firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 08:56:17 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: h3Tsyg6EZMSvELzlPto5Q0ML15XRKUic3Nnckpm7fmhB3m_Qzklw3w==
Age: 3204
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8013
Expires: Tue, 04 Oct 2022 12:03:14 GMT
Date: Tue, 04 Oct 2022 09:49:41 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pFTJirTgtkLr8ySG84e_KW39i9wIs65Ml14tGcRK-FDssRfxh5HOtQ==
age: 15674
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 09:49:41 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 04 Oct 2022 09:29:33 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 04 Oct 2022 10:27:25 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: A0_ojqddhLiNFyxJ7jRMwHYZVVhyC1JFRFwLCdPk3JZn3eXLc1rk5A==
Age: 1208
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 16ebfb2aa621547ecf581e26fc828a7d
f78993331f6f5b8af6409a9ad2fc50b77070f68a
0f81fd1d6be9ccc04b74f0348aafe642c7b9ab7dffb7e8a679b5d67cc2e5fac3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1830
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:49:42 GMT
Last-Modified: Tue, 04 Oct 2022 09:19:12 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
54.202.70.174101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.202.70.174:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: U7UspbLBjiFELmO0NWdaGQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MMU+/BR+nqdJgjm6zpsoSsPO7O4=
neofitnes.com/
184.168.99.50301 Moved Permanently 0 B IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 04 Oct 2022 09:49:41 GMT
Server: Apache
X-Powered-By: PHP/7.4.30
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Redirect-By: WordPress
Set-Cookie: PHPSESSID=8d72f6768a47529a0747749c03ded129; path=/; secure; HttpOnly
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://neofitnes.com/
Vary: Accept-Encoding
Referrer-Policy: no-referrer-when-downgrade
Content-Length: 0
Keep-Alive: timeout=5
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14383
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 09:49:43 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14383
Expires: Tue, 04 Oct 2022 13:49:26 GMT
Date: Tue, 04 Oct 2022 09:49:43 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8c08f8066cc732de8befd6ccd629a95
22aab05208a01ae5def4d63dc145085630f57bcb
f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 42829
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6c6882c60d7ca6f918c77104e3ad1d52
20ef861be49c652a938e0145e4ca3a60159367e2
861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ovm2wuk28PygH4EZNEUoPchoHQggWCyXbYHOjMV1tZmfyDrL6PjPZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:29:19 GMT
age: 40824
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 42777
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg
34.120.237.76200 OK 5.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 34f2dfb2faff276db1d4a57739db2450
f5ce815082043a4efce28fc790ae7d8b3a8531f8
e02ea92f0be524ccfe26eee61a77e39a13d852d1ba3696f729e0f61812028667
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5083
x-amzn-requestid: ed99df03-5d15-4e09-9aea-bbf77a705323
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpI0HT0IAMFxvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556b-422197147d76caac6e910664;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:35 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pddStyEpwVdYKSAUVcpupnWVPw6ALoYCouHQzixF_vTgXdpVF60ElA==
via: 1.1 946b9edb2009c5508a0fbbd636f95014.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
age: 41924
etag: "f5ce815082043a4efce28fc790ae7d8b3a8531f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:53 GMT
age: 18410
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ae824db4a95391149198a4b6b8556c70
db07d58d8feff4ea01866d095e5264ee5c8e1ca3
19e96d204813247697e1858daf9e07d6c4cafd9ab1175a3bf39a7f07f6991521
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f5624b4-8e2a-461e-a32a-38d6b5a3a8d2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11101
x-amzn-requestid: f98e84d9-1e66-4436-b793-219a777f2ba0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcqcvE8JoAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5784-25bd2b234c1093de70074c92;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: becOxfqUowywFrxzDSeK7F1lFdDVTSHIF1TLC5k5aSlLPpsR6F8gjw==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:08:47 GMT
age: 42056
etag: "db07d58d8feff4ea01866d095e5264ee5c8e1ca3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.25.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neofitnes.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 09:49:46 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1683363
expires: Sun, 24 Sep 2023 09:49:46 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I7lCV8tM97g0buavmcI3ULW%2FMtlTz%2FDa7ZZwNMMpHXkxwEyfECaRzjYGnDojb37lDkituyMvnWQVklWljzoL2wHnJRMW4ms9R3%2B3Yw3cdFoEWfSICpA%2BC3HorUk%2BY0ruCo6bCZ4c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 754d026be9980afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:49:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-T99VP73TNT
142.250.74.168200 OK 75 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-T99VP73TNT
IP 142.250.74.168:0
File type ASCII text, with very long lines (18966)
Hash e933dd72baec98e68eac7e9412c256c9
6a70aecb3f9b1551f0fc44ac197a131a0c6bd593
92803cbd306b52dcd46f5c252e8e890b9cbebfac142f50557c81f77e0839532c
GET /gtag/js?id=G-T99VP73TNT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neofitnes.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 09:49:46 GMT
expires: Tue, 04 Oct 2022 09:49:46 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74952
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:49:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
neofitnes.com/
184.168.99.50200 OK 31 kB IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (25571)
Hash 4a788d25ccab2592cb393ea66a29fb10
4684dae74d999e1531ceefa32d46608e2c5ccfbe
dedc7446c756ad5558a643a1e6ab4d28ebd9ec30259ae5d603b30ea3da51f2f1
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.30
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
link: <https://neofitnes.com/wp-json/>; rel="https://api.w.org/", <https://neofitnes.com/wp-json/wp/v2/pages/7872>; rel="alternate"; type="application/json", <https://neofitnes.com/>; rel=shortlink
set-cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; path=/; secure; HttpOnly
vary: Accept-Encoding
content-encoding: br
referrer-policy: no-referrer-when-downgrade
content-length: 30855
content-type: text/html; charset=UTF-8
date: Tue, 04 Oct 2022 09:49:44 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:49:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:49:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:49:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:49:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
neofitnes.com/wp-content/plugins/portfolio-elementor/modules/post-grid-module/css/pwrgrids_css.css?ver=5.7.7
184.168.99.50200 OK 1.5 kB URL HTTP/2 neofitnes.com/wp-content/plugins/portfolio-elementor/modules/post-grid-module/css/pwrgrids_css.css?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 5149e402bc70db545a1b765b7f2caed2
41bf22c0f0269291eb86921388be9bf3999c2ba5
5c1d3076243ce3c853d998cc9f7000187354ed7a4d3970fe990f26ae907fe6ec
GET /wp-content/plugins/portfolio-elementor/modules/post-grid-module/css/pwrgrids_css.css?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 05:41:54 GMT
etag: "2532-5d9c28e1e4b76-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1498
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/portfolio-elementor/vendor/simplelightbox/dist/simplelightbox.min.css?ver=5.7.7
