r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b8fbcd7ca1a893d05677318a8a198e7a
0851654c21f6e3741887e7deab8098c1dc56f33c
edbade5913ace2fcbb932922e9af69acb2e8759474a2eeaec216307247fea361
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDBADE5913ACE2FCBB932922E9AF69ACB2E8759474A2EEAEC216307247FEA361"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2902
Expires: Fri, 23 Dec 2022 00:35:11 GMT
Date: Thu, 22 Dec 2022 23:46:49 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bbea1550fedd5eb9c265712fab75b137
2c2f981747898a380265f766345f2bb9c8c983fd
c728286e38c31a4d3f7a39702e0a5f69c14bf69e01a88bc4479714953fbda278
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C728286E38C31A4D3F7A39702E0A5F69C14BF69E01A88BC4479714953FBDA278"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4567
Expires: Fri, 23 Dec 2022 01:02:56 GMT
Date: Thu, 22 Dec 2022 23:46:49 GMT
Connection: keep-alive
bayridgevets.ca/
192.124.249.52301 Moved Permanently 232 B IP 192.124.249.52:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash e95503d77e45ba18394001aae2f13783
e4cc8f76b0351c5e43278d66e1a43182c8196618
0ac18651f60bbc8dccdc0199d339e9255bbce65a250e2c067b76785c460a7563
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Sucuri/Cloudproxy
Date: Thu, 22 Dec 2022 23:46:49 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 232
Connection: keep-alive
X-Sucuri-ID: 19002
X-XSS-Protection: 1; mode=block
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
Location: https://bayridgevets.ca/
Cache-Control: max-age=0
Expires: Thu, 22 Dec 2022 23:46:47 GMT
X-Sucuri-Cache: MISS
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 22 Dec 2022 23:46:05 GMT
content-type: application/json
age: 44
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 32167242c3bbe7e45a2a865279df94a6
d03436f418ff77d50a553daa892c05e0725ba908
d5578d537296da18f3f349a98465e9fe930dca60a8ed62c183e9c9f6eb53f493
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5578D537296DA18F3F349A98465E9FE930DCA60A8ED62C183E9C9F6EB53F493"
Last-Modified: Wed, 21 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3423
Expires: Fri, 23 Dec 2022 00:43:52 GMT
Date: Thu, 22 Dec 2022 23:46:49 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: MFKfj7R77SIhk+TaQUM0O78v/i9wOA121da6TgtnTmDjvbSIj0yPNkklZyCEPqJty2Z5UZ+u4hw=
x-amz-request-id: 0H5MNKJWN5P75K6W
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 22 Dec 2022 22:55:57 GMT
age: 3052
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:49 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 0bb507f65be7bd694cf53f91b855c8b2
44313963ca2025cbc4441923a911a31f13b82f02
ea22fe80e23d7d32d90f8d32b7bbc50a5db7025c9a1ae7b935e8fbe511ae61cb
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 22 Dec 2022 23:46:49 GMT
Content-Type: application/ocsp-response
Content-Length: 1846
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 22 Dec 2022 19:27:18 GMT
Expires: Fri, 23 Dec 2022 19:27:18 GMT
ETag: "44313963ca2025cbc4441923a911a31f13b82f02"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Alert, ETag, Content-Type, Last-Modified, Cache-Control, Expires, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 22 Dec 2022 23:33:24 GMT
age: 805
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 70a7b165f99b2b8fa0dc98318a7158d7
4d924f7febab9c8fe3fe9199e8879fd6ad892575
c5e0e414c34f2f328b487ae72b21a12a1b50d952aa1a31fb6314b4e700d27e05
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3832
Cache-Control: max-age=123832
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 23:46:50 GMT
Etag: "63a41e2a-1d7"
Expires: Sat, 24 Dec 2022 10:10:42 GMT
Last-Modified: Thu, 22 Dec 2022 09:06:50 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.155.171.116101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.155.171.116:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Kx+E/CpgYsaG2hAfVQXRGA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: HgyITkZO0AZGcT2gLLZh/Jp/VJM=
bayridgevets.ca/
192.124.249.52200 OK 25 kB IP 192.124.249.52:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (9573), with CRLF, LF line terminators
Hash 70ec5264a0eb3a857deeb4a7ef3ee70f
10e0382857c389ef71b2f83237daec7b69236e4a
bb54f88e487d80aa390f92d513f4c192cd98c0b1c9da10164e3555ac2aa60e2e
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:50 GMT
content-type: text/html; charset=UTF-8
content-length: 24867
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
link: <https://bayridgevets.ca/wp-json/>; rel="https://api.w.org/", <https://bayridgevets.ca/wp-json/wp/v2/pages/9>; rel="alternate"; type="application/json", <https://bayridgevets.ca/>; rel=shortlink
cache-control: max-age=0
expires: Thu, 22 Dec 2022 23:46:48 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2018/12/bayridge-animal-hospital-logo-420.png
192.124.249.52200 OK 9.2 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2018/12/bayridge-animal-hospital-logo-420.png
IP 192.124.249.52:0
File type PNG image data, 420 x 49, 8-bit/color RGBA, non-interlaced\012- data
Hash bcff90c16b959e087434eadaabc5b34a
ba13e4e087814eaf59c3f9df651ccdd6be96d3ab
8d048864b5eefc826e096d73763afa021b52f9ffb40973872cf2e9eca37b24b3
GET /wp-content/uploads/2018/12/bayridge-animal-hospital-logo-420.png HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:50 GMT
content-type: image/png
content-length: 9209
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 15 Dec 2018 12:40:11 GMT
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2017/01/bayridge-animal-hospital-logo-mobile.png
192.124.249.52200 OK 4.4 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2017/01/bayridge-animal-hospital-logo-mobile.png
IP 192.124.249.52:0
File type PNG image data, 250 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash b03f0386e5f0bcd60002fa4e5f996fe9
3dce1e2426a9b44be838a75336da98d088c4226f
60a93afc173af25156184535c3e8ba68b6b7c69890c4986c6e144bda6f937bc8
GET /wp-content/uploads/2017/01/bayridge-animal-hospital-logo-mobile.png HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:50 GMT
content-type: image/png
content-length: 4416
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 24 Mar 2017 16:52:20 GMT
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2018/12/bayridge-animal-hospital-logo-450.png
192.124.249.52200 OK 5.8 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2018/12/bayridge-animal-hospital-logo-450.png
IP 192.124.249.52:0
File type PNG image data, 350 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash 90535c10fc722d855548f4eed2d12e06
f5123bef0e25ae0b821bf7849eb9fca22c417354
f51dfe6e332677619b6cc36cacd77cbd40a8b242e3fb331e45e8ce869b972970
GET /wp-content/uploads/2018/12/bayridge-animal-hospital-logo-450.png HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:50 GMT
content-type: image/png
content-length: 5789
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 15 Dec 2018 12:18:28 GMT
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2017/05/accreditation-emblem_3.png
192.124.249.52200 OK 18 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2017/05/accreditation-emblem_3.png
IP 192.124.249.52:0
File type PNG image data, 102 x 113, 8-bit/color RGBA, non-interlaced\012- data
Hash 9115ab88cb5f98dd97821fb9f76108f0
