r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bea3185dd820a31c1981317f37c3456d
1a548a5d27270fc11df9011837a7149571cedd78
469b97bf9f57401b3c9571039483589f2815f4794212b75c7c85cfefe0ae71e9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "469B97BF9F57401B3C9571039483589F2815F4794212B75C7C85CFEFE0AE71E9"
Last-Modified: Wed, 22 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3749
Expires: Fri, 24 Mar 2023 23:38:15 GMT
Date: Fri, 24 Mar 2023 22:35:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 13f90146df1d559743af6df15c29b77b
6dd24f60629c39f857e3c996084f4d515cf3f8d0
ea5975be17b9cd29c8770939eb5d63ce43c1c44ce9a3a4d04e1e79cd69b30d1c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA5975BE17B9CD29C8770939EB5D63CE43C1C44CE9A3A4D04E1E79CD69B30D1C"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18461
Expires: Sat, 25 Mar 2023 03:43:27 GMT
Date: Fri, 24 Mar 2023 22:35:46 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 24 Mar 2023 22:27:40 GMT
content-type: application/json
age: 486
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dc2752d83fbed82852248898a132467a
b27a6b4af2e07663a58cafb641513f7224c7a7c3
ea7838393d83805a7b8a2b01bd09e4423617c4da285b983a11e9ba36266810d5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EA7838393D83805A7B8A2B01BD09E4423617C4DA285B983A11E9BA36266810D5"
Last-Modified: Wed, 22 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12799
Expires: Sat, 25 Mar 2023 02:09:05 GMT
Date: Fri, 24 Mar 2023 22:35:46 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: JLfrZs6I8cOsNRasUuNVhxnhwqR7rG7js8+Zj9t4WkK3HdfWnZChTxLoiMtvUB3wGauAJYh40ec=
x-amz-request-id: JGYGT8JYBJG4ANB1
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 24 Mar 2023 21:54:40 GMT
age: 2466
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
mydentistanaheim.com/
162.222.225.172301 Moved Permanently 237 B IP 162.222.225.172:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a7bf81be6ddaf4a426422631d5f4051a
da33075781ae412ec5c1bc0e4eb9f8722924ab8e
e39f358a8a69577393304c612c132896795a846989b2ed3a3212876e5081ef9c
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 24 Mar 2023 22:35:48 GMT
Server: nginx/1.21.6
Content-Type: text/html; charset=iso-8859-1
Content-Length: 237
Location: https://mydentistanaheim.com/
X-Server-Cache: true
X-Proxy-Cache: EXPIRED
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 24 Mar 2023 22:35:46 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 24 Mar 2023 22:14:33 GMT
age: 1273
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16621
Expires: Sat, 25 Mar 2023 03:12:48 GMT
Date: Fri, 24 Mar 2023 22:35:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2dd23a1d9de81711c0077864cba99e0f
1f67082e19dc8c47e23173d3d1ad4be2055a3b51
4577893e4f164364bbdba347aea9a1f99a4485c5c3b112e08e710103599da143
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4577893E4F164364BBDBA347AEA9A1F99A4485C5C3B112E08E710103599DA143"
Last-Modified: Thu, 23 Mar 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 25 Mar 2023 04:35:47 GMT
Date: Fri, 24 Mar 2023 22:35:47 GMT
Connection: keep-alive
push.services.mozilla.com/
52.34.238.244101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.34.238.244:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: u1FTqJuuAskukgPm7nLH5w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GszDG2DCCM4uhSCOlMUU7/RIPU0=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16690
Expires: Sat, 25 Mar 2023 03:13:57 GMT
Date: Fri, 24 Mar 2023 22:35:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16690
Expires: Sat, 25 Mar 2023 03:13:57 GMT
Date: Fri, 24 Mar 2023 22:35:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16690
Expires: Sat, 25 Mar 2023 03:13:57 GMT
Date: Fri, 24 Mar 2023 22:35:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16690
Expires: Sat, 25 Mar 2023 03:13:57 GMT
Date: Fri, 24 Mar 2023 22:35:47 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16690
Expires: Sat, 25 Mar 2023 03:13:57 GMT
Date: Fri, 24 Mar 2023 22:35:47 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: vOBDFA2LzOIp_0dMXApotrithfiToWtpM2xMRyx1pWAE86olKT6EpQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 02:36:43 GMT
age: 71944
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 73f9697594d173d623b331b5c35eab8d
6323f751f6b7517f062a0442480f672086ea02a1
116cb71658b31e87f19c390b242c684f6505cc8edf90b7fc934ac726fc7ddd18
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8635
x-amzn-requestid: fc715b03-f48f-4300-b752-ab157a684f08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihcETyIAMFhYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a2-68f685ec0f50dae026ea3f64;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: i6dsVaC_gPijsRqh_EL5tZYZpjNEbQJvKIpPq501TIJZzcLUWeRz9w==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:45:56 GMT
age: 2991
etag: "6323f751f6b7517f062a0442480f672086ea02a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02e0767e0c72d95e30337ad42f5d15b3
79aa21ca35c9d98ea7d0713d219e9b67083bdc05
7991a0c4d409cca49259cb626d0de39684635f14fad72e074b303235026673a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6511
x-amzn-requestid: 38d33f4d-2b85-4666-b778-04f4b4dfdf10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihSFIdIAMFRjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a1-036a28e75189d05209396933;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:29 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: eYAgUDZFGkaskq0A77VgX54hvvjtQtClrFyED3COkankS76uD7hTAQ==
via: 1.1 53ee82a7eb57de316cba44c26680b4a6.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:43:52 GMT
age: 3115
etag: "79aa21ca35c9d98ea7d0713d219e9b67083bdc05"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aecd210f66f83c73c3450d047ae7448a
d68861e96e12e8a3f293dbae8b687f05b6e15afb
22b69c41c56e5538d91f824d5dc2e63ab5563f99ae8e429c9166f4b397cacd0e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5296
x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzEqkIAMFXOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:57:13 GMT
age: 2314
etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F824b0012-dfce-43bf-8955-72831cc61188.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F824b0012-dfce-43bf-8955-72831cc61188.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9fd355f0e246bf9a1303d8afa9f1084
396b099f70cb3eff1bdd4d5343da104cd379b09c
384295c095ab737fbbd78f5165be6f4c2c02d000521b1f7893563b9b2eafb0b6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F824b0012-dfce-43bf-8955-72831cc61188.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8114
x-amzn-requestid: 71780de2-2c43-4a5c-9541-9334e96f4a74
