subid=s8hnpa28moem; expires=Mon, 08 Jan 2024 06:37:46 GMT; path=/
71eb8=eyJ0eXAiOiJKV1QiLCJhbGciOiJIUzI1NiJ9.eyJkYXRhIjoie1wic3RyZWFtc1wiOntcIjE4NjBcIjoxNzAyMDE3NDY2fSxcImNhbXBhaWduc1wiOntcIjU5NVwiOjE3MDIwMTc0NjZ9LFwidGltZVwiOjE3MDIwMTc0NjZ9In0.J1VIgI7oL6BgeUN4-YwvFtPvrbm-idylpBT3LbieN1Q; expires=Sun, 14 Nov 2077 13:15:32 GMT; path=/
_token=uuid_s8hnpa28moem_s8hnpa28moem6572b9ba0d18f7.92118717; expires=Mon, 08 Jan 2024 06:37:46 GMT; path=/
Vary: Accept-Encoding
Access-Control-Allow-Origin: *
neuropraxisrehab.com/wp-content/uploads/2022/07/woman-with-psychologist-in-the-office-e1659183321983.jpg
99 kB URL GET neuropraxisrehab.com/wp-content/uploads/2022/07/woman-with-psychologist-in-the-office-e1659183321983.jpg
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1080x650, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3f4f107502bdf6e08bcb03e835dc2e11
ec3323461c9b08d900022b2d86d1e6a85cab9001
398e58662cf6374b6234a706c255ade86017e07d8b0a56ce159d3f3d9394c942
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/07/woman-with-psychologist-in-the-office-e1659183321983.jpg HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1; _ga_909S3FZC3K=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga=GA1.1.1943526978.1702017471; _ga_6KLG2L27BX=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga_ERZP8N52QH=GS1.1.1702017471.1.0.1702017471.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
vary: Accept,Accept-Encoding
last-modified: Mon, 12 Sep 2022 15:18:59 GMT
etag: "29010d3-1813c-5e87c6a4410cf-br"
accept-ranges: bytes
cache-control: private, max-age=31536000
expires: Sat, 07 Dec 2024 06:37:55 GMT
content-encoding: br
content-length: 98625
content-type: image/webp
date: Fri, 08 Dec 2023 06:37:55 GMT
server: Apache
X-Firefox-Spdy: h2
aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
5.8 kB URL aus5.mozilla.org/update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml
IP
File type gzip compressed data, max speed, from Unix\012- data
Hash 26f74a51f3a41ab81bb1600c4dff77f8
94f623e1202d4fe4243e01b574201944e21ac815
68c20496e6e0670329c0a07f07d26fa6c870903c3c5f0f5082d8f6a09373be62
GET /update/3/GMP/111.0a1/20230218104546/Linux_x86_64-gcc3/null/default/Linux%205.15.0-76-generic%20(GTK%203.24.34%2Clibpulse%20not-available)/default/default/update.xml HTTP/1.1
Host: aus5.mozilla.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 08 Dec 2023 06:38:00 GMT
content-type: text/xml; charset=utf-8
vary: Accept-Encoding
cache-control: public, max-age=90
rule-id: unknown
rule-data-version: unknown
content-signature: x5u=https://content-signature-2.cdn.mozilla.net/chains/aus.content-signature.mozilla.org-2024-01-19-16-42-22.chain; p384ecdsa=kWL2B2M0fCb4WXEzDKklyJe2OhXsIHWNa-gSw8EqaN7aDW_g9uy_QN0FduIp3M5xbtP6VA72TL4jxjFP3EzZAPGIbub1w2lhm7kv2cwwnC-_UMOr8uKDg8_mSg81bPTJ
strict-transport-security: max-age=31536000;
x-content-type-options: nosniff
content-security-policy: default-src 'none'; frame-ancestors 'none'
x-proxy-cache-status: EXPIRED
content-encoding: gzip
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
512 kB URL ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip
IP
ASN #1299 Telia Company AB
File type Zip archive data, at least v2.0 to extract, compression method=deflate\012- data
Size 512 kB (511815 bytes)
Hash 152eda253e242e18443ef3282495bc7c
ff0fa85565f21ec4931baad4573b4c0bd08c4019
8e03090fee16f6e0ee2e436af8e51d0c3deed6d9f0db80dec048e668fc009a48
GET /openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip HTTP/1.1
Host: ciscobinary.openh264.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Last-Modified: Thu, 16 Nov 2023 07:38:15 GMT
ETag: 152eda253e242e18443ef3282495bc7c
Content-Length: 511815
Accept-Ranges: bytes
X-Timestamp: 1700120294.87662
Content-Type: application/zip
