firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 28 Sep 2022 20:15:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FHTc8w2tX6HqKCkvbWbqDfHxy3MfcK96PyFO04DjiOzhHNw6RQdjow==
Age: 326
advholistichealth.com/contact/
45.79.86.40301 Moved Permanently 333 B URL HTTP/1.1 advholistichealth.com/contact/
IP 45.79.86.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 94092620dca367bab68d95ee30abda09
5d190a84db993ed3f8c8929f643bf88408c5dd0d
372c12bf68f49906ef01ef87f6230ad357631a01e052780af4687d82110c48c6
Analyzer Verdict Alert fortinet Malware
GET /contact/ HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 28 Sep 2022 20:21:05 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 333
Location: https://advholistichealth.com/contact/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7fb7c70f7f4e2cee27eb0e7d875931f7
98fca3817a551b1daecebae103a48e718b8b5a53
2a40f957a6b1734aa3f87cff51b673f0536732db15b09033dd604879692df349
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A40F957A6B1734AA3F87CFF51B673F0536732DB15B09033DD604879692DF349"
Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11711
Expires: Wed, 28 Sep 2022 23:36:17 GMT
Date: Wed, 28 Sep 2022 20:21:06 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VwxDZTJlWYs7on-4ziDQY6rlRrGRh8W-25oQ_Ze6ts5fqFRh1ylwOg==
age: 53560
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Wed, 28 Sep 2022 19:29:33 GMT
Expires: Wed, 28 Sep 2022 20:26:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ZTNQW8R6y4CoYBELZehRc7GV74pK-8RY1qGKkiGvfhwFtok9jMeBNA==
Age: 3093
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7e94d2c02b179a69f435caa1f2189489
22525907c58be2473fc0bff4ea004a7ad72289b4
b5da525a46c1c51a8596dc209c7f8a2a8b8423d8dae254e62cec97001dcb6a44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5DA525A46C1C51A8596DC209C7F8A2A8B8423D8DAE254E62CEC97001DCB6A44"
Last-Modified: Wed, 28 Sep 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21559
Expires: Thu, 29 Sep 2022 02:20:25 GMT
Date: Wed, 28 Sep 2022 20:21:06 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3526d5ce1381ba26cbc553db057e1915
fe01c920696448e8bf12e6fff877bce8281d34a2
09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5094
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:21:06 GMT
Last-Modified: Wed, 28 Sep 2022 18:56:12 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471
advholistichealth.com/contact/
45.79.86.40200 OK 15 kB URL HTTP/2 advholistichealth.com/contact/
IP 45.79.86.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (26761), with CRLF, LF line terminators
Hash 7cbc02ca4d7cc7f6de0690ae0cda6c1c
8e5b9219d41409b6e8a1734be5b22ddb0358619b
fbd235596fe5723978880949c666c42ae34e38a52bad9eae4d09764606824485
Analyzer Verdict Alert fortinet Malware
GET /contact/ HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:06 GMT
content-type: text/html; charset=UTF-8
content-length: 15312
link: <https://advholistichealth.com/wp-json/>; rel="https://api.w.org/", <https://advholistichealth.com/wp-json/wp/v2/pages/970>; rel="alternate"; type="application/json", <https://advholistichealth.com/?p=970>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e2875a9e06f892f0d4fa46c0f98a1c49
9c0e332f55a592367b602494642ee2127699b543
74692ca89ddc427d0c55f56aedb738b107a9761c44ed5201f932f54950a6f406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:21:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e2875a9e06f892f0d4fa46c0f98a1c49
9c0e332f55a592367b602494642ee2127699b543
74692ca89ddc427d0c55f56aedb738b107a9761c44ed5201f932f54950a6f406
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:21:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
44.242.3.166101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.242.3.166:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dzWAJMQv5QqakcwM1jSmCg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: AWnQUKAZjXQb1T2EDZ+vXcf6gmE=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3e9d3eab1fba386c4fdf3af9a757cfa9
b50127a1072c95ed71110b07dd58eab72747e6f8
869e09d135cff97a1073e32fa1808d0068195421369d138ad6bba86cfef18091
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:21:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/extern/animate.css/animate.min.css?ver=1.57.0
45.79.86.40200 OK 4.4 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/extern/animate.css/animate.min.css?ver=1.57.0
IP 45.79.86.40:0
Hash b2d34f77af61287dbb241bc0dac5f1f7
28683f9ea3db7a1948d1fe46dac3205e82dae022
fa94f672744e7493127791a1f264ea1a4d22fc72e2f10140397ea2b0fbabc0ad
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/extern/animate.css/animate.min.css?ver=1.57.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 4430
last-modified: Wed, 16 Mar 2022 00:35:34 GMT
etag: "11a43-5da4b176d9620-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.1.0
45.79.86.40200 OK 3.7 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.1.0
IP 45.79.86.40:0
Hash 973c5d16c9ec134e9a71e6c1f7eea375
f63f3d830b0811f3d179a2d5d505a88c34b695b1
620dded1d79508934921a35ef2d757e0ef8603ca400c3b3c31d5345300121432
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/LayerSlider/static/layerslider/css/layerslider.css?ver=6.1.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 3677
last-modified: Fri, 03 Mar 2017 08:18:01 GMT
etag: "4bc5-549cf2f1c6040-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
45.79.86.40200 OK 972 B URL HTTP/2 advholistichealth.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
IP 45.79.86.40:0
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 972
last-modified: Wed, 16 Mar 2022 00:35:06 GMT
etag: "aab-5da4b15c34ded-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/wp-job-manager/assets/dist/css/job-listings.css?ver=d866e43503c5e047c6b0be0a9557cf8e
45.79.86.40200 OK 1.4 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/wp-job-manager/assets/dist/css/job-listings.css?ver=d866e43503c5e047c6b0be0a9557cf8e
IP 45.79.86.40:0
File type Unicode text, UTF-8 text, with very long lines (8452)
Hash e9b8898ace18d7e1cde38379396d298e
978ccfcd37618825fb50d7ef4e4811c89d6bfa6a
663c048c8d08f0cc4ca99b64929461a5bb528a3be3ce8afa64c32fb2b7b2c72e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-job-manager/assets/dist/css/job-listings.css?ver=d866e43503c5e047c6b0be0a9557cf8e HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 1353