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTjQGHtSIAMFX9Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e18cd-6b5831e85ebef2035ed181c1;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:40:29 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 9r-EIfk4Im_MO0TH4XkS--B_GaBb4ZnJw0YHz39zjFrzVQXedINGYA==
via: 1.1 59456abf79b201034ab5c9cfef7355e2.cloudfront.net (CloudFront), 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:56:42 GMT
etag: "396b099f70cb3eff1bdd4d5343da104cd379b09c"
content-type: image/jpeg
age: 2345
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F575e6da3-b226-4052-a0b9-fca28ce33cdf.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F575e6da3-b226-4052-a0b9-fca28ce33cdf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4eff72cc67baab6193459fde6258b90
afda12d540eca8e8bd8ef9451c764bcf52ad26ec
d7a42e4f1940187cf3ee0ca7da042544f40b1c55997dc3a2f90bb524eaa98921
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F575e6da3-b226-4052-a0b9-fca28ce33cdf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11362
x-amzn-requestid: b22b73ca-a711-4898-a279-eab98b4597a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTjS9F_HIAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e18df-6c691516066b4b50453013f3;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:40:47 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: _rudRr3bavf-10Yp9sip4sTZrENdo1YGlDShmuTWdHcXpe4Ngt2uWA==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:56:43 GMT
age: 2344
etag: "afda12d540eca8e8bd8ef9451c764bcf52ad26ec"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3a85d9c2de0b1015b62c81a1ab7fe625
389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238
717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 22:35:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4355291ec58b85ddde02c2446ecb2bb4
4ad43e10f82193f83e862e8a78f3e46de9490ac4
e32fd5635627751770ee13e8f77b14b2555163cfc2d7db98aa8edb5b4bae4d9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 22:35:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-106686815-1
142.250.74.40200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-106686815-1
IP 142.250.74.40:0
File type ASCII text, with very long lines (2206)
Hash 05553ea3d39f0d59d9c1484b3510eabe
a79dfc9dfb74fbc39fb281416df4d1b899a83324
ac59ba3da327fe1b440534697558995103f034d7278ab06bb3b993bd6b267a0e
GET /gtag/js?id=UA-106686815-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydentistanaheim.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 24 Mar 2023 22:35:47 GMT
expires: Fri, 24 Mar 2023 22:35:47 GMT
cache-control: private, max-age=900
last-modified: Fri, 24 Mar 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44832
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3a85d9c2de0b1015b62c81a1ab7fe625
389c7fe2d0d53ff607a3fd8e27283c8f1cb3a238
717fa1c4098bd6e282c24452a39aafc0b436941b2f398ef0086960effcc3f2ca
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 22:35:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 4355291ec58b85ddde02c2446ecb2bb4
4ad43e10f82193f83e862e8a78f3e46de9490ac4
e32fd5635627751770ee13e8f77b14b2555163cfc2d7db98aa8edb5b4bae4d9a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 22:35:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mydentistanaheim.com/wp-content/cache/autoptimize/css/autoptimize_single_41ed67384cef4bfa87aeed60852c738a.css?ver=1666977350
162.222.225.172200 OK 431 B URL HTTP/2 mydentistanaheim.com/wp-content/cache/autoptimize/css/autoptimize_single_41ed67384cef4bfa87aeed60852c738a.css?ver=1666977350
IP 162.222.225.172:0
File type ASCII text, with very long lines (1308), with no line terminators
Hash 71503abfabbb00ba21883efc208d67e9
e4e44e27541c013747eb0b73d0a8626270ce712f
fad0701bda38154b87c42eda93d30b58952d7d692fc8482924bdd8d2467034e6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/autoptimize/css/autoptimize_single_41ed67384cef4bfa87aeed60852c738a.css?ver=1666977350 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Oct 2022 17:54:18 GMT
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Wed, 13 Mar 2024 22:35:47 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 431
content-type: text/css
date: Fri, 24 Mar 2023 22:35:47 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/cache/autoptimize/css/autoptimize_single_747cd68aad46ae96766a3af21a848cd0.css?ver=1666977350
162.222.225.172200 OK 6.3 kB URL HTTP/2 mydentistanaheim.com/wp-content/cache/autoptimize/css/autoptimize_single_747cd68aad46ae96766a3af21a848cd0.css?ver=1666977350
IP 162.222.225.172:0
File type ASCII text, with very long lines (32811), with no line terminators
Hash b8c248afd90a3346dc136b55d307977f
5d66647d2ae6df94e8d3069270393639884d34aa
9b9332d7cc92b9a64dcea74d06daa3810835abb9b17e67b0d8c6c873427269f8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/autoptimize/css/autoptimize_single_747cd68aad46ae96766a3af21a848cd0.css?ver=1666977350 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Oct 2022 17:54:18 GMT
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Wed, 13 Mar 2024 22:35:47 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 6273
content-type: text/css
date: Fri, 24 Mar 2023 22:35:47 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/cache/autoptimize/css/autoptimize_single_d4828d7505f7b86889a966164cf83fd9.css?ver=2.8.2.7-183
162.222.225.172200 OK 1.9 kB URL HTTP/2 mydentistanaheim.com/wp-content/cache/autoptimize/css/autoptimize_single_d4828d7505f7b86889a966164cf83fd9.css?ver=2.8.2.7-183
IP 162.222.225.172:0
File type ASCII text, with very long lines (7822), with no line terminators
Hash 88c0db7168f80f997c8e4b14591e6b8e
770cb7c02651ece9aac7a0633589c6604fdc4794
e078206ac396e8d149e3f2bdb2e181c059466362ff0df5ac86e03301152879c5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/autoptimize/css/autoptimize_single_d4828d7505f7b86889a966164cf83fd9.css?ver=2.8.2.7-183 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Oct 2022 17:54:17 GMT
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Wed, 13 Mar 2024 22:35:47 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1869
content-type: text/css
date: Fri, 24 Mar 2023 22:35:47 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/mobile-menu/includes/js/mobmenu.js?ver=2.8.2.7
162.222.225.172200 OK 4.7 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/mobile-menu/includes/js/mobmenu.js?ver=2.8.2.7
IP 162.222.225.172:0
Hash 8ff93cc501df09588a0f865fd5522fef
321ce89afd549c20e7c5412e6851eb6cb49525fb
2be80e8e5582a91bfee85fdc1ff168d2ba0b180fd904f4656caf96c8ea49b0e2
GET /wp-content/plugins/mobile-menu/includes/js/mobmenu.js?ver=2.8.2.7 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 06:42:20 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:47 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 4709
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:47 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
