r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a5daf4dc99951793ae2315d4795e8146
4427507ca4d3a5632cc8f598afbc85e2195d00bd
94fb64c1c826ed7099283c0bedb3cea7ac7e1d9526794cb9fad6e761f5989d32
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "94FB64C1C826ED7099283C0BEDB3CEA7AC7E1D9526794CB9FAD6E761F5989D32"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2753
Expires: Thu, 01 Dec 2022 06:00:30 GMT
Date: Thu, 01 Dec 2022 05:14:37 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f3cf023c797da81728c0ac84c8759331
fa07c5e39e4b0741ea484101cccb2202acea9d9c
5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3817
Cache-Control: max-age=109219
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:14:37 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:34:56 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5762
Expires: Thu, 01 Dec 2022 06:50:39 GMT
Date: Thu, 01 Dec 2022 05:14:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 01 Dec 2022 04:18:07 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3390
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: cqv1P0MEK4mFUBqHPIRl7BoMNE7f9mUHiXPT4MVRofZwUCuj0HGxCtBWEBY8TXXZKGTul4WkpSE=
x-amz-request-id: 8NEHAV6RGXGZRPXB
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 01 Dec 2022 04:45:31 GMT
age: 1746
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 01 Dec 2022 05:14:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 01 Dec 2022 05:11:15 GMT
cache-control: public,max-age=3600
age: 203
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cfdd00e67ee6ca21712b867eb5288ab6
b61d5d6ec3b7ad71619e13e32c87f2d01871b88a
f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3756
Cache-Control: max-age=104089
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:14:38 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 10:09:27 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471
rswellbra.com/
61.221.35.27301 Moved Permanently 0 B IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Thu, 01 Dec 2022 05:14:38 GMT
Server: Apache
X-Frame-Options: SAMEORIGIN
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
X-Powered-By: PHP/7.4.33
X-Redirect-By: WordPress
Location: https://rswellbra.com/
Cache-Control: max-age=0
Expires: Thu, 01 Dec 2022 05:14:38 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Length: 0
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8
push.services.mozilla.com/
44.236.232.139101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.236.232.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AMijYn+haf5XjdjSiGfo4w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uaMgxkEhVp2J7nWgB2/MnNz5pFQ=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 147c151cd369ac5625f648bf1f89a360
fcd28b03219ac3b2a0c8fcabf40bae6b57a8f487
faba9f93cc7f5219370d410633111e10ab44683e5540d35905012d3034b914a6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FABA9F93CC7F5219370D410633111E10AB44683E5540D35905012D3034B914A6"
Last-Modified: Tue, 29 Nov 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Thu, 01 Dec 2022 11:14:39 GMT
Date: Thu, 01 Dec 2022 05:14:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2809
Expires: Thu, 01 Dec 2022 06:01:29 GMT
Date: Thu, 01 Dec 2022 05:14:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2809
Expires: Thu, 01 Dec 2022 06:01:29 GMT
Date: Thu, 01 Dec 2022 05:14:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2809
Expires: Thu, 01 Dec 2022 06:01:29 GMT
Date: Thu, 01 Dec 2022 05:14:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2809
Expires: Thu, 01 Dec 2022 06:01:29 GMT
Date: Thu, 01 Dec 2022 05:14:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f07f254d44ff2fb86ee22cee39ef3eb0
0660a548a491d4a58ca2246f094f0553437c3f61
859b2416d638b1dc91ff563800517124b38d45b4c5db99e21539c1700829dbe4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02cf22ee-ded9-4b9d-b5d8-ee6690ac9f45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10985
x-amzn-requestid: ef9e5eb9-b7b3-41e9-9837-a5979ab35d94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cV91OFzsoAMFcew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63857687-53b152c0027d26e52383e27e;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 03:03:35 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: F_ZBWwAOPbEjvMD1ChrgN9QYUyyFYdtRT6CcX6gviowmeinPRgVtnA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 04:19:21 GMT
age: 3319
etag: "0660a548a491d4a58ca2246f094f0553437c3f61"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1df312f-7c86-4a62-be1e-1a72c9b2d228.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1df312f-7c86-4a62-be1e-1a72c9b2d228.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 72735620afafb0d8d91b6d83cf292298
9de2fd7c375e92fd60444dc677cf09428393eff3
9dd40d4adf9e3dacb962cc6e1bd00d38473125567eb2b57eef643be972dfe69f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1df312f-7c86-4a62-be1e-1a72c9b2d228.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8660
x-amzn-requestid: 9474178d-c342-498a-996d-1ef3b804f1a7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cWh0hEx_oAMFjmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6385b01c-33e27513010fdec8627942be;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 07:09:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 4R5jPnETZnbrWCUXoWvq3FTs_NOJMQWCaHbK321P4qqRgv05JtR1kA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 07:18:56 GMT
age: 78944
etag: "9de2fd7c375e92fd60444dc677cf09428393eff3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 291127b670135b42b6e9687aa2a13237
99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1
49b082a738bcd15a0bb4e9f96a180797ffcfa368977ac1927df882a0343664d3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff41bace1-a7a5-42ae-b255-862c9cbac9de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10437
x-amzn-requestid: 2a8183c4-47ec-42bb-8e67-3e742dc3750c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb0YpEeooAMFfvg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cdd0-2014fd4d49dcd4087bf1db4d;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:40:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Q9y5-OF59ODaZRd9YFFdM2rIH0bYYyIT40rCwr8cBwBQd0GOqtNobg==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 22:08:51 GMT
age: 25549
etag: "99b5ef2d6a4d1a1251a06d9d9f989b01d089a8d1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2dd5a4bcfd47db8f38544bf39ce3031
fa2217bae05b7beca2e12597eaad835298276b82
3266004f5e73af5359b71622eea31f1e28abb4bbc443b5f9e481b5a8b2e9249e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F051e025a-c892-4a7d-8a1d-95f6d77ebb3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4762
x-amzn-requestid: 52b09ca3-705b-4c86-9f56-172637553f87
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP7TVG58oAMFQTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63830c15-4577a47243ad190672f8ac89;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:04:53 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Y0-NAp2LMMG5TjQQ9ENHwDyKXLObKTYqzPPOWvZhs7Y9WJIC6LoblQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 08:50:17 GMT
age: 73463
etag: "fa2217bae05b7beca2e12597eaad835298276b82"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg
34.120.237.76200 OK 4.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b8802d5080eb35e4052ef31cf7658650
1e78566f2e69268c5f753fb49112ab07aae3eccf
9c96906ee1dea353198c9069fa7e42b100e4fa766e5be8e4d8db036033961086
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc551f651-39d0-4021-90ed-915a79168ea0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4409
x-amzn-requestid: cb422842-e955-4749-8b2a-3c028a09c20f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz7XEE2IAMFY3A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd15-3c4d1a6d4d542e81179ea8ba;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: zYLCQ4DUQtMklG-T-ATot22PDIUMjnN1wpVkoHBh4Oa3TAyNzTv86g==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:45 GMT
age: 26695
etag: "1e78566f2e69268c5f753fb49112ab07aae3eccf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38aeadfb-098c-4e6a-8abc-40288efe2526.jpeg
34.120.237.76200 OK 3.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38aeadfb-098c-4e6a-8abc-40288efe2526.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 609419f1a2c58ae67febde5e2cb91c9f
bfb37735a2500848338a8fa12f28516a1ad9b5ba
32a4a65c8bd4da715b5331537bd606bab2767ad8c07af3b8aebbe5cad5591812
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F38aeadfb-098c-4e6a-8abc-40288efe2526.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3751
x-amzn-requestid: 80396218-5515-4f77-9d57-95b323e1f1c0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbzNHHGGoAMF8mA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cbed-09f83d1a5b7f65175fb137ab;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:32:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: _mQdH9J5CaTiYNIQf5xVn-HGUP5tKhW_1foVDdpsVIoG_NKb9wZOJg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:49:45 GMT
