stainawayinc.com/services/powerwash/
192.124.249.38301 Moved Permanently 162 B URL HTTP/1.1 stainawayinc.com/services/powerwash/
IP 192.124.249.38:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
GET /services/powerwash/ HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: Sucuri/Cloudproxy
Date: Tue, 29 Nov 2022 11:46:49 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
X-Sucuri-ID: 19038
Location: https://stainawayinc.com/services/powerwash/
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12931
Expires: Tue, 29 Nov 2022 15:22:19 GMT
Date: Tue, 29 Nov 2022 11:46:48 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4415
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:48 GMT
Last-Modified: Tue, 29 Nov 2022 10:33:13 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9fce5679881bf302a8978a0b462f01a9
b699fe030ea13ac73813e655c42ed9b531925e2b
a3ec545a8f9364ac9062eddb41279e1465687a1b60f9c1dec6b3a3df8b033eb3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3EC545A8F9364AC9062EDDB41279E1465687A1B60F9C1DEC6B3A3DF8B033EB3"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15343
Expires: Tue, 29 Nov 2022 16:02:31 GMT
Date: Tue, 29 Nov 2022 11:46:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 11:19:36 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1632
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: IkefrgVezixl2zN5HryBAEi5KldumlQjDWPMuO9QBglShwt31mM5UdmLStjOPufATxAus/bV2Ms=
x-amz-request-id: 3X4KX0R2982ZGBN5
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 11:42:29 GMT
age: 260
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.36200 OK 1.8 kB IP 192.124.249.36:0
Hash b2e1378dc2497028b1fd90ddfe945aa2
0ec6a646ba0aa657a8df25b6af1470463acd552d
683eb0bb9c7de7b25d5f5e59f762b72497700a9b9ca5f3adcacc6f9217312cf5
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 29 Nov 2022 11:46:48 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 28 Nov 2022 21:48:22 GMT
Expires: Tue, 29 Nov 2022 21:48:22 GMT
ETag: "0ec6a646ba0aa657a8df25b6af1470463acd552d"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 11:11:13 GMT
cache-control: public,max-age=3600
age: 2136
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3c8c689bd654417640d85f3da51af313
85123b6d46230a23d03768bf304b386e5d301305
516138ca79703b45e904d32d7dde1c1e9fd35995b9f1bb1331c547542745676d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5676
Cache-Control: max-age=168875
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:49 GMT
Etag: "6385cba8-1d7"
Expires: Thu, 01 Dec 2022 10:41:24 GMT
Last-Modified: Tue, 29 Nov 2022 09:06:48 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
stainawayinc.com/services/powerwash/
192.124.249.38200 OK 18 kB URL HTTP/2 stainawayinc.com/services/powerwash/
IP 192.124.249.38:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1902), with CRLF, LF line terminators
Hash a1bd2fa15eca20f3add6c5de5f66f7d3
101177897fba7e6312eb8716e2adef0a0983b216
2f2ee0a73435a0f40a25db698d9e3279dea7050127eca0d050b82ace6fd7b45d
Analyzer Verdict Alert fortinet Malware
GET /services/powerwash/ HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/html; charset=UTF-8
content-length: 18001
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
link: <http://stainawayinc.com/wp-json/>; rel="https://api.w.org/", <http://stainawayinc.com/?p=105>; rel=shortlink
cache-control: max-age=3600
expires: Tue, 29 Nov 2022 12:46:49 GMT
vary: Accept-Encoding
content-encoding: br
referrer-policy: no-referrer-when-downgrade
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abd55ecd24d357a9f02612558f723a90
6a1e6963864f0b53ddc6205d35225e6cf0bcbeec
195fa531e0462be58d5c62ebbe6060e147c94bdb1d38ff46c341c74e0ab2671a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
platform.linkedin.com/in.js
23.36.76.210200 OK 163 kB URL HTTP/2 platform.linkedin.com/in.js
IP 23.36.76.210:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (41594)
Size 163 kB (163354 bytes)
Hash b0a638288b66af7cb94f4b4859d8b8e9
a137de316eccb29a02e6fa194cfc97d481d480bf
acc4b483e0319908af631dacebb28b764c7301c07b7dd6d887dfd2cabc5e58b4
GET /in.js HTTP/1.1
Host: platform.linkedin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Play
expires: Tue, 29 Nov 2022 12:19:07 GMT
cache-control: public, max-age=3600
content-encoding: gzip
content-type: text/javascript; charset=UTF-8
content-length: 163354
x-li-fabric: prod-lva1
x-li-pop: prod-lva1-x
x-li-proto: http/1.1
x-li-uuid: AAXumigNw0Rj8iB4brdjFg==
x-edgeconnect-midmile-rtt: 0, 16
x-edgeconnect-origin-mex-latency: 135, 135
date: Tue, 29 Nov 2022 11:46:50 GMT
vary: Accept-Encoding
x-cdn-client-ip-version: IPV4