184.168.99.50200 OK 694 B URL HTTP/2 neofitnes.com/wp-content/plugins/portfolio-elementor/vendor/simplelightbox/dist/simplelightbox.min.css?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2379), with no line terminators
Hash 664f2b6117cc45e1c900fef1af327b3c
24bc95915f5a619e4c9cc5a59da5c51a6a7ec1fe
84f11279e3e6378f0270fd305299e4eae82ce2eeaf2ab1880b967322610a75fd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/portfolio-elementor/vendor/simplelightbox/dist/simplelightbox.min.css?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 05:41:54 GMT
etag: "94b-5d9c28e1e62e6-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 694
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/portfolio-elementor/css/powerfolio_css.css?ver=5.7.7
184.168.99.50200 OK 2.8 kB URL HTTP/2 neofitnes.com/wp-content/plugins/portfolio-elementor/css/powerfolio_css.css?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash ddd06a5ad0b41127f3e5ded7c724cdcb
a933c8729c01b79590952969771250a537230a70
355b9281ba6f356402c2746887ed9f5680fe2411453852e81c704453e488be20
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/portfolio-elementor/css/powerfolio_css.css?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 05:41:54 GMT
etag: "a067-5d9c28e1e5efe-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2803
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/css/dist/block-library/style.min.css?ver=5.7.7
184.168.99.50200 OK 8.7 kB URL HTTP/2 neofitnes.com/wp-includes/css/dist/block-library/style.min.css?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (29677)
Hash be8b35eb8a4bf220eca3c4be7dfdc460
3081a2b524e864441d2cf934bf7edce3bab7c0ab
b47be6ca0301fb6c67d9012115d8db41694b4f18d4974a4f2063a9a508c516df
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 06 Apr 2021 23:50:28 GMT
etag: "e33b-5bf567a917900-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 8685
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.2.2
184.168.99.50200 OK 1.3 kB URL HTTP/2 neofitnes.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.2.2
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (4933), with no line terminators
Hash d2d7f4c273d3b4cd972a337969b14754
b441775d1dcba61a5234df0256a40c7f58a8b059
fcfdbdf2a45072bbb545934d419cf76e5272d3193742eb8b659e938cafab4cdf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=7.2.2 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Apr 2022 07:54:35 GMT
etag: "1345-5dce9124977e5-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1286
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
184.168.99.50200 OK 972 B URL HTTP/2 neofitnes.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.6 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Feb 2022 05:24:43 GMT
etag: "aab-5d8d0ea890db3-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 972
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/stackable-ultimate-gutenberg-blocks/dist/frontend_blocks.css?ver=2.16.0
184.168.99.50200 OK 11 kB URL HTTP/2 neofitnes.com/wp-content/plugins/stackable-ultimate-gutenberg-blocks/dist/frontend_blocks.css?ver=2.16.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65536), with no line terminators
Hash a1a378e9c5380d92a6a8c19b65059e9a
ed321e5270c7f1eddef6c90e4934a773f1ea9935
405549da9126fa47af09fdd4b1dfcbdb4343701c13573b1a18eab90e93133fe1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/stackable-ultimate-gutenberg-blocks/dist/frontend_blocks.css?ver=2.16.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Jun 2021 05:38:49 GMT
etag: "1697e-5c3c1df890702-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 10685
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-T99VP73TNT>m=2oe9s0&_p=1677217388&cid=28228002.1664876986&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664876986&sct=1&seg=0&dl=https%3A%2F%2Fneofitnes.com%2F&dt=Home%20-%20Neo%20Fitnes&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-T99VP73TNT>m=2oe9s0&_p=1677217388&cid=28228002.1664876986&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664876986&sct=1&seg=0&dl=https%3A%2F%2Fneofitnes.com%2F&dt=Home%20-%20Neo%20Fitnes&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-T99VP73TNT>m=2oe9s0&_p=1677217388&cid=28228002.1664876986&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664876986&sct=1&seg=0&dl=https%3A%2F%2Fneofitnes.com%2F&dt=Home%20-%20Neo%20Fitnes&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://neofitnes.com
Connection: keep-alive
Referer: https://neofitnes.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://neofitnes.com
date: Tue, 04 Oct 2022 09:49:47 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.2.2
184.168.99.50200 OK 23 kB URL HTTP/2 neofitnes.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.2.2
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash a6f1c5c827a22fc7c70d09e1c8e12788
03079cfcb802e206bb903384ca1e8c409ad298e9
80d81b5340c9d26d67d1148f995b530c04f8b59cd705f4c9426f725bba7194ff
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=7.2.2 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Apr 2022 07:54:33 GMT
etag: "33d77-5dce91220dd19-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 22555
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/keydesign-addon/extensions/social_profiles/social_profiles/css/field_social_profiles_frontend.css?ver=1664876985
184.168.99.50200 OK 304 B URL HTTP/2 neofitnes.com/wp-content/plugins/keydesign-addon/extensions/social_profiles/social_profiles/css/field_social_profiles_frontend.css?ver=1664876985
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 9b32779cda97aac5d983945916e0377f
cf247267cb554b08cee77a3df677a2eac5773448
b237f42b7c39042d8f66edff0d8af06bca45506858de1cf8e1bc0df268cd032b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/keydesign-addon/extensions/social_profiles/social_profiles/css/field_social_profiles_frontend.css?ver=1664876985 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:21:12 GMT
etag: "28d-5bff700a20a00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 304
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/keydesign-addon/assets/js/jquery.easing.min.js?ver=5.7.7
184.168.99.50200 OK 765 B URL HTTP/2 neofitnes.com/wp-content/plugins/keydesign-addon/assets/js/jquery.easing.min.js?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2320)
Hash 1c4d975d29495178057caf679cb41ee2
9fabe9219a792c31792ac6cdb61634e00a112c58
483112f2fe3686b52322b40b881fdf895d6bf898c3b21d6e57f510e968e18bd3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/keydesign-addon/assets/js/jquery.easing.min.js?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:21:12 GMT
etag: "911-5bff700a20a00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 765
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/keydesign-addon/assets/js/jquery.appear.js?ver=5.7.7
184.168.99.50200 OK 602 B URL HTTP/2 neofitnes.com/wp-content/plugins/keydesign-addon/assets/js/jquery.appear.js?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1266)
Hash 6991bc0ad0789a0a40db2abec2e79569
46b5f9748d5b1b62f6345fb0e8664672fa1ffe50
88bfb6ac766e0e19f5308b96cf98bb2e35b82e3f29da73c4248d321c81bab812
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/keydesign-addon/assets/js/jquery.appear.js?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:21:12 GMT
etag: "4f3-5bff700a20a00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 602
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/keydesign-addon/assets/css/photoswipe.css?ver=5.7.7
184.168.99.50200 OK 1.3 kB URL HTTP/2 neofitnes.com/wp-content/plugins/keydesign-addon/assets/css/photoswipe.css?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash dd6d99bba37ead6fd131b929da69057e
152749562a22a3df91a55d3c9cacd5fa8cfab390
4f5c7073a0fcaebf8cbeab7a653fdeb12e172403050f7647e866050ea5baf63a
GET /wp-content/plugins/keydesign-addon/assets/css/photoswipe.css?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:21:12 GMT