162.222.225.172200 OK 4.6 kB URL HTTP/2 mydentistanaheim.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 162.222.225.172:0
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 05:31:13 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:47 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 4618
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:47 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/uploads/logo-1.png
162.222.225.172200 OK 22 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/logo-1.png
IP 162.222.225.172:0
File type PNG image data, 398 x 65, 8-bit/color RGBA, interlaced\012- data
Hash 7208bae6cc5620d2e3b53da0396e15e6
134d7b4bda1f8f4091654e965887414dd28e3907
e7b81f375589f088cf13cbd037cf607608f68a1c07978b848fbedfec4163c9ea
GET /wp-content/uploads/logo-1.png HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 17 Jan 2020 09:36:29 GMT
accept-ranges: bytes
content-length: 22309
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-webfontloader.min.js?1652787310
162.222.225.172200 OK 5.5 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-webfontloader.min.js?1652787310
IP 162.222.225.172:0
File type Unicode text, UTF-8 text, with very long lines (12306), with no line terminators
Hash 154bbbdef9c6ae618201842a486bb8e1
1a728269707068e8e997e2864e416a73a741d865
7708cb60880abbc9da7f9469e15d9d32935539d8b95a4a3cdaaf210e7d3ff8c6
GET /wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-webfontloader.min.js?1652787310 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 11:35:10 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 5491
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/
162.222.225.172200 OK 42 kB IP 162.222.225.172:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (8047), with CRLF, LF line terminators
Hash 64a489f29a3f222cf3d82afb0b4ecd5a
8a43c659e6897c83f4d22edc4fd88774ef1b5f6b
162add08cc1cd970d15530c88d9d58982e361998971e7178bf4149d6b7a42a29
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Fri, 24 Mar 2023 22:35:49 GMT
server: nginx/1.21.6
content-type: text/html; charset=UTF-8
link: <https://mydentistanaheim.com/wp-json/>; rel="https://api.w.org/", <https://mydentistanaheim.com/wp-json/wp/v2/pages/352>; rel="alternate"; type="application/json", <https://mydentistanaheim.com/>; rel=shortlink
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
x-server-cache: true
x-proxy-cache: EXPIRED
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
162.222.225.172200 OK 3.7 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 162.222.225.172:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash e2a8decccf4d0a6b925af707a36077a9
26a0febc9c3d91e75410f74b9ec62099ba1cbe90
09e0e638a6f53c0fdcfeeb8ae91f3a404bef47b471324e335e29be14a2aa87f7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Oct 2022 17:15:49 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 3747
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/nextend-smart-slider3-pro/library/media/plugins/type/simple/simple/dist/smartslider-backgroundanimation.min.js?1652851719
162.222.225.172200 OK 8.1 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/nextend-smart-slider3-pro/library/media/plugins/type/simple/simple/dist/smartslider-backgroundanimation.min.js?1652851719
IP 162.222.225.172:0
File type ASCII text, with very long lines (24819), with no line terminators
Hash 799de4c0eba54229d6b8954140174a04
73c3f79070059ad902a97b7909e9e0b09278d6a8
abe7322a62369c85bb078c786f4efc9dc96dd6456bc82f84757557e3d2343b5b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/nextend-smart-slider3-pro/library/media/plugins/type/simple/simple/dist/smartslider-backgroundanimation.min.js?1652851719 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 May 2022 05:28:39 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 8103
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/nextend-smart-slider3-pro/library/media/plugins/type/simple/simple/dist/smartslider-simple-type-frontend.min.js?1652851738
162.222.225.172200 OK 5.2 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/nextend-smart-slider3-pro/library/media/plugins/type/simple/simple/dist/smartslider-simple-type-frontend.min.js?1652851738
IP 162.222.225.172:0
File type ASCII text, with very long lines (18512), with no line terminators
Hash 7ff3ce4d7394b38ece35e1c9f667dfcb
93c3f1d1d985c593c2544ee2a55b3f808b67c1dd
484faf4b8db8a56400a90704e6f730222ab56426b9d495019aae0cf4321bea50
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/nextend-smart-slider3-pro/library/media/plugins/type/simple/simple/dist/smartslider-simple-type-frontend.min.js?1652851738 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 May 2022 05:28:58 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 5224
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-includes/js/wp-util.min.js?ver=5.9.5
162.222.225.172200 OK 709 B URL HTTP/2 mydentistanaheim.com/wp-includes/js/wp-util.min.js?ver=5.9.5
IP 162.222.225.172:0
File type ASCII text, with very long lines (1305)
Hash e9edb7bac979409cf7dbc48d7ab8aca7
ed3f941a8fe41e3994a3ca5e620219328628f532
2a0742cad9937c742b2f51c1ea2ae48359ce8d88d8b56f6d8910c0a267d631b5
GET /wp-includes/js/wp-util.min.js?ver=5.9.5 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 05:31:13 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 709
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Dosis%3Ainherit%2C400&subset=latin%2Clatin-ext&ver=5.9.5
142.250.74.74200 OK 776 B URL HTTP/2 fonts.googleapis.com/css?family=Dosis%3Ainherit%2C400&subset=latin%2Clatin-ext&ver=5.9.5
IP 142.250.74.74:0
File type ASCII text, with very long lines (754)
Hash c79391251dedb7a2a33a206d5665c1e8
800e952382c4b23f236ed84086aa1972d5fa31c0
99362433174b9f2bd73591454eceddfed6742a32b5142ae617c69c8ccda3034a
GET /css?family=Dosis%3Ainherit%2C400&subset=latin%2Clatin-ext&ver=5.9.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydentistanaheim.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 24 Mar 2023 22:35:47 GMT
date: Fri, 24 Mar 2023 22:35:47 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/pojo-accessibility/assets/js/app.min.js?ver=1.0.0
162.222.225.172200 OK 1.8 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/pojo-accessibility/assets/js/app.min.js?ver=1.0.0
IP 162.222.225.172:0
File type ASCII text, with very long lines (5265)
Hash c5a176b8ac794146e16a59d633b1a778
59a1ce86c104cc667c8c244891586ccecf23b449
e1ac99036f1c2dc66d2ebec0749bbc34d1f4ff7c53ef712a343c3a2c8881f5bb
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/pojo-accessibility/assets/js/app.min.js?ver=1.0.0 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 May 2022 04:39:37 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1818
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.8