X-Trans-Id: tx15b69f172b404fa58b2bb-006555fb11dfw1
Cache-Control: public, max-age=128079
Expires: Sat, 09 Dec 2023 18:12:39 GMT
Date: Fri, 08 Dec 2023 06:38:00 GMT
Connection: keep-alive
bsc-dataseed1.binance.org/
204 No Content 2.5 kB URL OPTIONS HTTP/2 bsc-dataseed1.binance.org/
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerAmazon
Subjectbinance.org
FingerprintEF:4B:CA:8F:7A:A5:3A:BE:4E:F9:29:F1:D8:52:99:AE:8F:47:65:DC
ValidityFri, 30 Jun 2023 00:00:00 GMT - Sun, 28 Jul 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (5159), with no line terminators
Hash df334fe79df50dac5147487a2e8960b8
eaeef3e50e7ed32956ab43b39a2014736cbd5ec4
4caa23e0c7b52ab4e4f652cc8f39482aeabb0cadd5880c0c9f5082246cfff696
POST / HTTP/1.1
Host: bsc-dataseed1.binance.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neuropraxisrehab.com/
content-type: application/json
Content-Length: 137
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 08 Dec 2023 06:37:45 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
access-control-allow-credentials: true
access-control-allow-headers: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 600
x-nr-trace-id: 00000000000000000000000000000000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
referrer-policy: origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubdomains
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato%3A400%2C%7CJosefin+Sans%3A600%2C%2C400&display=fallback&ver=4.3.1
200 OK 2.1 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Lato%3A400%2C%7CJosefin+Sans%3A600%2C%2C400&display=fallback&ver=4.3.1
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type gzip compressed data, max compression\012- data
Hash ef9f6b94ccdae6e8949b40996f780b45
4a25206a8d25191358b469ac5f379e558cd7cf56
039da3fe5f5a8187126ca599bb4ce1a8c85461d86ba7e2ca385c78e0c3e5c7af
GET /css?family=Lato%3A400%2C%7CJosefin+Sans%3A600%2C%2C400&display=fallback&ver=4.3.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 08 Dec 2023 06:37:43 GMT
date: Fri, 08 Dec 2023 06:37:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.hscollectedforms.net/collectedforms.js
200 OK 70 kB URL GET HTTP/2 js.hscollectedforms.net/collectedforms.js
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA5:D1:D2:E1:EA:8D:D7:F7:79:F2:ED:55:66:75:F5:52:07:A7:F4:B3
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Dec 2023 06:37:44 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
x-amz-replication-status: COMPLETED
last-modified: Mon, 04 Dec 2023 12:10:50 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: qOShuUL.zI.RMIWwukZE0taADNX_1wuf
etag: W/"109b7665e389a0b17fbf732bf7a02089"
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 06c1d28e93bdae8f6401a12c10b2f570.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: N0wsB-n-FmHNOkzEWx7KzLnBMqGut4CuS_51zUDrsJBi9HQn_yghnQ==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=collected-forms-embed-js/static-1.444/bundles/project.js&cfRay=831c56585e4b5687-ARN
cache-control: s-maxage=600, max-age=300
x-hs-target-asset: collected-forms-embed-js/static-1.444/bundles/project.js
x-content-type-options: nosniff
x-hs-cache-status: MISS
x-envoy-upstream-service-time: 9
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-b78fbd96d-d59vm
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: 6884bc98-f3b3-460e-ae88-40d79f03e3e0
x-request-id: 6884bc98-f3b3-460e-ae88-40d79f03e3e0
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 832300622bcdb51b-OSL
content-encoding: br
X-Firefox-Spdy: h2
neuropraxisrehab.com/wp-content/uploads/2022/07/cropped-1-1-192x192.png
200 OK 2.2 kB URL GET HTTP/2 neuropraxisrehab.com/wp-content/uploads/2022/07/cropped-1-1-192x192.png
IP
ASN #398101 GO-DADDY-COM-LLC
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoDaddy.com, Inc.