etag: "ffd-5bff700a20a00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1298
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/keydesign-addon/assets/js/kd_addon_script.js?ver=5.7.7
184.168.99.50200 OK 2.5 kB URL HTTP/2 neofitnes.com/wp-content/plugins/keydesign-addon/assets/js/kd_addon_script.js?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (531)
Hash 0a08164615e4d4b7941fd2b4aff9930a
5134c8a2b11f8f7ab5407f308b701c29e525a046
7ea0dc31cf72cd33db68b6328732938aa8440a9127b261e157a9c87a67db5779
GET /wp-content/plugins/keydesign-addon/assets/js/kd_addon_script.js?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:21:12 GMT
etag: "2590-5bff700a20a00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2503
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/keydesign-addon/assets/css/photoswipe-default-skin.css?ver=5.7.7
184.168.99.50200 OK 3.0 kB URL HTTP/2 neofitnes.com/wp-content/plugins/keydesign-addon/assets/css/photoswipe-default-skin.css?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 7444a417e003a41bd04e8f6a9db71c37
e82271567d4aeb78126e45b79d43f560f21f223c
5b559eaa9f30732871d2e9d4610639889d513cca0009017526358128c33cdca3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/keydesign-addon/assets/css/photoswipe-default-skin.css?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:21:12 GMT
etag: "2d90-5bff700a20a00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2994
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/themes/leadengine/core/assets/css/bootstrap.min.css?ver=2.9
184.168.99.50200 OK 18 kB URL HTTP/2 neofitnes.com/wp-content/themes/leadengine/core/assets/css/bootstrap.min.css?ver=2.9
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type assembler source, ASCII text, with very long lines (540)
Hash 8a6780758b1a5fdf791542f8b1b5106a
5b1a132ea7ca9b0b2a206e01e8e2c5400e4e7bbd
0c7d4e108e659029c59eaf003777eb60a6536e3df1060f5fcd7a01dab3144cc3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/leadengine/core/assets/css/bootstrap.min.css?ver=2.9 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:19:38 GMT
etag: "1f145-5bff6fb07b680-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 18245
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Widget/Arrow/ArrowImage/Assets/dist/w-arrow-image.min.js?ver=4180a0be
184.168.99.50200 OK 605 B URL HTTP/2 neofitnes.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Widget/Arrow/ArrowImage/Assets/dist/w-arrow-image.min.js?ver=4180a0be
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1248), with no line terminators
Hash 03d063360f6105da336bdce45f083b23
79458dab31d8b1d4ecc7cee0b4f1d2b21bf15b07
c83f06da852383d14cc661f895c3b0d36dcf4e94548c6cdc40834c77982ffefc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/smart-slider-3/Public/SmartSlider3/Widget/Arrow/ArrowImage/Assets/dist/w-arrow-image.min.js?ver=4180a0be HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Mar 2022 12:09:17 GMT
etag: "4e0-5d93b269e01e0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 605
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/themes/leadengine/core/assets/js/woocommerce-keydesign.js
184.168.99.50200 OK 521 B URL HTTP/2 neofitnes.com/wp-content/themes/leadengine/core/assets/js/woocommerce-keydesign.js
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 2d9e4f09846041bfbd818170391909e8
8b7758b5a9e76e6ebf7a5b3e324e4321fda4106a
23b4e891b232ea5bc296a8c594a55d3d496a86dbe2a9e1fbb2c9fb00c34f749c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/leadengine/core/assets/js/woocommerce-keydesign.js HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:19:38 GMT
etag: "493-5bff6fb07b680-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 521
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/css/lightbox.min.css?ver=6.6.0
184.168.99.50200 OK 812 B URL HTTP/2 neofitnes.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/css/lightbox.min.css?ver=6.6.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2137), with no line terminators
Hash d17a11686a6f6c27c05e9137cc912be9
041cc041d1fce96904fcf10269b74e833f23a15f
57e9422099ed475b02d89816ca7c812aaf35664b095136363b025ccd31cb9637
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/css/lightbox.min.css?ver=6.6.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:22:04 GMT
etag: "859-5bff703bb7f00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 812
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/portfolio-elementor/modules/post-grid-module/js/pwrgrids-custom-js.js?ver=20151215
184.168.99.50200 OK 624 B URL HTTP/2 neofitnes.com/wp-content/plugins/portfolio-elementor/modules/post-grid-module/js/pwrgrids-custom-js.js?ver=20151215
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 530061c0eaa7e86f62483b66c518851d
810d81d97add2e1d72fdedc2130b1fc1ab1d71d0
6f78613edc86b61ae9cf2b0c3534d9da1218e0896046021ee5c5eeb5f21adf48
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/portfolio-elementor/modules/post-grid-module/js/pwrgrids-custom-js.js?ver=20151215 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 05:41:52 GMT
etag: "83d-5d9c28dfee049-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 624
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/js_composer/assets/lib/owl-carousel2-dist/assets/owl.min.css?ver=6.6.0
184.168.99.50200 OK 1.2 kB URL HTTP/2 neofitnes.com/wp-content/plugins/js_composer/assets/lib/owl-carousel2-dist/assets/owl.min.css?ver=6.6.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (5542), with no line terminators
Hash 09e872dbfc9ed68eaa3870a75f0a0362
aea018191a60c03e2ed3c1541c385972b848f779
c5d3dbccfb66d5cb77aefc1a335235137d3355e3a9df8770cd85842ad159ac13
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/owl-carousel2-dist/assets/owl.min.css?ver=6.6.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:22:04 GMT
etag: "15a6-5bff703bb7f00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1158
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/portfolio-elementor/js/custom-portfolio.js?ver=20151215
184.168.99.50200 OK 450 B URL HTTP/2 neofitnes.com/wp-content/plugins/portfolio-elementor/js/custom-portfolio.js?ver=20151215
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 37d3281c400fd7dee4fb2500a4865bdf
73933ddb7ea11f5bc010166d694019878d9f204c
f9c058a2e04857071dd366fdac9965fee12a386a81d4bf38a3d64c123ac1a425
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/portfolio-elementor/js/custom-portfolio.js?ver=20151215 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 05:41:54 GMT
etag: "5ba-5d9c28e1e5b16-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 450
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/woo-variation-swatches/assets/css/frontend.min.css?ver=1664537789
184.168.99.50200 OK 4.3 kB URL HTTP/2 neofitnes.com/wp-content/plugins/woo-variation-swatches/assets/css/frontend.min.css?ver=1664537789
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (34869)
Hash f730c375ac1fd1bb74971081159dcec4
bc71ece7afae66123e9d67b9d5dd2009774c0fbe
39b95280f1263bbfb3d0a0a3872b9ce123774212a8b35db3e72f43b73aba175b
GET /wp-content/plugins/woo-variation-swatches/assets/css/frontend.min.css?ver=1664537789 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 11:36:29 GMT
etag: "8836-5e9e367a22747-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 4270
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/smartslider.min.css?ver=4180a0be
184.168.99.50200 OK 4.0 kB URL HTTP/2 neofitnes.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/smartslider.min.css?ver=4180a0be
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (22021), with no line terminators
Hash 5142111915f47603cf3a9901170e4f8f
92696595af95e90b2845246e99ca8efffbbc1cd7
eb186e87e6afc8c836753741042288ddc3ae1f8ef442127fbefee6f91e393004