162.222.225.172200 OK 150 B URL HTTP/2 mydentistanaheim.com/wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.8
IP 162.222.225.172:0
File type ASCII text, with no line terminators
Hash 14e97c0bd8b30f6184d7b9b0de3b62dc
052e2d09afda94db181e7b410ef3c49567350896
cf50cfaa42eabf7e33d6b7214e8965573e33b17b60420352789410639c9c80aa
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpforms-lite/assets/js/utils.min.js?ver=1.7.8 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 05:52:09 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 150
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
162.222.225.172200 OK 4.2 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0
IP 162.222.225.172:0
File type ASCII text, with very long lines (10544)
Hash 552977febe8ef2c71b0806dfaefd2552
01baebfd09383c5d44f066e7b5540fcca6a5eae4
7895907f5a4f54c08c4705b1a194e21c556d68027c5e0a70d4c05b377e712b1d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/dialog/dialog.min.js?ver=4.9.0 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Oct 2022 17:15:49 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 4200
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js?ver=1.0.0
162.222.225.172200 OK 901 B URL HTTP/2 mydentistanaheim.com/wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js?ver=1.0.0
IP 162.222.225.172:0
File type ASCII text, with very long lines (1713), with no line terminators
Hash 3e33d71d7250e95ae90fbd97b39c7075
b19776ee503d6f29411092ab7caa614e8831c2ef
9e0ab4d1f16b939246bb32425207d6f4861275d7ef03acfb85ecac492a750f47
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wpforms-lite/assets/lib/punycode.min.js?ver=1.0.0 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 05:52:10 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 901
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-includes/js/underscore.min.js?ver=1.13.1
162.222.225.172200 OK 8.3 kB URL HTTP/2 mydentistanaheim.com/wp-includes/js/underscore.min.js?ver=1.13.1
IP 162.222.225.172:0
File type ASCII text, with very long lines (19034)
Hash eeaba56f22f556e151004bd4e7df5b95
cf27358790301dac65ba436199f588a5d8a4af89
9a1f9f3828fa2623d6392631b9b3556d5a6b6b94ece516c711052fa644885b77
GET /wp-includes/js/underscore.min.js?ver=1.13.1 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 05:31:13 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 8326
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5
162.222.225.172200 OK 9.8 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5
IP 162.222.225.172:0
File type Unicode text, UTF-8 text, with very long lines (24463)
Hash fb092211d0a2836dce89f50a87893316
141c3058a3d209cd6606ad88163af9791706d5be
beb74149278a12e2e78cdb38f115e9d055e8622f2306f03738b2dc6ab742140e
GET /wp-content/plugins/wpforms-lite/assets/lib/jquery.validate.min.js?ver=1.19.5 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 05:52:10 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 9806
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.8
162.222.225.172200 OK 12 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.8
IP 162.222.225.172:0
File type ASCII text, with very long lines (32390), with no line terminators
Hash 1fe9e925e530d18152f46ba95e68bbc0
952661cad3a84349bed4fec3f20c4dd44e6e7274
9b091e6f90c8b8d6add414f15fc9a798cb3617b9a422783bc5619da4947d5849
GET /wp-content/plugins/wpforms-lite/assets/js/wpforms.min.js?ver=1.7.8 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 05:52:09 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 12033
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/uploads/2018/10/slide2.jpg
162.222.225.172200 OK 134 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/2018/10/slide2.jpg
IP 162.222.225.172:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1140, components 3\012- data
Size 134 kB (134028 bytes)
Hash fe6be13e7b2bd22fda60440edd43fe81
70b4c5d6c3301dd212e7b8e48183b6dadfb4e9bb
3e71bad22247e4d151b6f3b4653f826e2eecb042558c3c4f41ac620268fb4f0a
GET /wp-content/uploads/2018/10/slide2.jpg HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Oct 2018 14:48:54 GMT
accept-ranges: bytes
content-length: 134028
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
162.222.225.172200 OK 13 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
IP 162.222.225.172:0
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash a3a9966edbcf4ff24cbce6355e84c975
4c31a0c1e12987b364c178689b8283d09e4f8a63
d50d738abb2b285ac79c3552d286706f3a99e60add08edad08f20b2d4adbdb8d
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Oct 2022 17:15:49 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 13281
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/uploads/2018/10/slide1.jpg
162.222.225.172200 OK 124 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/2018/10/slide1.jpg
IP 162.222.225.172:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1026, components 3\012- data
Size 124 kB (124217 bytes)
Hash e6f1f1d5b2e95721ef2f6fcf79755780
67455db13a5b872870de4af2efe7450751626903
ae4207a190bc56fbd230d7879f622f3e5aa40b1d5114a2279ca256f87170d351
GET /wp-content/uploads/2018/10/slide1.jpg HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Oct 2018 14:48:49 GMT
accept-ranges: bytes
content-length: 124217
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/wpforms-lite/assets/lib/mailcheck.min.js?ver=1.1.2
162.222.225.172200 OK 1.7 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/wpforms-lite/assets/lib/mailcheck.min.js?ver=1.1.2
IP 162.222.225.172:0
File type C source, ASCII text, with very long lines (4014), with no line terminators
Hash e03900351327a27c5975d24ae3028d22
080aed207843da5d94183f071d9f1a4d3db86247
10b44bd938b32514dbc9895767b24b3245ccda2c742159ae0fbef561868ad87f
GET /wp-content/plugins/wpforms-lite/assets/lib/mailcheck.min.js?ver=1.1.2 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 16 Dec 2022 05:52:10 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1736
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
162.222.225.172200 OK 8.1 kB URL HTTP/2 mydentistanaheim.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 162.222.225.172:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 4cdacddd7ddb8e34cdc428be2f12ee99
dccf8409d825f49557c40a467c0d3052f4c14923
bd13cfedef2490fbfdcecac80b24ad0f13fd9741bff3ebeb20a49b87d947a141
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 05:31:13 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 8137
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.8
162.222.225.172200 OK 1.2 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.8
IP 162.222.225.172:0
File type ASCII text, with very long lines (2620), with no line terminators
Hash 55936584085d0d310919b755eda1ab3f
be317c3b2ed5143669375295b3107e591bf708da