eb40a443d6d413bd1cd5dc0f52a7f6d759bbfc28
db7ca7364b4e4598182563a3006b4709fe637d5b68f592c27565775bdb47e6ea
GET /wp-content/uploads/2017/05/accreditation-emblem_3.png HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:50 GMT
content-type: image/png
content-length: 18399
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 09 May 2017 19:31:50 GMT
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2018/05/aafp-logo_2.png
192.124.249.52200 OK 6.1 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2018/05/aafp-logo_2.png
IP 192.124.249.52:0
File type PNG image data, 201 x 201, 8-bit/color RGBA, non-interlaced\012- data
Hash ee787a501704d90e96de48aa56f98fd6
58acb2341ad80eded6d23a36392a6f2b53e4e104
8f8c9129feca244ca5a9311ec91500d4792b31b8ac9833933887961e3d0be9af
GET /wp-content/uploads/2018/05/aafp-logo_2.png HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:50 GMT
content-type: image/png
content-length: 6078
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 12 May 2018 05:31:48 GMT
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2017/02/bbb-horizontal-ab-seal_1-1.png
192.124.249.52200 OK 10 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2017/02/bbb-horizontal-ab-seal_1-1.png
IP 192.124.249.52:0
File type PNG image data, 150 x 57, 8-bit/color RGBA, non-interlaced\012- data
Hash 5b60beb80bafc641c23580ae0ae91b14
de8aed7e3ee39cf158d3d501833b07f5993eb91a
f0fe7d76a04b5b38eaa489a1df52adf7204d72335fbb06ac7684fa2cd046b407
GET /wp-content/uploads/2017/02/bbb-horizontal-ab-seal_1-1.png HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:50 GMT
content-type: image/png
content-length: 10246
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 24 Mar 2017 16:52:20 GMT
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b607f3e2facf61a8586563ae137d81eb
fc07f3f509b1a8f592efe951cc92bc07f307609d
68fef95cdc9deeb6a115e2869f3420a1e62dc7a64fd270f84c437bcc04642cd2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 23:46:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b607f3e2facf61a8586563ae137d81eb
fc07f3f509b1a8f592efe951cc92bc07f307609d
68fef95cdc9deeb6a115e2869f3420a1e62dc7a64fd270f84c437bcc04642cd2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 23:46:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.starfieldtech.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 09ba9f588b37316e1cb4320148b32c77
697ddc20b6f106ace48eb8f06539b008e8ff38d2
9ec6f1b3d545f4d07f11ba43efc40305bfd77e2d90bd5353040bdfc0e8ee3e91
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 74
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Thu, 22 Dec 2022 23:46:50 GMT
Content-Type: application/ocsp-response
Content-Length: 1844
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 22 Dec 2022 20:11:23 GMT
Expires: Fri, 23 Dec 2022 20:11:23 GMT
ETag: "697ddc20b6f106ace48eb8f06539b008e8ff38d2"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
digitalempathyvet.com/wp-content/uploads/2016/03/logo_1.png
192.124.249.5200 OK 5.4 kB URL HTTP/2 digitalempathyvet.com/wp-content/uploads/2016/03/logo_1.png
IP 192.124.249.5:0
File type PNG image data, 100 x 201, 8-bit/color RGBA, non-interlaced\012- data
Hash 0901b679c0a940a1355521f15ea1690f
52a352b365daf988a93fd9dc6a8b5bdaac1e4fd0
633d122d1848fb747fd534780c2dde453d7eed8516f7b7d628731ab81e74a545
GET /wp-content/uploads/2016/03/logo_1.png HTTP/1.1
Host: digitalempathyvet.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: image/png
content-length: 5371
x-sucuri-id: 19005
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
referrer-policy: no-referrer
last-modified: Wed, 13 Jan 2021 22:57:18 GMT
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/ays-popup-box/public/css/animate.css?ver=3.2.8
192.124.249.52200 OK 4.1 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/ays-popup-box/public/css/animate.css?ver=3.2.8
IP 192.124.249.52:0
File type ASCII text, with very long lines (57833)
Hash 271471774c22fddeb94aeb8ec2da21b3
0fb2220bf3562642976f228d4c396c084c77947f
7c926ab73df2965e4bca8bc54f74521163d86db8b15b197cc3dacfb6aeaca58e
GET /wp-content/plugins/ays-popup-box/public/css/animate.css?ver=3.2.8 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: text/css; charset=utf-8
content-length: 4063
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 30 Nov 2022 23:55:07 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.16
192.124.249.52200 OK 7.4 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.16
IP 192.124.249.52:0
Hash d56a58c46b9ae8e301fb62fa8d4ed07a
3667480f20c43cbb54b70cae3c8f722ff170b896
ac82921951fae15a2966e68de2ba6391021a37a5a42ec6bd3334df71041f471d
GET /wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.16 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: text/css; charset=utf-8
content-length: 7448
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 19 Sep 2022 09:47:20 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/jquery-collapse-o-matic/css/light_style.css?ver=1.6
192.124.249.52200 OK 355 B URL HTTP/2 bayridgevets.ca/wp-content/plugins/jquery-collapse-o-matic/css/light_style.css?ver=1.6
IP 192.124.249.52:0
File type ASCII text, with CRLF line terminators
Hash ef93d3df5a32ad8e1900ad6343936213
93491e086305e14e43120cade1b514d94cedd2f9
787f4ed051a2ae35736f32e8b0f787d85d48811a47e7e87bbac0abf1e0f323e9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jquery-collapse-o-matic/css/light_style.css?ver=1.6 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: text/css; charset=utf-8
content-length: 355
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Sun, 05 Dec 2021 02:17:24 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-includes/css/classic-themes.min.css?ver=1
192.124.249.52200 OK 189 B URL HTTP/2 bayridgevets.ca/wp-includes/css/classic-themes.min.css?ver=1
IP 192.124.249.52:0
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: text/css; charset=utf-8
content-length: 189
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 30 Nov 2022 23:55:49 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.16
192.124.249.52200 OK 2.4 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.16
IP 192.124.249.52:0
Hash ff742cf973c02adfbb9a9c3ca6c96753
193c469f0b7b6e68f6c528f92a6b9f2da3a5aed0
92986e8aec56577fbb6825ab0ead1300f9b3dfa073ddb1a9d3ef7204200b0af5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/essential-grid/public/assets/font/fontello/css/fontello.css?ver=3.0.16 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: text/css; charset=utf-8
content-length: 2406
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 19 Sep 2022 09:47:20 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/jquery-collapse-o-matic/css/core_style.css?ver=1.0
192.124.249.52200 OK 238 B URL HTTP/2 bayridgevets.ca/wp-content/plugins/jquery-collapse-o-matic/css/core_style.css?ver=1.0
IP 192.124.249.52:0
File type ASCII text, with CRLF line terminators
Hash 344f35bde13f47e2287670b04a0ee39f
04441ce6cc75cd5137edc87de137308726d9acb9
5043a976b6af1b61b224d5476bee6c6fc2e8cac77339fdb58c3f5c7c0a70505a
GET /wp-content/plugins/jquery-collapse-o-matic/css/core_style.css?ver=1.0 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: text/css; charset=utf-8
content-length: 238