last-modified: Wed, 16 Mar 2022 00:35:13 GMT
etag: "2107-5da4b1634b607-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
45.79.86.40200 OK 12 kB URL HTTP/2 advholistichealth.com/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 11681
last-modified: Wed, 13 Jul 2022 01:22:12 GMT
etag: "15b64-5e3a59d544074-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/freshGrid.css?ver=1.57.0
45.79.86.40200 OK 3.9 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/freshGrid.css?ver=1.57.0
IP 45.79.86.40:0
File type ASCII text, with very long lines (540)
Hash 18794590e1970da3057136f88c646703
476cfc0a76d556b2b46bf2e401d682247ccf636f
3108edd222c808098b2ab36e2af1c139042cccdcdffae982ed5b0ec1c2fb1235
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/freshGrid.css?ver=1.57.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 3877
last-modified: Wed, 16 Mar 2022 00:35:34 GMT
etag: "4a6a-5da4b176d9620-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext
142.250.74.10200 OK 1.4 kB URL HTTP/2 fonts.googleapis.com/css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext
IP 142.250.74.10:0
Hash c604efe788ab9238ad87498c978200e9
d17cc034cb4777a11adca74f7bfe6351d8b37a5a
7b772b70efd7dc7b01d8b5ae17cf479726c3e01ae15494a296ff54bb154c2631
GET /css?family=Lato:100,300,regular,700,900%7COpen+Sans:300%7CIndie+Flower:regular%7COswald:300,regular,700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 20:21:07 GMT
date: Wed, 28 Sep 2022 20:21:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js?v=3&key=AIzaSyDR5Vhuu9OH2tSAIuLgADP5BHf5ZN_bMmw&ver=6.0.2
142.250.74.10200 OK 55 kB URL HTTP/2 maps.googleapis.com/maps/api/js?v=3&key=AIzaSyDR5Vhuu9OH2tSAIuLgADP5BHf5ZN_bMmw&ver=6.0.2
IP 142.250.74.10:0
File type ASCII text, with very long lines (2456)
Hash 0162708582e8730b0263247515e4a8f0
907808907a79af31bb76d23e73ad6af748f8eb69
398a622ef637155f9df7a51edd16a49db01cbaa0bc157c8ae813b25f1d5a2e96
GET /maps/api/js?v=3&key=AIzaSyDR5Vhuu9OH2tSAIuLgADP5BHf5ZN_bMmw&ver=6.0.2 HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Wed, 28 Sep 2022 20:21:07 GMT
expires: Wed, 28 Sep 2022 20:51:07 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 55022
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=28
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 11b1f146fa6fa4a88b1efc65b548fb73
f3f12e14f8f66a2e7c43015c394af199e4a94e06
74441efb7e39672af50ce0b6190b20d20bc3ae744b415a17f8b96a0f89aa0491
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:21:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
advholistichealth.com/wp-content/themes/ark/assets/plugins/scrollbar/jquery.mCustomScrollbar.css?ver=3.1.12
45.79.86.40200 OK 4.0 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/scrollbar/jquery.mCustomScrollbar.css?ver=3.1.12
IP 45.79.86.40:0
File type ASCII text, with very long lines (42867)
Hash ce0f50eaff0708e1206eaa9ad01c0679
fd235fa0c7d357530808d97aafbfb83d62df19d2
8f5be2b27dfaf342e23b3ec9bb932a87254fc315a1f0d367c0f3bbc4c14827ab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/scrollbar/jquery.mCustomScrollbar.css?ver=3.1.12 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 3970
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "a774-5da4b18f77536-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.1
45.79.86.40200 OK 9.6 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.1
IP 45.79.86.40:0
File type Unicode text, UTF-8 text, with very long lines (5178), with CRLF line terminators
Hash 720fc0a8dbcc1bd2c6bc2e2d8f1a1ea5
141d498396c9688411ebba4a9490116f09b04049
f2656c8581ad8ba6fd6bad6bcb19d57cba2015438df8e85ae6019de5b1751a62
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.4.8.1 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 9562
last-modified: Tue, 21 May 2019 03:58:08 GMT
etag: "9b8c-5895ddb507400-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/owl-carousel/assets/owl.carousel.css?ver=1.3.2
45.79.86.40200 OK 1.1 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/owl-carousel/assets/owl.carousel.css?ver=1.3.2
IP 45.79.86.40:0
Hash 042f29996138d1bcf7cb97244315fd18
58b1caca2589ab9fa3450c806b87c943a395f698
805f1a42e4fdb3133675843c9069f16924e04aff18b73cb6a7d888394a374dfd
GET /wp-content/themes/ark/assets/plugins/owl-carousel/assets/owl.carousel.css?ver=1.3.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 1089
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "11df-5da4b18f77536-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/bootstrap/css/bootstrap.min.css?ver=3.3.6
45.79.86.40200 OK 20 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/bootstrap/css/bootstrap.min.css?ver=3.3.6
IP 45.79.86.40:0
File type ASCII text, with very long lines (65371)
Hash f6fd8790f1d560aab890a85a78b6d67d
98adac8aece45e55b10c8d0d645038a990b0ee00
ceae5c3fdd35600e1de72b94f59efb2fc3b51163640a180431c8d59b95e2ef0f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/bootstrap/css/bootstrap.min.css?ver=3.3.6 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 19744
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "1d970-5da4b18f448b0-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-et-line/ff-font-et-line.css?ver=6.0.2
45.79.86.40200 OK 1.1 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-et-line/ff-font-et-line.css?ver=6.0.2
IP 45.79.86.40:0
Hash 8cdf4e4f6b9c6c943519282476808159
be88fe32753b338cb93ca3eab182944b590ca3fe
520d536069be9b4ec5c9673ff14265c67266638fe3fd2c006c4384fee5aa8786
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-et-line/ff-font-et-line.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 1122
last-modified: Wed, 16 Mar 2022 00:35:33 GMT
etag: "19c6-5da4b176c2ebe-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/magnific-popup/magnific-popup.css?ver=1.1.0
45.79.86.40200 OK 1.9 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/magnific-popup/magnific-popup.css?ver=1.1.0
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash 9e623741186a11c25fe890664773ff40
7f0be6e9426addc6ccdbd41654d7ed3b0f7108a5
0fc93b8ded6d1b45efb53764c2eef92b46f33dbd72571e2621bdd5b6a97e9deb
GET /wp-content/themes/ark/assets/plugins/magnific-popup/magnific-popup.css?ver=1.1.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 1904