aad2265c39cafa6e01b791b1ef5025a2d237ee91346ef446beb722fdcd578d58
GET /wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.7.8 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Oct 2022 17:15:49 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 1187
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.8
162.222.225.172200 OK 17 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.8
IP 162.222.225.172:0
File type ASCII text, with very long lines (43101)
Hash 0bcfebc29c337c25a6d2ce3d29d33515
c362e3b909df61db7496ef5dcd897795336d9c2a
f07d4313a3ff0e1abbe69e17fa463ce47b44fa4f5166fd9017b190d2fdc9c723
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.7.8 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Oct 2022 17:15:49 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 16899
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 22:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.google.com/maps?q=853%20N.%20Harbor%20Blvd.%20Anaheim%2C%20CA%2092805&t=m&z=10&output=embed&iwloc=near
142.250.74.46301 Moved Permanently 0 B URL HTTP/2 maps.google.com/maps?q=853%20N.%20Harbor%20Blvd.%20Anaheim%2C%20CA%2092805&t=m&z=10&output=embed&iwloc=near
IP 142.250.74.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /maps?q=853%20N.%20Harbor%20Blvd.%20Anaheim%2C%20CA%2092805&t=m&z=10&output=embed&iwloc=near HTTP/1.1
Host: maps.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydentistanaheim.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s853+N.+Harbor+Blvd.+Anaheim,+CA+92805!5e0!6i10
vary: Origin, X-Origin, Referer
date: Fri, 24 Mar 2023 22:35:48 GMT
content-type: text/html
server: scaffolding on HTTPServer2
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
162.222.225.172200 OK 5.2 kB URL HTTP/2 mydentistanaheim.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP 162.222.225.172:0
File type ASCII text, with very long lines (15224)
Hash 00af0ddf324f69fcb25f0d2e5d08910a
df0379ab0e1b2902957c8aba77f89d88e1239b59
f0a06ed3b8d3917b358def04d87668001cd1c6da31a5cb4bb452313feb64a2a7
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 05:31:13 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-length: 5243
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/uploads/2018/06/navbar.jpg
162.222.225.172200 OK 6.1 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/2018/06/navbar.jpg
IP 162.222.225.172:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1599x143, components 3\012- data
Hash 5dcd69f16a7dca2d40c34f130ad046d6
f5de8923f9e2f94b30c1821ab88bc2e65c6f0069
bd68804853f4b8e9f74028d535233590696e68f6f4abeb730beaae58bbd0f785
GET /wp-content/uploads/2018/06/navbar.jpg HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//mydentistanaheim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 22 Jun 2018 11:19:17 GMT
accept-ranges: bytes
content-length: 6139
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f0f306ea49f1bd3f358f7579513e7377
c2845c696f6685a211bc040895d28ebf23fa1bc0
cda7588d5040ef3c8e83955838618a0ed0a6ee242d24abf5af697b2289fc8bdb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 22:35:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9b762efe5751eb25cd26ca67ad6dcf22
661f1247ecc842236957d05747967ec4f20835a2
c51c54e54ffc33cc7643bb0a64da2265f93efaf38838351ec0f2a2fe102efa2e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 22:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mydentistanaheim.com/wp-content/uploads/2018/06/services.jpg
162.222.225.172200 OK 56 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/2018/06/services.jpg
IP 162.222.225.172:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1599x639, components 3\012- data
Hash 8233a5a1eacc23f7ee873befe8d3489b
95f397d10b48872de383d8d6a52b47b9ae654ed4
6e01ffc7bf2a47f085b18e7fcf69635e5c41432848ae28b72285b593eac9de7b
GET /wp-content/uploads/2018/06/services.jpg HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/wp-content/cache/autoptimize/css/autoptimize_single_747cd68aad46ae96766a3af21a848cd0.css?ver=1666977350
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//mydentistanaheim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Nov 2019 06:05:49 GMT
accept-ranges: bytes
content-length: 56374
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/uploads/2018/06/doctor.jpg
162.222.225.172200 OK 28 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/2018/06/doctor.jpg
IP 162.222.225.172:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 799x458, components 3\012- data
Hash 3a2e1ce173b2ae7f0e8c78da3cb01944
4ca5adcf1ed2287662bc8b1008497b8da080bbaf
db175a4d43456fae4af36fbad6c3b670be7b705b9cc8881454c8299d8e2ac676
GET /wp-content/uploads/2018/06/doctor.jpg HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/wp-content/cache/autoptimize/css/autoptimize_single_747cd68aad46ae96766a3af21a848cd0.css?ver=1666977350
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//mydentistanaheim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Nov 2019 05:45:32 GMT
accept-ranges: bytes
content-length: 27460
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/uploads/2018/06/tetsimonials.jpg
162.222.225.172200 OK 72 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/2018/06/tetsimonials.jpg
IP 162.222.225.172:0
File type gzip compressed data, max compression\012- data
Hash 6e8571edb5310ef3a8b11db357d7908e
528ac6703f7591b23a406300de362319bc2e3d86
e275005b4c0db5ebce00784672626230d4928f53c9ca872d443f30b9603fc155
GET /wp-content/uploads/2018/06/tetsimonials.jpg HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/wp-content/cache/autoptimize/css/autoptimize_single_747cd68aad46ae96766a3af21a848cd0.css?ver=1666977350
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//mydentistanaheim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 11 Nov 2019 05:45:34 GMT
accept-ranges: bytes
content-length: 71413
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/jpeg
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
162.222.225.172200 OK 77 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 162.222.225.172:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://mydentistanaheim.com/wp-content/cache/autoptimize/css/autoptimize_3c67a1374157c028dd4a7267a8b3455c.css
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//mydentistanaheim.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-length: 77160
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:49 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
content-type: application/font-woff2
date: Fri, 24 Mar 2023 22:35:49 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 22:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydentistanaheim.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:41 GMT