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Sun, 05 Dec 2021 02:17:24 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/holler-box/assets/css/popups.css?ver=1671752808
192.124.249.52200 OK 3.5 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/holler-box/assets/css/popups.css?ver=1671752808
IP 192.124.249.52:0
File type ASCII text, with very long lines (500)
Hash 0075cba54d55953afefd30950b5e229d
93d36bb1707f3fd1bc07ee4322d6f235ed4b39be
630c8e8ea53fe7c45521a5bf4b3dc23f958395c8d72b28e63c0477ae640b5562
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/holler-box/assets/css/popups.css?ver=1671752808 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: text/css; charset=utf-8
content-length: 3456
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 30 Nov 2022 23:55:02 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
192.124.249.52200 OK 4.2 kB URL HTTP/2 bayridgevets.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 192.124.249.52:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 4169
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 12 Mar 2021 10:33:21 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/call-now-button/resources/style/modern.css?ver=1.3.3
192.124.249.52200 OK 1.0 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/call-now-button/resources/style/modern.css?ver=1.3.3
IP 192.124.249.52:0
Hash 91021d43ccec9c738942fa50dc9bc5d8
5f8e2def6fffa33de6ca70fc73835fe4349b9aa4
5326397b9984d6c507af588b9c9f8997ce02bd06330034477bafaf252dc0fd06
GET /wp-content/plugins/call-now-button/resources/style/modern.css?ver=1.3.3 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: text/css; charset=utf-8
content-length: 1042
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 30 Nov 2022 23:54:52 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/ays-popup-box/public/js/ays-pb-public.js?ver=3.2.8
192.124.249.52200 OK 1.2 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/ays-popup-box/public/js/ays-pb-public.js?ver=3.2.8
IP 192.124.249.52:0
Hash 58ad755902995e6700006367c1ce28bf
cdec5818d1083404a4c289aff6585477c171e88d
c2f016f1b43d74eba3659c61f0555beba6eabdff3c994e14e75df01ffdc7a384
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/ays-popup-box/public/js/ays-pb-public.js?ver=3.2.8 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 1175
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 30 Nov 2022 23:55:07 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/revslider/public/assets/assets/dummy.png
192.124.249.52200 OK 68 B URL HTTP/2 bayridgevets.ca/wp-content/plugins/revslider/public/assets/assets/dummy.png
IP 192.124.249.52:0
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 2a637d3d825673c0e3462fa4ed9a1c5c
81668d396da22832d75a986407ff10035e0d5899
69539b5b3777cffda28a66d7f2aa9b17c91ee1ec8fd50c00c442af91753a60f7
GET /wp-content/plugins/revslider/public/assets/assets/dummy.png HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: image/png
content-length: 68
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 30 Nov 2022 23:55:26 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/revslider-particles-addon/public/assets/css/revolution.addon.particles.css?ver=3.3.0
192.124.249.52200 OK 313 B URL HTTP/2 bayridgevets.ca/wp-content/plugins/revslider-particles-addon/public/assets/css/revolution.addon.particles.css?ver=3.3.0
IP 192.124.249.52:0
File type ASCII text, with CRLF line terminators
Hash be3f13726cba2acda98435826f7b82d8
a5417b4c8cdf5edb2fa7f456e4631c4711b6a1dd
d5849564e3432aa6951aea27fc6cf3f74b4045ecd055447743545dbfe3ac1124
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider-particles-addon/public/assets/css/revolution.addon.particles.css?ver=3.3.0 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: text/css; charset=utf-8
content-length: 313
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 24 May 2022 10:31:40 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
192.124.249.52200 OK 12 kB URL HTTP/2 bayridgevets.ca/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 192.124.249.52:0
File type ASCII text, with very long lines (47826)
Hash 8fa87dd23394a22621248ec378d2af59
9305bc637a89b1700d7f56a19a80bd32b0feb2f7
c162f7de24fa2d4e93e0da254ef287ff72f4a3e03f42443265097968351388dc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: text/css; charset=utf-8
content-length: 12518
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 30 Nov 2022 23:55:49 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.7
192.124.249.52200 OK 12 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.7
IP 192.124.249.52:0
File type Unicode text, UTF-8 text, with very long lines (12602)
Hash 71cca87d93a657d6d6e389d73515f10a
8d5fe66ddfcf8364e61ba6a02f06dc412b350229
f08bc22e0b0ebed123c31be4fbdbd01752088d9843958bc642ba9f60cf8c9d11
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/css/rs6.css?ver=6.6.7 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: text/css; charset=utf-8
content-length: 12467
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 30 Nov 2022 23:55:26 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/jquery-collapse-o-matic/js/collapse.js?ver=1.7.0
192.124.249.52200 OK 3.8 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/jquery-collapse-o-matic/js/collapse.js?ver=1.7.0
IP 192.124.249.52:0
Hash 948f8d6dec19e5b7209e17961760dfd0
20f1e75d32bf29707d845badd4598a675549d93a
b46ba48bc9f507baf2d5be60feba8e86564a2f0551559437218055c05045553e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jquery-collapse-o-matic/js/collapse.js?ver=1.7.0 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 3780
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Sun, 05 Dec 2021 02:17:24 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.2
192.124.249.52200 OK 369 B URL HTTP/2 bayridgevets.ca/wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.2
IP 192.124.249.52:0
File type ASCII text, with CRLF line terminators
Hash dbcd09a3eec932ec409e4ec8fbffa7b6
f724362a7bdb90c1cf61345f62d850a36c8f5f89
68f6368451e1d8425b5ae218adae92a05128177bb6b5eb380e4c05179184fb99
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/duracelltomi-google-tag-manager/js/gtm4wp-form-move-tracker.js?ver=1.16.2 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 369
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 30 Nov 2022 23:54:57 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/ays-popup-box/public/css/ays-pb-public.css?ver=3.2.8
192.124.249.52200 OK 6.3 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/ays-popup-box/public/css/ays-pb-public.css?ver=3.2.8
IP 192.124.249.52:0
Hash 383687c5bf64f0fd3daa8ea4d143ac64
d71347be40b22d8f50f277550e52019e0eed1d5d
d0fecf9d37fe4852890195b273862a667d4083b81b6542398d4c4c6e167a3228
GET /wp-content/plugins/ays-popup-box/public/css/ays-pb-public.css?ver=3.2.8 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: text/css; charset=utf-8
content-length: 6326
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 30 Nov 2022 23:55:07 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/holler-box/assets/js/popups.min.js?ver=1671752808
192.124.249.52200 OK 8.6 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/holler-box/assets/js/popups.min.js?ver=1671752808