x-cdn: AKAM
X-Firefox-Spdy: h2
stainawayinc.com/wp-includes/css/dist/block-library/style.min.css?ver=5.3.13
192.124.249.38200 OK 6.1 kB URL HTTP/2 stainawayinc.com/wp-includes/css/dist/block-library/style.min.css?ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with very long lines (41045), with no line terminators
Hash e249e51bc3661ceb614f1ad31574c939
ca981ab391193e11e93775f3c25abc452b0e3908
950b57fc13a5c515fffe9c67a69da06e9e833430253210d0cd9fe4aff93d667f
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 6132
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
vary: Accept-Encoding
last-modified: Fri, 25 Feb 2022 04:20:31 GMT
etag: "4b208f6-a055-5d8d004f48cf6-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.9.4
192.124.249.38200 OK 2.5 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.9.4
IP 192.124.249.38:0
File type Unicode text, UTF-8 text, with very long lines (17637), with no line terminators
Hash ef8ae68d5bebd2e6e831679183ed7d22
108c4c5c4e85202b0b99076ccde369bad24b71e7
8da93267163a9c918842fbff84c8dcfc7e4e86d370358ab8e989d9cf76523905
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-layout.css?ver=3.9.4 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 2482
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 15 Jul 2021 07:19:51 GMT
etag: "49e3fc7-44e7-5c7244bfb2570-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.9.4
192.124.249.38200 OK 8.8 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.9.4
IP 192.124.249.38:0
File type Unicode text, UTF-8 text, with very long lines (62655), with no line terminators
Hash ae602d7a441a68e36c75e028185bdc25
37a6b28345ae2fd0f43450a0695760698eba5014
ea11c686069d234f068929171313ff8c0c2366f6579b78a95a2e014271b3d3b8
GET /wp-content/plugins/woocommerce/assets/css/woocommerce.css?ver=3.9.4 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 8820
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 15 Jul 2021 07:19:54 GMT
etag: "49e3fff-f4cd-5c7244c28b97b-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/wp-social-likes/css/social-likes_birman.css?ver=5.3.13
192.124.249.38200 OK 5.1 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/wp-social-likes/css/social-likes_birman.css?ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with very long lines (13654)
Hash 874476b623454b9ebb9bef45a6104d5d
ecfe0f90ac480f455700a8d42ce6291cfd17865a
f2b3f002972515fce5b5f82be52372ed101ddc90b66f7f2c7e8bf75a5fa5af57
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-social-likes/css/social-likes_birman.css?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 5104
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 31 Jan 2019 19:11:03 GMT
etag: "49821d3-35ba-580c5c9a9f126-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stainawayinc.com/wp-content/plugins/wp-social-likes/css/custom-buttons.css?ver=5.3.13
192.124.249.38200 OK 4.7 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/wp-social-likes/css/custom-buttons.css?ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with very long lines (4426), with CRLF line terminators
Hash d4011c4ad452a2449fb4b8e33eee612f
8cd54b2f2252cf1d2cf46033ce089b5b737623fe
ab9fabd0b53c8255b019202fa322514478a6c95362f9ee0f1ba0515dca35927a
GET /wp-content/plugins/wp-social-likes/css/custom-buttons.css?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 4692
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 31 Jan 2019 19:11:03 GMT
etag: "49821d2-1dbd-580c5c9a9f126-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/wp-social-likes/css/custom-buttons_birman.css?ver=5.3.13
192.124.249.38200 OK 5.0 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/wp-social-likes/css/custom-buttons_birman.css?ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with very long lines (4342), with CRLF line terminators
Hash 86a21170b8365c41e93f9e6e16879d5b
5c85ad8ab1ee28e2a8ef0ebde79300edd6d9b8b9
d7f8e6014fc6b9ced613022523fcf31350ac5962f093f31d4e9a9acf4a6a00f1
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-social-likes/css/custom-buttons_birman.css?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 4993
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 31 Jan 2019 19:11:03 GMT
etag: "49821cf-200a-580c5c9a9f126-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/themes/stainaway/style.css?ver=5.3.13
192.124.249.38200 OK 25 kB URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/style.css?ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with very long lines (737), with CRLF line terminators
Hash d943e257988d5fdd1621ffd74eaa7a42
cbabd974a83c2f9c49ed8303eeb9d27f32f72d4a