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/smartslider.min.css?ver=4180a0be HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Mar 2022 12:09:16 GMT
etag: "5605-5d93b268ad780-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 4046
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
184.168.99.50200 OK 4.2 kB URL HTTP/2 neofitnes.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: "2bd8-5b45debe27b80-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 4169
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/product-open-pricing-for-woocommerce-pro/includes/js/alg-wc-pop-frontend.js?ver=1.7.0
184.168.99.50200 OK 463 B URL HTTP/2 neofitnes.com/wp-content/plugins/product-open-pricing-for-woocommerce-pro/includes/js/alg-wc-pop-frontend.js?ver=1.7.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash c79154af4a23aa7bc53afe83e944b9ac
4406ec726c5e3ccef13d2d70a0af1ad28e90c621
119f4dcdbd70e3ef1d809fc86ca1e2f21b54451de525160fe632d87f058ea04b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/product-open-pricing-for-woocommerce-pro/includes/js/alg-wc-pop-frontend.js?ver=1.7.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 15 Dec 2021 11:59:19 GMT
etag: "42d-5d32e092ba7c7-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 463
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.4.1
184.168.99.50200 OK 1.0 kB URL HTTP/2 neofitnes.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.4.1
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2938), with no line terminators
Hash 45db3d2887c26700a51bf469e3bb3aa1
d070b5fb53d2fbb66964bbfd482270b855d0ee96
1abc0cff49f82d9a063c04cd086b991af6ad00467efc4cb8d8d4e3c9a0f95777
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=6.4.1 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Apr 2022 07:54:42 GMT
etag: "b7a-5dce912b24c85-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1039
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.4.1
184.168.99.50200 OK 982 B URL HTTP/2 neofitnes.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.4.1
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1668)
Hash e66463f2023b738680c9bdefece69a37
315dc8e6ebdfb18c662851244ee33e2758ad3c83
fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.6.4.1 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Apr 2022 07:54:42 GMT
etag: "72a-5dce912ad1874-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 982
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.4.1
184.168.99.50200 OK 794 B URL HTTP/2 neofitnes.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.4.1
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (2139), with no line terminators
Hash 29307e8dec33cf3411ca4e1f2c84e9d0
484402289464d7ffb1475827f3438329d520bfc6
a2db59efaa416ef0c9d5d58f142cd5e44c475348cff20a664586fd3cda1b5f5b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=6.4.1 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Apr 2022 07:54:42 GMT
etag: "85b-5dce912b2d53e-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 794
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/wp-util.min.js?ver=5.7.7
184.168.99.50200 OK 589 B URL HTTP/2 neofitnes.com/wp-includes/js/wp-util.min.js?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1042)
Hash 6cf861f0004fb0eec67ecf29af799c7d
67349791569360d3b957db5442620756cc4ae4b3
5131bec1dbf9e65e1da378e6414adc86d792f725acdcc3922ee3207876f5dd7c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-util.min.js?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 06 Jan 2021 15:29:24 GMT
etag: "435-5b83cfce57d00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 589
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/api-request.min.js?ver=5.7.7
184.168.99.50200 OK 589 B URL HTTP/2 neofitnes.com/wp-includes/js/api-request.min.js?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (990)
Hash 4d0a432c24a7667b5c95a4123573a44f
4aac709f42f9a6218d5fc87618b64f73159415e0
3f4e9f5825ef8e721968a1469a5214d66b88d8d0a7a3bbdec7c4a74ff31aaf4f
GET /wp-includes/js/api-request.min.js?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 06 Jan 2021 15:29:24 GMT
etag: "401-5b83cfce57d00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 589
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/keydesign-addon/assets/js/jquery.easytabs.min.js?ver=5.7.7
184.168.99.50200 OK 3.0 kB URL HTTP/2 neofitnes.com/wp-content/plugins/keydesign-addon/assets/js/jquery.easytabs.min.js?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9085), with CRLF line terminators
Hash a929341b7e646d056397f7a535e8e5b2
58b742176885fe0b33dd1825876530d838da89c1
689e3cd9b4a241724c98e6abfdf906ad02ed03e0c3c07e231d27279bd6a937e6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/keydesign-addon/assets/js/jquery.easytabs.min.js?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:21:12 GMT
etag: "24b0-5bff700a20a00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3023
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.6.0
184.168.99.50200 OK 3.7 kB URL HTTP/2 neofitnes.com/wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.6.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (51719)
Hash b56aabb4f35984f3e74659f7b23254bf
9e12c8b4c80428a847b50e922b1a8a38d807c23c
825101fe8abc67771f316bff138dbd33445065033cc7efb4b103a26b100bb464
GET /wp-content/plugins/js_composer/assets/lib/bower/animate-css/animate.min.css?ver=6.6.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:22:04 GMT
etag: "caa8-5bff703bb7f00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3653
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/wp-embed.min.js?ver=5.7.7
184.168.99.50200 OK 765 B URL HTTP/2 neofitnes.com/wp-includes/js/wp-embed.min.js?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (1391)
Hash fe875afb236ee8f0d50040fe58d848d4
e6b1b67093b429c95d5b9db07a7eba39e02cf0e5
328a6a072b91134f2802ae25e070f38ff156ceee2c6ec6a6253ae4b27af73b49
GET /wp-includes/js/wp-embed.min.js?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 06 Jan 2021 15:29:24 GMT
etag: "592-5b83cfce57d00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 765
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
184.168.99.50200 OK 7.1 kB URL HTTP/2 neofitnes.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (30837)
Hash 2a2c987c48fb65bb0e78fa2a37120537
ede7a4d5da37f053251e8b8a33be2a23a660473f
3d3136cdfced0eee9b7766b7a17a591f6fb3ba480e71b8930acbea4db4ab71d1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/font-awesome.min.css?ver=4.7.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 11:35:31 GMT
etag: "7917-5e9e3643592eb-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 7052
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
184.168.99.50200 OK 1.8 kB URL HTTP/2 neofitnes.com/wp-includes/js/imagesloaded.min.js?ver=4.1.4
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (5477)
Hash 951ae46ca55ec7b0e401e2074bdf8b54
64bbbdc28a351b26cab9c230e134ca8eb4d4f83e
fd5d4c623e9d68551114b2a1303584b6792e592e864d4416145904fe8b9edd91
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
etag: "15fd-5a7fbb57c37c0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1834
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/dist/hooks.min.js?ver=d0188aa6c336f8bb426fe5318b7f5b72
184.168.99.50200 OK 2.3 kB URL HTTP/2 neofitnes.com/wp-includes/js/dist/hooks.min.js?ver=d0188aa6c336f8bb426fe5318b7f5b72
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (6944)
Hash bd023995ed649be7acf8e55d5b77f6d2
297c15beb320661eb35d689e4729760273a37d77
09c9cf05f4866a211c9c2443785ccf50eb1bcd26dcae433f7338299483dba817
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/hooks.min.js?ver=d0188aa6c336f8bb426fe5318b7f5b72 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 27 May 2021 00:29:10 GMT