IP 192.124.249.52:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (9313)
Hash 341bf0dc2daf19d279a4270ad644d66e
8d3acc8ffbd9498eeea9985077f9ae9baec56002
d60d9e4a5a0aadc9574f3aa83a62ec6e969e357e5358cd60de4748838d9c07cc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/holler-box/assets/js/popups.min.js?ver=1671752808 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 8570
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 30 Nov 2022 23:55:02 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/revslider-particles-addon/public/assets/js/revolution.addon.particles.min.js?ver=3.3.0
192.124.249.52200 OK 12 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/revslider-particles-addon/public/assets/js/revolution.addon.particles.min.js?ver=3.3.0
IP 192.124.249.52:0
File type ASCII text, with very long lines (37362)
Hash 2ee695c0c12833ed0e286b2e9b436905
8476faa4f46137ee4d9eb127481253902c4abbf0
3c098a32fdc3af6a40818df3fc6b00bab5a7b17596163106288351e959ecfb6e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider-particles-addon/public/assets/js/revolution.addon.particles.min.js?ver=3.3.0 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 11790
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Tue, 24 May 2022 10:31:40 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
192.124.249.52200 OK 31 kB URL HTTP/2 bayridgevets.ca/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 192.124.249.52:0
File type ASCII text, with very long lines (65447)
Hash 1b5264c989379b828aff60f65a518a24
98641237f14ccb33ac114f54329a33bd0aa17eb7
6c8e7b78c6dbc13426810c905572db7589cf3e00264e30ce797fddb0b1092237
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 30995
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 30 Nov 2022 23:55:49 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2017/01/Dentistry-3.jpg
192.124.249.52200 OK 35 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2017/01/Dentistry-3.jpg
IP 192.124.249.52:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x400, components 3\012- data
Hash da875d94c914e127eeeb4d3aee72ca36
b4ec3bbc05d0c1651caedef1a16a8e8f4a0f4587
bee61136eaa381403176a6dfc2bd4e0358449472ceff6043e36f995bf719ecf7
GET /wp-content/uploads/2017/01/Dentistry-3.jpg HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: image/jpeg
content-length: 34772
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 24 Mar 2017 16:52:20 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2017/01/24-7-Emergency-Care_2.jpg
192.124.249.52200 OK 28 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2017/01/24-7-Emergency-Care_2.jpg
IP 192.124.249.52:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x400, components 3\012- data
Hash 1d6ddbf3ce33c8d74e30ce5861ec41a2
b5232844bb3ea1875420bcf6e201db0768b2c1bb
b60a0b0d907894fedfd4251b2d140af25016f90cf79c72d9ec7da40e236b4dc8
GET /wp-content/uploads/2017/01/24-7-Emergency-Care_2.jpg HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: image/jpeg
content-length: 28463
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 24 Mar 2017 16:52:20 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2017/01/section2_img-2-600x325.jpg
192.124.249.52200 OK 20 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2017/01/section2_img-2-600x325.jpg
IP 192.124.249.52:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 600x325, components 3\012- data
Hash acc6a56c4ff40a85a9c2437f9a83ba3d
36369cfd2f7f6c688051b3a6dffd43d7f8a2a1da
b4e934ba0822dce15baafca7c06b06f57fa4bdbb6c54eba365b2954b1ddd1cdc
GET /wp-content/uploads/2017/01/section2_img-2-600x325.jpg HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: image/jpeg
content-length: 20465
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 24 Mar 2017 16:52:20 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2017/01/Healthy-Pet-Plans_658756.jpg
192.124.249.52200 OK 34 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2017/01/Healthy-Pet-Plans_658756.jpg
IP 192.124.249.52:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x400, components 3\012- data
Hash 7dcbbf0d991fe4b2998aea189dc95bec
77442760b0af86a003eda8afe0c45dba49488885
db5d5514d9cb566605abc4388a2eca2cf9a44713eacbee6a0bb5103f160a1798
GET /wp-content/uploads/2017/01/Healthy-Pet-Plans_658756.jpg HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: image/jpeg
content-length: 33817
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 24 Mar 2017 16:52:20 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/essential-grid/public/assets/js/esg.min.js?ver=3.0.16
192.124.249.52200 OK 36 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/essential-grid/public/assets/js/esg.min.js?ver=3.0.16
IP 192.124.249.52:0
File type ASCII text, with very long lines (40672)
Hash 996a91cfd5c93636d3b3d88274a9dedf
ed4317e4cd140e18ddce60a80e7f7e8adf9a7a6f
4b770281c2b9a66262e72853cbb86d104c651f4556d9f5011017072677210ddd
GET /wp-content/plugins/essential-grid/public/assets/js/esg.min.js?ver=3.0.16 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: application/javascript; charset=utf-8
content-length: 35468
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 19 Sep 2022 09:47:20 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2017/01/Surgery_1.jpg
192.124.249.52200 OK 38 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2017/01/Surgery_1.jpg
IP 192.124.249.52:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x400, components 3\012- data
Hash 72593e00250a89440f64d2ac5ae7c37b
43a49dcbb4a3d6eaa2c4768932ef510f64880b74
6d663fcad71239171ec901e39b863187a5cc8bc90152f3a6e27cc009d7fe25ac
GET /wp-content/uploads/2017/01/Surgery_1.jpg HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: image/jpeg
content-length: 38457
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 24 Mar 2017 16:52:20 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2017/01/Diagnostics-3.jpg
192.124.249.52200 OK 23 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2017/01/Diagnostics-3.jpg
IP 192.124.249.52:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x400, components 3\012- data
Hash 431d8942146fed152ed01670e92a67bf
aecf3020ea8d4ea7341c3434b610c865475eb14a
4a16c16a36cd5c11db2eb5276ed4c2a1c13e0b35610775c837d1f34e7f41af70
GET /wp-content/uploads/2017/01/Diagnostics-3.jpg HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: image/jpeg
content-length: 23286
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 24 Mar 2017 16:52:20 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fc328f2e44d4ac962c03be665dbf6436
7ac1bb5dd0d42c9cb2e6a67b06b55934190691fe
7d7ced4a7da10564449ddec77f05d85557a2b2f7e8fe2a7d15541c7b52aee928
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7CED4A7DA10564449DDEC77F05D85557A2B2F7E8FE2A7D15541C7B52AEE928"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5063
Expires: Fri, 23 Dec 2022 01:11:14 GMT
Date: Thu, 22 Dec 2022 23:46:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fc328f2e44d4ac962c03be665dbf6436
7ac1bb5dd0d42c9cb2e6a67b06b55934190691fe
7d7ced4a7da10564449ddec77f05d85557a2b2f7e8fe2a7d15541c7b52aee928
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7CED4A7DA10564449DDEC77F05D85557A2B2F7E8FE2A7D15541C7B52AEE928"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5063