eb1de7784a0e3fc90e9dd84bb0e49132e3047e07cce2eb4bec15af539be1167a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/stainaway/style.css?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 25255
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 17 Jul 2015 06:23:40 GMT
etag: "4980272-27d3f-51b0c3aa18c64-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/mage-google-maps/source/css/mage-maps.css?ver=5.3.13
192.124.249.38200 OK 128 B URL HTTP/2 stainawayinc.com/wp-content/plugins/mage-google-maps/source/css/mage-maps.css?ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with CRLF line terminators
Hash db38494b9322d1dab5700f5a0a4fbcd9
1eb6175a7791b23c8c1a481868371e234c2e1609
97c10a3745396ebc874f5b41ed0610c2d8c29859da05124ef8f9bd0cd915efee
GET /wp-content/plugins/mage-google-maps/source/css/mage-maps.css?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 128
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 31 Jan 2019 19:10:16 GMT
etag: "4982883-8d-580c5c6df209b-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/mobile-menu/includes/css/mobmenu.css?ver=2.8
192.124.249.38200 OK 1.7 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/mobile-menu/includes/css/mobmenu.css?ver=2.8
IP 192.124.249.38:0
File type ASCII text, with very long lines (400)
Hash 7d4f689ee19c415f4f37bbfa36b176f0
828d7433949b94da5e6624fc08b00a570238db68
7f04120ac7b35be5e2ed7ae2c362b40fcab7a3171e01a270c14fe7354daca425
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mobile-menu/includes/css/mobmenu.css?ver=2.8 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 1658
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 29 Feb 2020 01:37:07 GMT
etag: "49809f6-1ba2-59facfdf38ff7-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
w.sharethis.com/button/buttons.js
54.230.111.56200 OK 17 kB URL HTTP/2 w.sharethis.com/button/buttons.js
IP 54.230.111.56:0
File type ASCII text, with very long lines (60851), with no line terminators
Hash 6df1e6fb302d1bcb35d898105f0327de
2336688fde43d37fc38dbd842b76f728d7423034
3acec848060440ee2c01f063023d2cc0122ad46f1de910ca0738e6715a6c2e67
GET /button/buttons.js HTTP/1.1
Host: w.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 16989
content-encoding: gzip
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
date: Tue, 29 Nov 2022 02:30:12 GMT
cache-control: max-age=259200
expires: Fri, 02 Dec 2022 02:30:10 GMT
etag: W/"634f1855-edb3"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zlBry3PiwC-Eob-zn0cbV0kjwlzbGMUh-JwE5Y9csZHewTv1qfOPqg==
age: 33400
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/formidable/css/formidableforms.css?ver=228813
192.124.249.38200 OK 11 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/formidable/css/formidableforms.css?ver=228813
IP 192.124.249.38:0
File type ASCII text, with very long lines (65436)
Hash d72f3392ae762529d56881e26ca4fe48
873984aab9387a954b77876a5634d1ef0d6a762b
6448b44bc7de70d3f61486c62ee501d9b601e3e3a73684961298fff94dbd22b9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/formidable/css/formidableforms.css?ver=228813 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 10679
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 28 Feb 2020 08:13:52 GMT
etag: "4a0294d-137d2-59f9e6b088635-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/themes/stainaway/images/inner-banner-bg.png
192.124.249.38200 OK 4.5 kB URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/images/inner-banner-bg.png
IP 192.124.249.38:0
File type PNG image data, 962 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash 48b03c6b47617680dbd0d743c0e99d15
d485e4f95e2cf59a0556992535970a3d31929834
c7b24512aff5589b31090551665aa601ab0f057b7138a3dbb0c307c38dd428db
GET /wp-content/themes/stainaway/images/inner-banner-bg.png HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/services/powerwash/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: image/png
content-length: 4498
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Jun 2015 06:29:48 GMT
etag: "49802d1-1192-5193da22b4f00"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.14
192.124.249.38200 OK 8.3 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.14
IP 192.124.249.38:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 8869018c1bd592f7b91085ec913ffb12
c88767c7d4e28ced867c86eb4aa8ee2aa8aadd5d
9e54393f7232bd9ed6c6dd9840ae9e779191059744f5b15e8313fce385423661
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/style.css?ver=2.5.14 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 8309
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 15 Jul 2021 07:20:02 GMT
etag: "4a0034b-1020a-5c7244ca26a06-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6