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "1e25-5da4b18f48730-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/uploads/2020/04/advholistichealth_logo_500px-1.png
45.79.86.40301 Moved Permanently 386 B URL HTTP/1.1 advholistichealth.com/wp-content/uploads/2020/04/advholistichealth_logo_500px-1.png
IP 45.79.86.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2bd2e1f6959359cc5e8c0ed146660f7a
42f04a8e022e891b42c22566acf2cf9561034d76
3725fc1b1b61267d7e0fcfda757837dc4c001d9b0562afb7e0b28e37d0694af4
GET /wp-content/uploads/2020/04/advholistichealth_logo_500px-1.png HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 28 Sep 2022 20:21:07 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 386
Location: https://advholistichealth.com/wp-content/uploads/2020/04/advholistichealth_logo_500px-1.png
advholistichealth.com/wp-content/themes/ark/assets/plugins/cubeportfolio/css/cubeportfolio.min.css?ver=3.8.0
45.79.86.40200 OK 11 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/cubeportfolio/css/cubeportfolio.min.css?ver=3.8.0
IP 45.79.86.40:0
File type ASCII text, with very long lines (65254)
Hash f6fe1b2f2b30665d56f269644556046e
a5439a520b5386114f9f63c3233c85b3b03425f7
0436f0fb70fcfb3f81c5cc205f1e6350e4a904a7e21b1f5ee87b6f049f5f84bf
GET /wp-content/themes/ark/assets/plugins/cubeportfolio/css/cubeportfolio.min.css?ver=3.8.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 11096
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "1336d-5da4b18f48730-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark-child/style.css?ver=6.0.2
45.79.86.40200 OK 448 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark-child/style.css?ver=6.0.2
IP 45.79.86.40:0
Hash 20511e8d2b9779a83dbb4df386d13c04
324f1f24ca6ec5d541e4a8aed648f5b20194ee33
f890b3f13d1aef4a2e0cfb924982069137ac04745a601099193929028d510994
GET /wp-content/themes/ark-child/style.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 448
last-modified: Fri, 24 Apr 2020 00:00:25 GMT
etag: "355-5a3fe0d607840-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-simple-line-icons/ff-font-simple-line-icons.css?ver=6.0.2
45.79.86.40200 OK 1.8 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-simple-line-icons/ff-font-simple-line-icons.css?ver=6.0.2
IP 45.79.86.40:0
Hash 99d72549dc12161738d354586559f075
2dab62df1eb7b4a258bc637ad88ccf000df6f44c
a247e332e3501da13b8d4d5dff98fe3f6b5ce542ee54299e08e8b8b16743aed9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-simple-line-icons/ff-font-simple-line-icons.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 1760
last-modified: Wed, 16 Mar 2022 00:35:33 GMT
etag: "3009-5da4b176c1f1e-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-awesome4/ff-font-awesome4.css?ver=6.0.2
45.79.86.40200 OK 9.0 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-awesome4/ff-font-awesome4.css?ver=6.0.2
IP 45.79.86.40:0
Hash e1c5bf2cc68e03e704f16933df084ed1
ffaca125a345c8efb9050f357360f72d99d1fa76
089e30abb1cf4e2d95f70b6772429aff7b08ad1e3e12c77f32bc188b0da08b5e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-awesome4/ff-font-awesome4.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 8978
last-modified: Wed, 16 Mar 2022 00:35:33 GMT
etag: "10819-5da4b176c6d3e-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/jquery.freshGrid.js?ver=1.57.0
45.79.86.40200 OK 6.4 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/jquery.freshGrid.js?ver=1.57.0
IP 45.79.86.40:0
Hash 497f68a5d66e8ff3efdc23533768cf87
8e592b04886fa5579998061fc1c737af7be3795f
0bac85a4aa4cee414aa3198e8ac3e1eb73db8243c3215396472a7e009d3c13cd
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/jquery.freshGrid.js?ver=1.57.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 6352
last-modified: Wed, 16 Mar 2022 00:35:34 GMT
etag: "8759-5da4b176d9620-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
45.79.86.40200 OK 7.1 kB URL HTTP/2 advholistichealth.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 45.79.86.40:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 2f4fcc5a628b379672d76b7e91cbdf07
9d72f2c9cbc1e9b036360acfce8c8ccc8b832b8c
a360f715a418026d2e1acd81c02c83233d0c0b60fdf4ce0b4d33562925d6a0b5
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 7095
last-modified: Wed, 25 May 2022 01:39:52 GMT
etag: "4ac6-5dfcc265321cb-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1
45.79.86.40200 OK 6.5 kB URL HTTP/2 advholistichealth.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1
IP 45.79.86.40:0
File type ASCII text, with very long lines (15439)
Hash 0748a982f068af9766c253cb21601ff2
9994f710f5450ee963f9714f715c6c9dbd64d417
2caf6897d004cd4727e5ab8b9992bb08d96b6ac38917142d1c2a49f74e1e4114
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 6502
last-modified: Wed, 25 May 2022 01:39:52 GMT
etag: "43b3-5dfcc2653ae6c-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
45.79.86.40200 OK 2.5 kB URL HTTP/2 advholistichealth.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 45.79.86.40:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 27cbbd0a9d7c5ad9402118c4afc36035
7659d08a005f5ecfa6c779e3cda45c30007fd059
ebc771d0af626966e38535357861fab0090e0bd7ff346cbe3c7ffdde1683809f
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 2457
last-modified: Wed, 25 May 2022 01:39:52 GMT
etag: "194b-5dfcc2653316b-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/jquery.touchSwipe.min.js?ver=6.0.2
45.79.86.40200 OK 5.0 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/jquery.touchSwipe.min.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with very long lines (20000)
Hash fb4b13a45c215e614b076c96c91837ad
0a97631e12a769a31e68cb2394c499ccf1422429
0a0fd07fe02a859bd977639e1750050d0a0dced1198907773f94e0047be3a95c
GET /wp-content/themes/ark/assets/plugins/jquery.touchSwipe.min.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 5048
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "4fbc-5da4b18f755f6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/extern/wow.js/wow.min.js?ver=1.57.0
45.79.86.40200 OK 2.7 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/extern/wow.js/wow.min.js?ver=1.57.0
IP 45.79.86.40:0
File type ASCII text, with very long lines (8385)
Hash 642cdb5c8cacc5096438747217356e26
096d52889973afaa9e73bb4b76463c6af8f69df0
c929db744440739263b08afd47af845626a5f7b5b879177c194a91d72f668f02