Subjectneuropraxisrehab.com
FingerprintBE:64:E8:70:6F:DD:AD:85:14:01:65:F5:45:62:B5:16:FE:E1:EB:19
ValidityThu, 07 Dec 2023 17:55:30 GMT - Tue, 07 Jan 2025 17:55:30 GMT
File type PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data
Hash 6ca13565f80ab2eedb35d46fe9a77a80
1c59807652ec4c3522a2989f3a5dddb2f85144ea
a17d690c8ed1785e338ab9e189778c812e2d5bc0f5693d23212566fe82607739
Analyzer Verdict Alert mnemonic secure dns malicious Sinkholed
Quad9 DNS malicious Sinkholed
GET /wp-content/uploads/2022/07/cropped-1-1-192x192.png HTTP/1.1
Host: neuropraxisrehab.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Cookie: nitroCachedPage=0; _tccl_visitor=9cedaed2-446c-52f9-aed3-dff3c279adf1; _tccl_visit=9cedaed2-446c-52f9-aed3-dff3c279adf1; _ga_909S3FZC3K=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga=GA1.1.1943526978.1702017471; _ga_6KLG2L27BX=GS1.1.1702017471.1.0.1702017471.0.0.0; _ga_ERZP8N52QH=GS1.1.1702017471.1.0.1702017471.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cache-control: private
last-modified: Mon, 12 Sep 2022 10:19:05 GMT
etag: "5b420b4-884-5e87839b0dcea"
accept-ranges: bytes
content-length: 2180
vary: Accept
content-type: image/png
date: Fri, 08 Dec 2023 06:37:45 GMT
server: Apache
X-Firefox-Spdy: h2
forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1
200 OK 35 B URL GET HTTP/1.1 forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 08 Dec 2023 06:37:45 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
X-Trace: 2B67F9655D4763766A960D5B6C949ABB44DB07AF9E000000000000000000
Cache-Control: max-age=0, no-cache, no-store
Vary: origin
Access-Control-Allow-Credentials: false
X-Content-Type-Options: nosniff
Access-Control-Expose-Headers: X-Origin-Hublet
X-Robots-Tag: none
x-envoy-upstream-service-time: 8
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-fc678f645-xs72w
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
X-HubSpot-Correlation-Id: d53d3d64-1250-4e10-9010-b550af0a05db
x-request-id: d53d3d64-1250-4e10-9010-b550af0a05db
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Server: cloudflare
CF-RAY: 832300661981569c-OSL
alt-svc: h3=":443"; ma=86400
cdn.ethers.io/lib/ethers-5.2.umd.min.js
200 OK 733 kB URL GET HTTP/2 cdn.ethers.io/lib/ethers-5.2.umd.min.js
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerAmazon
Subjectethers.io
Fingerprint0E:B2:42:68:35:13:73:78:9E:75:78:B7:A3:74:64:F8:E1:5F:AB:41
ValiditySat, 30 Sep 2023 00:00:00 GMT - Sun, 27 Oct 2024 23:59:59 GMT
Size 733 kB (733070 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /lib/ethers-5.2.umd.min.js HTTP/1.1
Host: cdn.ethers.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
last-modified: Thu, 20 May 2021 21:33:05 GMT
x-amz-version-id: 3StspTE73ijjMFvXMjx4rHtfrweE9frC
server: AmazonS3
content-encoding: gzip
date: Fri, 08 Dec 2023 02:21:02 GMT
etag: W/"50ed955cf32ac8e4e1daa0fac8fcde98"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GMn0OGpeMWIkAwlAx5rWXVlb_SHwgFE_73k1-O4AHR9sn2bjjwa24A==
age: 15661
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
200 OK 23 kB URL GET HTTP/2 fonts.gstatic.com/s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v24/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neuropraxisrehab.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Dec 2023 15:49:49 GMT
expires: Fri, 06 Dec 2024 15:49:49 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 02 May 2023 15:07:25 GMT
content-type: font/woff2
age: 53275
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.hs-banner.com/v2/22807356/banner.js
200 OK 67 kB URL GET HTTP/2 js.hs-banner.com/v2/22807356/banner.js
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2C:9C:DC:70:87:29:18:51:70:06:6E:2F:4B:4D:E0:23:1F:30:84:18
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (64990)
Hash 704cf3cb51e360a191096bdde5827f17
87959d951e6d4c5d1e32bc66bf25549cca4bc7c5
14519cd7130f45dfd4ea990da900d559f802b4ba6ebb8c17f19ca7d97ed1a4cc
GET /v2/22807356/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Dec 2023 06:37:44 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: wdHqvuTY+fvgUFzkKmU91p7O/1u3a+ns/eV1qhvMuCCVKAzxHuXSlEcbkb/5ZFDug3RKEl5mqp4=
x-amz-request-id: 2Z9W5J1ZB4C0JP4E
last-modified: Wed, 18 Oct 2023 19:39:58 GMT
etag: W/"704cf3cb51e360a191096bdde5827f17"
x-amz-server-side-encryption: AES256
cache-control: max-age=300,public
x-amz-version-id: eG.hRbL7BbP50qp95dXkL8WLjr2zbhbS
access-control-allow-origin: https://neuropraxisrehab.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Fri, 08 Dec 2023 06:42:44 GMT
x-envoy-upstream-service-time: 16
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-fd6fb8679-vfzwq
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-hubspot-correlation-id: af48eeb0-1ab3-4a00-a89f-b206eee2ea50
x-request-id: af48eeb0-1ab3-4a00-a89f-b206eee2ea50
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 832300621b3c56ab-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CJosefin+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.3.2
200 OK 69 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CJosefin+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.3.2
IP
Requested by https://neuropraxisrehab.com/
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
Hash e8aeaad13af56267b29520f78b643df9
245fc2f07268d6bad040cc29f36f3f7586a03227
487944eb077e54bd261d0b1a21ad8b7f1422fee538010b855b5d691f9969ebba
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CJosefin+Sans%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLato%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.3.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://neuropraxisrehab.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 08 Dec 2023 06:37:43 GMT
date: Fri, 08 Dec 2023 06:37:43 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
208.109.26.144
2.22.31.34
104.17.87.154
185.192.111.203
95.101.10.129
0.0.0.0