192.124.249.38200 OK 649 B URL HTTP/2 stainawayinc.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6
IP 192.124.249.38:0
Hash 76aba5da6a0d822d5b7ed296888c8758
9bd4319bc86fb62d04a7593569084a978fed2793
220aff2fb7a928001bdc0e30d89b683c92c5f41f259759ca04c198a678eab56e
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 649
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 28 Feb 2020 08:12:49 GMT
etag: "4a02921-66d-59f9e673f6f64-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/meteor-slides/css/meteor-slides.css?ver=1.0
192.124.249.38200 OK 1.3 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/meteor-slides/css/meteor-slides.css?ver=1.0
IP 192.124.249.38:0
File type ASCII text, with CRLF line terminators
Hash a6b417d62676f582e9eca5bc55111f7f
3860277788616d5b976941a855442095935aa281
42020fa864c578a5192c33b351950eff6ec08350bc4ca45eb108e79ef3b89b48
GET /wp-content/plugins/meteor-slides/css/meteor-slides.css?ver=1.0 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 1284
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 31 Jan 2019 19:10:21 GMT
etag: "498075d-13e6-580c5c71f32fb-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
maps.googleapis.com/maps/api/js
142.250.74.10200 OK 53 kB URL HTTP/2 maps.googleapis.com/maps/api/js
IP 142.250.74.10:0
File type ASCII text, with very long lines (2589)
Hash 6b3b0e678269b91a5a11b573723df72e
effe0b8544e714185488903a4ffe8ba544408bdd
08c484a2139ac16fb0fe901e36b16bc61ba86624de070fe00aeb93a812be1e5a
GET /maps/api/js HTTP/1.1
Host: maps.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
date: Tue, 29 Nov 2022 11:46:50 GMT
expires: Tue, 29 Nov 2022 12:16:50 GMT
cache-control: public, max-age=1800
vary: Accept-Language
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
content-encoding: gzip
server: mafe
content-length: 53404
x-xss-protection: 0
x-frame-options: SAMEORIGIN
server-timing: gfet4t7; dur=11
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/ultimate-social-media-plus/css/sfsi-style.css?ver=5.3.13
192.124.249.38200 OK 13 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/ultimate-social-media-plus/css/sfsi-style.css?ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with CRLF line terminators
Hash 1f7a420dc19420b8ae6975e826f92bcd
f5b719d31c3683b1c8a746c09bd628f761522155
33adcee0385a307ec363a32a5cebfa62248f55982e9f70761c50c3f89a6ff38e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-social-media-plus/css/sfsi-style.css?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 13397
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 06 Mar 2020 01:47:24 GMT
etag: "49e3847-17206-5a025d5c8dfb4-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/css/unite-gallery.css?ver=5.3.13
192.124.249.38200 OK 4.9 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/css/unite-gallery.css?ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with very long lines (303), with CRLF line terminators
Hash 16319758c90b3f4275cbbc59fb7014bc
c97c9992b766e2c3a0623b6c9f57dc7651e47dcf
c6fca95ea75f1d1b331a68c5b0b5ecbc2abe50d2a56a4f8e979f0fe59e4cded3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/unite-gallery-lite/unitegallery-plugin/css/unite-gallery.css?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 4885
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 28 Feb 2020 08:10:40 GMT
etag: "49e36f5-7e97-59f9e5f8b0069-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/uploads/dynamic-mobmenu.css?ver=2.8-556
192.124.249.38200 OK 2.0 kB URL HTTP/2 stainawayinc.com/wp-content/uploads/dynamic-mobmenu.css?ver=2.8-556
IP 192.124.249.38:0
File type ASCII text, with CRLF line terminators
Hash 64c01938ad6c81aac89514f4dd88c085
7ffd418311dbd4a1714d3d5d26204694a8e34ca0
673009f05fa21e6492bb797fd52936030951952beff181d961044326c19a6884
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/dynamic-mobmenu.css?ver=2.8-556 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 1986
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 29 Feb 2020 02:08:53 GMT
etag: "4980262-2799-59fad6f91df73-gzip"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.5.4
192.124.249.38200 OK 467 B URL HTTP/2 stainawayinc.com/wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.5.4
IP 192.124.249.38:0
File type ASCII text, with very long lines (1190)
Hash 289931a260272fd7cb1e8dd3ec99610e
c2829f964ade76eaad02624029ffd7068dce42e5
a915c8ff2d110db3c1627d10f03cd65f0edd0450dc50c706af27392b9c0551b7
GET /wp-content/plugins/google-analyticator/external-tracking.min.js?ver=6.5.4 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 467