expires: Sat, 23 Mar 2024 10:26:41 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 43748
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash ce6948c57f579a85042a4388c45514d6
4b3002c036034ef0cb8d9eb73b7bf7f561862b99
85e655e198ac1724ffca7bf4efc4f98de8c436cebf41ed665cc397fbb02a243a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 22:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mydentistanaheim.com/wp-content/uploads/2018/06/assoc-1.png
162.222.225.172200 OK 3.7 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/2018/06/assoc-1.png
IP 162.222.225.172:0
File type PNG image data, 129 x 76, 8-bit colormap, non-interlaced\012- data
Hash ce71c8ee0b73906c4b1b3df5da54e83b
610c1d016c51e0790e59761b25cb000a327a7dbc
d44b779c4db18a8f714ac84d3cca4b290768acbcdd5134aa5fe56de6e1108375
GET /wp-content/uploads/2018/06/assoc-1.png HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//mydentistanaheim.com/; calltrk_session_id=41b5a4e7-dc46-4e76-94ff-db7ae3d62677
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 22 Jun 2018 17:45:55 GMT
accept-ranges: bytes
content-length: 3705
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:49 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 24 Mar 2023 22:35:49 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
162.222.225.172200 OK 50 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6
IP 162.222.225.172:0
Hash 2da0fe5b8cf89dcc881302bcac35f74f
b62f09bdcec95c901338be12b1e1a92331d00fc9
fbccb21ea7c29b869ec4138dd96bfd01852d8544e51f1762b74b2def7c2ef8a8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/elementor/assets/lib/swiper/swiper.min.js?ver=5.3.6 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Oct 2022 17:15:49 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/uploads/2018/06/assoc-2.png
162.222.225.172200 OK 4.1 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/2018/06/assoc-2.png
IP 162.222.225.172:0
File type PNG image data, 158 x 48, 8-bit colormap, non-interlaced\012- data
Hash 18932dcc32392a017306f4a8a2bc0cd7
0ce7011e1fdb6dfdc9918fe8ae5018dedf0db4ee
f03bd3d4b80ac425f223ec8b3a03bfcd7fd968189c591d57fda16d4799abcd36
GET /wp-content/uploads/2018/06/assoc-2.png HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//mydentistanaheim.com/; calltrk_session_id=41b5a4e7-dc46-4e76-94ff-db7ae3d62677
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 22 Jun 2018 17:45:57 GMT
accept-ranges: bytes
content-length: 4129
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:49 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 24 Mar 2023 22:35:49 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/uploads/2018/10/service-2-colu.png
162.222.225.172200 OK 1.2 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/2018/10/service-2-colu.png
IP 162.222.225.172:0
File type PNG image data, 95 x 95, 8-bit colormap, non-interlaced\012- data
Hash 8250deb150cb9057c8eb5a56a0b23361
83c82ba29ec8988bf1039c957bf411363425cec4
542cf7dbecdf4290a3670559b970e2ef5a1e04b65d07e369fdf4fe09e1c6f788
GET /wp-content/uploads/2018/10/service-2-colu.png HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//mydentistanaheim.com/; calltrk_session_id=41b5a4e7-dc46-4e76-94ff-db7ae3d62677
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Oct 2018 16:57:35 GMT
accept-ranges: bytes
content-length: 1241
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:49 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 24 Mar 2023 22:35:49 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/uploads/2018/10/service-1-colu.png
162.222.225.172200 OK 1.2 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/2018/10/service-1-colu.png
IP 162.222.225.172:0
File type PNG image data, 85 x 94, 8-bit colormap, non-interlaced\012- data
Hash 830b79bc0f831c300574273591a4b089
d9af7b085c81ad6d46ddb3dcff162a51d8c00cae
47f12d1affadc06838e5b55591b71c927e91169e706ba4ab5032b7dd6aa5c3b4
GET /wp-content/uploads/2018/10/service-1-colu.png HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//mydentistanaheim.com/; calltrk_session_id=41b5a4e7-dc46-4e76-94ff-db7ae3d62677
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Oct 2018 16:57:24 GMT
accept-ranges: bytes
content-length: 1194
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:49 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 24 Mar 2023 22:35:49 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/uploads/2018/10/implant-icon-colu.png
162.222.225.172200 OK 1.2 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/2018/10/implant-icon-colu.png
IP 162.222.225.172:0
File type PNG image data, 93 x 93, 8-bit colormap, non-interlaced\012- data
Hash 156e89a76e2ddc239015e8c5e5841553
e53a3eee3365f4db2a903312a5d588465927644e
176696c6e18e84202cd7938d0617a8bad3a0e06b9d0094865590cad50cbbb01c
GET /wp-content/uploads/2018/10/implant-icon-colu.png HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//mydentistanaheim.com/; calltrk_session_id=41b5a4e7-dc46-4e76-94ff-db7ae3d62677
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Oct 2018 16:57:55 GMT
accept-ranges: bytes
content-length: 1207
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:49 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 24 Mar 2023 22:35:49 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/uploads/2018/10/service-3-colu.png
162.222.225.172200 OK 1.2 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/2018/10/service-3-colu.png
IP 162.222.225.172:0
File type PNG image data, 99 x 95, 8-bit colormap, non-interlaced\012- data
Hash 800397eb1c4a886fc118eacbbb215b9e
c4cd7cb912e48785a3bc0430e4cbe52527581f1f
501f1fc2f6d12d7290a52643e202847ee75b68749db3e540bdff83c504f2b242
GET /wp-content/uploads/2018/10/service-3-colu.png HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//mydentistanaheim.com/; calltrk_session_id=41b5a4e7-dc46-4e76-94ff-db7ae3d62677
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 18 Oct 2018 16:57:46 GMT
accept-ranges: bytes
content-length: 1248
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:49 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 24 Mar 2023 22:35:49 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/n2-j.min.js?1652787160
162.222.225.172200 OK 44 kB URL HTTP/2 mydentistanaheim.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/n2-j.min.js?1652787160
IP 162.222.225.172:0
Hash 78a289bb0887d83c4c8811a2d1cbb7a9
271c8c42d149ecdeedcc493bc5706ec451801772
87305d4b3b6e249dbd67a0b4983f772720ceb5d1d397a7456065d4432ea4967f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/n2-j.min.js?1652787160 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 11:32:40 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s853+N.+Harbor+Blvd.+Anaheim,+CA+92805!5e0!6i10
216.58.207.228200 OK 912 B URL HTTP/2 www.google.com/maps/embed?origin=mfe&pb=!1m4!2m1!1s853+N.+Harbor+Blvd.+Anaheim,+CA+92805!5e0!6i10