Expires: Fri, 23 Dec 2022 01:11:14 GMT
Date: Thu, 22 Dec 2022 23:46:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fc328f2e44d4ac962c03be665dbf6436
7ac1bb5dd0d42c9cb2e6a67b06b55934190691fe
7d7ced4a7da10564449ddec77f05d85557a2b2f7e8fe2a7d15541c7b52aee928
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7CED4A7DA10564449DDEC77F05D85557A2B2F7E8FE2A7D15541C7B52AEE928"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5063
Expires: Fri, 23 Dec 2022 01:11:14 GMT
Date: Thu, 22 Dec 2022 23:46:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fc328f2e44d4ac962c03be665dbf6436
7ac1bb5dd0d42c9cb2e6a67b06b55934190691fe
7d7ced4a7da10564449ddec77f05d85557a2b2f7e8fe2a7d15541c7b52aee928
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7CED4A7DA10564449DDEC77F05D85557A2B2F7E8FE2A7D15541C7B52AEE928"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5063
Expires: Fri, 23 Dec 2022 01:11:14 GMT
Date: Thu, 22 Dec 2022 23:46:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash fc328f2e44d4ac962c03be665dbf6436
7ac1bb5dd0d42c9cb2e6a67b06b55934190691fe
7d7ced4a7da10564449ddec77f05d85557a2b2f7e8fe2a7d15541c7b52aee928
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7CED4A7DA10564449DDEC77F05D85557A2B2F7E8FE2A7D15541C7B52AEE928"
Last-Modified: Thu, 22 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5063
Expires: Fri, 23 Dec 2022 01:11:14 GMT
Date: Thu, 22 Dec 2022 23:46:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba1a1fb1-c604-4ebe-a587-c6a7bfc6e13d.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba1a1fb1-c604-4ebe-a587-c6a7bfc6e13d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7bbccd71cd7292dea16d1840b36b49ad
ae5e12eb73e85cc334ce5fba454fcd61e0065da4
9d622628cb3a9658be54adbc1b3e7d7c4e1c41c5468c23109dae021b63001b70
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba1a1fb1-c604-4ebe-a587-c6a7bfc6e13d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3963
x-amzn-requestid: e92dc9ff-ebf1-4fde-b6a0-8e6e3828fcb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dUm_zEO9oAMF5IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639e8531-1ff86cf3152fcd2109a5bbf9;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 03:12:49 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: L3TL5ZZUrMEdyxWBi_WmnY6gHDDW5DQilhpomXexCIyUpM6FTVglSA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 de2dd11312f7d5ad3bcd0cb112c7fd0e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 05:38:52 GMT
age: 65279
etag: "ae5e12eb73e85cc334ce5fba454fcd61e0065da4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9580464f-844c-4e13-be46-5c4206500fd1.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9580464f-844c-4e13-be46-5c4206500fd1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c2891340facccb86f9ccbfd7f1ebd443
54c9bc71fcef4494c920f5bc34379d8c05b1759d
f84738eb775ae5c671e46bb9950bc17c03fdedfc5a79785a26784623f0f39f4d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9580464f-844c-4e13-be46-5c4206500fd1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13126
x-amzn-requestid: ad064485-bb59-45d6-8c64-11bb33ba0c02
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dkUhqHywIAMFgsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a4ce0a-73c0a9123d4aab116ba3b0b4;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 21:37:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: i2OxHELH9AuabmDUpx3cnUJKuPRcNmSvA7EpZQDdLTnwZQapu4VjEA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 21:48:26 GMT
age: 7106
etag: "54c9bc71fcef4494c920f5bc34379d8c05b1759d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef779b-50c4-426a-bb0e-48c0920e42f4.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef779b-50c4-426a-bb0e-48c0920e42f4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fcdd5fc33823bcbfee082a3c0f2b083a
ed38fa97bee58621ef44a2ea6fbe4c291a12e12e
0ef1916483458d2c629077614f5ba5ea268c85679e60e8e14c7d4ca4993b674a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F57ef779b-50c4-426a-bb0e-48c0920e42f4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5642
x-amzn-requestid: e4e58ace-9158-4419-b3da-ed0e5502fdd7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dVJviFUAoAMFifg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639ebcc9-1c38199e663a289b775de5df;Sampled=0
x-amzn-remapped-date: Sun, 18 Dec 2022 07:10:01 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mrKTso9Ew9gzmJSilPJfvh1VkrxZyoDiTvakJOn7exvwnhfXHd_Srw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 06:14:29 GMT
age: 63143
etag: "ed38fa97bee58621ef44a2ea6fbe4c291a12e12e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83ec12d8-0f25-4455-b9fc-9581d059158b.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83ec12d8-0f25-4455-b9fc-9581d059158b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1c618f418af677595dddd2e7ed9e6a1f
ef8fd938e82dec810c56e4497441c452012e5a22
677f7502d2a69e2bdfad9fa2329ce8c78b7e413b4d7bd9cb414a768e381819cb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83ec12d8-0f25-4455-b9fc-9581d059158b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9158
x-amzn-requestid: ef5c3ac0-6e78-40c7-9289-bb4e3e88c168
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: de9-RHoioAMFX4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a2a9f4-3562d612246d193e695803de;Sampled=0
x-amzn-remapped-date: Wed, 21 Dec 2022 06:38:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: iC2m4ASg-8irGcO9z9FpwVQAumplbOlr8lAedeAiZRUtKuVbM6uU0g==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 5c35539543902c678280929df206948c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 05:56:19 GMT
etag: "ef8fd938e82dec810c56e4497441c452012e5a22"
content-type: image/jpeg
age: 64233
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba282dd4-f1e4-4f5c-9a46-b6e71aa327de.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba282dd4-f1e4-4f5c-9a46-b6e71aa327de.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e49802d7e560d6e9b5d17111d531af4d
c2c523d207935363931aa17cd9aaabb9a48c28a0
255ac832533c579d57dac6adc330f83d39de222b3496277b2394afc15fe74535
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba282dd4-f1e4-4f5c-9a46-b6e71aa327de.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8732
x-amzn-requestid: 25cbd9e6-ad97-4369-a02c-e740030b437c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: defNLECQIAMFiQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a278ba-4e1a2cd801c389584e320ffe;Sampled=0
x-amzn-remapped-date: Wed, 21 Dec 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: qHW93j1deKtsnRU5YYgcKJEJJfWQrYE85yG_4y9M1ECrfLtaiSYxiA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 a3b5bb90516201e5ddd137696b7b0f50.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 03:14:16 GMT
age: 73956
etag: "c2c523d207935363931aa17cd9aaabb9a48c28a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26073be1-1851-4348-a892-ee39e3b6f635.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26073be1-1851-4348-a892-ee39e3b6f635.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9f3c92ff3db8e0ec87e86aa28346ea5
c4cc987d54675d9285b43954ab8f010e5a258d9e