age: 26695
etag: "bfb37735a2500848338a8fa12f28516a1ad9b5ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:14:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:14:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 3519a58310eefa01756f0440e2acd7dd
50153382830684a6abb653dc7b4e41d7c7e386b5
5f321e771fa62d9f794339006752655316cdb6e8d69bc23e1d0e3c8bc526f12e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:14:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rswellbra.com/wp-content/plugins/woocommerce-ajax-filters/berocket/assets/css/font-awesome.min.css?ver=6.1.1
61.221.35.27200 OK 7.1 kB URL HTTP/2 rswellbra.com/wp-content/plugins/woocommerce-ajax-filters/berocket/assets/css/font-awesome.min.css?ver=6.1.1
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (30621), with CRLF line terminators
Hash 38326ac275b6d5b701dda8f0e387e72e
e3bcedf919650ccc7ec4dd49cb4f05f6fbcb7f32
0759f3d8329630fd2472697e973c07d3eba17960a87745463d9fabe2108f9aeb
GET /wp-content/plugins/woocommerce-ajax-filters/berocket/assets/css/font-awesome.min.css?ver=6.1.1 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:01 GMT
etag: "7844-5e9df0a324e0b-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 7077
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=3.6.7
61.221.35.27200 OK 468 B URL HTTP/2 rswellbra.com/wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=3.6.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (3412), with no line terminators
Hash f88a6a529851c8ed1ffe2bd83219e490
597ff167b702900ee4473e31e390808b8de95664
ae20c6ea52a0534fdda58a7ae13839ac66194434406e00a3bb5f4538f9909886
GET /wp-content/themes/astra/assets/css/minified/menu-animation.min.css?ver=3.6.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 06 Aug 2021 07:49:57 GMT
etag: "d54-5c8df4823fbbe-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 468
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3
61.221.35.27200 OK 3.0 kB URL HTTP/2 rswellbra.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (10435), with no line terminators
Hash 3381cd71eb8a47c5cbb68cb5a9896713
7aeb1aa557d44596e1f39a73c0e0c38fa04c5a07
07738ab03c9497cc249dca1aa756e30d805c0c4f6b67b514c098763c4d4df159
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.3.3 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:29:27 GMT
etag: "28c3-5e9df1da5cffa-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 2997
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/css/classic-themes.min.css?ver=1
61.221.35.27200 OK 189 B URL HTTP/2 rswellbra.com/wp-includes/css/classic-themes.min.css?ver=1
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Tue, 25 Oct 2022 13:45:16 GMT
etag: "d9-5ebdc1e39f300-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 189
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=3.6.7
61.221.35.27200 OK 13 kB URL HTTP/2 rswellbra.com/wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=3.6.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (46177)
Hash 24029db619a10d362e0d487df504c9b2
a98d3c2fd2814cbaec9c736db432645ac4e1dcb1
2439c24cedcc3b274533b8996715f838b5e83c9bfe6fcec5323a55584e2c70bc
GET /wp-content/themes/astra/assets/css/minified/frontend.min.css?ver=3.6.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 06 Aug 2021 07:49:57 GMT
etag: "bcaf-5c8df4823e4cc-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 13189
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/wcp-contact-form/agp-core/assets/repeater/css/style.css?ver=6.1.1
61.221.35.27200 OK 18 B URL HTTP/2 rswellbra.com/wp-content/plugins/wcp-contact-form/agp-core/assets/repeater/css/style.css?ver=6.1.1
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with no line terminators
Hash dbee97fd0bb11b1ea05e5dc639a2cab7
1d8779cc45d88596726da01e6737c51245d3fc22
45094548acfa09df52d2637e201027ad8facf3c6e26ab428894657f43b004149
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wcp-contact-form/agp-core/assets/repeater/css/style.css?ver=6.1.1 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 22 Jul 2019 11:54:44 GMT
etag: "12-58e43bdee0900"
accept-ranges: bytes
content-length: 18
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/wcp-contact-form/assets/css/style.css?ver=6.1.1
61.221.35.27200 OK 7.1 kB URL HTTP/2 rswellbra.com/wp-content/plugins/wcp-contact-form/assets/css/style.css?ver=6.1.1
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (765), with CRLF line terminators
Hash b41cfa34860df01f5795500df2a87db3
7c68d8e2f7788cc1e2b0cd6606c2d71b6881ed2a
1e621bb902e762e2d773b1f63bea740de9b4361e8412c67521d8e3b8e8ddc773
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wcp-contact-form/assets/css/style.css?ver=6.1.1 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 22 Jul 2019 11:54:46 GMT
etag: "98e1-58e43be0c8d80-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 7137
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/elementor/css/post-438.css?ver=1664525349
61.221.35.27200 OK 446 B URL HTTP/2 rswellbra.com/wp-content/uploads/elementor/css/post-438.css?ver=1664525349
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (1312), with no line terminators
Hash 7555c86b974871fb3d147745c753d077
c8b1f28ba0e2caaf721ac79220c7f195855e272a
65f174fb9f8b78698eb51dda6ba9657bae4c54f4504f047753e982d51964d7bf
GET /wp-content/uploads/elementor/css/post-438.css?ver=1664525349 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 08:09:09 GMT
etag: "520-5e9e0822ad1a9-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 446
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/elementor/css/post-65095.css?ver=1664525349
61.221.35.27200 OK 2.2 kB URL HTTP/2 rswellbra.com/wp-content/uploads/elementor/css/post-65095.css?ver=1664525349
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (10809), with no line terminators
Hash 37a3aa55dc5b90e373dbb3baa7950c6a
8f053679b82a9f9ebe9c446ac10800fccd2b66f9
b8899fc5dc7f5ed7998cb2bb453a1b7c52c7753875b03a3c623f0c41253ffb9b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-65095.css?ver=1664525349 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 08:09:09 GMT
etag: "2a39-5e9e082317b4b-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 2215
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/woo-product-bundle/assets/css/frontend.css?ver=6.4.1
61.221.35.27200 OK 2.7 kB URL HTTP/2 rswellbra.com/wp-content/plugins/woo-product-bundle/assets/css/frontend.css?ver=6.4.1
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (1340), with CRLF line terminators
Hash a5f3d0315cc4707bf9e82f98441fd04f
09454436e9165aca436b0954bb88f94bb3424d51
8c5754778ab34629d00c96f230e547d8e442eab2a5629128a654f970ad483366
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woo-product-bundle/assets/css/frontend.css?ver=6.4.1 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:35:35 GMT
etag: "213f-5e9df33952bdc-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 2733
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout.min.css?ver=3.6.7
61.221.35.27200 OK 2.5 kB URL HTTP/2 rswellbra.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout.min.css?ver=3.6.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (17307), with no line terminators
Hash a6e849c654d671955a02a2a6f20131f1
6d6d1da90165bf78697518b7650a2a60f16c2163
1e622205996368b7b4b17d615630b76b93f07304eb300b169d419b98598be3e9
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-layout.min.css?ver=3.6.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 06 Aug 2021 07:49:57 GMT
etag: "439b-5c8df4823f21f-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 2538
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.7
61.221.35.27200 OK 1.9 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (11487)
Hash dad0211e4dd27b07a690debbb99a9f25
4c5a90069e2ce67441eacb2dc649f28a9a2b6a41
1f0fd62a59944cdd79b9ffdefbea81cf39dda9fc6137a4c9c783504dcb76fdff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 08:08:48 GMT
etag: "2d0a-5e9e080ed6bbd-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 1895
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
61.221.35.27200 OK 4.0 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (19233)
Hash 02dca0a0b3c5aa326d106fb833bd3537
93feff1b87a68c5e8df963e31170087b7c6ab84d
106f6ef8b012f1332f1e0c7fb3b5b8a21140c5d2de187211ba13ee0de8f9fb50
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:20 GMT
etag: "4b4f-5e9df0b55e32d-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 4010
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.5.3
61.221.35.27200 OK 782 B URL HTTP/2 rswellbra.com/wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.5.3
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with CRLF line terminators
Hash 4a16bd9884206b898502a25965c20a46
4ec6a88995364ec46606b59ca2e0b4cb70c1d90f
af32fa91c529d74a68004afad0257f72f95515d687cee6d5597b61849b7c6846
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sticky-header-effects-for-elementor/assets/css/she-header-style.css?ver=1.5.3 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:29:00 GMT