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1503)
Hash b76317065f9cd6b6ebe5fbc6f266d783
341a78dd71de24648a34518a33a5c53056551e9e
af532c8bec338484d2d4030dcaeb6daacc1a767c397db19a94b3cd25c85bb9bd
GET /maps/embed?origin=mfe&pb=!1m4!2m1!1s853+N.+Harbor+Blvd.+Anaheim,+CA+92805!5e0!6i10 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 01 Jan 1990 00:00:00 GMT
pragma: no-cache
content-security-policy: object-src 'none';base-uri 'self';script-src 'nonce-os-q7bMsUDJWrNOaTA9xFw' 'strict-dynamic' 'report-sample' 'unsafe-eval' 'unsafe-inline' https: http:;report-uri https://csp.withgoogle.com/csp/geo-maps-api/1
vary: Accept-Language, Origin, X-Origin, Referer
cache-control: no-cache, must-revalidate
content-type: text/html; charset=UTF-8
content-encoding: gzip
date: Fri, 24 Mar 2023 22:35:49 GMT
server: scaffolding on HTTPServer2
content-length: 912
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mydentistanaheim.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:26:42 GMT
expires: Sat, 23 Mar 2024 10:26:42 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
age: 43747
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.78200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.78:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydentistanaheim.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 24 Mar 2023 22:05:11 GMT
expires: Sat, 25 Mar 2023 00:05:11 GMT
cache-control: public, max-age=7200
age: 1838
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/uploads/2018/05/cropped-Screen-Shot-2018-05-21-at-9.15.06-AM-32x32.png
162.222.225.172200 OK 2.2 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/2018/05/cropped-Screen-Shot-2018-05-21-at-9.15.06-AM-32x32.png
IP 162.222.225.172:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 5a9e2312fd23aa4aad5965cdf7884a7f
52237ac53cc2774f689c65881e5ca5e4a8817452
d76683bdb91c03778367b4f6c09c9910080edf24e0015e5dbd420ccc11159572
GET /wp-content/uploads/2018/05/cropped-Screen-Shot-2018-05-21-at-9.15.06-AM-32x32.png HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//mydentistanaheim.com/; calltrk_session_id=41b5a4e7-dc46-4e76-94ff-db7ae3d62677
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Jun 2018 21:38:30 GMT
accept-ranges: bytes
content-length: 2239
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:49 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 24 Mar 2023 22:35:49 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/uploads/2018/05/cropped-Screen-Shot-2018-05-21-at-9.15.06-AM-192x192.png
162.222.225.172200 OK 40 kB URL HTTP/2 mydentistanaheim.com/wp-content/uploads/2018/05/cropped-Screen-Shot-2018-05-21-at-9.15.06-AM-192x192.png
IP 162.222.225.172:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 3c1af5d55c9865589a97ce14eb3495b9
28f9645d4dc3f8a7783b3b0a332ba3e2f515d22c
b2a3d8455cfbd94fe3bf977c069bb8c5996395363bf2446b1a073ef65258bd13
GET /wp-content/uploads/2018/05/cropped-Screen-Shot-2018-05-21-at-9.15.06-AM-192x192.png HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Cookie: calltrk_referrer=direct; calltrk_landing=https%3A//mydentistanaheim.com/; calltrk_session_id=41b5a4e7-dc46-4e76-94ff-db7ae3d62677
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 18 Jun 2018 21:38:30 GMT
accept-ranges: bytes
content-length: 40545
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:49 GMT
referrer-policy: no-referrer-when-downgrade
content-type: image/png
date: Fri, 24 Mar 2023 22:35:49 GMT
server: Apache
X-Firefox-Spdy: h2
maps.gstatic.com/maps-api-v3/embed/js/52/6/init_embed.js
216.58.207.227200 OK 66 kB URL HTTP/2 maps.gstatic.com/maps-api-v3/embed/js/52/6/init_embed.js
IP 216.58.207.227:0
File type ASCII text, with very long lines (2647)
Hash 3ef6dfbf3b57ddb1cffb291af4dffe5f
0dab8207dfa5a5fedeaa7a959028d574f0773542
15ca67d70d885130a772bff2c7dbc797d48f657e745871d8acedba5e46b12e59
GET /maps-api-v3/embed/js/52/6/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 66148
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 22 Mar 2023 19:33:44 GMT
expires: Thu, 21 Mar 2024 19:33:44 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 20 Mar 2023 21:47:34 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 183725
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 22:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/673719741/?random=1679697361057&cv=11&fst=1679697361057&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fmydentistanaheim.com%2F&hn=www.googleadservices.com&frm=0&tiba=Dentist%20Anaheim%20%7C%20Cosmetic%20Dentistry%20Near%20Orange%20County&auid=1768673882.1679697361&data=event%3Dgtag.config&rfmt=3&fmt=4
142.250.74.34200 OK 1.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/673719741/?random=1679697361057&cv=11&fst=1679697361057&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fmydentistanaheim.com%2F&hn=www.googleadservices.com&frm=0&tiba=Dentist%20Anaheim%20%7C%20Cosmetic%20Dentistry%20Near%20Orange%20County&auid=1768673882.1679697361&data=event%3Dgtag.config&rfmt=3&fmt=4
IP 142.250.74.34:0
File type ASCII text, with very long lines (2633), with no line terminators
Hash eddcc8d8201612cb58b9681fbcbba0cf
bc8cf3af428f133d10bfb1abcd6ff7ffb0847cca
09dd93aa421a430897a9f65d282dd5c0654e4ee0fb5462abbf407bcff73bb340
GET /pagead/viewthroughconversion/673719741/?random=1679697361057&cv=11&fst=1679697361057&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fmydentistanaheim.com%2F&hn=www.googleadservices.com&frm=0&tiba=Dentist%20Anaheim%20%7C%20Cosmetic%20Dentistry%20Near%20Orange%20County&auid=1768673882.1679697361&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydentistanaheim.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 24 Mar 2023 22:35:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 1233
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 24-Mar-2023 22:50:49 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash eef4409d0ad90e2899e538028bd3fa76
2d6edd13cbd2d201ef921fc33c053aec8f8b740c
61eef3a534769ac291c82d37206b392dea96af36a38e9d7da4cf0fb2d5d2342d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 22:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 248b003a4a6dda3d2c481cfd45e49176
ae6e1dbc704dbe302549888e545689eb88e83bb9
14df223924711cca8488c64942b656023cb6e69cb83863ccd0f9cdb8ac4682fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 22:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.no/pagead/1p-user-list/673719741/?random=1679697361057&cv=11&fst=1679695200000&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fmydentistanaheim.com%2F&frm=0&tiba=Dentist%20Anaheim%20%7C%20Cosmetic%20Dentistry%20Near%20Orange%20County&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1695019846&rmt_tld=1&ipr=y