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework//framework/themes/builder/metaBoxThemeBuilder/assets/freshGrid/extern/wow.js/wow.min.js?ver=1.57.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 2741
last-modified: Wed, 16 Mar 2022 00:35:34 GMT
etag: "20df-5da4b176d9620-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/jquery.smooth-scroll.js?ver=1.2.1
45.79.86.40200 OK 4.6 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/jquery.smooth-scroll.js?ver=1.2.1
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash bdf0bb9305777c169222eec72f8d364d
9042071e9f61fe018e1cacda93df73796c64d46d
e917309bb662abd9ac74b9c740d574ed062a7845e36257c727435f32afc76ad1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/jquery.smooth-scroll.js?ver=1.2.1 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 4554
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "4570-5da4b18f76596-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/css/one-page-business.css?ver=6.0.2
45.79.86.40200 OK 5.6 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/css/one-page-business.css?ver=6.0.2
IP 45.79.86.40:0
Hash b85247d6b8fa1deff7e32219ecbdd38b
149f36e1171c08c3e25b078b83b94d487fd45734
3f42ffbdefc377f4e011f906e2336e78c5da3b5ee89844e36781f2edede22c95
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/css/one-page-business.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 5588
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "c995-5da4b18f4296f-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1
45.79.86.40200 OK 18 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1
IP 45.79.86.40:0
File type ASCII text, with very long lines (64614), with CRLF line terminators
Hash b300af7280cf82d31e7f0b75c128598c
66b506bb8254f08ffe57c2b1e42722b73464670f
feffecee338ad546654ada73f52882c96356f6882a3e59cb540878415d77db1d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.4.8.1 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 18090
last-modified: Tue, 21 May 2019 03:58:08 GMT
etag: "fdb5-5895ddb507400-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
45.79.86.40200 OK 4.2 kB URL HTTP/2 advholistichealth.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 45.79.86.40:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 4169
last-modified: Wed, 23 Dec 2020 16:40:58 GMT
etag: "2bd8-5b7245b0f7a80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/twentytwenty/css/twentytwenty.css?ver=6.0.2
45.79.86.40200 OK 1.1 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/twentytwenty/css/twentytwenty.css?ver=6.0.2
IP 45.79.86.40:0
Hash d9d0d8bed91e68e688f23efe74b19dc7
e1f940a1022b4a119ffc01335e91da84bc1f0c3a
94c3404f88918f501c9b7935180532edc3a533274d8a5488596a261b386cb994
GET /wp-content/themes/ark/assets/plugins/twentytwenty/css/twentytwenty.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 1066
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "195b-5da4b18f79476-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/magnific-popup/jquery.magnific-popup.min.js?ver=6.0.2
45.79.86.40200 OK 7.7 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/magnific-popup/jquery.magnific-popup.min.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with very long lines (21014), with CRLF line terminators
Hash 33e0b253c9471b17ba83efadcef1e311
672f8cac41d111ebb2d7e7d33ebeb8c23e170f15
ce700bc495ab11705ffd44079e91171f64bdd5ca738773744125506e447036a3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/magnific-popup/jquery.magnific-popup.min.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 7690
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "529a-5da4b18f48730-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
45.79.86.40200 OK 3.3 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
IP 45.79.86.40:0
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash 4ac0d5ab8d83806d59c4e1f7bf0a855a
81153a2f5e3a21febe9ede53c9f0073da3e14829
605fd4e7f4d3fbb5505bb81e3f72c685b6ef411c27cde2f7bab2787c3d870b10
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 3286
last-modified: Wed, 16 Mar 2022 00:35:06 GMT
etag: "25f8-5da4b15c34ded-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0
45.79.86.40200 OK 39 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0
IP 45.79.86.40:0
File type ASCII text, with very long lines (32006)
Hash 86f8c1fad2409b0b5fedeb92e3131103
65f31d92d9a8b4c32a234d893a3686910d46f36b
83a6cd537d4883082902348b0c38abdda5390664b34af61ccfd3871ca5dd641a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/LayerSlider/static/layerslider/js/greensock.js?ver=1.19.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 39407
last-modified: Fri, 03 Mar 2017 08:18:01 GMT
etag: "1c9f6-549cf2f1c6040-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/magnific-popup.js?ver=6.0.2
45.79.86.40200 OK 953 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/magnific-popup.js?ver=6.0.2
IP 45.79.86.40:0
File type HTML document, ASCII text, with CRLF line terminators
Hash 3d8f6fdbe1a1cbec88d86123445dffd4
6accfd38b53e2b3285ef0c7054fcf57c0a5df087
78179b6dd334167a00a16e9740d788ae7705567ac88e825d154f7ee548b4f723
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/scripts/components/magnific-popup.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 953
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "e90-5da4b18f79476-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/form-modal.js?ver=6.0.2
45.79.86.40200 OK 934 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/form-modal.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash dc22277aa9fb13ae040576bb3597abf8
5eb8ca0fbbe2b0037c36ef6719e712fc80b386ab
07944fdae1d3b2591d0849ea7483ef0212cecd9b205a724056b6fa30c5e5b315
GET /wp-content/themes/ark/assets/scripts/components/form-modal.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 934
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "11c1-5da4b18f79476-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/jquery.imagesloaded.pkgd.min.js?ver=3.2.0
45.79.86.40200 OK 2.6 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/jquery.imagesloaded.pkgd.min.js?ver=3.2.0
IP 45.79.86.40:0
File type ASCII text, with very long lines (7996), with CRLF line terminators
Hash 2dc01b108309dc8385bf52879b336bcc
9062f3f6ef2a4be57526c81b48623a556744e197