etag: "13e5-5e9df1c083c03-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 782
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/elementor/css/post-65091.css?ver=1664525349
61.221.35.27200 OK 569 B URL HTTP/2 rswellbra.com/wp-content/uploads/elementor/css/post-65091.css?ver=1664525349
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (1562)
Hash 66f75a3a24923358f2145ca48a833474
61253c4b3fc853efb4a2db0cd476d77beca26bb2
3f13936d9b2d5ffb0d6ae6420727a79bfc878804e4e80ce2329b5008ff611355
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-65091.css?ver=1664525349 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 08:09:09 GMT
etag: "c6a-5e9e0822f56a2-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 569
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/elementor/css/post-5.css?ver=1664525349
61.221.35.27200 OK 2.4 kB URL HTTP/2 rswellbra.com/wp-content/uploads/elementor/css/post-5.css?ver=1664525349
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type Unicode text, UTF-8 text, with very long lines (12594), with no line terminators
Hash b137e44bf885dd7be5bf5dedb3afe02f
f4ea5acce53ae7effb31557e681f1f52d78dbbb9
2cbaac2ca9131bc491043586ba0553ac6ab48d4321342b615eef2756e39f14e3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-5.css?ver=1664525349 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 08:09:09 GMT
etag: "3134-5e9e0822ed4a5-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 2364
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/woocommerce-cart-tab/assets/css/style.css?ver=1.1.2
61.221.35.27200 OK 1.1 kB URL HTTP/2 rswellbra.com/wp-content/plugins/woocommerce-cart-tab/assets/css/style.css?ver=1.1.2
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
Hash 7050b604e24dd1a3f30ccaf7632384bd
1034783a4f7a0274c91e43cc56193fb4ea5b5f28
266cdb74d0787f2afba6bfc351069b17f248678d1524a8767fb6df73784339af
GET /wp-content/plugins/woocommerce-cart-tab/assets/css/style.css?ver=1.1.2 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Wed, 14 Aug 2019 01:05:06 GMT
etag: "11f1-5900959029480-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 1137
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
61.221.35.27200 OK 309 B URL HTTP/2 rswellbra.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (483)
Hash 0ea43e394ddaae5fdb710dbbc8869e58
3b0c93adc80720236096201db5cc2751e703996d
85225fffa21a94bfd954393d7471069ab227b98fd8b51cb5ab4af5488168a34e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:20 GMT
etag: "29d-5e9df0b55bca4-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 309
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
61.221.35.27200 OK 11 kB URL HTTP/2 rswellbra.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: "2bd8-5b45debe27b80"
accept-ranges: bytes
content-length: 11224
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/wcp-contact-form/agp-core/assets/repeater/js/main.js?ver=6.1.1
61.221.35.27200 OK 82 B URL HTTP/2 rswellbra.com/wp-content/plugins/wcp-contact-form/agp-core/assets/repeater/js/main.js?ver=6.1.1
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
Hash f2f9808a4484bbbcfa3b43941f4eab04
29ad180e679e7ff242b288d5c80aecd85f0e8ffe
3d5aff5770b0c0dc273dceed4796a8e2ee46ac1055352e00f9a689defe16bf51
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wcp-contact-form/agp-core/assets/repeater/js/main.js?ver=6.1.1 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 22 Jul 2019 11:54:44 GMT
etag: "52-58e43bdee0900"
accept-ranges: bytes
content-length: 82
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.5.3
61.221.35.27200 OK 7.4 kB URL HTTP/2 rswellbra.com/wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.5.3
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
Hash 166416dcbcf8483aad4a59a0ff71bba2
3e1092ade0a322824851a0932ceebce094d81a03
fca05d2db23bfc31025cd5ac710d2e691970ac639c8e498ecc33db093b86b4f7
GET /wp-content/plugins/sticky-header-effects-for-elementor/assets/js/she-header.js?ver=1.5.3 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:29:00 GMT
etag: "1cbf-5e9df1c083edb"
accept-ranges: bytes
content-length: 7359
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/woocommerce-cart-tab/assets/js/cart-tab.min.js?ver=1.1.2
61.221.35.27200 OK 1.4 kB URL HTTP/2 rswellbra.com/wp-content/plugins/woocommerce-cart-tab/assets/js/cart-tab.min.js?ver=1.1.2
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (1368)
Hash 6163bfa34be3ff50f3155768099d3e36
1580448520e710a066f1527f21a2a5a3546f93f8
10e4dc02b097fcd481368b9446430f0f62eedd32efa907414549a6d638d4de0c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce-cart-tab/assets/js/cart-tab.min.js?ver=1.1.2 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Wed, 14 Aug 2019 01:05:06 GMT
etag: "559-5900959029480"
accept-ranges: bytes
content-length: 1369
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/S__320002-1-300x300.jpg
61.221.35.27200 OK 12 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/S__320002-1-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash c04759f54d513748c2d64e49ceccd264
dc5bbd17dfd162f5f75f939d8f82d5031311e964
9bb99a5d2c164365f315710278ef157586377e38bfaad2c3d4e2e6a29ccd515d
GET /wp-content/uploads/2021/08/S__320002-1-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:03:56 GMT
etag: "2e6c-5c9a8a48e7b6f"
accept-ranges: bytes
content-length: 11884
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
61.221.35.27200 OK 90 kB URL HTTP/2 rswellbra.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 19 Sep 2022 14:16:24 GMT
etag: "15e54-5e9085b47de00"
accept-ranges: bytes
content-length: 89684
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/S__320013-1-300x300.jpg
61.221.35.27200 OK 16 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/S__320013-1-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash ea9bba2c4b8e99aa60f3240eb31da52d
b0740dc9596f252e924c230203254038e88c1114
cec852119c533cad51e395de0f41a515d268a9468eeb2f0ecf1eb9653c9fc023
GET /wp-content/uploads/2021/08/S__320013-1-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:04:13 GMT
etag: "3d91-5c9a8a5934fae"
accept-ranges: bytes
content-length: 15761
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/S__320016-1-300x300.jpg
61.221.35.27200 OK 19 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/S__320016-1-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 16c980653a0144ce20f84aa6f243cbff
9bbfb263faa4daae178c5391c3393894da396160
0c9bed423a7cbed23b4228abe0ad9fa84415ff59f7acea77e7c683604070ce2c
GET /wp-content/uploads/2021/08/S__320016-1-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:04:17 GMT
etag: "4bbc-5c9a8a5dd1e8c"
accept-ranges: bytes
content-length: 19388
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/S__320017-1-300x300.jpg
61.221.35.27200 OK 21 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/S__320017-1-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 01876e26e663522e9747639f8e23a378
5702f0890bcfc5098a21b6e7f7d8f8ebb5c4f4ba
6bc6140b99d8d994befe0148e4cfea4552b7449e1396ed3adc953d3a396e6b8d
GET /wp-content/uploads/2021/08/S__320017-1-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:04:19 GMT
etag: "52e4-5c9a8a5f4b9d0"
accept-ranges: bytes
content-length: 21220
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/S__320012-1-300x300.jpg
61.221.35.27200 OK 20 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/S__320012-1-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash b4b2e4ffdef57f7c8a4267b83a5bab31
173e3160b19d65bd71a0381170b040cacc59c39c
bfa2261a44a58456c45a3f456175e9da286db6fba8de660a21eca3a6ebe1288c
GET /wp-content/uploads/2021/08/S__320012-1-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:04:11 GMT
etag: "4c32-5c9a8a57891c0"
accept-ranges: bytes
content-length: 19506
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/S__320015-1-300x300.jpg
61.221.35.27200 OK 18 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/S__320015-1-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 22571fefd9f5c822c297ffe79750e6ff
abca389d531d7909c562e940b7a11e422a452b50
4a86dd975a03c2a196002abc71aa2c73159b67391b7b023666b62c4293cb2292
GET /wp-content/uploads/2021/08/S__320015-1-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:04:14 GMT
etag: "45d6-5c9a8a5aee8a0"
accept-ranges: bytes
content-length: 17878
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/S__320011-1-300x300.jpg
61.221.35.27200 OK 20 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/S__320011-1-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash e3e40a86556726ec5f6c6f233b9fad64
a6ff57a69075d7a5ffc921859c20e562eeaa45a3
fbf88611743a6f0ab32a9d57eb9ad7fed284327b3178ee1e7421f3edeca02068
GET /wp-content/uploads/2021/08/S__320011-1-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:04:09 GMT
etag: "4c59-5c9a8a55de254"
accept-ranges: bytes
content-length: 19545
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
61.221.35.27200 OK 4.7 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type Unicode text, UTF-8 text, with very long lines (29357)