etag: "1b43-5c344d9092180-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2325
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.3
184.168.99.50200 OK 13 kB URL HTTP/2 neofitnes.com/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.3
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (12602), with CRLF line terminators
Hash b5c2bba25c6b5fb6c0a577ee6b3bbe0c
6ceff71167fb37f0e994bafaefc9c4b5c6bf82f3
d2e3eabfe4f918e81db10abbcca0ad1f4f1164dd0cb03da78009a1d40df06d2e
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.4.3 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:21:46 GMT
etag: "ee74-5bff702a8d680-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 12923
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/stackable-ultimate-gutenberg-blocks/dist/frontend_blocks.js?ver=2.16.0
184.168.99.50200 OK 11 kB URL HTTP/2 neofitnes.com/wp-content/plugins/stackable-ultimate-gutenberg-blocks/dist/frontend_blocks.js?ver=2.16.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (19269)
Hash 12f4c186c015a2391c18f3021731f55f
7e1855fb2e70778ec39b6e4770c467f67fcfdc1a
c283a352aa4a7e1d642972b2ab7fec2652fb056841a22a0f3cd450c96ea5c5a4
GET /wp-content/plugins/stackable-ultimate-gutenberg-blocks/dist/frontend_blocks.js?ver=2.16.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Jun 2021 05:38:49 GMT
etag: "8518-5c3c1df890ed2-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 11220
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/js_composer/assets/lib/bower/imagesloaded/imagesloaded.pkgd.min.js?ver=6.6.0
184.168.99.50200 OK 2.5 kB URL HTTP/2 neofitnes.com/wp-content/plugins/js_composer/assets/lib/bower/imagesloaded/imagesloaded.pkgd.min.js?ver=6.6.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (6832)
Hash bc1fe45ac14d7dcb9eb06bda672d3f65
0d0017137133e86f8b1fa574e06c53fcdf59db48
6bb3c54c89577e6a2d6f440ea752cbd878185e66d42826bcd5ab873e0aa4f1e6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/bower/imagesloaded/imagesloaded.pkgd.min.js?ver=6.6.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:22:04 GMT
etag: "1c00-5bff703bb7f00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2488
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/keydesign-addon/assets/js/owl.carousel.min.js?ver=5.7.7
184.168.99.50200 OK 11 kB URL HTTP/2 neofitnes.com/wp-content/plugins/keydesign-addon/assets/js/owl.carousel.min.js?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32000)
Hash 694074c04c049ebfa9fab7d7b5363875
613568d2ddb188144906c19beab972314bfde12d
3c721f2669ccc0655d376af0d8b3510d111516b179ac678edd2802c28fa928ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/keydesign-addon/assets/js/owl.carousel.min.js?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:21:12 GMT
etag: "a70e-5bff700a20a00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 10926
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v5.5.0/css/all.css?ver=5.7.7
172.64.133.15200 OK 23 kB URL HTTP/2 use.fontawesome.com/releases/v5.5.0/css/all.css?ver=5.7.7
IP 172.64.133.15:0
File type ASCII text, with very long lines (51030)
Hash ce51ec197d687e3b8056a792a430df0a
942bb3aa2059af67953b6bc88decf9d4666529b9
4df1be9a54ad7003292380f15c51dc713d93ec7356e790af99be4e062205f654
GET /releases/v5.5.0/css/all.css?ver=5.7.7 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neofitnes.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 09:49:46 GMT
content-type: text/css
x-amz-id-2: Nd0REOJqH7Ldremfwkuawgil1vtip1Bs+zMqgiBfbHybDjLe0uV7rQLV8Rz4klztX8C8NXi1r+o=
x-amz-request-id: H8AZNVS74A0RJ8NN
last-modified: Wed, 30 Jun 2021 15:43:32 GMT
etag: W/"1cc6c92172d124fbd305ba3d8e263333"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 305645
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GSCFzkVNk2Zag%2BXjUeBsw0dJrD%2Bfn5HJW3IHFplzgluOCHvQF1ybvjg3rAfsUI7H3O8LpBwpR%2F0u16Aj3%2B0OQc0IaQbXi1X7nNt84HlQ28FNKNnjgVvln5slxsvPjjlBQRstW%2F4p"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754d026c19b90662-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Slider/SliderType/Simple/Assets/dist/ss-simple.min.js?ver=4180a0be
184.168.99.50200 OK 3.1 kB URL HTTP/2 neofitnes.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Slider/SliderType/Simple/Assets/dist/ss-simple.min.js?ver=4180a0be
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (13218), with no line terminators
Hash e37b5e76a1e90157f98ac2e9f1a6b097
94a04cad8a8770c5109451cf9b5373e50e721b9f
a133568aefc6739013be8b62dd5725f6c2979855d9b1d153df3d1dde0df2e5b5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/smart-slider-3/Public/SmartSlider3/Slider/SliderType/Simple/Assets/dist/ss-simple.min.js?ver=4180a0be HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Mar 2022 12:09:17 GMT
etag: "33a2-5d93b269df628-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3089
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/portfolio-elementor/vendor/simplelightbox/dist/simple-lightbox.min.js?ver=20151218
184.168.99.50200 OK 3.0 kB URL HTTP/2 neofitnes.com/wp-content/plugins/portfolio-elementor/vendor/simplelightbox/dist/simple-lightbox.min.js?ver=20151218
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (8152), with CRLF line terminators
Hash ca32a16d40d7a6ac56a5dfa9d1d8692a
3f39b68b7a37035426b260d8efcde7b9dd3869ce
3385573ee81f80a2bc4fa3a602c8defe89cb7abd8e2a8229ab93b3f80134a849
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/portfolio-elementor/vendor/simplelightbox/dist/simple-lightbox.min.js?ver=20151218 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 05:41:54 GMT
etag: "2033-5d9c28e1e62e6-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3027
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/themes/leadengine/style.css?ver=2.9
184.168.99.50200 OK 31 kB URL HTTP/2 neofitnes.com/wp-content/themes/leadengine/style.css?ver=2.9
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 69af644217909d5c161c2fd7e3d27308
e8226aa8f50c85a375f425ab3901ff7daaacc2f3
0efc43138ffc851ed56eab091654d605596a13f7c4a655bafe0fc5062f692acc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/leadengine/style.css?ver=2.9 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Jun 2021 05:58:39 GMT
etag: "2e16e-5c3c2267766ac-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 30849
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
184.168.99.50200 OK 3.3 kB URL HTTP/2 neofitnes.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash 4ac0d5ab8d83806d59c4e1f7bf0a855a
81153a2f5e3a21febe9ede53c9f0073da3e14829
605fd4e7f4d3fbb5505bb81e3f72c685b6ef411c27cde2f7bab2787c3d870b10
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.6 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 25 Feb 2022 05:24:43 GMT
etag: "25f8-5d8d0ea8901fb-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3286
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/keydesign-addon/assets/js/photoswipe-ui-default.min.js?ver=5.7.7
184.168.99.50200 OK 3.8 kB URL HTTP/2 neofitnes.com/wp-content/plugins/keydesign-addon/assets/js/photoswipe-ui-default.min.js?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document, ASCII text, with very long lines (9765)
Hash adbcb9cabe789e5409f68caa4b0c59bb
c0c517cc744f1baf68bc27366826b5e9cecefe51
09fa562ff12200bce3d260026bec7c6b022672246c27c1851faa875e312b2893
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/keydesign-addon/assets/js/photoswipe-ui-default.min.js?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:21:12 GMT
etag: "2694-5bff700a20a00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3758
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/portfolio-builder-awesome/public/css/portfolio-awesome-public.css?ver=1.0.0
184.168.99.50200 OK 14 kB URL HTTP/2 neofitnes.com/wp-content/plugins/portfolio-builder-awesome/public/css/portfolio-awesome-public.css?ver=1.0.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 6dfc4bbe5390891b730b2bb6db2d46ff