8f341781ce21e730f1dc6be0fe6c9158efdfaeede0bbb0eac07e49eb6cf4a3cb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/jquery.imagesloaded.pkgd.min.js?ver=3.2.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 2556
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "1fb7-5da4b18f76596-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/wow.js?ver=6.0.2
45.79.86.40200 OK 350 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/wow.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash 533b2bcdcb0f8b324225534702dde950
9172e693c8469c097ec7e2b8e286314c08b7e071
50f6a0eb13c9eaa927f754f29d5d6f38633b9038b8d821e37fcb634cce4578c9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/scripts/components/wow.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 350
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "2e0-5da4b18f7a416-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/google-map-multiple-info-marker.js?ver=6.0.2
45.79.86.40200 OK 1.3 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/google-map-multiple-info-marker.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash cbc0c9f72f9278fdb95ea09632eee10a
688c1a9329813d41511881e73e169f575c048b81
54df519ac09f11f492800741b11bfa8a5ae91abe28b72567294858bfc5d1a2ef
GET /wp-content/themes/ark/assets/scripts/components/google-map-multiple-info-marker.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 1260
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "e7c-5da4b18f79476-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/validation/additional-methods.min.js?ver=1.14.0
45.79.86.40200 OK 5.0 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/validation/additional-methods.min.js?ver=1.14.0
IP 45.79.86.40:0
File type Unicode text, UTF-8 text, with very long lines (17072), with CRLF line terminators
Hash b4da1282c2676ef6ca5dce215d42bd85
8a0eed59c9ed02c15b983dbb6f52967ba110d8d1
2eee34d6fd8b647d07ac9ac174e84134b9d1f647c43ab2e5772383ccc89884cc
GET /wp-content/themes/ark/assets/plugins/validation/additional-methods.min.js?ver=1.14.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 5025
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "434b-5da4b18f79476-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/auto-hiding-navbar.js?ver=6.0.2
45.79.86.40200 OK 634 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/auto-hiding-navbar.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash 45a41207d252e7269bae57aa42d95288
e551c63e3984e37ec37f0f43bafebb9c044df4dd
38c6240660950c409416fbf179828faaf6fce3e2997e7913905d09adf96accb4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/scripts/components/auto-hiding-navbar.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 634
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "7a4-5da4b18f7a416-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/header-sticky.js?ver=6.0.2
45.79.86.40200 OK 643 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/header-sticky.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash 7c76ae6737cbc3e720e5fa1ffb2e06ad
e773057aa2220fea887052a6a3063d03fa7c04fd
1c642eaf9f738dd36c9bccffc4351f71371429fe44c6fc8b754f11e8ed57b7d2
GET /wp-content/themes/ark/assets/scripts/components/header-sticky.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 643
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "80b-5da4b18f7a416-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fusion-builder/css/fusion-shortcodes.min.css?ver=1.0.6
45.79.86.40200 OK 475 B URL HTTP/2 advholistichealth.com/wp-content/plugins/fusion-builder/css/fusion-shortcodes.min.css?ver=1.0.6
IP 45.79.86.40:0
File type ASCII text, with very long lines (1384), with no line terminators
Hash db570aec525ceef3c73ebf51cc680af8
1e3e9355c73011b0a482f2eb1520d167a0cfc5b4
ddffbf36eed0886d1c75fc963000062e57688d4e768a7186e25df6bde0a94382
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fusion-builder/css/fusion-shortcodes.min.css?ver=1.0.6 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 475
last-modified: Fri, 03 Mar 2017 08:14:49 GMT
etag: "568-549cf23aab040-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/validation/jquery.validate.min.js?ver=1.14.0
45.79.86.40200 OK 6.8 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/validation/jquery.validate.min.js?ver=1.14.0
IP 45.79.86.40:0
File type ASCII text, with very long lines (20952), with CRLF line terminators
Hash 4c3448abfe9ad3a150a9d2f8613edd56
24aff8953db9d6342ef00aadd31a89c4de0e361c
79ffebcdbfc82689fb4553bb6886610ab101af0dc0a693352022d78d139245a7
GET /wp-content/themes/ark/assets/plugins/validation/jquery.validate.min.js?ver=1.14.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 6801
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "5264-5da4b18f79476-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/app.js?ver=6.0.2
45.79.86.40200 OK 6.6 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/app.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash 66264c3b4c5178263e0ae9112c154ab6
3f9b4230d7522ab58f161f86fcb57fa37223889d
4f30a7fd5f5cad6fa3038de0e1740d754d43facc26a67653c159ff5017d11a1e
GET /wp-content/themes/ark/assets/scripts/app.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 6617
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "7769-5da4b18f7a416-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/owl-carousel.js?ver=6.0.2
45.79.86.40200 OK 2.0 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/owl-carousel.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash d454c07fc447957d8e878e9298fe6662
3020c0f5bfebd61ef3eda8c9c44d1a4d1c4cf27e
92b01fc3357ae178b1d2914a2235e852c8d12496e25d1283f89d087f8d52d8f9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/scripts/components/owl-carousel.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 1981
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "3e9a-5da4b18f7a416-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/uploads/freshframework/css/colors.css?ver=6.0.2
45.79.86.40200 OK 6.2 kB URL HTTP/2 advholistichealth.com/wp-content/uploads/freshframework/css/colors.css?ver=6.0.2
IP 45.79.86.40:0
Hash 94fbc0a6177ca541d5b8f35e75f14ddf
8ff1cfd194b6dc2d21944e37579e412e1be9f912
9836cfda99096c659da15987964282da066acd83e894f96fb6e9228ada25fdda
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/freshframework/css/colors.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 6162