Hash f39d33ed2bb8f7fa8163d21d1092fc5a
ccba0f748519425e4a4b45b3ba0ee02370b28482
bcbe7029ac34c2eb008890d8dc1672f6f22a3dc4434c3e2ec49d655e90abedc4
GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 08:08:48 GMT
etag: "72d9-5e9e080ed4bf9-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 4737
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
61.221.35.27200 OK 13 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (57726)
Hash 4ff8d7118183c0cfbe190224598d1728
136ca84fd1d2d55e3465c67d733d24686d4805c6
25682a863ebe6a09dc2c080fe9be078727dc179bfae324522a38b1f5e5024526
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:20 GMT
etag: "e238-5e9df0b55bd32-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 12578
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/S__320010-1-300x300.jpg
61.221.35.27200 OK 19 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/S__320010-1-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 266569b86f12a7bbe3219def389a8fad
ac80d4b5dc42fe1fe7934a570dbe63f056a8bc8d
ee4494b19898d5d9ede3cf9bf94f2427c776b16b1e995734976f9d84af91a77e
GET /wp-content/uploads/2021/08/S__320010-1-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:04:07 GMT
etag: "4a3e-5c9a8a5428ec3"
accept-ranges: bytes
content-length: 19006
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/S__320009-1-300x300.jpg
61.221.35.27200 OK 24 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/S__320009-1-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash b0568ffea10f08942cecc82afd07d29f
ae09aba6d2f084e4dea6b586d9fee9c2aee6abf4
655a9ccf15fd35351cc4d274acd4a791faf935d26822207beef6ee18bc3df4de
GET /wp-content/uploads/2021/08/S__320009-1-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:04:06 GMT
etag: "5bf1-5c9a8a5276f6a"
accept-ranges: bytes
content-length: 23537
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/S__320008-1-300x300.jpg
61.221.35.27200 OK 21 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/S__320008-1-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash a16362c9fed9714512ba059ce9c3b953
3b9cdbae70e22f429213b9c5810839614bf6102c
de0ff40903952ff67eff5df4c97d46d6c54ec59ddd49660712d95a152ee5b2dd
GET /wp-content/uploads/2021/08/S__320008-1-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:04:04 GMT
etag: "52f4-5c9a8a50c7f33"
accept-ranges: bytes
content-length: 21236
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/S__320004-1-300x300.jpg
61.221.35.27200 OK 13 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/S__320004-1-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 21be42b195c3f080d06348312ba30719
e56c13fd3f926bbb915c01dbb6ae440fe622a47a
605244b755066d0d6f2399d7cca1dc2e19d0205f6ce410a7c1c99ddde250bd13
GET /wp-content/uploads/2021/08/S__320004-1-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:03:57 GMT
etag: "347b-5c9a8a49f2f4f"
accept-ranges: bytes
content-length: 13435
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/S__320007-1-300x300.jpg
61.221.35.27200 OK 24 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/S__320007-1-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 994f1ca094679c5b7286cd5f61d2e065
39aadd53fc0147622d3f2c973fae35606f33075d
46a59e0e988884f7cf756e8f3fbb90595bddb3c74b58aa0ab9311990a0b88fa7
GET /wp-content/uploads/2021/08/S__320007-1-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:04:02 GMT
etag: "5f0e-5c9a8a4f2fc19"
accept-ranges: bytes
content-length: 24334
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
61.221.35.27200 OK 19 kB URL HTTP/2 rswellbra.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
etag: "48b9-5dc6eb878efc0"
accept-ranges: bytes
content-length: 18617
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
61.221.35.27200 OK 21 kB URL HTTP/2 rswellbra.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.2
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 034bd11ecaf6fb9240d905245e42e202
ff136c394ed95badfc0107fb98a890dcff642828
ca7154cdda62b535ceaba9ad2a2b2217ff49de94c069a2c4e89733f3f06b3651
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.2 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 23 Sep 2022 19:55:30 GMT
etag: "53c0-5e95d8f5cb080"
accept-ranges: bytes
content-length: 21440
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/S__320006-1-300x300.jpg
61.221.35.27200 OK 32 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/S__320006-1-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 9f0ad88cdd1b3173a6a2fa5a037c8358
88ae4699e07227fbc81d03dbf5f57d1445871900
16465c95e59e847b73a57f43a0a74d5b82414cc370783c0fc34fdc689bb8da1c
GET /wp-content/uploads/2021/08/S__320006-1-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:04:00 GMT
etag: "7eda-5c9a8a4d36c1e"
accept-ranges: bytes
content-length: 32474
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/S__320005-1-300x300.jpg
61.221.35.27200 OK 19 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/S__320005-1-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 1f6fe06a36badaf18f600a515b39663e
30401267d5192f6b97dbd465b613da4343352871
2d074a04fec9826541ee90316c4b0faf7451d916ab0d411b58d86e813909d4f6
GET /wp-content/uploads/2021/08/S__320005-1-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:03:58 GMT
etag: "4aea-5c9a8a4b78721"
accept-ranges: bytes
content-length: 19178
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
61.221.35.27200 OK 1.7 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor/assets/css/widget-icon-list.min.css
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (11736)
Hash 1f4771d3827fb94b66add398c77c7084
ee2ed0cda03a79d76c79f8740d1f0b4cbfb76c49
9b23ad6f7afb84edda8e1649f59f1fc8fa7a492c033822c018b63b26d8226132
GET /wp-content/plugins/elementor/assets/css/widget-icon-list.min.css HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:20 GMT
etag: "2dff-5e9df0b5519d5-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:41 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 1651
content-type: text/css
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2
61.221.35.27200 OK 10 kB URL HTTP/2 rswellbra.com/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (9937)
Hash 087a7b1f3a0e6e458e47752247dea77f
b50dc9b67f2440a0f7fd6369c0d0da9eb35f8f77
03a76dde100a17b38d2eaf65bd9d75ca09369d5d601e4262db5696778e930657
GET /wp-includes/js/jquery/ui/menu.min.js?ver=1.13.2 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 19 Sep 2022 18:04:09 GMT
etag: "2782-5e90b89c73840"
accept-ranges: bytes
content-length: 10114
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css
61.221.35.27200 OK 3.6 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type Unicode text, UTF-8 text, with very long lines (16332)
Hash 8d508a0c45c025b035a479da1236bc27
f2f0f5bf071bf2c9e07ed7995cfe733c1a6eb5ad
4b85a6dfef3a20358476312626a85638d424862d0962a43cee25707998bd34f9
GET /wp-content/plugins/elementor-pro/assets/css/widget-posts.min.css HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 08:08:48 GMT
etag: "3ffd-5e9e080ed50d8-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:41 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 3590
content-type: text/css
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
61.221.35.27200 OK 6.5 kB URL HTTP/2 rswellbra.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (6475), with no line terminators
Hash 61449413a42d2daaa79dbe7298b40e21
d86c474164c603084397bdc50fb0e469d28b5772
f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: "194b-5dc5fbf1e6f80"
accept-ranges: bytes
content-length: 6475
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
61.221.35.27200 OK 18 kB URL HTTP/2 rswellbra.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash e495a4709e3eae31c67f8263f25d2d39
d43ba6a092e4823a71f3bff75d5ed279a481636b
1c1fef6e6b4f9832603850b9b6562e74d9a6a3700ba836efe88facc577121e8b
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Tue, 20 Sep 2022 15:43:29 GMT
etag: "459f-5e91db08e6a40"
accept-ranges: bytes
content-length: 17823
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
61.221.35.27200 OK 498 B URL HTTP/2 rswellbra.com/wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (463)
Hash b0b80b0256874e70acdc820b52bbf1aa
9aace9a7989736bf535d65f229d0c10e9acea41b
166c7c3bb5f76f977a9f2a5490589b3466374eb2b3f064802e56f08bad71fbf0
GET /wp-includes/js/dist/dom-ready.min.js?ver=392bdd43726760d1f3ca HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: "1f2-5dc5fbf1e6f80"
accept-ranges: bytes
content-length: 498
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
61.221.35.27200 OK 10 kB URL HTTP/2 rswellbra.com/wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
Hash 8cd696505481e74ffee89b4995f37379
ee9aad199ef2bc60a3460f4c52f37d22907b2ec9
01c3955df67a9b9d1367957e2c187729eae46b72e92c2b52bdb217b14a8fc874
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=9e794f35a71bb98672ae HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 23 Sep 2022 19:55:30 GMT
etag: "27f6-5e95d8f5cb080"
accept-ranges: bytes
content-length: 10230