f1bc61080723df1d6ed7bb04f190f2d516b1934c
66a4cb496d1a4f586c1c1175ac96ef3a36e900730bf5b7de51025a54a1b2fc63
GET /wp-content/plugins/portfolio-builder-awesome/public/css/portfolio-awesome-public.css?ver=1.0.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 22 Feb 2022 08:57:29 GMT
etag: "1b830-5d89789f7b41f-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 14460
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.4.1
184.168.99.50200 OK 3.5 kB URL HTTP/2 neofitnes.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.4.1
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9139)
Hash d6c87c7221011e280d3bb60eb9c598e4
93aa9b7f17b91719689519d4439c10d884063296
0acd2e4b6cc50829b1fb1e12b55ed2b72b201631e908a80171d39ef4a9570724
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.6.4.1 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Apr 2022 07:54:42 GMT
etag: "253d-5dce912addfae-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3493
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/dist/i18n.min.js?ver=6ae7d829c963a7d8856558f3f9b32b43
184.168.99.50200 OK 3.9 kB URL HTTP/2 neofitnes.com/wp-includes/js/dist/i18n.min.js?ver=6ae7d829c963a7d8856558f3f9b32b43
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash e64375542d50a224ea5e52bd647265b4
7442b993677db923955cbe89e07d1165ea5e09c8
2b9afdf8ddef2a9a1956e8f6e5ec287b2f8a65a6fb9e8fbbdde306fbb891c25b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/i18n.min.js?ver=6ae7d829c963a7d8856558f3f9b32b43 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 27 May 2021 00:29:10 GMT
etag: "27d6-5c344d9092180-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3871
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/dist/url.min.js?ver=7c99a9585caad6f2f16c19ecd17a86cd
184.168.99.50200 OK 3.1 kB URL HTTP/2 neofitnes.com/wp-includes/js/dist/url.min.js?ver=7c99a9585caad6f2f16c19ecd17a86cd
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (8720)
Hash c8bd1801002034143afbe6e5812cbf31
220852f208726b8392c50a94418896384549c64c
17f82fa8e2a595c6059c02af8be615ee27b3dd252b9b44feb0e58a13bc48e59d
GET /wp-includes/js/dist/url.min.js?ver=7c99a9585caad6f2f16c19ecd17a86cd HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 10 Mar 2022 20:27:21 GMT
etag: "2237-5d9e30a875c40-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3136
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/dist/api-fetch.min.js?ver=25cbf3644d200bdc5cab50e7966b5b03
184.168.99.50200 OK 3.5 kB URL HTTP/2 neofitnes.com/wp-includes/js/dist/api-fetch.min.js?ver=25cbf3644d200bdc5cab50e7966b5b03
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (12330)
Hash 15f54be6a7718f5c2619eff737bc19da
643c7595e11fbad443282f099ca34015825eeb2b
2cb125ef0bb2807c03ff58e3ae4fb086accbd19f81dd412ab91bdee31f664ff5
GET /wp-includes/js/dist/api-fetch.min.js?ver=25cbf3644d200bdc5cab50e7966b5b03 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 08 Sep 2021 21:06:23 GMT
etag: "304d-5cb824129d1c0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3465
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/woo-variation-swatches/assets/js/frontend.min.js?ver=1664537789
184.168.99.50200 OK 3.7 kB URL HTTP/2 neofitnes.com/wp-content/plugins/woo-variation-swatches/assets/js/frontend.min.js?ver=1664537789
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (12750), with no line terminators
Hash e5aa68956ee66ba1d7cb68dd7e912859
806d75c8b044c23485567e3e792d4e70fcddb9ab
3e29a6c8eb22febcecb77507ca14b4f43a296825a7f5692f804dff729f8590c4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woo-variation-swatches/assets/js/frontend.min.js?ver=1664537789 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 30 Sep 2022 11:36:29 GMT
etag: "31ce-5e9e367a2235f-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3652
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/keydesign-addon/assets/css/iconsmind.min.css?ver=5.7.7
184.168.99.50200 OK 16 kB URL HTTP/2 neofitnes.com/wp-content/plugins/keydesign-addon/assets/css/iconsmind.min.css?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65536), with no line terminators
Hash 47473f854f5326343095e23391d26e2d
a414f68668c95ba3ae5dc073b5fd2d0e83f8d6c0
81511f4ff0d79cdb37867e73f7ca6194fa3994bc238740203a8d3ff8b5612611
GET /wp-content/plugins/keydesign-addon/assets/css/iconsmind.min.css?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:21:12 GMT
etag: "1696b-5bff700a20a00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 15898
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.11.1
184.168.99.50200 OK 16 kB URL HTTP/2 neofitnes.com/wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.11.1
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 70e045cc770fdc2f310fb69a522449c4
051361801fe95826e727329eb6684c954824a14e
baff1e9cab016553ed17ed18d1f31c9b160f8ca9108e274650dd8621dc37cd8c
GET /wp-content/plugins/wp-smushit/app/assets/js/smush-lazy-load.min.js?ver=3.11.1 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 31 Aug 2022 08:54:40 GMT
etag: "1eee-5e785a5b75509-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3684
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/themes/leadengine/core/assets/css/woocommerce.css
184.168.99.50200 OK 17 kB URL HTTP/2 neofitnes.com/wp-content/themes/leadengine/core/assets/css/woocommerce.css
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type CSV text\012- , Unicode text, UTF-8 text, with very long lines (1301)
Hash cd74473141dd7743392d752e9088de8c
46f353989f0a4f0444112f30262190d4a6e87004
09889911b18dec44d8b1f42520da78c17eeb583ef38e5d29432313fcfc22e48e
GET /wp-content/themes/leadengine/core/assets/css/woocommerce.css HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:19:38 GMT
etag: "1fa8c-5bff6fb07b680-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 17240
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/js/lightbox.min.js?ver=6.6.0
184.168.99.50200 OK 3.0 kB URL HTTP/2 neofitnes.com/wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/js/lightbox.min.js?ver=6.6.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (9194)
Hash 01aaa570aa841bcb60832c9496aae345
b2a9d4eea7c1dc94bee0b1f0e83f721c4a0480aa
748ba1e0d7fed04aec96d9bc00e9024664a9f6f9cde61f114fbf12362f9df4b8
GET /wp-content/plugins/js_composer/assets/lib/bower/lightbox2/dist/js/lightbox.min.js?ver=6.6.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:22:04 GMT
etag: "25e6-5bff703bb7f00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3000
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.6.0
184.168.99.50200 OK 2.8 kB URL HTTP/2 neofitnes.com/wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.6.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (8853)
Hash bfbdca93ba95323d2d8a1420298f8429
5838f907c4898a5b092f4edd88190b2798f1a3c8
8a10fc2a3464e3c3a6d0015197004d70ebcb22c493bab35ac0bd23f5aa415722
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/vc_waypoints/vc-waypoints.min.js?ver=6.6.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:22:04 GMT
etag: "2415-5bff703bb7f00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 2813
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.7
184.168.99.50200 OK 4.7 kB URL HTTP/2 neofitnes.com/wp-includes/js/wp-emoji-release.min.js?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (11272)
Hash 9c26256ee738b510ab56c09607a7286f
197327c8d1cd72ce8d335fc0b8b007ddca60191d
cfe161d7b5764e21a1e8ea764f4a0c0da41f1aba16bb8329bd11acbc7a156e4b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 06 Jan 2021 15:29:24 GMT
etag: "3795-5b83cfce57d00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 4662
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/js_composer/assets/js/dist/vc_grid.min.js?ver=6.6.0