216.58.207.227200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/673719741/?random=1679697361057&cv=11&fst=1679695200000&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fmydentistanaheim.com%2F&frm=0&tiba=Dentist%20Anaheim%20%7C%20Cosmetic%20Dentistry%20Near%20Orange%20County&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1695019846&rmt_tld=1&ipr=y
IP 216.58.207.227:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/673719741/?random=1679697361057&cv=11&fst=1679695200000&bg=ffffff&guid=ON&async=1>m=45be33m0&u_w=1280&u_h=1024&url=https%3A%2F%2Fmydentistanaheim.com%2F&frm=0&tiba=Dentist%20Anaheim%20%7C%20Cosmetic%20Dentistry%20Near%20Orange%20County&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1695019846&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydentistanaheim.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 24 Mar 2023 22:35:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 248b003a4a6dda3d2c481cfd45e49176
ae6e1dbc704dbe302549888e545689eb88e83bb9
14df223924711cca8488c64942b656023cb6e69cb83863ccd0f9cdb8ac4682fb
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 24 Mar 2023 22:35:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b75acd-9be7-4bf2-8e73-f1061da192ba.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b75acd-9be7-4bf2-8e73-f1061da192ba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9b1b90505bc66083f7e1989a1f87051f
7925d1c09eb46911d8c1130be0231d502a018da5
845591f4a7e12238285e0efa8dfd375d689faaa6addfab9134e7dfa7e02d0e2c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b75acd-9be7-4bf2-8e73-f1061da192ba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8032
x-amzn-requestid: 62353bb3-7f93-4598-b378-2074baad0f57
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CHrhwGRaoAMFjkw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6419593e-6c3918b71b20bcca0834d3db;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 07:14:06 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: jKGRm3Axvoa__jRaVhenH94fWXtQSqCQ3dftw9lPZPpzNtwCGRgbwg==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 6a6653dfb47ccc5082f2a5b9d0d168ce.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 17:27:31 GMT
age: 18503
etag: "7925d1c09eb46911d8c1130be0231d502a018da5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-gsap.min.js?1652787283
162.222.225.172200 OK 0 B URL HTTP/2 mydentistanaheim.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-gsap.min.js?1652787283
IP 162.222.225.172:0
GET /wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-gsap.min.js?1652787283 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 11:34:43 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-frontend.min.js?1652787249
162.222.225.172200 OK 0 B URL HTTP/2 mydentistanaheim.com/wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-frontend.min.js?1652787249
IP 162.222.225.172:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/nextend-smart-slider3-pro/nextend/media/dist/nextend-frontend.min.js?1652787249 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 11:34:09 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
cdn.callrail.com/companies/337767426/248ea3af0c7638e09f36/12/swap.js
54.230.111.52200 OK 0 B URL HTTP/2 cdn.callrail.com/companies/337767426/248ea3af0c7638e09f36/12/swap.js
IP 54.230.111.52:0
GET /companies/337767426/248ea3af0c7638e09f36/12/swap.js HTTP/1.1
Host: cdn.callrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mydentistanaheim.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Fri, 24 Mar 2023 22:35:48 GMT
cache-control: max-age=3600, public
etag: W/"ff4d0bef79321bc2a9bdd2c81f2236f5"
timing-allow-origin: *
x-request-id: 5418c210-a14c-4b8c-89ce-e196989fcff0
x-runtime: 0.006723
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: a7yb-J-VPPDbrBn4Jo2ov6sjVeX8eM8_x4yjarMkM3S_4A3LtOm6lA==
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/plugins/nextend-smart-slider3-pro/library/media/dist/smartslider-frontend.min.js?1652854841
162.222.225.172200 OK 0 B URL HTTP/2 mydentistanaheim.com/wp-content/plugins/nextend-smart-slider3-pro/library/media/dist/smartslider-frontend.min.js?1652854841
IP 162.222.225.172:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/nextend-smart-slider3-pro/library/media/dist/smartslider-frontend.min.js?1652854841 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 18 May 2022 06:20:41 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:48 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:48 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-content/cache/autoptimize/css/autoptimize_3c67a1374157c028dd4a7267a8b3455c.css
162.222.225.172200 OK 0 B URL HTTP/2 mydentistanaheim.com/wp-content/cache/autoptimize/css/autoptimize_3c67a1374157c028dd4a7267a8b3455c.css
IP 162.222.225.172:0
GET /wp-content/cache/autoptimize/css/autoptimize_3c67a1374157c028dd4a7267a8b3455c.css HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 28 Oct 2022 17:54:18 GMT
accept-ranges: bytes
cache-control: max-age=30672000, public, immutable
expires: Wed, 13 Mar 2024 22:35:47 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-type: text/css
date: Fri, 24 Mar 2023 22:35:47 GMT
server: Apache
X-Firefox-Spdy: h2
mydentistanaheim.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
162.222.225.172200 OK 0 B URL HTTP/2 mydentistanaheim.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 162.222.225.172:0
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: mydentistanaheim.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mydentistanaheim.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 17 May 2022 05:31:13 GMT
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 23 Mar 2024 22:35:47 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
content-type: application/x-javascript
date: Fri, 24 Mar 2023 22:35:47 GMT
server: Apache
X-Firefox-Spdy: h2
js.callrail.com/group/0/248ea3af0c7638e09f36/12/swap_session.json
54.230.111.24200 OK 0 B URL HTTP/2 js.callrail.com/group/0/248ea3af0c7638e09f36/12/swap_session.json
IP 54.230.111.24:0
POST /group/0/248ea3af0c7638e09f36/12/swap_session.json HTTP/1.1
Host: js.callrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 395
Origin: https://mydentistanaheim.com
Connection: keep-alive
Referer: https://mydentistanaheim.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 24 Mar 2023 22:35:49 GMT
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers:
access-control-max-age: 7200
cache-control: max-age=0, private, must-revalidate
etag: W/"a16c2bf1b21db196ddf564a979a6a1b8"
vary: Origin
x-request-id: ac976dce-0c2d-4f82-b709-05c907e96df3
x-runtime: 0.142043
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cwhmZehY_05W_4Dl1H1cX4pUx72epB6_fg_g6Mgp0NrNzk6UwYDjLA==
X-Firefox-Spdy: h2