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
61.221.35.27200 OK 4.9 kB URL HTTP/2 rswellbra.com/wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (4875)
Hash b33ab4d5dcf02436276a717e9d1b7c18
f47b9a9c41b3b11c9dffabca22945727c3ec6566
9bd82960d99b3a76f4af77a88a346bd61f87bac5ff2f385ee28cd669d8f22134
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=4169d3cf8e8d95a3d6d5 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: "132e-5dc5fbf1e6f80"
accept-ranges: bytes
content-length: 4910
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
61.221.35.27200 OK 2.5 kB URL HTTP/2 rswellbra.com/wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type Unicode text, UTF-8 text, with very long lines (2472)
Hash 496baa8dab0a9861cd85d4e329f5aa77
5a036d58aecc5c5c471237d6dc719333cfe225e6
5df2942db2352e49e00bcf3393b875a71d0acee986e48fbdcc5879846f5c3689
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/a11y.min.js?ver=ecce20f002eda4c19664 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: "9cc-5dc5fbf1e6f80"
accept-ranges: bytes
content-length: 2508
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2
61.221.35.27200 OK 8.5 kB URL HTTP/2 rswellbra.com/wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (8281)
Hash 99017cd1ae098d1e3ad215171ca48290
2c4c8affe6e8deee8bd8b89c0d44d456b9438c63
3c891891a2abfdb8f5ef8f4b1e4e3c25013d934ca396fe8149e6626cc4ea1888
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/autocomplete.min.js?ver=1.13.2 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 23 Sep 2022 19:55:30 GMT
etag: "2112-5e95d8f5cb080"
accept-ranges: bytes
content-length: 8466
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.6.7
61.221.35.27200 OK 15 kB URL HTTP/2 rswellbra.com/wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.6.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (15220), with no line terminators
Hash a476dd57e6169feec234ecf4f7718e83
61be1e6f1f0355d0629fef1ca3c4e0960d82fba6
e594d43ef5e6a3b462f2b1d47c0b4fdbc1178df5b7e5046dff5d208262a042c2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/js/minified/frontend.min.js?ver=3.6.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 06 Aug 2021 07:49:57 GMT
etag: "3b74-5c8df48243164"
accept-ranges: bytes
content-length: 15220
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/themes/astra/assets/js/minified/mobile-cart.min.js?ver=3.6.7
61.221.35.27200 OK 2.7 kB URL HTTP/2 rswellbra.com/wp-content/themes/astra/assets/js/minified/mobile-cart.min.js?ver=3.6.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (2677), with no line terminators
Hash 00a3660d06cc44377b47022431f2bd73
a272f13c2a90cf0643d37ae434d43946c332970d
2f9b32635fc8e8b35cc49181991b67009c546dd70d505a5e227795f24402579a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/js/minified/mobile-cart.min.js?ver=3.6.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 06 Aug 2021 07:49:57 GMT
etag: "a75-5c8df4824330c"
accept-ranges: bytes
content-length: 2677
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4
61.221.35.27200 OK 9.5 kB URL HTTP/2 rswellbra.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (9115)
Hash a5451283952efd5df49466bbeace6911
dce405842471c303c3d8fd6fa3c084aa56a71029
f4e38e5ef16efe51836cf7142412b8e1aa8b73ce89afed23be0cf77dfd8e095d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.9.4 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:29:28 GMT
etag: "2525-5e9df1da9521e"
accept-ranges: bytes
content-length: 9509
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.4
61.221.35.27200 OK 3.0 kB URL HTTP/2 rswellbra.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.4
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 4e544022235ced14996464116a9ed9b2
31ee19d95973124b812a22c5ff5944d5b5bf8147
4ef2d5b0ef62523af87f3e13d8061449b2ddbfce07064f26b1305084abbf18f1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=6.9.4 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:29:28 GMT
etag: "bdd-5e9df1da989e6"
accept-ranges: bytes
content-length: 3037
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.4
61.221.35.27200 OK 2.9 kB URL HTTP/2 rswellbra.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.4
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (2938), with no line terminators
Hash 0fd625c3991a4015814cffdc88e2fc82
d7c2f53e058210ff3ea773297641008bab71a5f3
2d022db650d194d935faea46a40e5512235b43bc3f8b181e32ce6d3dd745f4e1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.9.4 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:29:28 GMT
etag: "b7a-5e9df1da98d21"
accept-ranges: bytes
content-length: 2938
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4
61.221.35.27200 OK 1.8 kB URL HTTP/2 rswellbra.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (1668)
Hash d0a6d8547c66b0d7b0172466558d1208
ff93916519c7b9483251f609e4d29f38c30a66e3
3b1384ff918d4b7f95f9ee5c8fc388203dedff7344d3d96598c9562162788612
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.9.4 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:29:28 GMT
etag: "72a-5e9df1da97994"
accept-ranges: bytes
content-length: 1834
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4
61.221.35.27200 OK 2.1 kB URL HTTP/2 rswellbra.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (2139), with no line terminators
Hash b72c1cbb1530a011a27bd9800f26765a
27b825c5d8255f33b8427a059d4545ebd65e1746
a256fccecac3b32ab73c91d79a18747519a1a18023be05465c933b03523a82e8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.9.4 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:29:28 GMT
etag: "85b-5e9df1da98aff"
accept-ranges: bytes
content-length: 2139
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Cormorant%3A500%2C%7CMontserrat%3A500%2C%2C600%7CAllura%3A400&display=fallback&ver=3.6.7
142.250.74.106200 OK 3.8 kB URL HTTP/2 fonts.googleapis.com/css?family=Cormorant%3A500%2C%7CMontserrat%3A500%2C%2C600%7CAllura%3A400&display=fallback&ver=3.6.7
IP 142.250.74.106:0
Hash c6157b0685aacba822343c79810a1d5b
db33b877cfbd877d786c0c16890951b0dc2c067f
b269cd96a3d6ec819650a7ea1eeb51212bb6f55fd49fcce7dd4d4f1118bf1a59
GET /css?family=Cormorant%3A500%2C%7CMontserrat%3A500%2C%2C600%7CAllura%3A400&display=fallback&ver=3.6.7 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 05:14:40 GMT
date: Thu, 01 Dec 2022 05:14:40 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/woo-product-bundle/assets/js/frontend.js?ver=6.4.1
61.221.35.27200 OK 16 kB URL HTTP/2 rswellbra.com/wp-content/plugins/woo-product-bundle/assets/js/frontend.js?ver=6.4.1
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
Hash 637e9d6c01326af36a7554c848ed6e1e
3eb9886ae2736b401b599f6725ad11ee3dcd5708
1372dc50384d6b127fcc23336805d838f2ff391d00f9582e0a11683e132eb25f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woo-product-bundle/assets/js/frontend.js?ver=6.4.1 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:35:35 GMT
etag: "3ebd-5e9df33951f5e"
accept-ranges: bytes
content-length: 16061
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
142.250.74.106200 OK 7.2 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP 142.250.74.106:0
Hash dd06af15bb18587e1de57772809c0ddb
852f454cdaf20984d29f804cc9c102a315745343
bed25fa5fec50013712ab22db73294a8f367642ce6e1e066802f4f14429a050b
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 01 Dec 2022 05:14:40 GMT
date: Thu, 01 Dec 2022 05:14:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.7
61.221.35.27200 OK 5.2 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (5141)
Hash d34a31c190be8bdf335fa0c44ef52699
483e1b4ba88b6e7ca8153871811e32cab021d6e4
f032f0b942ea9f4bd771ddb2262c518e948328a305a5268dacc74f3eee364514
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 08:08:48 GMT
etag: "1440-5e9e080ed153b"
accept-ranges: bytes
content-length: 5184
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
61.221.35.27200 OK 25 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (25115)
Hash 046405de007ff73e52d17dab2af75258
887cfb8a9de27005875f6e1c1d1ead43bd0865c8
533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 08:08:48 GMT
etag: "6272-5e9e080ecef52"
accept-ranges: bytes
content-length: 25202
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7
61.221.35.27200 OK 5.0 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (4918)
Hash b3c8935acfaf38ea6c5b44ca4708856c
05b873d198d0d1050608869c3b44d11dab49517d
07a470485da50cd0fa2468f4c235ffa955b9de29be215e6c9a2947ee34fff625
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:20 GMT
etag: "135d-5e9df0b555c87"
accept-ranges: bytes
content-length: 4957
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7
61.221.35.27200 OK 33 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash ad9e0dc726051e4c01a96e714e090007
7139e369a2e7b0a4899305cfa0348bf227a0b5d0
7f6416579057ab5faf142b3965d135aa7eae333d9c5f6fcb789185f020f3c2e2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:20 GMT
etag: "80a1-5e9df0b556794"
accept-ranges: bytes
content-length: 32929
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