184.168.99.50200 OK 4.7 kB URL HTTP/2 neofitnes.com/wp-content/plugins/js_composer/assets/js/dist/vc_grid.min.js?ver=6.6.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (26126)
Hash bdf8b509f9518343371a6971891d665f
0c02358422ebc9cc7df5c832bc5b4c143c89bd27
0e5ddeaf7c003faef02bbecc6b12c7c6d751d99651eabf9a4ba0077b36c710a9
GET /wp-content/plugins/js_composer/assets/js/dist/vc_grid.min.js?ver=6.6.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:22:04 GMT
etag: "66e9-5bff703bb7f00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 4718
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/themes/leadengine/core/assets/js/scripts.js?ver=2.9
184.168.99.50200 OK 4.2 kB URL HTTP/2 neofitnes.com/wp-content/themes/leadengine/core/assets/js/scripts.js?ver=2.9
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 235444a395f9f6db079b6c81002e2b2e
87271365d9a33eee3314c359e69b9b1326d7ca34
810a269bead0132f5aca4fc2abd304a1ae72cedf3dd12e8619ae36cf6b908efb
GET /wp-content/themes/leadengine/core/assets/js/scripts.js?ver=2.9 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:19:38 GMT
etag: "4c18-5bff6fb07b680-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 4215
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/keydesign-addon/assets/css/kd_vc_front.css?ver=5.7.7
184.168.99.50200 OK 27 kB URL HTTP/2 neofitnes.com/wp-content/plugins/keydesign-addon/assets/css/kd_vc_front.css?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (377)
Hash 36e75b1e7b068d852c247ec097179284
1bd7def47c7be2161d9a134d081b8069d692331a
6c094a2878bef5daf09f9a12f8f6d2e748529787fcada3bad7403420c4337591
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/keydesign-addon/assets/css/kd_vc_front.css?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 01 Jun 2021 09:18:23 GMT
etag: "2c1a1-5c3b0d2e3d0d9-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 27190
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
184.168.99.50200 OK 31 kB URL HTTP/2 neofitnes.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (65451)
Hash b50f63138863c21ee4dd2fd747d0eaee
24e2e53e39b5980f3021ad881f477387610fbfb6
a3810469de465100b039f38a6e39a83c11a1de3b4259b3028b2b85338770100c
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 07 Oct 2020 16:33:25 GMT
etag: "15d98-5b11746475f40-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 30916
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/underscore.min.js?ver=1.8.3
184.168.99.50200 OK 5.7 kB URL HTTP/2 neofitnes.com/wp-includes/js/underscore.min.js?ver=1.8.3
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (16010)
Hash 5c9683ce4b5ae14e78aef6e91a2f772d
e8bb47e8c3fd3987413dd1ab355005ac04e69795
408cb00c398acae2090af546d72302f728ab7391436c08e69340e211370a7d07
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/underscore.min.js?ver=1.8.3 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 25 Mar 2021 20:02:19 GMT
etag: "3ead-5be61e48b68c0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 5663
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0
184.168.99.50200 OK 5.8 kB URL HTTP/2 neofitnes.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (20418)
Hash e904c7b9385497a2004057cba01dc723
bca7e328b475f93127fec374e6f0091e31470678
4c791e01c559583f73a3d33c9d96db3b21f28de0ccdba4e8543de7220d9ea3f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.6.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:22:04 GMT
etag: "509d-5bff703bb7f00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 5825
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/portfolio-elementor/modules/post-grid-module/vendor/isotope/js/packery-mode.pkgd.min.js?ver=3.0.6
184.168.99.50200 OK 7.6 kB URL HTTP/2 neofitnes.com/wp-content/plugins/portfolio-elementor/modules/post-grid-module/vendor/isotope/js/packery-mode.pkgd.min.js?ver=3.0.6
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with CRLF line terminators
Hash 3ee14587c3766e22ef9f1f37bbbe25d3
f25b098ff61a932cf2f67a21be8fbcea4ee82160
d3e4846a105558f3b4bbbc94c05563560a49630e4e89d34135aafc8700aa2a81
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/portfolio-elementor/modules/post-grid-module/vendor/isotope/js/packery-mode.pkgd.min.js?ver=3.0.6 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 05:41:54 GMT
etag: "7fa7-5d9c28e1e4f5e-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 7649
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/masonry.min.js?ver=4.2.2
184.168.99.50200 OK 7.4 kB URL HTTP/2 neofitnes.com/wp-includes/js/masonry.min.js?ver=4.2.2
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (23966)
Hash d56e5016a4d65d6d654add02bee3f792
9238046ef54c80e04b940f86683ea33cf44d40c1
6f1a28f0ef5ad427f7d99aecc29db61d8eb25190d5eb5e539c524c916d1442f9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/masonry.min.js?ver=4.2.2 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 13 Jun 2020 18:53:27 GMT
etag: "5e4a-5a7fbb57c37c0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 7382
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0
184.168.99.50200 OK 47 kB URL HTTP/2 neofitnes.com/wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Hash 2c8ddbd96476f0db3dab4b30389d00a8
c4ac28aadfde2ab3989642fbc40d695b4bc4dfdc
428720a6449858e449247dd2c5d8a0bf06b2798a162eded1e3977f92838959f7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/css/js_composer.min.css?ver=6.6.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 18 May 2021 17:26:06 GMT
etag: "7f64c-5c29e014d0780-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 47141
content-type: text/css
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/portfolio-elementor/modules/post-grid-module/vendor/isotope/js/isotope.pkgd.min.js?ver=2.0.1
184.168.99.50200 OK 9.9 kB URL HTTP/2 neofitnes.com/wp-content/plugins/portfolio-elementor/modules/post-grid-module/vendor/isotope/js/isotope.pkgd.min.js?ver=2.0.1
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32019), with CRLF line terminators
Hash 848c28a251c2b0eac275f8ca8838dd8f
99294056a299ef2f01da5b41178b92932fecdac1
9aea1cb64554ca7d7751e016067b126c0bbee5dc9d8843595c7cbf3bce9b40c7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/portfolio-elementor/modules/post-grid-module/vendor/isotope/js/isotope.pkgd.min.js?ver=2.0.1 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Mar 2022 05:41:54 GMT
etag: "8a80-5d9c28e1e4f5e-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 9855
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/themes/leadengine/core/assets/js/bootstrap.min.js?ver=2.9
184.168.99.50200 OK 11 kB URL HTTP/2 neofitnes.com/wp-content/themes/leadengine/core/assets/js/bootstrap.min.js?ver=2.9
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (39553)
Hash 2a099a8cad021f3212ea8876d81e8f8b
1d4ef1f52b2d9da0b39663995ceeff103c51dc74
8e9a5c42d36822918d29505e0670011e3cd0f65c5603d522c5e29f3f9628f009
GET /wp-content/themes/leadengine/core/assets/js/bootstrap.min.js?ver=2.9 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:19:38 GMT
etag: "9b01-5bff6fb07b680-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 10941
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/js_composer/assets/lib/owl-carousel2-dist/owl.carousel.min.js?ver=6.6.0
184.168.99.50200 OK 11 kB URL HTTP/2 neofitnes.com/wp-content/plugins/js_composer/assets/lib/owl-carousel2-dist/owl.carousel.min.js?ver=6.6.0
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (32007)
Hash 82f20557de5b22d04eeeb157cb6619db
c700f9231302084673941f64bb67a8a009128ad0
0ea10d3d17645f01f9c8948f0777848303921622793407fee2ca6c36fcf7c048
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/js_composer/assets/lib/owl-carousel2-dist/owl.carousel.min.js?ver=6.6.0 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:22:04 GMT
etag: "a401-5bff703bb7f00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 10634
