| r3.o.lencr.org/ |  23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash2d2e7649ce9e9ba6fc8b68aa89352e3c 0153d1d3d830a457043e16bb40d48a0b9ddef4b8 8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3203
Expires: Wed, 30 Nov 2022 13:12:47 GMT
Date: Wed, 30 Nov 2022 12:19:24 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashf3cf023c797da81728c0ac84c8759331 fa07c5e39e4b0741ea484101cccb2202acea9d9c 5206a0bac8bf78d6b84322519271a1ece2c1039a0090e583de6d6192d88873d0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2250
Cache-Control: max-age=168565
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:24 GMT
Etag: "638730f7-1d7"
Expires: Fri, 02 Dec 2022 11:08:49 GMT
Last-Modified: Wed, 30 Nov 2022 10:31:19 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hash9fce5679881bf302a8978a0b462f01a9 b699fe030ea13ac73813e655c42ed9b531925e2b a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9595
Expires: Wed, 30 Nov 2022 14:59:19 GMT
Date: Wed, 30 Nov 2022 12:19:24 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash14cd9a0afb6ba9a763651d5112760d1e 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 30 Nov 2022 11:19:41 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3583
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IJp5pRqCgXlj+cvGptyTy4uARGGosMm+aAFmQ8FM//pIEl9C4G3Ev30fCAEdfCiKHPyCeaSiVJU=
x-amz-request-id: 6602E5AQ4BCSRRWZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 30 Nov 2022 11:45:13 GMT
age: 2051
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/ | 34.66.21.183 | 301 Moved Permanently | 162 B |
IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET / HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 30 Nov 2022 12:19:24 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Keep-Alive: timeout=20
Location: https://bakersfieldeyedoc.com/
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:24 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 30 Nov 2022 12:08:56 GMT
cache-control: public,max-age=3600
age: 628
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashcfdd00e67ee6ca21712b867eb5288ab6 b61d5d6ec3b7ad71619e13e32c87f2d01871b88a f740cac6dfedc1bf0f82efb10dac4f6ffb22f9bb5d4a9b68a4cd971dd2f65793
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2250
Cache-Control: max-age=163497
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:24 GMT
Etag: "63871d2b-1d7"
Expires: Fri, 02 Dec 2022 09:44:21 GMT
Last-Modified: Wed, 30 Nov 2022 09:06:51 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
|
|
| cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.8.1/slick.min.css |  104.17.25.14 | 200 OK | 394 B |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.8.1/slick.min.css IP104.17.25.14:0
File typeASCII text, with very long lines (1327) Hash50d05d35119a9bd8cf777402bb4789a0 fd03f42f191f21580b72dc3e474e9b7503a82555 a8daf82dae80ef2b347046c449acf73de160cc273a70cb74ed4cb71597a69bfc
GET /ajax/libs/slick-carousel/1.8.1/slick.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bakersfieldeyedoc.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css; charset=utf-8
content-length: 394
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fd5-559"
last-modified: Mon, 04 May 2020 16:16:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 15251193
expires: Mon, 20 Nov 2023 12:19:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yKRkTS0EfLUihl0N9UwGDC0VOZo%2FTIlBSu7S9NL510U65%2BE4WZ4KgVncUY19XWzSaGODTNbeC38ssQ9VGiPGzaOZPHIYlgKzftq2E8v4gyPWnv56gP9GPunLyApb4OsaFe3DWqH0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 77238801eb40b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.8.1/slick.min.js | 104.17.25.14 | 200 OK | 9.3 kB |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.8.1/slick.min.js IP104.17.25.14:0
File typeASCII text, with very long lines (42862) Hash42a2ee3da19d236df26093c57cc4cf2f 2e8d1e1f5304113684417d85b0c22f73d0773a55 a78adc4dc908508947a6f8551e0f85372655de2280bdae263a399b1068517ecf
GET /ajax/libs/slick-carousel/1.8.1/slick.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bakersfieldeyedoc.com
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript; charset=utf-8
content-length: 9283
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fd5-a76f"
last-modified: Mon, 04 May 2020 16:16:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 654864
expires: Mon, 20 Nov 2023 12:19:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PfbHFoBo3DPyUKc863FxOim9U1OR277NyVi7fBu2XGFvqisio%2BWk83QD7LbY3VtxGnJaiyOBFjJQJL0%2FROPJIEnFMLaNrovbxjvbkH47ZJMo%2FUbloQULnCttCqDifb7HMo9EdT6%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 772388021b76b527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.8.1/slick-theme.min.css | 104.17.25.14 | 200 OK | 657 B |
URL HTTP/2cdnjs.cloudflare.com/ajax/libs/slick-carousel/1.8.1/slick-theme.min.css IP104.17.25.14:0
File typeUnicode text, UTF-8 text, with very long lines (2332) Hashfd6ea20505bda56b5e5dc52377385e34 2ea20bfa73d60ccbac3fae7c731c48cbdba4fa5d b51b3aae99c2bb2b2b32b51d9df350de73b3992bb126339bfa8ab1407cfc881c
GET /ajax/libs/slick-carousel/1.8.1/slick-theme.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bakersfieldeyedoc.com
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css; charset=utf-8
content-length: 657
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fd5-956"
last-modified: Mon, 04 May 2020 16:16:21 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 3613150
expires: Mon, 20 Nov 2023 12:19:25 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RxPmlCIm7fTTBX6KB9xBpOluKuYThFNYhWcMkrhIa3oB7kqHQZlfgzrWpI%2F5%2BEzjczTPppUwRDbPYWQkEBzk0tYpEPULYG1DEba7JgD3rJeSsVFMLWlS1r3uqspwaM3SNp1E6WyB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 772388022b9ab527-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashcd528f6c2c45e38c52095a73a9cd8c68 dca2df874a830edac932136d474453c18d933024 4c7e75aaccb4b74e227ada3b56829f52cb7f14ad05454f7bd6eccf3e94185218
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash8f58cd30443a495eed3ec0d9827550c1 fd0f53d2acc63ae015b7b42155136ade5841ebc7 333a3cae36081ea37371e32dc9587faacfda5970daa476b3b36cd6f587ce1594
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash146dac10a93604a686550631e14eefb9 b4af601ce6d515d9ec124938ce626060e0d43099 bac5bc94c1a95af45522dadbf1639aff31e691fa2314314c6cce1ab1e70bba87
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.google.com/recaptcha/api.js?hl=en | 142.250.74.164 | 200 OK | 553 B |
URL HTTP/2www.google.com/recaptcha/api.js?hl=en IP142.250.74.164:0
File typeASCII text, with very long lines (850), with no line terminators Hash1309ff133720d219cc98090d66a051ed b96fc5a893e42be16d687d7abdecdb13d348a019 358683c66634ea5ee3021c93111d8621d583880bcbbfadf3ec2ff87a15ea1038
GET /recaptcha/api.js?hl=en HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 30 Nov 2022 12:19:25 GMT
date: Wed, 30 Nov 2022 12:19:25 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| push.services.mozilla.com/ | 34.215.94.42 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP34.215.94.42:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5XtOjeanvQ9qAsryLSvW0Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 1ZEQbE3pWdC6Hgx2avUyU1VtGAs=
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_eafc45ed3a268adc8e55fdf91ed1a263.css | 34.66.21.183 | 200 OK | 1.4 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_eafc45ed3a268adc8e55fdf91ed1a263.css IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (18364), with no line terminators Hashd50d44433b49b2788b1b4f9c731987ea ff4c1682826232149b54d5ac329b156282173838 a0df64ccb4a84ff37ef2b0ac7315f6cd0fb16f046ae115fcb9afc90c79fd58f0
GET /wp-content/cache/wmac/css/wmac_single_eafc45ed3a268adc8e55fdf91ed1a263.css HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 24 Oct 2022 07:46:26 GMT
etag: W/"635642d2-47bc"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashcd528f6c2c45e38c52095a73a9cd8c68 dca2df874a830edac932136d474453c18d933024 4c7e75aaccb4b74e227ada3b56829f52cb7f14ad05454f7bd6eccf3e94185218
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_f5075d07f4487811ca2cc38c885eaea2.css | 34.66.21.183 | 200 OK | 763 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_f5075d07f4487811ca2cc38c885eaea2.css IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (685), with no line terminators Hashb0b64aa65e88a46d3b3854dcee708d0a 3828a10fd59aa5b5f38ffe02d0f06c71ab9fa02c 3b81bac99b0d48d3acd262e51243604215c3e061b08c02bc652cd2adb51af7cb
GET /wp-content/cache/wmac/css/wmac_single_f5075d07f4487811ca2cc38c885eaea2.css HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 21 Sep 2022 14:13:06 GMT
etag: W/"632b1bf2-2ad"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/plugins/gravityforms/assets/css/dist/theme-components.min.css HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css
content-length: 0
last-modified: Thu, 10 Nov 2022 06:56:20 GMT
etag: "636ca094-0"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_dd1ec01d8bdc08921f8f3f5db6defa68.css | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_dd1ec01d8bdc08921f8f3f5db6defa68.css IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/cache/wmac/css/wmac_single_dd1ec01d8bdc08921f8f3f5db6defa68.css HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css
content-length: 0
last-modified: Wed, 20 Apr 2022 03:46:12 GMT
etag: "625f8204-0"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Open+Sans | 142.250.74.106 | 200 OK | 1.1 kB |
URL HTTP/2fonts.googleapis.com/css?family=Open+Sans IP142.250.74.106:0
Hasha06804d674bae130a8b611007074e343 1dac41d255b256be7fc46e00bcd042e5e3baff99 6689977d15cce8dced0d96857067992b4a6489c731f48285d9fbc3fd7d72e759
GET /css?family=Open+Sans HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 30 Nov 2022 12:19:25 GMT
date: Wed, 30 Nov 2022 12:19:25 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| moderate2.cleantalk.org/pixel/ae7a449f98dc51f047953a702666771f.gif | 167.71.167.197 | 200 OK | 43 B |
URL HTTP/1.1moderate2.cleantalk.org/pixel/ae7a449f98dc51f047953a702666771f.gif IP167.71.167.197:0 ASN#14061 DIGITALOCEAN-ASN
File typeGIF image data, version 89a, 1 x 1\012- data Hashad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pixel/ae7a449f98dc51f047953a702666771f.gif HTTP/1.1
Host: moderate2.cleantalk.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx
Date: Wed, 30 Nov 2022 12:19:25 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: keep-alive
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
X-Frame-Options: SAMEORIGIN
|
|
| bakersfieldeyedoc.com/wp-content/uploads/2022/07/services-icon.png | 34.66.21.183 | 200 OK | 3.0 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/uploads/2022/07/services-icon.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 72 x 72, 8-bit/color RGBA, non-interlaced\012- data Hash3701b501e0eadac2746067e2cf764c33 acea9be621766838d4c9ede2b2042f64cdeb685f b1c99198ac6b7ae70f3521473217cf3ef5ffde226a45996a6b419e73ec5c2a87
GET /wp-content/uploads/2022/07/services-icon.png HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: image/png
content-length: 3024
last-modified: Mon, 11 Jul 2022 18:38:15 GMT