61.221.35.27200 OK 12 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (12198), with no line terminators
Hash 3819c3569da71daec283a75483735f7e
ecd40a5cc6f0b76200c454ca880210dc301cfab8
214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:20 GMT
etag: "2fa6-5e9df0b55c31b"
accept-ranges: bytes
content-length: 12198
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.7
61.221.35.27200 OK 21 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (21374)
Hash d3292c1b42af288c371c5411c4253f18
a563f69f9ef58e0304bbfcc783b12ab21fd4d401
b00cbc0ab0a8a635ebeaf832cc1e0775145b3775e617ede3c1e45f19681ffcba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 08:08:48 GMT
etag: "53a9-5e9e080ed2d98"
accept-ranges: bytes
content-length: 21417
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:14:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:14:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:14:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:14:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/cormorant/v18/H4c2BXOCl9bbnla_nHIA47NMUjsNbCVrFiNTc7Nq7Q.woff2
216.58.207.227200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/cormorant/v18/H4c2BXOCl9bbnla_nHIA47NMUjsNbCVrFiNTc7Nq7Q.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 19724, version 1.0\012- data
Hash cdc8846595fe036316241e7fb0374ad0
1d270a1e5b9e651d9b8190563f25510d5de21834
a47cdda19eb2ddd78ae8c413f687b85bbc962cf59359baf6e586d7d4d94d2256
GET /s/cormorant/v18/H4c2BXOCl9bbnla_nHIA47NMUjsNbCVrFiNTc7Nq7Q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rswellbra.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19724
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 05:37:59 GMT
expires: Thu, 30 Nov 2023 05:37:59 GMT
cache-control: public, max-age=31536000
age: 85002
last-modified: Tue, 28 Jun 2022 17:54:04 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/allura/v18/9oRPNYsQpS4zjuA_iwgW.woff2
216.58.207.227200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/allura/v18/9oRPNYsQpS4zjuA_iwgW.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22496, version 1.0\012- data
Hash 11d1d87c8b211a2fd7e4e9cf8826fc2f
dc0413cb52b2e165ad36afa76c9e4af495d3925c
0b62150239d6abeec0461e3579e97b061cc733383dc1d1fd4a80e364766a9fb0
GET /s/allura/v18/9oRPNYsQpS4zjuA_iwgW.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rswellbra.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22496
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 16:09:53 GMT
expires: Wed, 29 Nov 2023 16:09:53 GMT
cache-control: public, max-age=31536000
age: 133488
last-modified: Tue, 19 Apr 2022 18:13:27 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://rswellbra.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 06:30:11 GMT
expires: Sat, 25 Nov 2023 06:30:11 GMT
cache-control: public, max-age=31536000
age: 513870
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7
61.221.35.27200 OK 40 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (40474)
Hash 9186019ccc4b917dadbeab08f409b8fa
2054ba180821db453f363b084d24c2399ed70f93
1b7e5ce2d76665f7555486ed22ec9d9ebf824020cf53b432fb1bf740406b3e56
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:20 GMT
etag: "9e41-5e9df0b557854"
accept-ranges: bytes
content-length: 40513
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/js/wp-util.min.js?ver=6.1.1
61.221.35.27200 OK 1.4 kB URL HTTP/2 rswellbra.com/wp-includes/js/wp-util.min.js?ver=6.1.1
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (1391)
Hash 19d386c9004e54941c1cc61d357efa5d
0a77594006c8d86fdcc0adbc2b9aecaef3869586
3bc6467a95cec8fa516c6f5f69e1301e37e16f9bb1046fe7756729249f901b95
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=6.1.1 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Tue, 20 Sep 2022 03:52:10 GMT
etag: "592-5e913c0b08e80"
accept-ranges: bytes
content-length: 1426
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.7
61.221.35.27200 OK 24 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (24339)
Hash 86de1334f0884cab20195dba73f64196
328abb226f8f6adb486da41f34fdedd065dd97a8
cf318affe78386fd3458c28d3148eb84d7443f8ccf8ad74088f5f051c50b9ba4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 08:08:48 GMT
etag: "5f3e-5e9e080ed2b8e"
accept-ranges: bytes
content-length: 24382
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/js/underscore.min.js?ver=1.13.4
61.221.35.27200 OK 19 kB URL HTTP/2 rswellbra.com/wp-includes/js/underscore.min.js?ver=1.13.4
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (18798)
Hash f88d5720bb454ed5d204cbdb56901f6b
f1952292fde4b15936e9aac16b2b9896684db95b
726b820e44f6ab90ad991d30a4bf26d3a5d71493cbcd1fb1efd0d14e89b9df2a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.13.4 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Tue, 27 Sep 2022 15:18:25 GMT
etag: "4991-5e9aa27ccd240"
accept-ranges: bytes
content-length: 18833
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.7
61.221.35.27200 OK 754 B URL HTTP/2 rswellbra.com/wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (754), with no line terminators
Hash afb55c29bdbcfc262d9fa56743572cad
d4b6cb9df2b1b5477cd968fb05cf5faa1d13d6bf
c30dab20b677f2b13f42a4a04385a3c6d380fa023a4a1c32f45f2996e152bfba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wpforms-lite/assets/js/integrations/elementor/frontend.min.js?ver=1.7.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:35:44 GMT
etag: "2f2-5e9df341cabc8"
accept-ranges: bytes
content-length: 754
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 01 Dec 2022 05:14:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
rswellbra.com/wp-content/uploads/2021/08/image5-1-1.jpeg
61.221.35.27200 OK 131 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/image5-1-1.jpeg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 734x767, components 3\012- data
Size 131 kB (131085 bytes)
Hash 45abafbe19af74c38ff97b05db04f57c
97b57a569c1126d146fa4fd9a2177db0050e00f1
dbd4d01d48e37b198c71868d9811bf5c1ca032150f357bc8bdfb4671ef979b92
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/08/image5-1-1.jpeg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/wp-content/uploads/elementor/css/post-5.css?ver=1664525349
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 07:54:36 GMT
etag: "2000d-5c9a88332bd3f"
accept-ranges: bytes
content-length: 131085
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/woocommerce/assets/fonts/star.woff
61.221.35.27200 OK 1.3 kB URL HTTP/2 rswellbra.com/wp-content/plugins/woocommerce/assets/fonts/star.woff
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type Web Open Font Format, CFF, length 1304, version 1.0\012- data
Hash 335cbf607c55aa32fd06809d1f9eb127
e70dd0cd93614997e251f26477ea815435981e19
d87af7a2528beb59a990e0414df87b4e4115f77f3a4a750f6616ff189b70345a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/fonts/star.woff HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://rswellbra.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css?ver=3.6.7
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:29:28 GMT
etag: "518-5e9df1daa03d0"
accept-ranges: bytes
content-length: 1304
cache-control: max-age=604800
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/woff
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
61.221.35.27200 OK 93 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Hash aab0bb3379e0eb7ebc26071db61fbd57
711c8d350c4192c2f1aa7f73551445b89fb4b161
691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://rswellbra.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:20 GMT
etag: "16cbc-5e9df0b55e160"
accept-ranges: bytes
content-length: 93372
cache-control: max-age=2592000
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/woff2
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/shutterstock_1936949806-1.jpg
61.221.35.27200 OK 714 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/shutterstock_1936949806-1.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=3248, bps=0, PhotometricIntepretation=RGB, description=Gently pink flowers of anemones outdoors in summer spring close-up on turquoise background with soft selective focus. Delicate , orientation=upper-left, width=7000], progressive, precision 8, 2000x928, components 3\012- data
Size 714 kB (714067 bytes)
Hash 9975d1e0aca2a5a15f7e2efe75f58d71
f048c11070a4373260df1124d8a4f575b3264e9a
9a2848421369242e02b7681e4399924ccd3b2a44eb82bf6dd66d104e715a5aab
GET /wp-content/uploads/2021/08/shutterstock_1936949806-1.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/wp-content/uploads/elementor/css/post-5.css?ver=1664525349
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 08:01:59 GMT
etag: "ae553-5c9a89d9f6026"
accept-ranges: bytes
content-length: 714067
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
61.221.35.27200 OK 78 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://rswellbra.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:20 GMT
etag: "13174-5e9df0b55b0d3"
accept-ranges: bytes
content-length: 78196
cache-control: max-age=2592000