last-modified: Wed, 28 Sep 2022 20:21:06 GMT
etag: W/"dec8-5e9c28029e9e2-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/css/landing.css?ver=6.0.2
45.79.86.40200 OK 6.3 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/css/landing.css?ver=6.0.2
IP 45.79.86.40:0
File type Unicode text, UTF-8 text, with very long lines (334)
Hash b66389bf350d5e2cb0b29d081ae1aabd
d105c9796de81e7f1d1aa7106b2773299c0455c3
425e5da4ebbb535f74dbafb50ed5b8ec2b76911e31af9a1043ea634afe43737c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/css/landing.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 6275
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "cb2b-5da4b18f448b0-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
45.79.86.40200 OK 5.0 kB URL HTTP/2 advholistichealth.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 5009
last-modified: Wed, 25 May 2022 01:39:52 GMT
etag: "48b9-5dfcc26539ecc-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/fresh-framework//framework/frslib/src/frslib.js?ver=1.57.0
45.79.86.40200 OK 9.9 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework//framework/frslib/src/frslib.js?ver=1.57.0
IP 45.79.86.40:0
Hash af6934c6b883d274457b4ca42796adfa
4f78d0a316c4eed6a83c461889c05ffdfe590341
fa257239e3754b512a015ddfd7f8d67df4c204be718239a650eb6273632dee0b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework//framework/frslib/src/frslib.js?ver=1.57.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 9942
last-modified: Wed, 16 Mar 2022 00:35:34 GMT
etag: "8002-5da4b176dd4a1-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.1.0
45.79.86.40200 OK 42 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.1.0
IP 45.79.86.40:0
File type ASCII text, with very long lines (65335)
Hash 446e58f23216b7d8523e040d7558ba5d
34266767f99f839543609e6267f90161ca79e8e4
ca148f853fd760380822a68b419d7fc7979116f2469daf7141e8c0f5847d0f17
GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.kreaturamedia.jquery.js?ver=6.1.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 42176
last-modified: Fri, 03 Mar 2017 08:18:01 GMT
etag: "1ad83-549cf2f1c6040-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1
45.79.86.40200 OK 38 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1
IP 45.79.86.40:0
File type ASCII text, with very long lines (27287), with CRLF line terminators
Hash 33ad97fbd5f6d0ad97af5461cc857da3
a975057df83659e526059661a2dae1a5a4d23fe2
ba0476734001e6e0808e7882a24852cf298dacac37b2beaf2c17718d2032afb2
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.4.8.1 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 38337
last-modified: Tue, 21 May 2019 03:58:08 GMT
etag: "1afe4-5895ddb507400-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/google-map.js?ver=0.4.21
45.79.86.40200 OK 13 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/google-map.js?ver=0.4.21
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash a0acb9a6d026184cc8a636c8f6789730
f15fa7f98b81f86d44dcf39edc2e0aefdca8df06
24ae7478f3f1b91f1bfda0e2ef793f8ec48d57b89d325f7bec2ed286674d223c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/google-map.js?ver=0.4.21 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 12832
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "f1cc-5da4b18f755f6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/jquery.back-to-top.js?ver=6.0.2
45.79.86.40200 OK 446 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/jquery.back-to-top.js?ver=6.0.2
IP 45.79.86.40:0
File type ASCII text, with CRLF line terminators
Hash fb1b4b8079036802464089fbf298aa64
dd55e48f0a1725da5113614bf33f8e6cefb35157
d1e0af52ea90bb7a57a0e99d84ee4779f7f27ed13be8cb2e5fc8c10bf1cac333
GET /wp-content/themes/ark/assets/plugins/jquery.back-to-top.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 446
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "444-5da4b18f76596-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/owl-carousel/owl.carousel.min.js?ver=1.3.2
45.79.86.40200 OK 10 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/owl-carousel/owl.carousel.min.js?ver=1.3.2
IP 45.79.86.40:0
File type ASCII text, with very long lines (32068)
Hash 8c8653b76bf5d033f23559751222ff93
062740fdc84cc223fd69055281346dafae2f6f5c
b3e7add5da93565978346f1b6d9829689f0dbf6341a031cc8190f96cb69e6d62
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/owl-carousel/owl.carousel.min.js?ver=1.3.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 10534
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "9df4-5da4b18f77536-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/scripts/components/custom-contact-form.js?ver=6.0.2
45.79.86.40200 OK 3.0 kB URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/scripts/components/custom-contact-form.js?ver=6.0.2
IP 45.79.86.40:0
Hash abfbbd272bf3442868e970dffab2637d
905ec33a4f18f5770dfe5d8cac285b003dfcd06b
b971870e290e1cf7771ec51c8e4839d4bcdd5a05cbf1300281cd661cf5c7ffab
GET /wp-content/themes/ark/assets/scripts/components/custom-contact-form.js?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 3046
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "3e8d-5da4b18f7a416-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/uploads/2020/04/advholistichealth_logo_500px-1.png
45.79.86.40200 OK 12 kB URL HTTP/2 advholistichealth.com/wp-content/uploads/2020/04/advholistichealth_logo_500px-1.png
IP 45.79.86.40:0
File type PNG image data, 500 x 184, 8-bit/color RGBA, non-interlaced\012- data
Hash 99de601c1e62be8462c40f55a80b15a9
ae66851d37529ddcd5af88f3086ac00715d9e86b
6764bd5e3246fe19d065404ba86e045729489aeff8c1060611705610a3fa6b1e
GET /wp-content/uploads/2020/04/advholistichealth_logo_500px-1.png HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: image/png
content-length: 11911
last-modified: Fri, 10 Apr 2020 00:51:56 GMT
etag: "2e87-5a2e523d62300"
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eb2f3cc13b8ab763c5f346d6fc23054d
1768cc61721a6a6624c1ccbf2c874342f53abd99
3faee940dd222a051862bc2a4e090ecd2cc1f2ead8b1a5c84e10241f31461c5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:21:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8035
Expires: Wed, 28 Sep 2022 22:35:03 GMT
Date: Wed, 28 Sep 2022 20:21:08 GMT
Connection: keep-alive