etag: "62cc6e17-bd0"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/uploads/2022/07/img-sherry-shang-od.jpg | 34.66.21.183 | 200 OK | 37 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/uploads/2022/07/img-sherry-shang-od.jpg IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 100x100, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=10, description=MM, orientation=upper-left, xresolution=134, yresolution=142, resolutionunit=2, software=MM, datetime=2022:07:23 03:12:07, copyright=MM, GPS-Data], progressive, precision 8, 273x364, components 3\012- data Hasha2ec584efd602a6dd365fca6d548d1b4 be52d2e831253b38c80946db208feb7b2a3d79b1 ddd3ef7ab16f0462a6bdd5d1ddb3337419dba7e67d8b5ee907bc2a118ecb7dae
GET /wp-content/uploads/2022/07/img-sherry-shang-od.jpg HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: image/jpeg
content-length: 36945
last-modified: Fri, 22 Jul 2022 19:25:40 GMT
etag: "62daf9b4-9051"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/uploads/2022/07/5-star-review-icon.png | 34.66.21.183 | 200 OK | 539 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/uploads/2022/07/5-star-review-icon.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 133 x 16, 8-bit/color RGBA, non-interlaced\012- data Hash6002996ddb7bc147a75b9566326ba05b 05d5e803eb11b165458dbb253928b3cce1f44889 58f529d0279e6d7556a13a4e2d2839c8288cab9def73cea527173887d0d3195d
GET /wp-content/uploads/2022/07/5-star-review-icon.png HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: image/png
content-length: 539
last-modified: Thu, 14 Jul 2022 01:21:56 GMT
etag: "62cf6fb4-21b"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-includes/js/dist/i18n.min.js | 34.66.21.183 | 200 OK | 5.7 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-includes/js/dist/i18n.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
Hash8e3da0b1a81d405b47e3d725010e5e85 5ca711a65bedb774d7b1ed9eb6257a8313810690 82251aa4c24daad25d2c20654a33a9e4845cce05f17fbe6692715fd848094bcd
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/js/dist/i18n.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 03 Nov 2022 22:34:02 GMT
etag: W/"636441da-30ab"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/themes/Divi/js/scripts.min.js | 34.66.21.183 | 200 OK | 65 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/themes/Divi/js/scripts.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (65467) Hash00e668dabb5c4aa3fe6e0098b6f4246c f968eda347401d118f41d10e00d85ac344d0d836 7a8d1e93a989ad0b0ca290f104ce925322161cdbeb1844efbc2c44d2ee2b4b0a
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/themes/Divi/js/scripts.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 30 Nov 2022 07:11:21 GMT
etag: W/"63870219-42f69"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_2168023fb95984e974546a20b70b2eb7.js | 34.66.21.183 | 200 OK | 57 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_2168023fb95984e974546a20b70b2eb7.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (2747) Hash95d5be7bbbb69c94d8a8b84ae936e079 b4970efccb0f4dbdeff93347188c1bcd578d4ba2 f5168ba9b31ba222235e6468fdc600461add043bbab05101e611424253d8216b
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/cache/wmac/js/wmac_single_2168023fb95984e974546a20b70b2eb7.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Sun, 27 Nov 2022 18:31:50 GMT
etag: W/"6383ad16-72d4"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/uploads/2021/10/service-img1.png | 34.66.21.183 | 200 OK | 230 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/uploads/2021/10/service-img1.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 412 x 435, 8-bit/color RGBA, non-interlaced\012- data Size230 kB (229505 bytes) Hash72c3421085f40c3ee2e5976643b24133 ee221979ca2983e00d284957dec7733ea47573d7 5f1260825f1ad53bb18d50c3c7fb50768163c3396756ced4c564aa4c8756ac66
GET /wp-content/uploads/2021/10/service-img1.png HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: image/png
content-length: 229505
last-modified: Fri, 04 Feb 2022 19:07:43 GMT
etag: "61fd797f-38081"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_d41d8cd98f00b204e9800998ecf8427e.js | 34.66.21.183 | 200 OK | 1.7 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_d41d8cd98f00b204e9800998ecf8427e.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (2237), with no line terminators Hashc9caa7f8858e26afd406367d721b199c 8d3d60ec579d30ab91b8d07a103053098afc343f 37008d8dc6ba31779c292c76ae1ea91698e66ab790367db6219b4685013d04fa
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/cache/wmac/js/wmac_d41d8cd98f00b204e9800998ecf8427e.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 20 Apr 2022 03:46:12 GMT
etag: W/"625f8204-8bd"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-includes/js/dist/dom-ready.min.js | 34.66.21.183 | 200 OK | 24 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-includes/js/dist/dom-ready.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (2700) Hashaf1d87725a5831cbe1b9596e319babd6 62c3bc69fd4200b05a3bc2800a4a370eaa65dd1c 4e97c605cc60c2aacf41163e970906519762b455fa07d2e6a90e8aefcec297c2
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/js/dist/dom-ready.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: W/"6254194e-aaf"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/uploads/2022/07/dawson-li-bakersfield-li-liao-optometry.png | 34.66.21.183 | 200 OK | 233 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/uploads/2022/07/dawson-li-bakersfield-li-liao-optometry.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 273 x 364, 8-bit/color RGBA, non-interlaced\012- data Size233 kB (232885 bytes) Hash4f3ea76a4094c83a06b83b2eef1619d8 699e16646ae0f39ab0c076f596952bccc02cf893 30897052fd52039c7ceca9850c2bc9702dd51ddfdd53a5cb84d8dbdff68baa57
GET /wp-content/uploads/2022/07/dawson-li-bakersfield-li-liao-optometry.png HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: image/png
content-length: 232885
last-modified: Mon, 11 Jul 2022 18:56:56 GMT
etag: "62cc7278-38db5"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_66b7033f48e9c9fef786a82880f238ec.js | 34.66.21.183 | 200 OK | 95 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_66b7033f48e9c9fef786a82880f238ec.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (2343) Hash4418191a3871660ba9f40a9e8fa7c43b 24fbe58d707757ad5ecffa4a26c8dce7a1757034 656e379e37b1ff15b96928293be52de3e98e1a50841d889d4f2eec2c5f76425f
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/cache/wmac/js/wmac_single_66b7033f48e9c9fef786a82880f238ec.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Sun, 27 Nov 2022 18:31:50 GMT
etag: W/"6383ad16-1fdd"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.bakersfieldeyedoc.com/wp-content/uploads/2021/10/quote.png | 34.66.21.183 | 200 OK | 2.9 kB |
URL HTTP/2www.bakersfieldeyedoc.com/wp-content/uploads/2021/10/quote.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 84 x 74, 8-bit/color RGBA, non-interlaced\012- data Hash29b75e256ef4c27845342b57b39a4a7f dc448ea74521eb56d45b8e386ed562b3008ddafd 1c424a59a7f88a82758953588a9a11cc30da55a79184d6ea2c7b42ccd1909e37
GET /wp-content/uploads/2021/10/quote.png HTTP/1.1
Host: www.bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: image/png
content-length: 2869
last-modified: Fri, 04 Feb 2022 19:07:42 GMT
etag: "61fd797e-b35"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash33f732b4dfbd5fb3ed7345eba2896fe6 2652f214cf7127302cc65b1d4e42f48a80907d5d 904ce722469d356f8ec20c14bd51ca3ce459012ea0869f7d14821a963310a494
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| bakersfieldeyedoc.com/wp-content/uploads/2022/07/yuh-jen-liao-bakersfield-li-liao-optometry.png | 34.66.21.183 | 200 OK | 256 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/uploads/2022/07/yuh-jen-liao-bakersfield-li-liao-optometry.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 273 x 364, 8-bit/color RGBA, non-interlaced\012- data Size256 kB (255635 bytes) Hash849531b473594862aefc63b534051574 0c9a6d1c1a4ffd48fe91f613acd69ed45df6e082 99f8c4ffbf25dc2ae8e47c5aa35dfd9c2bc2757300508e327d54a4654e57b025
GET /wp-content/uploads/2022/07/yuh-jen-liao-bakersfield-li-liao-optometry.png HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: image/png
content-length: 255635
last-modified: Thu, 07 Jul 2022 16:07:49 GMT
etag: "62c704d5-3e693"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash608e4d04a251ebcd51660e801f388303 fcb9aa48fd6ed504a1a9fed7990c5ccde63e6a1d cc1a34cd0a99e301df97cf184ab0ded2e229659f86f43e4eff479dee221695dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| bakersfieldeyedoc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js | 34.66.21.183 | 200 OK | 19 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-includes/js/dist/vendor/wp-polyfill.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeUnicode text, UTF-8 text, with very long lines (21375), with no line terminators Hash942fcfab443d0ac4708178ada0458e95 1cc0afcf9be5c628e25d612974123df6d4f59444 4c84da657b91f00158799e76d3b7097cea06627d1471952933f972f0a06d3d92
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 03 Nov 2022 22:34:03 GMT
etag: W/"636441db-5383"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/uploads/2022/07/eileen-ng-bakersfield-li-liao-optometry.png | 34.66.21.183 | 200 OK | 227 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/uploads/2022/07/eileen-ng-bakersfield-li-liao-optometry.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 273 x 364, 8-bit/color RGBA, non-interlaced\012- data Size227 kB (226889 bytes) Hashc1703b17e91baf2cb11adf8c6a9e20b8 93184a9bd2d44ee543fbf17c4f2cc4a4c315ef1d c0789c7c126ce5f2b9e6a54eb9c90754bb148a8273d2f119ec84d9241bf9849d
GET /wp-content/uploads/2022/07/eileen-ng-bakersfield-li-liao-optometry.png HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: image/png
content-length: 226889
last-modified: Mon, 11 Jul 2022 19:11:23 GMT
etag: "62cc75db-37649"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.bakersfieldeyedoc.com/wp-content/plugins/gtranslate/flags/24/en.png | 34.66.21.183 | 200 OK | 1.8 kB |
URL HTTP/2www.bakersfieldeyedoc.com/wp-content/plugins/gtranslate/flags/24/en.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hashec7233b5c80e5db85f7733b2ec25203f d4c36fff06dc7d920b10eb13b58ea9cd9321b430 347ee97a492f79675749d03533810ff899ee6a784b4e156f3e0a7613cdfb3d40
GET /wp-content/plugins/gtranslate/flags/24/en.png HTTP/1.1
Host: www.bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: image/png
content-length: 1767
last-modified: Tue, 01 Nov 2022 07:04:42 GMT
etag: "6360c50a-6e7"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 | 216.58.207.227 | 200 OK | 17 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 16740, version 1.0\012- data Hashe43b535855a4ae53bd5b07a6eeb3bf67 6507312d9491156036316484bf8dc41e8b52ddd9 b34551ae25916c460423b82beb8e0675b27f76a9a2908f18286260fbd6de6681
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4gaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bakersfieldeyedoc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:55 GMT
expires: Tue, 28 Nov 2023 18:52:55 GMT
cache-control: public, max-age=31536000
age: 149190
last-modified: Mon, 15 Aug 2022 18:14:44 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWV4ewA.woff2 | 216.58.207.227 | 200 OK | 24 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWV4ewA.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 23704, version 1.0\012- data Hash3d4a6df8d47f0085c3bf7bd90563e9eb f0d96d332787d0a8604f2b99dde7f3b947942cf5 d00bea31ec0d15e0e6013225b870d1f39fa2e26663d192c8520494c6156c0569
GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWV4ewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bakersfieldeyedoc.com
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 18:56:08 GMT
expires: Wed, 29 Nov 2023 18:56:08 GMT
cache-control: public, max-age=31536000
age: 62598
last-modified: Mon, 15 Aug 2022 18:28:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/uploads/2022/07/lisa-chao-bakersfield-li-liao-optometry.png | 34.66.21.183 | 200 OK | 180 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/uploads/2022/07/lisa-chao-bakersfield-li-liao-optometry.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 273 x 364, 8-bit/color RGBA, non-interlaced\012- data Size180 kB (179779 bytes) Hashe01eb43d0a5f5ca1f84f6b1053c6430b d8837e707d6da2f07fc2daa8ab0c016ec07c202c 0121c67953f203f2c0e017556e9a9bf784edee67ee3de88f5f2fff3b2f3e18fa
GET /wp-content/uploads/2022/07/lisa-chao-bakersfield-li-liao-optometry.png HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: image/png
content-length: 179779
last-modified: Thu, 07 Jul 2022 17:54:48 GMT
etag: "62c71de8-2be43"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjxAwXg.woff2 | 216.58.207.227 | 200 OK | 25 kB |
URL HTTP/2fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjxAwXg.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 25284, version 1.0\012- data Hash26f5a0992b68bb38801b08a348288591 4dc2e90e40d35482883aea5fa535cfa4e15fd392 386a206aade080bb0045005cfdbb660430ed46d652039eef6bc299d54d7c43ed
GET /s/lato/v23/S6uyw4BMUTPHjxAwXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bakersfieldeyedoc.com
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25284
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 21:46:23 GMT
expires: Wed, 29 Nov 2023 21:46:23 GMT
cache-control: public, max-age=31536000
age: 52383
last-modified: Tue, 26 Apr 2022 15:46:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 | 216.58.207.227 | 200 OK | 22 kB |
URL HTTP/2fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 IP216.58.207.227:0
File typeWeb Open Font Format (Version 2), TrueType, length 21516, version 1.0\012- data Hash90135ea44811b2d9610c33e07068fdb0 84ef1a8343877a598f1c7cbae56f35ded54a1787 bd067b886f4a67dd25c08fe73777bce7f506beb4c09d17d9f036f8a90901efd2
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bakersfieldeyedoc.com
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21516
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 01:09:02 GMT
expires: Wed, 29 Nov 2023 01:09:02 GMT
cache-control: public, max-age=31536000
age: 126624
last-modified: Mon, 15 Aug 2022 18:12:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.bakersfieldeyedoc.com/wp-content/plugins/gtranslate/flags/24/es.png | 34.66.21.183 | 200 OK | 873 B |
URL HTTP/2www.bakersfieldeyedoc.com/wp-content/plugins/gtranslate/flags/24/es.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash8bf31a924501d6db655fe75696b5f046 94ba0f8d4db0c35c1246a55fcbd6e0ef3cd7f0e2 5ae9561f31199bf8a892f797a69db1bc5d477e2f8318f2b7e95487f025f66f28
GET /wp-content/plugins/gtranslate/flags/24/es.png HTTP/1.1
Host: www.bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: image/png
content-length: 873
last-modified: Tue, 01 Nov 2022 07:04:42 GMT
etag: "6360c50a-369"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_fa07f10043b891dacdb82f26fd2b42bc.js | 34.66.21.183 | 200 OK | 3.8 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_fa07f10043b891dacdb82f26fd2b42bc.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeHTML document, ASCII text, with very long lines (2484) Hash184dee3a7f9717b59d29d9b5bb582a9e 4c3ab920f01435885bb35ed7b871efa607e0edb6 f8f6c975215582dbd1cdd9554bd3048b5268203bcb394301a90b40ad9b1a8e3f
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/cache/wmac/js/wmac_single_fa07f10043b891dacdb82f26fd2b42bc.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 20 Apr 2022 03:46:12 GMT
etag: W/"625f8204-1143"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/gravityforms/assets/css/dist/theme.min.css | 34.66.21.183 | 200 OK | 30 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/gravityforms/assets/css/dist/theme.min.css IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (30590), with no line terminators Hash876d891e8ce24ced7fef18ad11a49c8d efa7df958a8af86586c2da1ce51c262ff29d16e5 64b4ada214c850b86bd759d5bdaa8e9b578e79e988fb837574dddeabe3bbd292
GET /wp-content/plugins/gravityforms/assets/css/dist/theme.min.css HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 10 Nov 2022 06:56:20 GMT
etag: W/"636ca094-777e"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-includes/js/jquery/jquery-migrate.min.js | 34.66.21.183 | 200 OK | 28 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-includes/js/jquery/jquery-migrate.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (11126) Hash052e8655905da818bc2b50e0402486df 6004c59c191bad4af615132fbe89b460298d65f7 e5c81e96f8cdcb2da8d6c09008433d28e8c01b58fdadad9904afad8cbb8c55f6
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/js/jquery/jquery-migrate.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: W/"5fb4e3fe-3495"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/custom-font/fonts/icomoon.ttf?62xz2h | 34.66.21.183 | 200 OK | 12 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/custom-font/fonts/icomoon.ttf?62xz2h IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeTrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, icomoon \012- data Hash456b6baf6e36ca32ffea834bd13f71cb 55ddf1b70fdb720d9a71be103a43ef2c41adf49b 38fcda7ddb5b7ea1b865c00458d09fdb5f81b7c5ac986c20967d71045bc46d5d
GET /wp-content/custom-font/fonts/icomoon.ttf?62xz2h HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_84a5f0d267367ac2faf8a42dc3311103.css
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:26 GMT
content-type: application/octet-stream
content-length: 11788
last-modified: Wed, 16 Feb 2022 02:37:46 GMT
etag: "620c637a-2e0c"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/uploads/2022/09/contact-bg.jpg | 34.66.21.183 | 200 OK | 20 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/uploads/2022/09/contact-bg.jpg IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeJPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2022:09:07 04:34:50], progressive, precision 8, 1920x931, components 3\012- data Hashe3139d972ba52b004a04d2d57d041758 e114550161713891af4b36b44d245a73672024bd fc68965fe35db243f29400586846cc2d3d1d61488d4a9aa8e3cfa927a0d18d35
GET /wp-content/uploads/2022/09/contact-bg.jpg HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:26 GMT
content-type: image/jpeg
content-length: 19719
last-modified: Tue, 06 Sep 2022 20:35:25 GMT
etag: "6317af0d-4d07"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/gravityforms/assets/css/dist/basic.min.css | 34.66.21.183 | 200 OK | 85 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/gravityforms/assets/css/dist/basic.min.css IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (47167), with no line terminators Hash8afeda6405735577ad8df6fb714a5eda 1d0c3a9906d8b9e880ca11f430651f8b77ee5460 0e874895dfeed5a539aba02b5e2e275c7caf85f6b692f81cb06fce34f5fa32d9
GET /wp-content/plugins/gravityforms/assets/css/dist/basic.min.css HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 10 Nov 2022 06:56:20 GMT
etag: W/"636ca094-b83f"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/gravityforms/js/gravityforms.min.js | 34.66.21.183 | 200 OK | 30 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/gravityforms/js/gravityforms.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (46435), with no line terminators Hashf2c1f1f66a29ba6b1ae44eca78ce7797 e97cfcfb485c9103d8c4ab7deefc15b8b6d51613 e6d823670f916e418ab0e7c8072d10eea1b570d46f104a8550cf3eb3d218c01e
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/gravityforms/js/gravityforms.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 10 Nov 2022 06:56:20 GMT
etag: W/"636ca094-b563"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/uploads/2022/07/eyeglasses-icon.png | 34.66.21.183 | 200 OK | 3.1 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/uploads/2022/07/eyeglasses-icon.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 79 x 71, 8-bit/color RGBA, non-interlaced\012- data Hash5d45619cbda8d52b05691bfaf2305057 70fe9c7005b0b9b70677114b9264b233f128467e 3e3042349fe0fc231e863df4dca3d2b2482b27fe901a9f20349e662ac86512c7
GET /wp-content/uploads/2022/07/eyeglasses-icon.png HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230; ct_ps_timestamp=1669810764; ct_fkp_timestamp=0; ct_pointer_data=0; ct_timezone=0; ct_screen_info=%7B%22fullWidth%22%3A1268%2C%22fullHeight%22%3A6591%2C%22visibleWidth%22%3A1268%2C%22visibleHeight%22%3A939%7D; apbct_headless=false; apbct_pixel_url=https%3A%2F%2Fmoderate2.cleantalk.org%2Fpixel%2Fae7a449f98dc51f047953a702666771f.gif; ct_checked_emails=0; ct_checkjs=719807027
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:26 GMT
content-type: image/png
content-length: 3089
last-modified: Mon, 11 Jul 2022 17:35:58 GMT
etag: "62cc5f7e-c11"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_d1d2b850a732d07c83b7005f930f3d96.js | 34.66.21.183 | 200 OK | 47 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_d1d2b850a732d07c83b7005f930f3d96.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (11152) Hashd1791f8fe15cbf3706ba0e00516d4f4a 67e44b7f1280ea1e4cebd00915b2aa81a571b874 df7bdf9f7244200762e997a93641d368227f6c777a8a94fbe1befa7c67e1367c
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/cache/wmac/js/wmac_single_d1d2b850a732d07c83b7005f930f3d96.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Sun, 27 Nov 2022 18:31:50 GMT
etag: W/"6383ad16-33fb5"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/uploads/2022/07/glasses-customer-bakersfield-li-liao-optometry.png | 34.66.21.183 | 200 OK | 345 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/uploads/2022/07/glasses-customer-bakersfield-li-liao-optometry.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 569 x 505, 8-bit/color RGBA, non-interlaced\012- data Size345 kB (344725 bytes) Hashdaf3a96afae4a99e54a1a51009387686 c2c575b397a096aa13b61aa373951745a851fa09 6535bfde0451459b125f0e3faff8387cd9ce72a235e2e8e3b22f0d777596ac3f
GET /wp-content/uploads/2022/07/glasses-customer-bakersfield-li-liao-optometry.png HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230; ct_ps_timestamp=1669810764; ct_fkp_timestamp=0; ct_pointer_data=0; ct_timezone=0; ct_screen_info=%7B%22fullWidth%22%3A1268%2C%22fullHeight%22%3A6591%2C%22visibleWidth%22%3A1268%2C%22visibleHeight%22%3A939%7D; apbct_headless=false; apbct_pixel_url=https%3A%2F%2Fmoderate2.cleantalk.org%2Fpixel%2Fae7a449f98dc51f047953a702666771f.gif; ct_checked_emails=0; ct_checkjs=719807027
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:26 GMT
content-type: image/png
content-length: 344725
last-modified: Thu, 07 Jul 2022 17:42:35 GMT
etag: "62c71b0b-54295"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashac3edd07bb0a4ebdaae6ec26e91d2079 b6efe3811dfa37cdcde1e9d411c171732ac7e12a c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9553
Expires: Wed, 30 Nov 2022 14:58:39 GMT
Date: Wed, 30 Nov 2022 12:19:26 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.77.32 | 200 OK | 503 B |
IP23.36.77.32:0 ASN#20940 Akamai International B.V.