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: font/woff2
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2022/09/IMG_2624-300x300.jpg
61.221.35.27200 OK 20 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2022/09/IMG_2624-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 35fb9417fb68986e7da6fb4d9046d8e0
4b2750188c24f4c87c602e1d4ca9a8396b54121d
189a1df6ac64d1bcd60d9c0a983319d814bee1904eb6deda96bf087b49ee5670
GET /wp-content/uploads/2022/09/IMG_2624-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Thu, 01 Sep 2022 04:45:01 GMT
etag: "4dfc-5e79646b610cd"
accept-ranges: bytes
content-length: 19964
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:42 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2022/07/IMG_2176-300x300.jpg
61.221.35.27200 OK 19 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2022/07/IMG_2176-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 4e3882927be3d2dbd873c7f891cbc4db
7438592e4cc74e0921af9986ca9af9171ee5ab15
1b2e7b9a734bcc85718465eabfbdb9dee1616a03d1d870a412483c59b37b691d
GET /wp-content/uploads/2022/07/IMG_2176-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 25 Jul 2022 12:21:51 GMT
etag: "4925-5e4a03a82cd19"
accept-ranges: bytes
content-length: 18725
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:42 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2022/07/IMG_2170-300x300.jpg
61.221.35.27200 OK 10 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2022/07/IMG_2170-300x300.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 300x300, components 3\012- data
Hash 01bc33f1e38e15f2cec5d4e5cfc4d13a
a40e127aa2463912e217f992ef6cdce2e5278019
b22c3bee4dfc76e8339729c2904c9b60834ac76411bf4382717768c23b88586b
GET /wp-content/uploads/2022/07/IMG_2170-300x300.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 25 Jul 2022 12:20:53 GMT
etag: "286f-5e4a0371514c0"
accept-ranges: bytes
content-length: 10351
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:42 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/logo-1-1-1-1.png
61.221.35.27200 OK 194 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/logo-1-1-1-1.png
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type PNG image data, 415 x 370, 8-bit/color RGBA, non-interlaced\012- data
Size 194 kB (194313 bytes)
Hash cc0b44e91c3f4c141d314e04dcfba5f1
8dc8ec5845946f4bf9af8cc3e19d11757ff9fd0d
14445d41d4f9bc829491abb1f3cc7edffb29cd6f32f345e542d27abd3be727cd
GET /wp-content/uploads/2021/08/logo-1-1-1-1.png HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 05:11:51 GMT
etag: "2f709-5c9a63d28f707"
accept-ranges: bytes
content-length: 194313
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/png
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen.min.css?ver=3.6.7
61.221.35.27200 OK 1.0 kB URL HTTP/2 rswellbra.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen.min.css?ver=3.6.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (5985), with no line terminators
Hash e9baceb239d9e134d4bdb69db4fc2ef5
b5a039dddc44c08817cfd256be0135c6b8c05223
bd3bc4c84446e5dbfd7951b62ffda375c281cd1d8580382d0c05d5b0ceb0f5ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce-smallscreen.min.css?ver=3.6.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 06 Aug 2021 07:49:57 GMT
etag: "1761-5c8df4823eefe-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:42 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 1001
content-type: text/css
date: Thu, 01 Dec 2022 05:14:42 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/888-1-1.jpeg
61.221.35.27200 OK 587 kB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/888-1-1.jpeg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 1108x1478, components 3\012- data
Size 587 kB (587180 bytes)
Hash 22594f83118a005bbcd0ef98547b6728
2e1961ebc8695c0429ce7d77d1924cd8e0d88647
bf96132d7419b506b8cf0a149e42361c8db018a32295990f7769ebaa545e8cb0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/08/888-1-1.jpeg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/wp-content/uploads/elementor/css/post-5.css?ver=1664525349
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 07:54:26 GMT
etag: "8f5ac-5c9a88299a99b"
accept-ranges: bytes
content-length: 587180
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js
61.221.35.27200 OK 3.3 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (3262)
Hash 7dab9f3e542fbf75c97a894a6620a417
fe2a4fd0ea9a8696819e5f9cf70b4eb205c59ec2
c2e91fbd692b9551cdd4efee311b3ecb465c36d42813d5bcff10f9f8859b2cb2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 08:08:48 GMT
etag: "ce9-5e9e080ed3194"
accept-ranges: bytes
content-length: 3305
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:42 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
61.221.35.27200 OK 139 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (65280)
Size 139 kB (139153 bytes)
Hash 15bb2b8491fc7e84137d65f610e1685a
cd76b70a5426893e9c022b9a75c50a7c1348e2d0
b23f49f504faa32aac548b6662ffd64412f6738496fab8be38da46c5b7121804
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:20 GMT
etag: "21f91-5e9df0b55c8ab"
accept-ranges: bytes
content-length: 139153
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:42 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
61.221.35.27200 OK 1.4 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (1320)
Hash e15c03c5a1c9eae91c26376316ff4edb
d40196b09bec27de14848f5f606dc65cbbf1bf96
6ce6ca5a174c3dc4bebbfef575f82d363dd81e6110d8faf7e9e7b37e184ca152
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:20 GMT
etag: "54f-5e9df0b555759"
accept-ranges: bytes
content-length: 1359
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:42 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js
61.221.35.27200 OK 2.8 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (2738)
Hash cdbdaabaf2c27cdd248eab2de8441ff7
8e0b7cd75aa8f0eb4f71f1856ada7567f632623f
676f78744281bbe222fe186e6ae22a04d8ac0d87623244334ee45174d4e705cd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/image-carousel.e02695895b33b77d89de.bundle.min.js HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:20 GMT
etag: "ad9-5e9df0b556c24"
accept-ranges: bytes
content-length: 2777
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:42 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
61.221.35.27200 OK 22 kB URL HTTP/2 rswellbra.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
Hash 1efe8470f5108dff4017ef4051bfcb30
329408a6f260e6fcf3f68cb2c6a1df179755cca8
4ee2d91bbf676ee453c4aa7d097fc20b751572e3ce2ee92f4cfc2fdc879fe590
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 11 Nov 2022 14:56:45 GMT
etag: "172a9-5ed33192c4540-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor-pro/assets/js/load-more.80eb3caec79a44347d74.bundle.min.js
61.221.35.27200 OK 4.3 kB URL HTTP/2 rswellbra.com/wp-content/plugins/elementor-pro/assets/js/load-more.80eb3caec79a44347d74.bundle.min.js
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type ASCII text, with very long lines (4301)
Hash c524c99b818801642dcd4921d1181415
54c80d4466f714a2d1bdf7aaf05ce87725dc94a1
a1afbf7caecd2a63fbbaa5397ca6a5463300bf5e99b01332726b388f66efa1e9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor-pro/assets/js/load-more.80eb3caec79a44347d74.bundle.min.js HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 08:08:48 GMT
etag: "10f8-5e9e080ed2d23"
accept-ranges: bytes
content-length: 4344
cache-control: max-age=2592000, private
expires: Sat, 31 Dec 2022 05:14:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/javascript
date: Thu, 01 Dec 2022 05:14:42 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3
61.221.35.27200 OK 47 kB URL HTTP/2 rswellbra.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
Hash 01ee0a8113de8e16621e4e6367ad0023
ee3dd27168c395ecdee608d2d2ae4878d94581f2
2a2952aabbc3138c20eb004a0dc6fc8a602ed062d1842735c2e750676c0455ef
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.3.3 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:29:27 GMT
etag: "33805-5e9df1da56f4f-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/?wc-ajax=get_refreshed_fragments&elementor_page_id=5
61.221.35.27200 OK 2.1 kB URL HTTP/2 rswellbra.com/?wc-ajax=get_refreshed_fragments&elementor_page_id=5
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JSON data\012- HTML document, ASCII text, with very long lines (2066), with no line terminators
Hash 9f877cc7f41e71077e29cf87825c79cb
3a82431935c97c989a77beec6bab3ab8b0467285
5ebf6d9026600697701a36b63f2eaec034537e141b88f8fe7b605840c9402d4e
POST /?wc-ajax=get_refreshed_fragments&elementor_page_id=5 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://rswellbra.com
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://rswellbra.com
access-control-allow-credentials: true
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
x-robots-tag: noindex
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 2066
content-type: application/json; charset=UTF-8
date: Thu, 01 Dec 2022 05:14:42 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/3-1.gif