94be9c845c6373424c519720e61e2a1397f7390028d43dcdbf536686a7740b6b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F26073be1-1851-4348-a892-ee39e3b6f635.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9569
x-amzn-requestid: 13baa87a-0f57-48c7-940a-de8e06d60278
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dkUiwFYmIAMFUuQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a4ce11-3cb3500473c3c28d694fd5ad;Sampled=0
x-amzn-remapped-date: Thu, 22 Dec 2022 21:37:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cMHNGNn1bUU--t-x1nFmMpKyUCZd4OgSynuOOr2ZNv2cyIuReBqP0Q==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Dec 2022 21:38:36 GMT
age: 7696
etag: "c4cc987d54675d9285b43954ab8f010e5a258d9e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2017/01/our-mission.jpg
192.124.249.52200 OK 53 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2017/01/our-mission.jpg
IP 192.124.249.52:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=1, copyright=Isselee/123RF], baseline, precision 8, 848x564, components 3\012- data
Hash 2f37e6a4ed9985e16e41cb044cc31ec9
462d77831373495780b837bed9de45495676a0f1
bbc9eec9b3bce59da9ba68de82c64e75ba3e8f1004347c1bfea72e046da59875
GET /wp-content/uploads/2017/01/our-mission.jpg HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: image/jpeg
content-length: 53337
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 24 Mar 2017 16:52:20 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2020/03/lasert.jpg
192.124.249.52200 OK 162 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2020/03/lasert.jpg
IP 192.124.249.52:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 400x400, components 3\012- data
Size 162 kB (161600 bytes)
Hash 68379d89af3c018b666ab7efe0f0eca0
56bd7201f599dfdcd32ca3bd9b250c251bfb4fad
8f226af79b59c703f6560de0550dcad728a6a1eb1ad0e545ce491f5d0bfcfa56
GET /wp-content/uploads/2020/03/lasert.jpg HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: image/jpeg
content-length: 161600
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 26 Mar 2020 18:12:45 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 1f083935ee86f04fee566645287065a0
5bace09fbdb490a88489a11196a405328edfbd43
4fb850852eae66cd74682042b443154836f7806ad4b216769edae1a7b1f48f94
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=100578
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 23:46:52 GMT
Etag: "63a3d24e-117"
Expires: Sat, 24 Dec 2022 03:43:10 GMT
Last-Modified: Thu, 22 Dec 2022 03:43:10 GMT
Server: nginx
Content-Length: 279
bayridgevets.ca/wp-content/uploads/fusion-scripts/4cb63e0fa18f97974c2035f1caae7b01.min.js?ver=3.8.2
192.124.249.52200 OK 94 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/fusion-scripts/4cb63e0fa18f97974c2035f1caae7b01.min.js?ver=3.8.2
IP 192.124.249.52:0
Hash 071dbcbb0f5343bda9bd599ccd20d328
da3b033996384048b378fe18b36c2d1c898bade2
96761e7f5c4ba302373874216e8143d96e9b6cd108a2495ef6d021ad63a9dc48
GET /wp-content/uploads/fusion-scripts/4cb63e0fa18f97974c2035f1caae7b01.min.js?ver=3.8.2 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: application/javascript; charset=utf-8
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 16 Dec 2022 22:56:37 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.demandforce.com/widget/css/widget.css
104.18.12.41200 OK 10 kB URL HTTP/2 www.demandforce.com/widget/css/widget.css
IP 104.18.12.41:0
Hash 87b69eedf7b2340537fe02bd18f5e2fd
f222da253e75b85bf0d355b4273654e7d66bcf5c
fc10eac6b7d9ab3b05f6144a11d41d246994ffda5b5078c72d7eee885f375f58
GET /widget/css/widget.css HTTP/1.1
Host: www.demandforce.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 23:46:52 GMT
content-type: text/css
content-length: 10231
last-modified: Wed, 03 Apr 2019 20:10:34 GMT
etag: "9854-585a5d8a3b4a0"
vary: Accept-Encoding
content-encoding: gzip
cf-cache-status: HIT
age: 4510
expires: Fri, 23 Dec 2022 03:46:52 GMT
cache-control: public, max-age=14400
accept-ranges: bytes
server: cloudflare
cf-ray: 77dcbd45ae91b50b-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-WBS6TSS
142.250.74.168200 OK 46 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WBS6TSS
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash b02c5834bb212cbadbe5f9c7f26511c3
caf0e3a52b178fa0267a2f73fc8315a821bf7849
80745ae0057c2c032496190fa765f0c3ba64323e39c8447b6f2336be652d7cb6
GET /gtm.js?id=GTM-WBS6TSS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 22 Dec 2022 23:46:52 GMT
expires: Thu, 22 Dec 2022 23:46:52 GMT
cache-control: private, max-age=900
last-modified: Thu, 22 Dec 2022 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46394
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3d77c09bf616349faed27b1cd007b770
e3000238d463d88fdcf7625d6582eb86ce5a4021
8b0c929abbabdcd9d196792cf0789feddb6fbd98e9bb3c96c1bb6f473f28727a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 23:46:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash b4064cd37eb4b1ac411189b0a7427ab4
23d775267bf9350ab08b1b28580ee5593b146d61
dc9c41cc8379d77eaba4bccb038ccd4e3b9cde1571cfe0e102c91b01881e239f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 23:46:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3d77c09bf616349faed27b1cd007b770
e3000238d463d88fdcf7625d6582eb86ce5a4021
8b0c929abbabdcd9d196792cf0789feddb6fbd98e9bb3c96c1bb6f473f28727a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 23:46:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bayridgevets.ca
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Dec 2022 19:33:54 GMT
expires: Thu, 21 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 101578
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bayridgevets.ca
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Dec 2022 13:33:13 GMT
expires: Sat, 16 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
age: 555219
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 3d77c09bf616349faed27b1cd007b770
e3000238d463d88fdcf7625d6582eb86ce5a4021
8b0c929abbabdcd9d196792cf0789feddb6fbd98e9bb3c96c1bb6f473f28727a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 23:46:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
bayridgevets.ca/wp-content/uploads/2020/03/Online-Vet-Store1.jpg
192.124.249.52200 OK 16 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2020/03/Online-Vet-Store1.jpg
IP 192.124.249.52:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /wp-content/uploads/2020/03/Online-Vet-Store1.jpg HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: image/jpeg
content-length: 60711
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 25 Mar 2020 11:24:40 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Hash abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bayridgevets.ca
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17368
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 20 Dec 2022 07:01:24 GMT
expires: Wed, 20 Dec 2023 07:01:24 GMT
cache-control: public, max-age=31536000
age: 233128
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2
216.58.207.227200 OK 17 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17032, version 1.0\012- data
Hash 05a47f9e469d408c629f931cd33ff8b2
823f21f7b1d456db889c3afea393f0d2b9581c38
6be97ca17228a69c406231d89c003194c3dfba7401eaa9fe9e9ed0ef1c18dc38