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://advholistichealth.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 2820
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8035
Expires: Wed, 28 Sep 2022 22:35:03 GMT
Date: Wed, 28 Sep 2022 20:21:08 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eb2f3cc13b8ab763c5f346d6fc23054d
1768cc61721a6a6624c1ccbf2c874342f53abd99
3faee940dd222a051862bc2a4e090ecd2cc1f2ead8b1a5c84e10241f31461c5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:21:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://advholistichealth.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 2820
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8035
Expires: Wed, 28 Sep 2022 22:35:03 GMT
Date: Wed, 28 Sep 2022 20:21:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4364fa358f76c1635458dab5d598f857
d15fc7359711b1651235fa1be66accc03fe26c1c
6449bf062dbb79683071f367ca142c175ef304485cb4d3711feb4763146e4fa7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6449BF062DBB79683071F367CA142C175EF304485CB4D3711FEB4763146E4FA7"
Last-Modified: Wed, 28 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8035
Expires: Wed, 28 Sep 2022 22:35:03 GMT
Date: Wed, 28 Sep 2022 20:21:08 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ad84ed0c5b2090df7996007514cf1984
651600f2ef18cecc2e38370069bbb5e1d86f68e0
a3d0729e1d43afeadd2dd8273c858b8839d9e476f773c8ec9d96b5969a9e0b4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F693de74c-173e-4d9b-8317-35601f30ffd7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13299
x-amzn-requestid: 926df8b6-beec-470d-b0b3-33be326cd379
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF8YIAMF3Nw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-343e91e735af43d01fc83ddd;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KmVkKXoPqZmnwFtpKhuox1kJNDoSxMEmYE39_zVPyaeoU4sPqq-_wA==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:23 GMT
age: 81405
etag: "651600f2ef18cecc2e38370069bbb5e1d86f68e0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b794c6812cb546de0295e087ebe66a7
a54803cca7d3c509c195f65961e1110c8ec56f55
6a207f75eb3951f3dea5252bc8d185cd604d3d657f15b838774e8087e91f37f5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad593ee0-d404-46e3-b129-229e09b263b0.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12016
x-amzn-requestid: ec1b3715-5d0f-4045-aa5b-b70a55c81d72
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EtyIAMFdZg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-201dd1ef1426a09965c68dab;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y3DefdcXJyoDHpJXwz460gfWcv2JUboOFExNQmTFgy30B4mn54Xvuw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:44:30 GMT
age: 81398
etag: "a54803cca7d3c509c195f65961e1110c8ec56f55"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62e68c3cd08dd94d910507512a67e85f
3d4fa8701f17e8818c25584ef5f04bfbee8440cd
058d798963f83f5fb88ab728185f755c5353fa981d93e1b6ff869089f501586b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79631135-a10c-43bf-85d2-fa2236b96883.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13213
x-amzn-requestid: fe9ec409-2757-4910-8443-5b4d3be7efd3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZFlATEp8oAMFd9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63321b9b-3230e97a4fe34413285eb578;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 21:37:31 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rV80hKsopWPf_A8hKw0kwTOjVN4Bq-5f8oXDP2wluyGwof5yXFe2Bw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:42:47 GMT
age: 81501
etag: "3d4fa8701f17e8818c25584ef5f04bfbee8440cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://advholistichealth.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:21 GMT
expires: Thu, 28 Sep 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 2807
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6139c878a7d2bd32c61fc8287996eb5b
9c4692ea64832895fbd107d91f879728b6a440c7
3839df92f0a10c1433d5b576df50c9f7953912ae4f425012262f08ee8a59ce2e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ffa6dde-b51e-43f8-bfcb-3f442d674928.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8500
x-amzn-requestid: af82c8d6-950c-4933-87e3-7bbb15cb1ac8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3HOaoAMFoPQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-77e0ecc522de575e40f429b3;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: rD5LsVDLQkaomG1nCGZGihbdlWKMCjUYNC2kRyAjJesJEOEBSj8Q3A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:47:03 GMT
age: 81245
etag: "9c4692ea64832895fbd107d91f879728b6a440c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ea3890e460356d6ecc3ba4e405ac2e9e
b383135e2ebc23fe80eb0d594b198cb8c89327a5
8fcff053ce6e5750136bf876bad5b2916935f13ea039912d977928b086f0a48b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9a3b058-92c9-490e-9cbb-736f7e46510d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7455
x-amzn-requestid: e99c9f33-b72a-4070-80cf-06fb4a87d1df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZG4S6EcAoAMFX1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6332a0df-04122b4a345dbc3f3918af98;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 07:06:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Di1kDUlYEc1rv31fHM-OquU_W_LggEzDCTVME5iFJ5KffZcQyN6i2A==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 07:31:39 GMT
age: 46169
etag: "b383135e2ebc23fe80eb0d594b198cb8c89327a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa5cad224dbddd71881bd07255beb4da
bc214d60be395d4cf753216ff8f9691c33d25e75
82935e52aa59929a448d17a5a2d58fda86bb5c25bf6628a05bd904f82517dada
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14464
x-amzn-requestid: 6627e07e-034b-432e-ab9e-afe035fa0b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e9HgIoAMFxUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7f34c3f6454379724a7ac413;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: J27vcANRhkMUuGwTZjXkO0EF0-UjN-MODVQRKgsc7hJI2S-UPF8Ctw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:40:53 GMT
age: 81615
etag: "bc214d60be395d4cf753216ff8f9691c33d25e75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eb2f3cc13b8ab763c5f346d6fc23054d
1768cc61721a6a6624c1ccbf2c874342f53abd99