61.221.35.27200 OK 1.7 MB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/3-1.gif
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type GIF image data, version 89a, 2048 x 1406\012- data
Size 1.7 MB (1745909 bytes)
Hash e4bf38efd698b53401ffd4a0fe842dad
112eea3feeb09c7f1656916d2df8fb4c47ebcd16
ca6217be49ce775b1c8c0925e4ab5abe0bbd19ce00c9976d9377d904cb604ac1
GET /wp-content/uploads/2021/08/3-1.gif HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/wp-content/uploads/elementor/css/post-5.css?ver=1664525349
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 07:54:04 GMT
etag: "1aa3f5-5c9a8814d041e"
accept-ranges: bytes
content-length: 1745909
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/gif
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/shutterstock_1778142992-1.jpg
61.221.35.27200 OK 2.3 MB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/shutterstock_1778142992-1.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=3414, bps=0, PhotometricIntepretation=RGB, description=Young woman raised arms holding bouquet of poppies flowers walking in summer field. Happy woman feeling free, orientation=upper-left, width=5121], progressive, precision 8, 2000x1333, components 3\012- data
Size 2.3 MB (2298969 bytes)
Hash d42da1650b6997471f2c1c95f9518800
b28e753d11097bbb837dd8333e4384789d83e3e6
151ec5e7871fb805573c18143a13c07aa95aa102f324bb7f93ef5f1b3579a9f3
GET /wp-content/uploads/2021/08/shutterstock_1778142992-1.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/wp-content/uploads/elementor/css/post-65095.css?ver=1664525349
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 07:48:09 GMT
etag: "231459-5c9a86c21d0af"
accept-ranges: bytes
content-length: 2298969
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:41 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/shutterstock_1808519107-2.jpg
61.221.35.27200 OK 1.4 MB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/shutterstock_1808519107-2.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=2963, bps=0, PhotometricIntepretation=RGB, description=Bride holds beautiful autumn bouquet with orange and red flowers and berries. Autumn bouquet with ribbons in bride's hands, orientation=upper-left, width=4443], progressive, precision 8, 2000x1334, components 3\012- data
Size 1.4 MB (1412483 bytes)
Hash 033237379bf23b708aee6680ec8d126c
03659d166a19db8b7abb1d66305ecad0fc1e1a47
2228720bfb6b36541030e4f633d6c99d61105a91f23c3267113a4b1fb24b8752
GET /wp-content/uploads/2021/08/shutterstock_1808519107-2.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 07:35:54 GMT
etag: "158d83-5c9a84055a098"
accept-ranges: bytes
content-length: 1412483
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:42 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/shutterstock_1864243258-1.jpg
61.221.35.27200 OK 1.5 MB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/shutterstock_1864243258-1.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=4641, bps=0, PhotometricIntepretation=RGB, description=Beautiful white girl with flowers. Stunning brunette girl with big bouquet flowers of roses. Closeup face of young beautiful wo, orientation=upper-left, width=8250], progressive, precision 8, 2000x1125, components 3\012- data
Size 1.5 MB (1468200 bytes)
Hash 38ff122653d197a97788672b5443553b
f5ae06bb094ce2f78e49b704056c2b63f454262d
6f7b99fa959740d408d454a0ed028ef5a77fccf738df78e88bf5d865402d89b8
GET /wp-content/uploads/2021/08/shutterstock_1864243258-1.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 07:35:59 GMT
etag: "166728-5c9a8409bb3a4"
accept-ranges: bytes
content-length: 1468200
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:42 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/uploads/2021/08/shutterstock_1936034887-1.jpg
61.221.35.27200 OK 1.7 MB URL HTTP/2 rswellbra.com/wp-content/uploads/2021/08/shutterstock_1936034887-1.jpg
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=15, height=2667, bps=0, PhotometricIntepretation=RGB, description=Attractive young woman in floral print dress sits among bouquets flowers in an elegant floral interior. pretty girl with curly , orientation=upper-left, width=4000], progressive, precision 8, 2000x1334, components 3\012- data
Size 1.7 MB (1672091 bytes)
Hash 54f810a25b8d6a0b45720bd6ce4088aa
9bf3a63da1ef9c95d55e41f74992fed4d82ad91e
9ecede4a4e64f18caba0b5bc970c722ec6c84ea3545dd27f3d4199926ecbebe8
GET /wp-content/uploads/2021/08/shutterstock_1936034887-1.jpg HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Mon, 16 Aug 2021 07:36:01 GMT
etag: "19839b-5c9a840c60008"
accept-ranges: bytes
content-length: 1672091
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/jpeg
date: Thu, 01 Dec 2022 05:14:42 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/favicon.ico
61.221.35.27302 Found 0 B URL HTTP/2 rswellbra.com/favicon.ico
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 302 Found
x-frame-options: SAMEORIGIN
x-powered-by: PHP/7.4.33
link: <https://rswellbra.com/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
location: https://rswellbra.com/wp-includes/images/w-logo-blue-white-bg.png
cache-control: max-age=0
expires: Thu, 01 Dec 2022 05:14:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-length: 0
content-type: text/html; charset=UTF-8
date: Thu, 01 Dec 2022 05:14:43 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-includes/images/w-logo-blue-white-bg.png
61.221.35.27200 OK 4.1 kB URL HTTP/2 rswellbra.com/wp-includes/images/w-logo-blue-white-bg.png
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://rswellbra.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Tue, 16 Nov 2021 00:04:01 GMT
etag: "1017-5d0dca9a37e40"
accept-ranges: bytes
content-length: 4119
cache-control: max-age=2592000, public
expires: Sat, 31 Dec 2022 05:14:44 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: image/png
date: Thu, 01 Dec 2022 05:14:44 GMT
server: Apache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffd12f9c423ffc627d9e3b3145944fe4
5cf9a7a784952e1bb0cbe499104f1774b1269d08
a25f1b752d9af599aefd73073c105853130f1759905269de3d582d2eb35fe167
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb0e1339e-3c63-4033-8b5b-e21137509777.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 16038
x-amzn-requestid: 925134ee-dd35-45ed-8da7-d60c9c484993
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cbz80EHboAMFtmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387cd1e-48de287757e82632291365ee;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:37:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: I8qQQUMSVzFmXqjWM1n_F1XEE-ZQcpEF81OwJgf9i3Q5M8XiFAa8Zg==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 30 Nov 2022 21:52:00 GMT
age: 26566
etag: "5cf9a7a784952e1bb0cbe499104f1774b1269d08"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/woocommerce-ajax-filters/assets/frontend/css/fullmain.min.css?ver=1.6.3.1
61.221.35.27200 OK 0 B URL HTTP/2 rswellbra.com/wp-content/plugins/woocommerce-ajax-filters/assets/frontend/css/fullmain.min.css?ver=1.6.3.1
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce-ajax-filters/assets/frontend/css/fullmain.min.css?ver=1.6.3.1 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:01 GMT
etag: "254ed-5e9df0a31e13a-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/
61.221.35.27200 OK 0 B IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
x-powered-by: PHP/7.4.33
link: <https://rswellbra.com/wp-json/>; rel="https://api.w.org/", <https://rswellbra.com/wp-json/wp/v2/pages/5>; rel="alternate"; type="application/json", <https://rswellbra.com/>; rel=shortlink
cache-control: max-age=0
expires: Thu, 01 Dec 2022 05:14:39 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/html; charset=UTF-8
date: Thu, 01 Dec 2022 05:14:39 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css?ver=3.6.7
61.221.35.27200 OK 0 B URL HTTP/2 rswellbra.com/wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css?ver=3.6.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/astra/assets/css/minified/compatibility/woocommerce/woocommerce.min.css?ver=3.6.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 06 Aug 2021 07:49:57 GMT
etag: "19c70-5c8df4823f2eb-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2
rswellbra.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.7
61.221.35.27200 OK 0 B URL HTTP/2 rswellbra.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.7
IP 61.221.35.27:0
ASN #3462 Data Communication Business Group
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.7 HTTP/1.1
Host: rswellbra.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://rswellbra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
last-modified: Fri, 30 Sep 2022 06:24:20 GMT
etag: "1a788-5e9df0b5533fc-gzip"
accept-ranges: bytes
cache-control: max-age=2592000, public
expires: Fri, 01 Dec 2023 05:14:40 GMT
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css
date: Thu, 01 Dec 2022 05:14:40 GMT
server: Apache
X-Firefox-Spdy: h2