GET /s/roboto/v30/KFOjCnqEu92Fr1Mu51TzBic6CsQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bayridgevets.ca
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17032
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Dec 2022 08:12:28 GMT
expires: Fri, 22 Dec 2023 08:12:28 GMT
cache-control: public, max-age=31536000
age: 56064
last-modified: Wed, 11 May 2022 19:24:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.userway.org/widget.js
185.76.9.18200 OK 77 kB URL HTTP/2 cdn.userway.org/widget.js
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
Hash d1766601b0720f94d8a447b37ccc0986
8d4c4b55ac4d730e1eacc1e5f5a141c075dba2bd
7f79fac18f3767f5519a2c4b01a5d3f87bf6c9beea013c6fe7cc234ef895fa8e
GET /widget.js HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 23:46:52 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Tue, 20 Dec 2022 09:04:45 GMT
etag: W/"c5019b9c9f6ec00b2ab9c2bb7ab692ca"
cache-control: max-age=3600, public
vary: Accept-Encoding
via: 1.1 09214cdb11d6af8d53ef4beca9b33e3c.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: -Sv2h5coxgVNIg-9ejqyNvJ7MYxsVEVwL35xj4Ku37HDNXXa-SBu2Q==
age: 2377
x-accel-expires: @1671753211
server: CDN77-Turbo
x-77-nzt: AblMCQ2RvEf/gQwAAA
x-77-nzt-ray: c0a4cc2876049f666ceca46319d4032a
x-cache: HIT
x-age: 3201
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.7
192.124.249.52200 OK 82 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.7
IP 192.124.249.52:0
Hash 9e4ee493cb47a3191eed1091b4320a96
9163956b9610f3551812d83b1940b0cbba049c80
1107d9abf3aa609eee97de37e594a70cbef13355f4f5d15860e1cf71bb999375
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rbtools.min.js?ver=6.6.7 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: application/javascript; charset=utf-8
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 30 Nov 2022 23:55:26 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash ca40543f4d66e05e40eb8f3bfaa87ac2
b4a506c6421e4e97a1b44d94d86f6e30e11d47a2
5a6e799bd2a96a59183ffc31534bdd313ecf2952f4d898cba6081ec3501d7ece
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=124513
Date: Thu, 22 Dec 2022 23:46:53 GMT
Etag: "63a41cd2-1d7"
Expires: Sat, 24 Dec 2022 10:22:06 GMT
Last-Modified: Thu, 22 Dec 2022 09:01:06 GMT
Server: ECS (nyb/1D17)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: YSNowiRQshf_RlW3ytkSvsfPunAWwm2mhbty6Yb3tFwsp_HIBhLcaQ==
Age: 4860
bayridgevets.ca/wp-content/uploads/2017/01/img_56452.jpg
192.124.249.52200 OK 104 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2017/01/img_56452.jpg
IP 192.124.249.52:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x557, components 3\012- data
Size 104 kB (103482 bytes)
Hash 553ec4e62428f714a84954fdc0d102f0
5992007ffd8b28636c0d0847fc202cf249a6d0dc
46305cc954f33c50ce8d0a36fce5c29a25a69482514985de42561e1b6520d4e3
GET /wp-content/uploads/2017/01/img_56452.jpg HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:53 GMT
content-type: image/jpeg
content-length: 103482
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 24 Mar 2017 16:52:20 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
api.userway.org/api/tunings/VkvbrVrRcZ
52.43.165.129200 OK 861 B URL HTTP/2 api.userway.org/api/tunings/VkvbrVrRcZ
IP 52.43.165.129:0
File type JSON data\012- , ASCII text, with very long lines (861), with no line terminators
Hash 9d345717e032b25ad14ba1140f4bb1ec
316579902999c2327410a6d10bea9204817bc141
6cd67c7d74c42ede4994afbeb65d5a5cd09113e36361c7fba17d93e96e032e11
POST /api/tunings/VkvbrVrRcZ HTTP/1.1
Host: api.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1417
Origin: https://bayridgevets.ca
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 22 Dec 2022 23:46:53 GMT
content-type: application/json; charset=utf-8
content-length: 861
x-service-version: uw-pr
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, PATCH, POST, DELETE
access-control-allow-headers: *
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
x-service-request-id: usr20223081e532441
etag: W/"35d-MWV5kCmZwjJ0EKbRC+qSBIF7wUE"
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-4SEZM099J9>m=2oebu0&_p=1992844676&cid=22601241.1671752812&ul=en-us&sr=1280x1024&_s=1&sid=1671752812&sct=1&seg=0&dl=https%3A%2F%2Fbayridgevets.ca%2F&dt=Veterinarian%20In%20Kingston%20%7C%20Near%20You%20%7C%20Bayridge%20Animal%20Hospital&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-4SEZM099J9>m=2oebu0&_p=1992844676&cid=22601241.1671752812&ul=en-us&sr=1280x1024&_s=1&sid=1671752812&sct=1&seg=0&dl=https%3A%2F%2Fbayridgevets.ca%2F&dt=Veterinarian%20In%20Kingston%20%7C%20Near%20You%20%7C%20Bayridge%20Animal%20Hospital&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-4SEZM099J9>m=2oebu0&_p=1992844676&cid=22601241.1671752812&ul=en-us&sr=1280x1024&_s=1&sid=1671752812&sct=1&seg=0&dl=https%3A%2F%2Fbayridgevets.ca%2F&dt=Veterinarian%20In%20Kingston%20%7C%20Near%20You%20%7C%20Bayridge%20Animal%20Hospital&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bayridgevets.ca
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://bayridgevets.ca
date: Thu, 22 Dec 2022 23:46:53 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.7
192.124.249.52200 OK 425 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.7
IP 192.124.249.52:0
Size 425 kB (425169 bytes)
Hash 98ded06faf6bb6c5dffe2dbfd80c4516
ed6afeb13284e21c1bbb7cf8f85b72d584096809
2281dfbbd224cbb5ad822436824e9ed9efced72a748a73f3eaaf2f8858cd17f0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/revslider/public/assets/js/rs6.min.js?ver=6.6.7 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: application/javascript; charset=utf-8
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 30 Nov 2022 23:55:26 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/plugins/essential-grid/public/assets/images/loader.gif
192.124.249.52200 OK 2.5 kB URL HTTP/2 bayridgevets.ca/wp-content/plugins/essential-grid/public/assets/images/loader.gif
IP 192.124.249.52:0
File type GIF image data, version 89a, 24 x 24\012- data
Hash 4b3afb84b2b71ef56df09997a350bd04
accdac8a7abeab0e21c49539aad0a973addb28ef
9034d5d34015e4b05d2c1d1a8dc9f6ec9d59bd96d305eb9e24e24e65c591a645
GET /wp-content/plugins/essential-grid/public/assets/images/loader.gif HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/wp-content/plugins/essential-grid/public/assets/css/settings.css?ver=3.0.16
Cookie: _ga_4SEZM099J9=GS1.1.1671752812.1.0.1671752812.0.0.0; _ga=GA1.1.22601241.1671752812
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:53 GMT
content-type: image/gif
content-length: 2545
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 19 Sep 2022 09:47:20 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2017/01/img_56341.jpg
192.124.249.52200 OK 446 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2017/01/img_56341.jpg
IP 192.124.249.52:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x723, components 3\012- data
Size 446 kB (445588 bytes)
Hash 0e9813dbaa99c88b787ecd82304e6ca1
36723bc08473f1ad245ab979b3c62d3661f98833
42d70830c38d3cc847a35853d35cb3cd4c0c3366de7a0ae349acc5a9b3f9b024
GET /wp-content/uploads/2017/01/img_56341.jpg HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:53 GMT
content-type: image/jpeg