3faee940dd222a051862bc2a4e090ecd2cc1f2ead8b1a5c84e10241f31461c5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 28 Sep 2022 20:21:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-awesome4/ff-font-awesome4.woff?v=4.2.0
45.79.86.40200 OK 98 kB URL HTTP/2 advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-awesome4/ff-font-awesome4.woff?v=4.2.0
IP 45.79.86.40:0
File type Web Open Font Format, TrueType, length 98024, version 4.7\012- data
Hash fee66e712a8a08eef5805a46892932ad
28b782240b3e76db824e12c02754a9731a167527
ba0c59deb5450f5cb41b3f93609ee2d0d995415877ddfa223e8a8a7533474f07
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-awesome4/ff-font-awesome4.woff?v=4.2.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://advholistichealth.com/wp-content/plugins/fresh-framework///framework/extern/iconfonts/ff-font-awesome4/ff-font-awesome4.css?ver=6.0.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:08 GMT
content-type: application/font-woff
content-length: 98024
last-modified: Wed, 16 Mar 2022 00:35:33 GMT
etag: "17ee8-5da4b176c6d3e"
accept-ranges: bytes
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/uploads/2020/04/cropped-advholistichealth_logo_square_01-2-192x192.png
45.79.86.40200 OK 16 kB URL HTTP/2 advholistichealth.com/wp-content/uploads/2020/04/cropped-advholistichealth_logo_square_01-2-192x192.png
IP 45.79.86.40:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 47e7a95e57d7b21b0690b6c3916e5814
08cdf8a00d2fdba6cafee671708a66c041008a42
cad78211ee1131a90cfefaae3fb31b3da513598e97a3f12382a2faa9456c09ae
GET /wp-content/uploads/2020/04/cropped-advholistichealth_logo_square_01-2-192x192.png HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:08 GMT
content-type: image/png
content-length: 15840
last-modified: Fri, 10 Apr 2020 00:55:29 GMT
etag: "3de0-5a2e530884240"
accept-ranges: bytes
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/uploads/2020/04/cropped-advholistichealth_logo_square_01-2-32x32.png
45.79.86.40200 OK 1.3 kB URL HTTP/2 advholistichealth.com/wp-content/uploads/2020/04/cropped-advholistichealth_logo_square_01-2-32x32.png
IP 45.79.86.40:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash cffbab927e90b531953f8abf869cec17
8bc0a3c4b5e286e608deefec3a98775920e20e87
71677e198a21a2ae7485e979ae9fefa8eb5dc7254f964bd401af2e38f7b793fd
GET /wp-content/uploads/2020/04/cropped-advholistichealth_logo_square_01-2-32x32.png HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:08 GMT
content-type: image/png
content-length: 1307
last-modified: Fri, 10 Apr 2020 00:55:29 GMT
etag: "51b-5a2e530884240"
accept-ranges: bytes
X-Firefox-Spdy: h2
demo.arktheme.com/dentist/wp-content/uploads/sites/5/2016/12/shutterstock_76569364.jpg
34.225.14.187200 OK 819 kB URL HTTP/1.1 demo.arktheme.com/dentist/wp-content/uploads/sites/5/2016/12/shutterstock_76569364.jpg
IP 34.225.14.187:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 1920x1281, components 3\012- data
Size 819 kB (819121 bytes)
Hash 51705bd84d58b12c8daf8d9afc1ac57f
0e5812095db7f24d85040538802d478db474b70d
c3dee90c13a21317a51d48d6b8913e1f72d9178c426dfe5747b600a25cbf6bdd
GET /dentist/wp-content/uploads/sites/5/2016/12/shutterstock_76569364.jpg HTTP/1.1
Host: demo.arktheme.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Wed, 28 Sep 2022 20:21:08 GMT
Server: Apache/2.4.25 (Amazon) PHP/5.6.30
Last-Modified: Tue, 30 Jan 2018 13:19:23 GMT
ETag: "c7fb1-563fe3616105f"
Accept-Ranges: bytes
Content-Length: 819121
Cache-Control: max-age=604800
Expires: Wed, 05 Oct 2022 20:21:08 GMT
Vary: Accept-Encoding
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/jpeg
advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.1.0
45.79.86.40200 OK 0 B URL HTTP/2 advholistichealth.com/wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.1.0
IP 45.79.86.40:0
GET /wp-content/plugins/LayerSlider/static/layerslider/js/layerslider.transitions.js?ver=6.1.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 3396
last-modified: Fri, 03 Mar 2017 08:18:01 GMT
etag: "5d17-549cf2f1c6040-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C600%2C700%2C300i%2C400i%2C700i%7CFjord+One%3A300%2C400%2C500%2C600%2C700%2C300i%2C400i%2C700i&subset=cyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin%2Clatin-ext%2Cvietnamese&ver=1.57.0
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C500%2C600%2C700%2C300i%2C400i%2C700i%7CFjord+One%3A300%2C400%2C500%2C600%2C700%2C300i%2C400i%2C700i&subset=cyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin%2Clatin-ext%2Cvietnamese&ver=1.57.0
IP 142.250.74.10:0
GET /css?family=Roboto%3A300%2C400%2C500%2C600%2C700%2C300i%2C400i%2C700i%7CFjord+One%3A300%2C400%2C500%2C600%2C700%2C300i%2C400i%2C700i&subset=cyrillic%2Ccyrillic-ext%2Cgreek%2Cgreek-ext%2Clatin%2Clatin-ext%2Cvietnamese&ver=1.57.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 28 Sep 2022 20:21:07 GMT
date: Wed, 28 Sep 2022 20:21:07 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/assets/plugins/bootstrap/js/bootstrap.min.js?ver=3.3.7
45.79.86.40200 OK 0 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark/assets/plugins/bootstrap/js/bootstrap.min.js?ver=3.3.7
IP 45.79.86.40:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/ark/assets/plugins/bootstrap/js/bootstrap.min.js?ver=3.3.7 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 9833
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "90b5-5da4b18f47790-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
45.79.86.40200 OK 0 B URL HTTP/2 advholistichealth.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 45.79.86.40:0
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: application/javascript
content-length: 30908
last-modified: Wed, 01 Sep 2021 05:01:46 GMT
etag: "15db1-5cae7f6894280-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
advholistichealth.com/wp-content/themes/ark/style.css?ver=6.0.2
45.79.86.40200 OK 0 B URL HTTP/2 advholistichealth.com/wp-content/themes/ark/style.css?ver=6.0.2
IP 45.79.86.40:0
GET /wp-content/themes/ark/style.css?ver=6.0.2 HTTP/1.1
Host: advholistichealth.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://advholistichealth.com/contact/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 28 Sep 2022 20:21:07 GMT
content-type: text/css
content-length: 60488
last-modified: Wed, 16 Mar 2022 00:35:59 GMT
etag: "7c210-5da4b18ef85e6-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2