Hashac3edd07bb0a4ebdaae6ec26e91d2079 b6efe3811dfa37cdcde1e9d411c171732ac7e12a c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9553
Expires: Wed, 30 Nov 2022 14:58:39 GMT
Date: Wed, 30 Nov 2022 12:19:26 GMT
Connection: keep-alive
|
|
| www.bakersfieldeyedoc.com/wp-content/uploads/2021/10/header-hero-bg.jpg | 34.66.21.183 | 200 OK | 137 kB |
URL HTTP/2www.bakersfieldeyedoc.com/wp-content/uploads/2021/10/header-hero-bg.jpg IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1917x876, components 3\012- data Size137 kB (137011 bytes) Hash240f3e38da8f7ef5e221f3aa25bb2ad3 dfa50aef9e47353acb130d38d3732eaebafcb154 1c41c4d00b3702fc6972ccf3d17ac95513defe2af5ad256eb56ef38da501b283
GET /wp-content/uploads/2021/10/header-hero-bg.jpg HTTP/1.1
Host: www.bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:26 GMT
content-type: image/jpeg
content-length: 137011
last-modified: Fri, 04 Feb 2022 19:07:43 GMT
etag: "61fd797f-21733"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg | 34.120.237.76 | 200 OK | 9.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash05196ec43964cf559caa0c0279148d62 6170d6776615503e3e29f86783febc3e3e78ca66 47f3a5cde661987e3496ce110a0170b10087dd9ba8d4fd691c4830587ba3fa3f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff2730750-552d-4852-8ce1-503874565f75.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9051
x-amzn-requestid: 1032dd9c-a15e-4e8a-9c81-07419e8caf67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYhGvEMNIAMFaKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867bc4-1005c20a33320dbf6567ca31;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:38:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: IMaVlQblNnh9mFKwb2LG7hw7h_f1_nVYqO4aEUqY01a2HofnnQqcFQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:49:31 GMT
age: 52195
etag: "6170d6776615503e3e29f86783febc3e3e78ca66"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg | 34.120.237.76 | 200 OK | 7.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe00769bd1391b8f4f5b8ab128a825355 e4ddf955e8ac1986045ed55880c43c69e588a021 81ca4d20c28fed8fd3135515daadc1fdbfb4198535d7c46021b418b8b98e59a5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67bb1888-5971-4b4a-923b-dc9d4050182b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7298
x-amzn-requestid: 381e55bb-876b-46ad-84b6-1ddf9f876f56
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgDcE3poAMFaAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a15-7c12394600900afc7281e858;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8heT2eN5oLbO14R9qLq78Vma_TkteufTyKM5i3K2XoJYXfWNwLMEwQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 21:56:25 GMT
age: 51781
etag: "e4ddf955e8ac1986045ed55880c43c69e588a021"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.bakersfieldeyedoc.com/wp-content/uploads/2021/10/section2-bg.jpg | 34.66.21.183 | 200 OK | 23 kB |
URL HTTP/2www.bakersfieldeyedoc.com/wp-content/uploads/2021/10/section2-bg.jpg IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x406, components 3\012- data Hashb0db854ed381b3ff82bd97dea6447512 32406c3f5dfb31ac271cda6a69f1ef652df3bdcd e76a6df30e9b3912f62d7d85fb57791094ed321dee3838b8f3b7a847a29bbfdf
GET /wp-content/uploads/2021/10/section2-bg.jpg HTTP/1.1
Host: www.bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:26 GMT
content-type: image/jpeg
content-length: 23355
last-modified: Fri, 04 Feb 2022 19:07:43 GMT
etag: "61fd797f-5b3b"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css | 34.66.21.183 | 200 OK | 10 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (591), with no line terminators Hash54f2a75c5d059e60205b3fadddffff4e e5cdb61384b633f12af8403c0d0f3db3bfde163d f22949321c9cdff2833d597c51b57ce45d6f75c132457d2000cd452f108dd28d
GET /wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 24 Nov 2022 06:11:34 GMT
etag: W/"637f0b16-24f"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/advanced-tab-module/styles/style.min.css | 34.66.21.183 | 200 OK | 10 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/advanced-tab-module/styles/style.min.css IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (2478), with no line terminators Hash531499d03dedcd8e8f164ffe17e8117a 224223b9daf196904d58ff8391f01eb3393d08a7 0a56a834935cf9b71297b81ddfd8440c74f1b1d648ff40742748cc8c5d6a76bf
GET /wp-content/plugins/advanced-tab-module/styles/style.min.css HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 22 Sep 2022 16:48:36 GMT
etag: W/"632c91e4-9ae"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash777ce44582c70bf01a31da4cab366f36 57e1d34f146d5ccd9943aa97bcc3158f7103bb07 fbdc8f65ae74dc13b7aafec464f08fdc9902af519946200ec52432ac3ca55982
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd170538c-f8cf-4acb-ba33-2ead00b9db73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10958
x-amzn-requestid: abfea5b0-58f5-49e1-b78e-7cf456d03cb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cYgFHF9oIAMF5lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63867a20-5ab719292d440d083b07a478;Sampled=0
x-amzn-remapped-date: Tue, 29 Nov 2022 21:31:12 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gCt9oHpZ68tLCYHIYpI1XLtADkScxwf12kDFnU0o5WoQIVSzWlqozw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 22:16:52 GMT
etag: "57e1d34f146d5ccd9943aa97bcc3158f7103bb07"
content-type: image/jpeg
age: 50554
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.bakersfieldeyedoc.com/wp-content/uploads/2021/10/review-bg.jpg | 34.66.21.183 | 200 OK | 53 kB |
URL HTTP/2www.bakersfieldeyedoc.com/wp-content/uploads/2021/10/review-bg.jpg IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x653, components 3\012- data Hash48c1194944844baf44edf124d46ab560 feca32ac4607fff2541bca179fb84a53dd6912b5 dfb92383ef39f0d0ebdb375e74faabc0992a5391454f1c5cf28d7863a4531499
GET /wp-content/uploads/2021/10/review-bg.jpg HTTP/1.1
Host: www.bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:26 GMT
content-type: image/jpeg
content-length: 53194
last-modified: Fri, 04 Feb 2022 19:07:43 GMT
etag: "61fd797f-cfca"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.sca1b.amazontrust.com/ | 143.204.42.88 | 200 OK | 471 B |
URL HTTP/1.1ocsp.sca1b.amazontrust.com/ IP143.204.42.88:0
Hasha9fecdf57e27d6e3f2dc87618054b3e2 81463ae82940ff92efa464e9e9ea88b2dfd56b7a ac8bfe6286c040637ad01c8ee0a59d28d6f7b739cc88a16002d51ab8196f17d7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=163494
Date: Wed, 30 Nov 2022 12:19:26 GMT
Etag: "63871bd3-1d7"
Expires: Fri, 02 Dec 2022 09:44:20 GMT
Last-Modified: Wed, 30 Nov 2022 09:01:07 GMT
Server: ECS (nyb/1D32)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ltryD4m2f37lPuU23fflbk-fVtU3uzsGFth1gauXf54k77VbpweORQ==
Age: 2593
|
|
| maps.gstatic.com/maps-api-v3/embed/js/51/1/init_embed.js | 142.250.74.3 | 200 OK | 69 kB |
URL HTTP/2maps.gstatic.com/maps-api-v3/embed/js/51/1/init_embed.js IP142.250.74.3:0
File typeASCII text, with very long lines (2669) Hashc088038bb01fdc7f15f21e2216b6b8b4 fa724c5616022f6825ac476354c492b0bf544d21 b0ecfa74efada796d206177e1bc78c7ac75250608051c6576335c6231fc2de78
GET /maps-api-v3/embed/js/51/1/init_embed.js HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding, Origin
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/maps-api-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="maps-api-js"
report-to: {"group":"maps-api-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/maps-api-js"}]}
content-length: 68704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 04:52:12 GMT
expires: Thu, 30 Nov 2023 04:52:12 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 21:36:22 GMT
content-type: text/javascript
age: 26834
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js | 142.250.74.35 | 200 OK | 163 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js IP142.250.74.35:0
File typeASCII text, with very long lines (730) Size163 kB (162976 bytes) Hash79d18cf4265108d7cecca1bf4ada6109 e51d0285a545381d4c39e9e0292a650ffeeecbb9 59ce7253f371df0833c3f72d4748ef812002b90a49413c56d0ca7c40bb5a0ab6
GET /recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bakersfieldeyedoc.com
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 162976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 19:09:57 GMT
expires: Tue, 28 Nov 2023 19:09:57 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 14 Nov 2022 03:01:59 GMT
content-type: text/javascript
age: 148169
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/uploads/2022/02/favicon.png | 34.66.21.183 | 200 OK | 1.8 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/uploads/2022/02/favicon.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash2dcc6b6f48b3cd55f5c045600093b53d 9fe6a00fa336d7c278263a79de288ab406765060 3828373f6433321b2dd9a2492b4fbafb4835409ac07811a806d87804286ffc5a
GET /wp-content/uploads/2022/02/favicon.png HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230; ct_ps_timestamp=1669810764; ct_fkp_timestamp=0; ct_pointer_data=0; ct_timezone=0; ct_screen_info=%7B%22fullWidth%22%3A1268%2C%22fullHeight%22%3A6591%2C%22visibleWidth%22%3A1268%2C%22visibleHeight%22%3A939%7D; apbct_headless=false; apbct_pixel_url=https%3A%2F%2Fmoderate2.cleantalk.org%2Fpixel%2Fae7a449f98dc51f047953a702666771f.gif; ct_checked_emails=0; ct_checkjs=719807027
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:26 GMT
content-type: image/png
content-length: 1797
last-modified: Fri, 04 Feb 2022 20:27:46 GMT
etag: "61fd8c42-705"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js | 34.66.21.183 | 200 OK | 15 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (47766), with no line terminators Hash5e9182acc1aab71ef1503ccc93504493 cbf5b6b9e4e8d6f04481204980851aa1aae51b3c c54014100d20dafb675b8b7075861cec84991596dbe5beb198ad52908f6dc74a