content-length: 445588
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 24 Mar 2017 16:52:20 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Thu, 22 Dec 2022 22:41:11 GMT
expires: Fri, 23 Dec 2022 00:41:11 GMT
cache-control: public, max-age=7200
age: 3943
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://bayridgevets.ca
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Dec 2022 18:52:41 GMT
expires: Tue, 19 Dec 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 276853
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.userway.org/widgetapp/2022-12-20/locales/en-US.json
185.76.9.18200 OK 47 kB URL HTTP/2 cdn.userway.org/widgetapp/2022-12-20/locales/en-US.json
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
Hash 93f07702f849a15b93035c7cda27df46
f1056a967eb123b6dfcc4c49b7dff3cc8fdffd92
4c4c66ca6c5de54f9c238ef3bc6d34e5ff967d59292fd8ed29df41bbcdc393ce
GET /widgetapp/2022-12-20/locales/en-US.json HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://bayridgevets.ca
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 23:46:53 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Tue, 20 Dec 2022 09:04:43 GMT
etag: W/"0c4b53012957584c54e80867ff489590"
cache-control: max-age=25920000, public
via: 1.1 b501e3d4cd3164559c8668cef2f3e2ba.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: hwFQx6QNNAaIEr6yyKnSSpZ-CU5vgoNuDkllF-1H2-nmYVPfXhHdeQ==
age: 55
x-accel-expires: @1697447618
server: CDN77-Turbo
x-77-nzt: AblMCQ358kv/q28DAA
x-77-nzt-ray: c0a4cc2876049f666deca46313fcb930
x-cache: HIT
x-age: 225195
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a06281b6bb06069d21666372c708f6c0
c7622a20b3fb40dcb00f393382601e95ff59a8c2
8b7f74ecc617d58979a40b30abe40faca246e302528c3fe3d086f339574a7809
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 22 Dec 2022 23:46:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-64155726-22&cid=22601241.1671752812&jid=776719229&gjid=830235187&_gid=1772733516.1671752814&_u=YCDAgAABAAAAAE~&z=1149856293
209.85.233.157200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-64155726-22&cid=22601241.1671752812&jid=776719229&gjid=830235187&_gid=1772733516.1671752814&_u=YCDAgAABAAAAAE~&z=1149856293
IP 209.85.233.157:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-64155726-22&cid=22601241.1671752812&jid=776719229&gjid=830235187&_gid=1772733516.1671752814&_u=YCDAgAABAAAAAE~&z=1149856293 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://bayridgevets.ca
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://bayridgevets.ca
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Thu, 22 Dec 2022 23:46:55 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/fusion-styles/fdb1415c26cf219c804496ab70fb95d3.min.css?ver=3.8.2
192.124.249.52200 OK 880 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/fusion-styles/fdb1415c26cf219c804496ab70fb95d3.min.css?ver=3.8.2
IP 192.124.249.52:0
Size 880 kB (879589 bytes)
Hash b18b81039252f60ddc12a99ed9039461
bbb03e57d60f9562cb33fa3f1a33da0f3cc6020f
4843db1d0b7ca84b94fb6f20f4c9001158ac18ad3ad09037dee8bb71d708d8c1
GET /wp-content/uploads/fusion-styles/fdb1415c26cf219c804496ab70fb95d3.min.css?ver=3.8.2 HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: text/css; charset=utf-8
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Mon, 14 Nov 2022 17:48:15 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding,User-Agent
content-encoding: gzip
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2017/01/favicon.png
192.124.249.52200 OK 2.1 kB URL HTTP/2 bayridgevets.ca/wp-content/uploads/2017/01/favicon.png
IP 192.124.249.52:0
File type PNG image data, 68 x 68, 8-bit/color RGBA, non-interlaced\012- data
Hash 88c6e1f31209fd549f24669327bff23a
7b83f0009f712bfa183ba1cec3934c5a67881495
aa6f4ac7788110b905fae88e599a172c629b656890cde497e17bf86d71b1fafc
GET /wp-content/uploads/2017/01/favicon.png HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Cookie: _ga_4SEZM099J9=GS1.1.1671752812.1.0.1671752812.0.0.0; _ga=GA1.1.22601241.1671752812
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:55 GMT
content-type: image/png
content-length: 2115
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 24 Mar 2017 16:52:20 GMT
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.userway.org/widgetapp/images/spin_wh.svg
185.76.9.18200 OK 1.0 kB URL HTTP/2 cdn.userway.org/widgetapp/images/spin_wh.svg
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
Hash d736d71aa944995ee3f66c3b689e36fa
3a378d74e6257f63b6ab136c227a30ad8e26e679
9204fa2e9ea7e21776a8da3c64ea8a3ad7152ae0db38ed68f0337631926621ae
GET /widgetapp/images/spin_wh.svg HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 23:46:54 GMT
content-type: image/svg+xml
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Mon, 22 Aug 2022 17:36:51 GMT
etag: W/"8e0a35946bf39d10f46a1f1653366a0a"
cache-control: max-age=25920000, public
vary: Accept-Encoding
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DxB0P-W-atmDbNPGbe5LMzrIecJ01oHt3VD2TyO1jovTzx0V9uASmw==
age: 104462
x-accel-expires: @1696184120
server: CDN77-Turbo
x-77-nzt: AblMCQ14zDH/NrcWAA
x-77-nzt-ray: c0a4cc2876049f666eeca463ed172b14
x-cache: HIT
x-age: 1488694
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.userway.org/widgetapp/2022-12-20/widget_app_base_1671526945320.js
185.76.9.18200 OK 0 B URL HTTP/2 cdn.userway.org/widgetapp/2022-12-20/widget_app_base_1671526945320.js
IP 185.76.9.18:0
ASN #60068 Datacamp Limited
GET /widgetapp/2022-12-20/widget_app_base_1671526945320.js HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 22 Dec 2022 23:46:52 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Tue, 20 Dec 2022 09:04:44 GMT
etag: W/"ff0e2f99d4fbe31d5e43f4f97d12dd81"
cache-control: max-age=25920000, public
vary: Accept-Encoding
via: 1.1 1df45692f7304ec32e8154a5de939176.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 5JjWeMW55hsyTGsWG5xYRYj5cXgzMLDfQaSDfyx7Y9OlOyWbihl2Ow==
age: 205
x-accel-expires: @1697447749
server: CDN77-Turbo
x-77-nzt: AblMCQ1gAzP/J28DAA
x-77-nzt-ray: c0a4cc2876049f666ceca4633137842f
x-cache: HIT
x-age: 225063
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
bayridgevets.ca/wp-content/uploads/2017/01/Healthy-Pet-Plans-2.jpg
192.124.249.52200 OK 0 B URL HTTP/2 bayridgevets.ca/wp-content/uploads/2017/01/Healthy-Pet-Plans-2.jpg
IP 192.124.249.52:0
GET /wp-content/uploads/2017/01/Healthy-Pet-Plans-2.jpg HTTP/1.1
Host: bayridgevets.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Thu, 22 Dec 2022 23:46:51 GMT
content-type: image/jpeg
content-length: 24280
x-sucuri-id: 19002
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubdomains; preload
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 24 Mar 2017 16:52:20 GMT
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:700%2C500%2C100%2C300%2C400&display=swap
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:700%2C500%2C100%2C300%2C400&display=swap
IP 142.250.74.106:0
GET /css?family=Roboto:700%2C500%2C100%2C300%2C400&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://bayridgevets.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 22 Dec 2022 23:46:51 GMT
date: Thu, 22 Dec 2022 23:46:51 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2