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/keydesign-addon/assets/js/photoswipe.min.js?ver=5.7.7
184.168.99.50200 OK 12 kB URL HTTP/2 neofitnes.com/wp-content/plugins/keydesign-addon/assets/js/photoswipe.min.js?ver=5.7.7
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (31625)
Hash 65d5a698cc430bfb5c0237b026bef745
59bfc321fed8503f31d25d11a6fe25e13fbf0857
4541a50a508b6a757f12bfcb404ddb7a6170ba0b99a2ac47184ca50399406139
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/keydesign-addon/assets/js/photoswipe.min.js?ver=5.7.7 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:21:12 GMT
etag: "7bee-5bff700a20a00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 12193
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/n2.min.js?ver=4180a0be
184.168.99.50200 OK 12 kB URL HTTP/2 neofitnes.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/n2.min.js?ver=4180a0be
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (41317), with no line terminators
Hash f51befc44e3ab3d7b4ee285885ec53d8
15b3fcdf21d71c7824b5a6e8e0562fcc0e592b90
1d7358db477aa8c0d80fc084de3606d5bed99f023e471bb72d4eb6014d97eef0
GET /wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/n2.min.js?ver=4180a0be HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Mar 2022 12:09:16 GMT
etag: "a165-5d93b268ad780-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 12344
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.21
184.168.99.50200 OK 26 kB URL HTTP/2 neofitnes.com/wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.21
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type ASCII text, with very long lines (4472)
Hash 60e3a26bdcfd72dbbd4a19026bd2fb50
6700af38aa692727b66d6b0c5bd64c8824ceb14a
75e85551d85741de3e80ebbf5c93d17c1c0105af398ac5e25da1e97fbc7af4ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/lodash.min.js?ver=4.17.21 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3; _ga_T99VP73TNT=GS1.1.1664876986.1.0.1664876986.0.0.0; _ga=GA1.1.28228002.1664876986
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 11 Jul 2020 00:36:23 GMT
etag: "11c65-5aa1fa5a02fc0-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 25763
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4
184.168.99.50200 OK 34 kB URL HTTP/2 neofitnes.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type Unicode text, UTF-8 text, with very long lines (34729), with NEL line terminators
Hash b997c3b6fc35923443dd6dcc360e920e
aa470c21b5ae916b986a022e4bd7f42670d72381
d8a171bcb9c7360ecbb08248184892a5aca2c27ba83d62778e36f507c76cef29
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=7.4.4 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 29 Jun 2020 11:50:29 GMT
etag: "183ee-5a937aa4cab40-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 34241
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:49:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:49:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.195200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neofitnes.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 01 Oct 2022 03:08:55 GMT
expires: Sun, 01 Oct 2023 03:08:55 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 283254
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/alef/v21/FeVQS0NQpLYglo50H55Q2A.woff2
216.58.207.195200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/alef/v21/FeVQS0NQpLYglo50H55Q2A.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 19576, version 1.0\012- data
Hash bf9eb7aeab7ca13b58f618a8fb9300e8
ade5b7ec5f6cc1adbda7d69cd61fd60b00e52f4d
1baa62c929fe7c727c220d2eda97f8a04ff4b3c6a6a30645bfdf3f23c1210875
GET /s/alef/v21/FeVQS0NQpLYglo50H55Q2A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neofitnes.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 20:46:37 GMT
expires: Thu, 28 Sep 2023 20:46:37 GMT
cache-control: public, max-age=31536000
age: 478992
last-modified: Tue, 19 Apr 2022 18:36:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/abeezee/v22/esDR31xSG-6AGleN2tWkkA.woff2
216.58.207.195200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/abeezee/v22/esDR31xSG-6AGleN2tWkkA.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 17072, version 1.0\012- data
Hash 45462752342c1004d9c92488ebcb5e0b
3abfc280cfddd6bc1962e7e2d582af70e799f35e
e9b78ce1cbff9e258afa3a91f5b9a0fe64ce792691eda7f66b9eaad19e468e83
GET /s/abeezee/v22/esDR31xSG-6AGleN2tWkkA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://neofitnes.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17072
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 00:27:57 GMT
expires: Thu, 28 Sep 2023 00:27:57 GMT
cache-control: public, max-age=31536000
age: 552112
last-modified: Tue, 19 Apr 2022 18:27:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 09:49:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Alef%3Aregular%2C700&ver=6.6.0
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Alef%3Aregular%2C700&ver=6.6.0
IP 142.250.74.10:0
GET /css?family=Alef%3Aregular%2C700&ver=6.6.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neofitnes.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 09:49:46 GMT
date: Tue, 04 Oct 2022 09:49:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.3
184.168.99.50200 OK 0 B URL HTTP/2 neofitnes.com/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.3
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.4.3 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:21:46 GMT
etag: "1e437-5bff702a8d680-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 46887
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.3
184.168.99.50200 OK 0 B URL HTTP/2 neofitnes.com/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.3
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.4.3 HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 14 Apr 2021 23:21:46 GMT
etag: "56d47-5bff702a8d680-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
neofitnes.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/smartslider-frontend.min.js?ver=4180a0be
184.168.99.50200 OK 0 B URL HTTP/2 neofitnes.com/wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/smartslider-frontend.min.js?ver=4180a0be
IP 184.168.99.50:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
GET /wp-content/plugins/smart-slider-3/Public/SmartSlider3/Application/Frontend/Assets/dist/smartslider-frontend.min.js?ver=4180a0be HTTP/1.1
Host: neofitnes.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://neofitnes.com/
Connection: keep-alive
Cookie: PHPSESSID=86737e05f4356817a302855e7db7eed3
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 02 Mar 2022 12:09:16 GMT
etag: "1c4b0-5d93b268ad780-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Wed, 04 Oct 2023 09:49:46 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 26945
content-type: application/x-javascript
date: Tue, 04 Oct 2022 09:49:46 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=ABeeZee%3Aregular%2Citalic&ver=6.6.0
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=ABeeZee%3Aregular%2Citalic&ver=6.6.0
IP 142.250.74.10:0
GET /css?family=ABeeZee%3Aregular%2Citalic&ver=6.6.0 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neofitnes.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 09:49:46 GMT
date: Tue, 04 Oct 2022 09:49:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%26subset%3Dlatin-ext&ver=all
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A300%2C400%2C600%2C700%26subset%3Dlatin-ext&ver=all
IP 142.250.74.10:0
GET /css?family=Open+Sans%3A300%2C400%2C600%2C700%26subset%3Dlatin-ext&ver=all HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://neofitnes.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 09:49:46 GMT
date: Tue, 04 Oct 2022 09:49:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2