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 24 Nov 2022 06:11:34 GMT
etag: W/"637f0b16-ba96"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_d71b75b2327258b1d01d50590c1f67ca.js | 34.66.21.183 | 200 OK | 28 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_d71b75b2327258b1d01d50590c1f67ca.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeASCII text, with very long lines (2285) Hash173a2129a90ca1b95c2e761f4ffeb82d f628031bf7861eb4a7f65ffca701e2cb5be6120d 8fbfead5d770a40e35cd72532ee84362cc19f2aa06da1ea3a3c6432611e1661d
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/cache/wmac/js/wmac_single_d71b75b2327258b1d01d50590c1f67ca.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 20 Apr 2022 03:46:12 GMT
etag: W/"625f8204-c3d"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.bakersfieldeyedoc.com/wp-content/uploads/2021/10/section-1-bg-pattern.jpg | 34.66.21.183 | 200 OK | 910 B |
URL HTTP/2www.bakersfieldeyedoc.com/wp-content/uploads/2021/10/section-1-bg-pattern.jpg IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data Hashefa6bb2bfe459bc6f4bdafa3db0383f6 52d15ce52fe50643e542c17812de43f4ed1b6ee0 6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2
GET /wp-content/uploads/2021/10/section-1-bg-pattern.jpg HTTP/1.1
Host: www.bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:26 GMT
content-type: image/jpeg
content-length: 23072
last-modified: Fri, 04 Feb 2022 19:07:43 GMT
etag: "61fd797f-5a20"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.bakersfieldeyedoc.com/wp-content/uploads/2021/10/section-3-bg.jpg | 34.66.21.183 | 200 OK | 472 B |
URL HTTP/2www.bakersfieldeyedoc.com/wp-content/uploads/2021/10/section-3-bg.jpg IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
Hash4b470d898d2b9f278b6ec072b3f336cf 1570b2d97beb377b0a424044be2075ec0a262851 b73f51f344b0c221e7bcc239083809a5a1030f9893db5b9ddb7741df1bde495b
GET /wp-content/uploads/2021/10/section-3-bg.jpg HTTP/1.1
Host: www.bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:26 GMT
content-type: image/jpeg
content-length: 45854
last-modified: Fri, 04 Feb 2022 19:07:43 GMT
etag: "61fd797f-b31e"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash5d950b70d3b1532276ed817249b72618 dca7faf727b8afdd481c8f8bcc3e9129fdadadc3 afe3fbe5f269179e18a66ca806664b7f96b903150b364129e2f2b30087198e34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| static.doubleclick.net/instream/ad_status.js | 142.250.74.134 | 200 OK | 29 B |
URL HTTP/2static.doubleclick.net/instream/ad_status.js IP142.250.74.134:0
Hash1fa71744db23d0f8df9cce6719defcb7 e4be9b7136697942a036f97cf26ebaf703ad2067 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 12:06:04 GMT
expires: Wed, 30 Nov 2022 12:21:04 GMT
cache-control: public, max-age=900
age: 803
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-includes/js/dist/a11y.min.js | 34.66.21.183 | 200 OK | 28 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-includes/js/dist/a11y.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeUnicode text, UTF-8 text, with very long lines (4709) Hash546849282e93f52edb7101ae90511859 9d20f311642858863179e39e2b23cf98d3edd40a 151eb23a478fbb01c57bb7c604b9e2cc61c291731dccbc9415355805ec9a9c39
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/js/dist/a11y.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: W/"6254194e-1289"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashb5edd2900cf47979ea71838c39b511af 3b71d051866fbdfcc612be58c2b95924456e92b6 c0f9b97792616b0efb31609115ae9823d2275d85b20240e63d56e721e7f7db5a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1713
Cache-Control: max-age=94181
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:27 GMT
Etag: "63861084-117"
Expires: Thu, 01 Dec 2022 14:29:08 GMT
Last-Modified: Tue, 29 Nov 2022 14:00:36 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
|
|
| www.google-analytics.com/gtm/optimize.js?id=OPT-W8M5B5L | 216.239.38.178 | 200 OK | 44 kB |
URL HTTP/2www.google-analytics.com/gtm/optimize.js?id=OPT-W8M5B5L IP216.239.38.178:0
File typeASCII text, with very long lines (1921) Hash06a912acbdb40221c91639f91db594f3 1b424722514741634b0c2681f380e9fdc31da679 31b3838f3ad3c83f14b6276d956087a8d962164d36c620a876ef3870d8d35415
GET /gtm/optimize.js?id=OPT-W8M5B5L HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 30 Nov 2022 12:19:27 GMT
expires: Wed, 30 Nov 2022 12:19:27 GMT
cache-control: private, max-age=900
last-modified: Wed, 30 Nov 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43955
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash4b470d898d2b9f278b6ec072b3f336cf 1570b2d97beb377b0a424044be2075ec0a262851 b73f51f344b0c221e7bcc239083809a5a1030f9893db5b9ddb7741df1bde495b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash5d950b70d3b1532276ed817249b72618 dca7faf727b8afdd481c8f8bcc3e9129fdadadc3 afe3fbe5f269179e18a66ca806664b7f96b903150b364129e2f2b30087198e34
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.74 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.74:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Wed, 30 Nov 2022 12:19:27 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.74 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.74:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hash2fefebec337f9cc1adbce92f186840c9 9c7d974161840167e8c1e3e43a66276b94bb753b a3de72fe68064412c69adf24f7f7ef7e1362054ef8087bf4a0989dbbb87f0310
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 30 Nov 2022 12:19:27 GMT
server: ESF
cache-control: private
content-length: 30580
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 279 B |
IP93.184.220.29:0
Hashb5edd2900cf47979ea71838c39b511af 3b71d051866fbdfcc612be58c2b95924456e92b6 c0f9b97792616b0efb31609115ae9823d2275d85b20240e63d56e721e7f7db5a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1713
Cache-Control: max-age=94181
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:27 GMT
Etag: "63861084-117"
Expires: Thu, 01 Dec 2022 14:29:08 GMT
Last-Modified: Tue, 29 Nov 2022 14:00:36 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 279
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash369336d480569ceb5b96454c928ae3f5 f8bc9e0cd99273198df5c7334d731a1b75fd2f2e 5338be3c216922d48eeec600e01265955f3e00a88eb048344ae365735a85bf9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| i.ytimg.com/vi/4_H36oqbN6w/maxresdefault.jpg | 142.250.74.54 | 200 OK | 102 kB |
URL HTTP/2i.ytimg.com/vi/4_H36oqbN6w/maxresdefault.jpg IP142.250.74.54:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data Size102 kB (101896 bytes) Hash7d25de294db5248825b9cead8082b189 a3b51ea621555fcda64a604cd900ba2630459b14 b1e2791b6790b85df5c24f00846c104d43a66bbc58d5faa4c4f9da99a033366f
GET /vi/4_H36oqbN6w/maxresdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 101896
date: Wed, 30 Nov 2022 12:19:27 GMT
expires: Wed, 30 Nov 2022 14:19:27 GMT
cache-control: public, max-age=7200
etag: "1372774731"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash369336d480569ceb5b96454c928ae3f5 f8bc9e0cd99273198df5c7334d731a1b75fd2f2e 5338be3c216922d48eeec600e01265955f3e00a88eb048344ae365735a85bf9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash8d5f53eac27302554bb029ae36aa283c 2d71b909d1a1bbe2e81269d0c6200ba807fcd4aa a4644d46e0e2b270572d06530145486bac01335dada14ccd6079bd9543e710d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| yt3.ggpht.com/ytc/AMLnZu8dr89N77tM4YKutIrzW9lxUmMt3FUJkj8Jrw=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 1.2 kB |
URL HTTP/2yt3.ggpht.com/ytc/AMLnZu8dr89N77tM4YKutIrzW9lxUmMt3FUJkj8Jrw=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3\012- data Hashf3968079df3dd0bd0821b827739e9e67 ec6bd9a47c5044c5f698bfb4f652fc7d066b049b 205e4d56a2949d1a88464bf5bbc4b0bcbf58542ba41fbbc158d56d90e01a92fa
GET /ytc/AMLnZu8dr89N77tM4YKutIrzW9lxUmMt3FUJkj8Jrw=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1242
x-xss-protection: 0
date: Wed, 30 Nov 2022 11:58:06 GMT
expires: Thu, 01 Dec 2022 11:58:06 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/jpeg
age: 1281
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash8d5f53eac27302554bb029ae36aa283c 2d71b909d1a1bbe2e81269d0c6200ba807fcd4aa a4644d46e0e2b270572d06530145486bac01335dada14ccd6079bd9543e710d4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:27 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| bakersfieldeyedoc.com/wp-content/uploads/2022/08/black-arrow.png | 34.66.21.183 | 200 OK | 4.5 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/uploads/2022/08/black-arrow.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data Hash85dbafd58bd37b7a8fbb0a5a98833315 e13cb9cc0b18b9d2d06467bb988c7ef421b31a3d d3bba4a3ad93091932bb41340510129723e0d89526f194a3edb530c54133f289
GET /wp-content/uploads/2022/08/black-arrow.png HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230; ct_ps_timestamp=1669810764; ct_fkp_timestamp=0; ct_pointer_data=%5B%5D; ct_timezone=0; ct_screen_info=%7B%22fullWidth%22%3A1268%2C%22fullHeight%22%3A6591%2C%22visibleWidth%22%3A1268%2C%22visibleHeight%22%3A939%7D; apbct_headless=false; apbct_pixel_url=https%3A%2F%2Fmoderate2.cleantalk.org%2Fpixel%2Fae7a449f98dc51f047953a702666771f.gif; ct_checked_emails=0; ct_checkjs=719807027; _ga=GA1.2.1939982048.1669810767; _gid=GA1.2.976975887.1669810767; _gat_UA-64538519-1=1; calltrk_referrer=direct; calltrk_landing=https%3A//bakersfieldeyedoc.com/; calltrk_session_id=c04e1fde-9bbc-4f86-baa0-a8c5b2bda210
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:28 GMT
content-type: image/png
content-length: 4530
last-modified: Tue, 16 Aug 2022 16:10:23 GMT
etag: "62fbc16f-11b2"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/wonderplugin-carousel/engine/bullet-12-12-0.png | 34.66.21.183 | 200 OK | 391 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/wonderplugin-carousel/engine/bullet-12-12-0.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 12 x 24, 8-bit/color RGBA, non-interlaced\012- data Hash2772b753fcbccee22d711f88b28dd6cf 7647bc41f81307a8ce2e1271ea850a74d1823dff be6a1c99d25d4e3889854c60dd61bd1ea3f7a6a29d59d62e185740243682a2d5
GET /wp-content/plugins/wonderplugin-carousel/engine/bullet-12-12-0.png HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230; ct_ps_timestamp=1669810764; ct_fkp_timestamp=0; ct_pointer_data=%5B%5D; ct_timezone=0; ct_screen_info=%7B%22fullWidth%22%3A1268%2C%22fullHeight%22%3A6591%2C%22visibleWidth%22%3A1268%2C%22visibleHeight%22%3A939%7D; apbct_headless=false; apbct_pixel_url=https%3A%2F%2Fmoderate2.cleantalk.org%2Fpixel%2Fae7a449f98dc51f047953a702666771f.gif; ct_checked_emails=0; ct_checkjs=719807027; _ga=GA1.2.1939982048.1669810767; _gid=GA1.2.976975887.1669810767; _gat_UA-64538519-1=1; calltrk_referrer=direct; calltrk_landing=https%3A//bakersfieldeyedoc.com/; calltrk_session_id=c04e1fde-9bbc-4f86-baa0-a8c5b2bda210
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:28 GMT
content-type: image/png
content-length: 391
last-modified: Mon, 24 Oct 2022 07:46:22 GMT
etag: "635642ce-187"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| js.callrail.com/group/0/825a7b81d9457b9b0a8a/12/swap_session.json | 143.204.55.119 | 200 OK | 9.6 kB |
URL HTTP/2js.callrail.com/group/0/825a7b81d9457b9b0a8a/12/swap_session.json IP143.204.55.119:0
Hash9b70be901ea924abcabf55997cea298b b2f863a5b1a730cddd8fcd28ee6d2e67c7f393d9 6df722f16c0b5da1c19ba36460044a106d83b6f3f25051887add30766fdfdb70
POST /group/0/825a7b81d9457b9b0a8a/12/swap_session.json HTTP/1.1
Host: js.callrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 708
Origin: https://bakersfieldeyedoc.com
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Wed, 30 Nov 2022 12:19:28 GMT
access-control-allow-methods: GET, POST, PUT, PATCH, DELETE, OPTIONS, HEAD
access-control-allow-origin: *
access-control-expose-headers:
access-control-max-age: 7200
cache-control: max-age=0, private, must-revalidate
etag: W/"d5ecdb42151964ea57f54fd5b123c88f"
vary: Origin
x-request-id: 359f1cf8-5e96-49f2-9704-d618aec2a61b
x-runtime: 0.109556
x-cache: Miss from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jbuhSKJrUZqOElgCP1whMXmts7qqbhQOMEUS5PdqGAKjkahCTHPXUg==
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/wonderplugin-carousel/engine/arrows-32-32-0.png | 34.66.21.183 | 200 OK | 2.4 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/wonderplugin-carousel/engine/arrows-32-32-0.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typePNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data Hash87aa0ec5256ce4e164c82bb2346bd93b f79e75c239134117f59cb96661c9128816e597f7 cef4ef392f5a86f83b55012a902e207c850590e2ff94bb38bbbc4f9b0ffd3539
GET /wp-content/plugins/wonderplugin-carousel/engine/arrows-32-32-0.png HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230; ct_ps_timestamp=1669810764; ct_fkp_timestamp=0; ct_pointer_data=%5B%5D; ct_timezone=0; ct_screen_info=%7B%22fullWidth%22%3A1268%2C%22fullHeight%22%3A6591%2C%22visibleWidth%22%3A1268%2C%22visibleHeight%22%3A939%7D; apbct_headless=false; apbct_pixel_url=https%3A%2F%2Fmoderate2.cleantalk.org%2Fpixel%2Fae7a449f98dc51f047953a702666771f.gif; ct_checked_emails=0; ct_checkjs=719807027; _ga=GA1.2.1939982048.1669810767; _gid=GA1.2.976975887.1669810767; _gat_UA-64538519-1=1; calltrk_referrer=direct; calltrk_landing=https%3A//bakersfieldeyedoc.com/; calltrk_session_id=c04e1fde-9bbc-4f86-baa0-a8c5b2bda210
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:28 GMT
content-type: image/png
content-length: 2441
last-modified: Mon, 24 Oct 2022 07:46:22 GMT
etag: "635642ce-989"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.74 | 200 OK | 30 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.74:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hash8db447c76e1532d62f7140eccac333ec eb6f7cd7ddd4d976c174455ace9484b232a0b27d 207e48d71445e44a6a9af3750b31027338fd04f545f3d9526ee967156a9a3190
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 30 Nov 2022 12:19:28 GMT
server: ESF
cache-control: private
content-length: 30524
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/wonderplugin-carousel/engine/bullet-16-16-0.png | 34.66.21.183 | 200 OK | 2.0 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/wonderplugin-carousel/engine/bullet-16-16-0.png IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
Hashc8cf7b71841b53ceaa8c245f5fc6b0ff f2017928e2ff29f6cb701ff610d8230b3f167c19 19852203e17de2a142e5556573474ee7a21b42a6715e1214da9f0cb9d7e71390
GET /wp-content/plugins/wonderplugin-carousel/engine/bullet-16-16-0.png HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230; ct_ps_timestamp=1669810764; ct_fkp_timestamp=0; ct_pointer_data=%5B%5D; ct_timezone=0; ct_screen_info=%7B%22fullWidth%22%3A1268%2C%22fullHeight%22%3A6591%2C%22visibleWidth%22%3A1268%2C%22visibleHeight%22%3A939%7D; apbct_headless=false; apbct_pixel_url=https%3A%2F%2Fmoderate2.cleantalk.org%2Fpixel%2Fae7a449f98dc51f047953a702666771f.gif; ct_checked_emails=0; ct_checkjs=719807027; _ga=GA1.2.1939982048.1669810767; _gid=GA1.2.976975887.1669810767; _gat_UA-64538519-1=1; calltrk_referrer=direct; calltrk_landing=https%3A//bakersfieldeyedoc.com/; calltrk_session_id=c04e1fde-9bbc-4f86-baa0-a8c5b2bda210
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:28 GMT
content-type: image/png
content-length: 707
last-modified: Mon, 24 Oct 2022 07:46:22 GMT
etag: "635642ce-2c3"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hasha67f152254e0a2cfaf6ba5e5e51d9ae4 6ddc5ee596d0469d4d5f0bbcd1918677019337b4 d786acd565665c5d7c3c43e1ec737a20f8ed2a2467bff7758cc9cbb199e602d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 30 Nov 2022 12:19:29 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| bakersfieldeyedoc.com/wp-admin/admin-ajax.php | 34.66.21.183 | 200 OK | 27 kB |
URL HTTP/2bakersfieldeyedoc.com/wp-admin/admin-ajax.php IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
File typeJSON data\012- , ASCII text, with no line terminators Hashf8088409b7884350b55f91a15a73bf4f b7bfafbaaa3dd384b8b4183474d40bdb62d4eb13 cccdea8a93b3618d89911c5c109d5543eed8d56023fd83ea259d70b5e363f01a
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------36794671693037385133405645773
Content-Length: 449
Origin: https://bakersfieldeyedoc.com
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230; ct_ps_timestamp=1669810764; ct_fkp_timestamp=0; ct_pointer_data=0; ct_timezone=0; ct_screen_info=%7B%22fullWidth%22%3A1268%2C%22fullHeight%22%3A6591%2C%22visibleWidth%22%3A1268%2C%22visibleHeight%22%3A939%7D; apbct_headless=false; apbct_pixel_url=https%3A%2F%2Fmoderate2.cleantalk.org%2Fpixel%2Fae7a449f98dc51f047953a702666771f.gif; ct_checked_emails=0; ct_checkjs=719807027; _ga=GA1.2.1939982048.1669810767; _gid=GA1.2.976975887.1669810767; _gat_UA-64538519-1=1; calltrk_referrer=direct; calltrk_landing=https%3A//bakersfieldeyedoc.com/; calltrk_session_id=c04e1fde-9bbc-4f86-baa0-a8c5b2bda210
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:28 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
access-control-allow-origin: https://bakersfieldeyedoc.com
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
x-powered-by: WP Engine
content-encoding: br
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.74 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.74:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hashce488cf294315b046d045964c054ffaf efafa2e9daa0ecabefc8cfcd84934052cdec5909 7702a83608f77869b552538babefb82d4bcb15b387e9bf97de220669d97efda1
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 30 Nov 2022 12:19:30 GMT
server: ESF
cache-control: private
content-length: 30564
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| redirector.googlevideo.com/initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&alr=yes&id=98214 | 142.250.74.78 | 200 OK | 242 B |
URL HTTP/2redirector.googlevideo.com/initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&alr=yes&id=98214 IP142.250.74.78:0
File typeASCII text, with very long lines (312), with no line terminators Hash554de95979c29877d9a0ecad18ec0508 10c8eff643d9f8e15c71d72cc3ae00d062bcdb54 b80cf9ff0e7b619009d9d0da088af51254f019623fa716c58453be23385049ea
GET /initplayback?source=youtube&oeis=1&ip=91.90.42.154&c=WEB_EMBEDDED_PLAYER&oad=3200&ovd=3200&oaad=3200&oavd=3200&ocs=700&oewis=1&oputc=1&ofpcc=1&msp=1&odeak=1&odepv=1&osfc=1&alr=yes&id=98214 HTTP/1.1
Host: redirector.googlevideo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:19:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
timing-allow-origin: https://www.youtube.com
access-control-expose-headers: Client-Protocol, Content-Length, Content-Type, X-Bandwidth-Est, X-Bandwidth-Est2, X-Bandwidth-Est3, X-Bandwidth-App-Limited, X-Bandwidth-Est-App-Limited, X-Bandwidth-Est-Comp, X-Bandwidth-Avg, X-Head-Time-Millis, X-Head-Time-Sec, X-Head-Seqnum, X-Response-Itag, X-Restrict-Formats-Hint, X-Sequence-Num, X-Segment-Lmt, X-Walltime-Ms
content-type: text/plain; charset=UTF-8
content-encoding: gzip
server: ClientMapServer
content-length: 242
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98d&tid=UA-64538519-1&cid=1939982048.1669810767&jid=180312562&gjid=1486452462&_gid=976975887.1669810767&_u=YGBACEAARAAAACAAI~&z=1683917073 | 64.233.165.155 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98d&tid=UA-64538519-1&cid=1939982048.1669810767&jid=180312562&gjid=1486452462&_gid=976975887.1669810767&_u=YGBACEAARAAAACAAI~&z=1683917073 IP64.233.165.155:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98d&tid=UA-64538519-1&cid=1939982048.1669810767&jid=180312562&gjid=1486452462&_gid=976975887.1669810767&_u=YGBACEAARAAAACAAI~&z=1683917073 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://bakersfieldeyedoc.com
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://bakersfieldeyedoc.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Wed, 30 Nov 2022 12:19:30 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| js.callrail.com/group/0/825a7b81d9457b9b0a8a/12/icap.js?t=1669810769057&GoogleAnalytics__ga=GA1.2.1939982048.1669810767&ga=GA1.2.1939982048.1669810767&uuid=c04e1fde-9bbc-4f86-baa0-a8c5b2bda210&ids%5B%5D=602356272 | 143.204.55.59 | 200 OK | 22 B |
URL HTTP/2js.callrail.com/group/0/825a7b81d9457b9b0a8a/12/icap.js?t=1669810769057&GoogleAnalytics__ga=GA1.2.1939982048.1669810767&ga=GA1.2.1939982048.1669810767&uuid=c04e1fde-9bbc-4f86-baa0-a8c5b2bda210&ids%5B%5D=602356272 IP143.204.55.59:0
File typeASCII text, with no line terminators Hash428fbfbe32240731c2093be221cc8df3 8b831bc780288cdfce6dba1a93d062c9379f4def 1643b5cec44cc597bc2cce3448ce5434241eec9b92db8af268ee3ee1f198441d
GET /group/0/825a7b81d9457b9b0a8a/12/icap.js?t=1669810769057&GoogleAnalytics__ga=GA1.2.1939982048.1669810767&ga=GA1.2.1939982048.1669810767&uuid=c04e1fde-9bbc-4f86-baa0-a8c5b2bda210&ids%5B%5D=602356272 HTTP/1.1
Host: js.callrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Wed, 30 Nov 2022 12:19:30 GMT
cache-control: max-age=0, private, must-revalidate
etag: W/"1643b5cec44cc597bc2cce3448ce5434"
x-request-id: 3da68381-bfaf-4e2f-870c-c8171dc28e3e
x-runtime: 0.018463
x-cache: Miss from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: d7eQJvY1KI5ZaaBFJcmvpBY-2TdjX294rWfSJYp_W4Z-Zq60gbAxxg==
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.74 | 200 OK | 110 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.74:0
File typeJSON data\012- , ASCII text, with no line terminators Hash86299de9e54eb8aa2e66f771e38cf19a 4b05e0ad16a90b6236b4882fc8e3689d7990d85d aeeae75a110192728de29db265b4f4dc28f7e4e5e4064031e0d7faef329d6f23
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1212
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Wed, 30 Nov 2022 12:19:30 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| cdn.userway.org/widgetapp/images/body_wh.svg |  185.76.9.22 | 200 OK | 473 B |
URL HTTP/2cdn.userway.org/widgetapp/images/body_wh.svg IP185.76.9.22:0 ASN#60068 Datacamp Limited
File typeSVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (931), with no line terminators Hashee2ebba7b29115858b3100c1352ddc62 ca4f825ee95d549ae197ce61fb8f21c81fbecff1 339557f442794fa696fc2b61f3231e1fcc0757fec2e033a69743f78801a10dcb
GET /widgetapp/images/body_wh.svg HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:19:30 GMT
content-type: image/svg+xml
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Mon, 22 Aug 2022 17:36:51 GMT
etag: W/"2ec2767a3bb93656fb9b75c893d7be75"
cache-control: max-age=25920000, public
via: 1.1 9ee3245d13c492e7e4abb0f2de012802.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: ZBi1W84-Wg9YQzaXTcNVny6EFtRI9P62iqeKaaM3UeXt5fZQZV0LNQ==
age: 20
x-accel-expires: @1694544325
server: CDN77-Turbo
x-77-nzt: AblMCRQGWiL/jRoSAA
x-77-nzt-ray: af585630429613ba524a87633d1ed32a
x-cache: HIT
x-age: 1186445
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: W/"6254194e-2208"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.userway.org/widget.js | 185.76.9.22 | 200 OK | 0 B |
URL HTTP/2cdn.userway.org/widget.js IP185.76.9.22:0 ASN#60068 Datacamp Limited
GET /widget.js HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:19:26 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Fri, 18 Nov 2022 12:13:29 GMT
etag: W/"47cf0e2b67e44970edbde8f5fb9570c6"
cache-control: max-age=3600, public
vary: Accept-Encoding
via: 1.1 8556a7e6f097b43ef38a15da76d83874.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: wWQCfWSdTl1ZncdvmUMPOdhP6mw3jS51NUNyBx8DYfr32fEfO6QTqA==
age: 1276
x-accel-expires: @1669814358
server: CDN77-Turbo
x-77-nzt: AblMCRRb/Mf/CAAAAA
x-77-nzt-ray: af585630429613ba4e4a8763a8bca000
x-cache: HIT
x-age: 8
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_271c8dc2588d7849e852b3b9f237f603.js | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_271c8dc2588d7849e852b3b9f237f603.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/cache/wmac/js/wmac_single_271c8dc2588d7849e852b3b9f237f603.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Sun, 27 Nov 2022 18:31:50 GMT
etag: W/"6383ad16-1100"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_9b0f26cf8d22d4e9455f67b21c2f9759.css | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_9b0f26cf8d22d4e9455f67b21c2f9759.css IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/cache/wmac/css/wmac_single_9b0f26cf8d22d4e9455f67b21c2f9759.css HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 20 Apr 2022 03:46:12 GMT
etag: W/"625f8204-362"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| cdn.callrail.com/companies/602356272/825a7b81d9457b9b0a8a/12/swap.js | 143.204.55.59 | 200 OK | 0 B |
URL HTTP/2cdn.callrail.com/companies/602356272/825a7b81d9457b9b0a8a/12/swap.js IP143.204.55.59:0
GET /companies/602356272/825a7b81d9457b9b0a8a/12/swap.js HTTP/1.1
Host: cdn.callrail.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
date: Wed, 30 Nov 2022 12:19:27 GMT
cache-control: max-age=3600, public
etag: W/"c6cff43fe742cfcdd1932e8cf3841843"
timing-allow-origin: *
x-request-id: 79d5a606-cfe4-49d3-a522-ef25dbe5d359
x-runtime: 0.007555
x-cache: Miss from cloudfront
via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5iiW5NQNImuymCPMf4bW045WfxJPYh8chpFYVys6tHjAzDiBHa0ZWg==
X-Firefox-Spdy: h2
|
|
| cdn.userway.org/widgetapp/2022-11-18/locales/en-US.json | 185.76.9.22 | 200 OK | 0 B |
URL HTTP/2cdn.userway.org/widgetapp/2022-11-18/locales/en-US.json IP185.76.9.22:0 ASN#60068 Datacamp Limited
GET /widgetapp/2022-11-18/locales/en-US.json HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bakersfieldeyedoc.com
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:19:30 GMT
content-type: application/json
access-control-allow-origin: https://bakersfieldeyedoc.com
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Fri, 18 Nov 2022 12:13:26 GMT
etag: W/"0c4b53012957584c54e80867ff489590"
cache-control: max-age=25920000, public
via: 1.1 8021f954d329869476f935f2fb14e66e.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: fuMi7Efd40xWj4z7XTGYGboaRfERx917qzWaOTJDZ8Q-9HqRWdzIQg==
age: 1654
x-accel-expires: @1694695394
server: CDN77-Turbo
vary: Origin
x-77-nzt: AblMCRQXh9L/cMwPAA
x-77-nzt-ray: af585630429613ba524a87632136250c
x-cache: HIT
x-age: 1035376
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_08011a08bddf5977616d7af297f233b2.js | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_08011a08bddf5977616d7af297f233b2.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/cache/wmac/js/wmac_single_08011a08bddf5977616d7af297f233b2.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Sun, 27 Nov 2022 18:31:50 GMT
etag: W/"6383ad16-c8c2"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/gravityforms/js/jquery.json.min.js | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/gravityforms/js/jquery.json.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/gravityforms/js/jquery.json.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 10 Nov 2022 06:56:20 GMT
etag: W/"636ca094-fe9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/wonderplugin-carousel/engine/froogaloop2.min.js | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/wonderplugin-carousel/engine/froogaloop2.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/wonderplugin-carousel/engine/froogaloop2.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230; ct_ps_timestamp=1669810764; ct_fkp_timestamp=0; ct_pointer_data=0; ct_timezone=0; ct_screen_info=%7B%22fullWidth%22%3A1268%2C%22fullHeight%22%3A6591%2C%22visibleWidth%22%3A1268%2C%22visibleHeight%22%3A939%7D; apbct_headless=false; apbct_pixel_url=https%3A%2F%2Fmoderate2.cleantalk.org%2Fpixel%2Fae7a449f98dc51f047953a702666771f.gif; ct_checked_emails=0; ct_checkjs=719807027; _ga=GA1.2.1939982048.1669810767; _gid=GA1.2.976975887.1669810767; _gat_UA-64538519-1=1; calltrk_referrer=direct; calltrk_landing=https%3A//bakersfieldeyedoc.com/; calltrk_session_id=c04e1fde-9bbc-4f86-baa0-a8c5b2bda210
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:27 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 24 Oct 2022 07:46:22 GMT
etag: W/"635642ce-fa6"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_a560040312229062493dd4ebb2a5f8dc.css | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_a560040312229062493dd4ebb2a5f8dc.css IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/cache/wmac/css/wmac_single_a560040312229062493dd4ebb2a5f8dc.css HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 20 Apr 2022 03:46:12 GMT
etag: W/"625f8204-1894"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2 | 216.58.211.14 | 200 OK | 0 B |
URL HTTP/2translate.google.com/translate_a/element.js?cb=googleTranslateElementInit2 IP216.58.211.14:0
GET /translate_a/element.js?cb=googleTranslateElementInit2 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Wed, 30 Nov 2022 12:19:25 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+980; expires=Fri, 29-Nov-2024 12:19:25 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_7b2d2ab311b0340a040d1adb91dc00ad.js | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/js/wmac_single_7b2d2ab311b0340a040d1adb91dc00ad.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/cache/wmac/js/wmac_single_7b2d2ab311b0340a040d1adb91dc00ad.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 28 Oct 2022 07:08:17 GMT
etag: W/"635b7fe1-35812"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-includes/js/dist/hooks.min.js | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-includes/js/dist/hooks.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/js/dist/hooks.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 11 Apr 2022 12:04:30 GMT
etag: W/"6254194e-1beb"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/plugins/gravityforms/assets/css/dist/theme-ie11.min.css HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 10 Nov 2022 06:56:20 GMT
etag: W/"636ca094-6d9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| accounts.google.com/CheckCookie?continue=https%3A%2F%2Fwww.google.com%2Fintl%2Fen%2Fimages%2Flogos%2Faccounts_logo.png&followup=https%3A%2F%2Fwww.google.com%2Fintl%2Fen%2Fimages%2Flogos%2Faccounts_logo.png&chtml=LoginDoneHtml&checkedDomains=youtube&checkConnection=youtube%3A291%3A1 | 216.58.207.237 | 400 Bad Request | 0 B |
URL HTTP/2accounts.google.com/CheckCookie?continue=https%3A%2F%2Fwww.google.com%2Fintl%2Fen%2Fimages%2Flogos%2Faccounts_logo.png&followup=https%3A%2F%2Fwww.google.com%2Fintl%2Fen%2Fimages%2Flogos%2Faccounts_logo.png&chtml=LoginDoneHtml&checkedDomains=youtube&checkConnection=youtube%3A291%3A1 IP216.58.207.237:0
GET /CheckCookie?continue=https%3A%2F%2Fwww.google.com%2Fintl%2Fen%2Fimages%2Flogos%2Faccounts_logo.png&followup=https%3A%2F%2Fwww.google.com%2Fintl%2Fen%2Fimages%2Flogos%2Faccounts_logo.png&chtml=LoginDoneHtml&checkedDomains=youtube&checkConnection=youtube%3A291%3A1 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains
x-frame-options: DENY
content-security-policy: script-src 'nonce-57DjcxdaXvLvRNgb0qcbcw' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
cache-control: no-cache, no-store
pragma: no-cache
expires: Mon, 01-Jan-1990 00:00:00 GMT
content-encoding: gzip
date: Wed, 30 Nov 2022 12:19:29 GMT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
server: GSE
set-cookie: __Host-GAPS=1:VWhMR_bIuAttKt5_kGS5BJGL3Adi4w:8XxRAPHsvLzmcgrW;Path=/;Expires=Fri, 29-Nov-2024 12:19:29 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| cdn.userway.org/widgetapp/2022-11-18/widget_app_base_1668773459217.js | 185.76.9.22 | 200 OK | 0 B |
URL HTTP/2cdn.userway.org/widgetapp/2022-11-18/widget_app_base_1668773459217.js IP185.76.9.22:0 ASN#60068 Datacamp Limited
GET /widgetapp/2022-11-18/widget_app_base_1668773459217.js HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:19:26 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Fri, 18 Nov 2022 12:13:26 GMT
etag: W/"5615cec7bb55463e08f9005c72bfcc6c"
cache-control: max-age=25920000, public
vary: Accept-Encoding
via: 1.1 66be79bde9fd204b1a11f560cee8fff4.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: aiPFFYc-iMYDXCYwIuqclzonWs9i3vyyiXVud5FbLCo2uQ5U3Ad0Iw==
age: 1563
x-accel-expires: @1694695388
server: CDN77-Turbo
x-77-nzt: AblMCRRf6iD/cswPAA
x-77-nzt-ray: af585630429613ba4e4a8763753a1705
x-cache: HIT
x-age: 1035378
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/themes/Divi/style-static.min.css | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/themes/Divi/style-static.min.css IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/themes/Divi/style-static.min.css HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 30 Nov 2022 07:11:21 GMT
etag: W/"63870219-c9550"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| komito.net/komito.js | 104.21.59.183 | 200 OK | 0 B |
IP104.21.59.183:0
GET /komito.js HTTP/1.1
Host: komito.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:19:27 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=16070400
cf-bgj: minify
cf-polished: origSize=13993
access-control-allow-origin: *
age: 307
etag: W/"63825fb4-36a9"
expires: Tue, 29 Nov 2022 14:27:56 GMT
last-modified: Sat, 26 Nov 2022 18:49:24 GMT
vary: Accept-Encoding
via: 1.1 varnish
x-cache: HIT
x-cache-hits: 1
x-fastly-request-id: f615dceff846dd41332e85959876ba56fc62524c
x-github-request-id: 87F6:6F7D:155CA66:1EA8E12:63826005
x-origin-cache: HIT
x-proxy-cache: HIT
x-served-by: cache-bma1635-BMA
x-timer: S1669489132.383490,VS0,VE1
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LKRtlKDEjAbAcP7Bz8EfUJOyb5%2B3EjbrS%2Fr5%2Fl8ky2nmmRaChuB9EOSkSTOdyw55M2sQXxctXyvpv%2FRTuAY3IxHx5N%2BDKc7qpkiY1myov%2FpRRUIynIDusM6l6Omi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 77238810fdb80b59-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.userway.org/widgetapp/images/spin_wh.svg | 185.76.9.22 | 200 OK | 0 B |
URL HTTP/2cdn.userway.org/widgetapp/images/spin_wh.svg IP185.76.9.22:0 ASN#60068 Datacamp Limited
GET /widgetapp/images/spin_wh.svg HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 30 Nov 2022 12:19:30 GMT
content-type: image/svg+xml
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Mon, 22 Aug 2022 17:36:51 GMT
etag: W/"8e0a35946bf39d10f46a1f1653366a0a"
cache-control: max-age=25920000, public
vary: Accept-Encoding
via: 1.1 60f2c4b6c07455537be83f75f12576e8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: cJVus1e0hHzx8hHNjqL0jPPyjKWzBX7c3MIOpV29GEV7m1hTah5viQ==
age: 21
x-accel-expires: @1694544326
server: CDN77-Turbo
x-77-nzt: AblMCRRtXW3/jBoSAA
x-77-nzt-ray: af585630429613ba524a8763b96edd2a
x-cache: HIT
x-age: 1186444
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/slick/slick.min.js | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/slick/slick.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/slick/slick.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 04 Feb 2022 19:07:43 GMT
etag: W/"61fd797f-b02b"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/gravityforms/js/placeholders.jquery.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 10 Nov 2022 06:56:20 GMT
etag: W/"636ca094-1adc"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/ | 34.66.21.183 | 200 OK | 0 B |
IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET / HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:24 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
set-cookie: apbct_timestamp=1669809511; path=/; secure; SameSite=Lax
apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; path=/; secure; HttpOnly; SameSite=Lax
apbct_site_landing_ts=1669809511; path=/; secure; HttpOnly; SameSite=Lax
apbct_page_hits=1; path=/; secure; HttpOnly; SameSite=Lax
apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; path=/; secure; HttpOnly; SameSite=Lax
apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; expires=Sat, 03-Dec-2022 11:58:31 GMT; Max-Age=259200; path=/; domain=bakersfieldeyedoc.com; secure; HttpOnly; SameSite=Lax
apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; expires=Sat, 03-Dec-2022 11:58:31 GMT; Max-Age=259200; path=/; domain=bakersfieldeyedoc.com; secure; HttpOnly; SameSite=Lax
ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230; expires=Fri, 30-Dec-2022 11:58:31 GMT; Max-Age=2592000; path=/; secure; SameSite=Lax
link: <https://bakersfieldeyedoc.com/wp-json/>; rel="https://api.w.org/", <https://bakersfieldeyedoc.com/wp-json/wp/v2/pages/239522>; rel="alternate"; type="application/json", <https://bakersfieldeyedoc.com/>; rel=shortlink
x-powered-by: WP Engine
x-cacheable: SHORT
cache-control: max-age=600, must-revalidate
x-cache: HIT: 1
x-cache-group: normal
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_4efb4987a55ad75a6e41a0deb20ff703.css | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_4efb4987a55ad75a6e41a0deb20ff703.css IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/cache/wmac/css/wmac_single_4efb4987a55ad75a6e41a0deb20ff703.css HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 20 Apr 2022 03:46:12 GMT
etag: W/"625f8204-f6d"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/plugins/advanced-tab-module/scripts/frontend-bundle.min.js | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/plugins/advanced-tab-module/scripts/frontend-bundle.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-content/plugins/advanced-tab-module/scripts/frontend-bundle.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 22 Sep 2022 16:48:36 GMT
etag: W/"632c91e4-6b81"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-includes/js/jquery/jquery.min.js | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-includes/js/jquery/jquery.min.js IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
| Analyzer | Verdict | Alert |
|---|
| fortinet | Phishing | |
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 03 Nov 2022 22:34:01 GMT
etag: W/"636441d9-1666e"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|
| bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_84a5f0d267367ac2faf8a42dc3311103.css | 34.66.21.183 | 200 OK | 0 B |
URL HTTP/2bakersfieldeyedoc.com/wp-content/cache/wmac/css/wmac_single_84a5f0d267367ac2faf8a42dc3311103.css IP34.66.21.183:0 ASN#396982 GOOGLE-CLOUD-PLATFORM
GET /wp-content/cache/wmac/css/wmac_single_84a5f0d267367ac2faf8a42dc3311103.css HTTP/1.1
Host: bakersfieldeyedoc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bakersfieldeyedoc.com/
Cookie: apbct_timestamp=1669809511; apbct_prev_referer=http%3A%2F%2Fbakersfieldeyedoc.com; apbct_site_landing_ts=1669809511; apbct_page_hits=1; apbct_cookies_test=%257B%2522cookies_names%2522%253A%255B%2522apbct_timestamp%2522%252C%2522apbct_prev_referer%2522%252C%2522apbct_site_landing_ts%2522%252C%2522apbct_page_hits%2522%255D%252C%2522check_value%2522%253A%2522e3b1a32cec2371a902fbe02bd0a31509%2522%257D; apbct_urls=%7B%22bakersfieldeyedoc.com%2F%22%3A%5B1669809511%5D%7D; apbct_site_referer=http%3A%2F%2Fbakersfieldeyedoc.com; ct_sfw_pass_key=4d713b9afb2d084a254e853ab35f11230
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 30 Nov 2022 12:19:25 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 20 Apr 2022 03:46:12 GMT
etag: W/"625f8204-40f"
cache-control: public, max-age=31536000
access-control-allow-origin: *
content-encoding: br
X-Firefox-Spdy: h2
|
|