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:41:37 GMT
etag: "4980b97-4a7-5d8c7eea9254e-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash abd55ecd24d357a9f02612558f723a90
6a1e6963864f0b53ddc6205d35225e6cf0bcbeec
195fa531e0462be58d5c62ebbe6060e147c94bdb1d38ff46c341c74e0ab2671a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stainawayinc.com/wp-content/themes/stainaway/images/request-bottom.jpg
192.124.249.38200 OK 1.1 kB URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/images/request-bottom.jpg
IP 192.124.249.38:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 330x31, components 3\012- data
Hash c4e672d3b8f05fa42680480e9c79c0b9
729df08c1b421656627f768913faf86c39884b96
fc78a0fabb0f06f343d04ac4c2423c7ba967c7e3bdfece375244272da639205d
GET /wp-content/themes/stainaway/images/request-bottom.jpg HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: image/jpeg
content-length: 1050
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Jun 2015 06:29:48 GMT
etag: "49802b9-41a-5193da22b4f00"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/widget-google-reviews/static/img/google_rating_logo_36.png
192.124.249.38200 OK 1.7 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/widget-google-reviews/static/img/google_rating_logo_36.png
IP 192.124.249.38:0
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash a003123167475c66d0732663acc985a1
d23b52cede70606dd7974c2c5174a27e3668857f
297b265bf028290de98b128f1513294d42cf1f50c71746645e80345adedbbb5a
GET /wp-content/plugins/widget-google-reviews/static/img/google_rating_logo_36.png HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: image/png
content-length: 1662
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 11 Jan 2017 20:48:43 GMT
etag: "4981f71-67e-545d7b9f034ce"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/widget-google-reviews/static/img/powered_by_google_on_white.png
192.124.249.38200 OK 2.1 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/widget-google-reviews/static/img/powered_by_google_on_white.png
IP 192.124.249.38:0
File type PNG image data, 144 x 18, 8-bit/color RGBA, non-interlaced\012- data
Hash f127e368d62ad92dacab340de5af50e8
6fd71aa5c666b3fb0f2b617edb4a659a47b7d890
533cb39f7dad385e4b124588f494e5a8d192f26ff49360d0a38c635a369c852f
GET /wp-content/plugins/widget-google-reviews/static/img/powered_by_google_on_white.png HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: image/png
content-length: 2133
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 11 Jan 2017 20:48:43 GMT
etag: "4981f70-855-545d7b9f034ce"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
192.124.249.38200 OK 1.8 kB URL HTTP/2 stainawayinc.com/wp-includes/js/jquery/ui/core.min.js?ver=1.11.4
IP 192.124.249.38:0
File type ASCII text, with very long lines (3704)
Hash 8681c8c59fe450daeacc2f499e351dfe
1bedefb4c8fa62628816eaeea85677d637a6e4e0
d2160a6f66510d16512fd1fd387aee7d3763f0b4799273125faa777128dc5430
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.11.4 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 1811
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
vary: Accept-Encoding
last-modified: Fri, 25 Feb 2022 04:20:50 GMT
etag: "4b20934-f59-5d8d00612ab4b-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/meteor-slides/js/jquery.metadata.v2.js?ver=5.3.13
192.124.249.38200 OK 1.7 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/meteor-slides/js/jquery.metadata.v2.js?ver=5.3.13
IP 192.124.249.38:0
File type HTML document, Unicode text, UTF-8 text
Hash 43e0d6d8fbbba6eac8c1e4c80011ef03
704712eb87b1f3cf66adcbdff0aa387ea800d201
ccfeb23eb7ae65804d39a1d7d4b54aa4b3b2183b7c23c570005113b5530fd53e
GET /wp-content/plugins/meteor-slides/js/jquery.metadata.v2.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 1748
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:43:27 GMT
etag: "498074f-13f9-5d8c7f52fba78-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/meteor-slides/js/jquery.cycle.all.js?ver=5.3.13
192.124.249.38200 OK 14 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/meteor-slides/js/jquery.cycle.all.js?ver=5.3.13
IP 192.124.249.38:0
Hash 9f6c8b8404ae5f99f3b021cbdf7bca92
0df542862d47e0c6b58edea9d2f69d3378c274b2
a4b76b658f54e567f28e93c59765170c02fb2ab4201c43d0a165e45ea695e163
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/meteor-slides/js/jquery.cycle.all.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 13802
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:43:31 GMT
etag: "4980752-cbe3-5d8c7f570e619-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/meteor-slides/js/jquery.touchwipe.1.1.1.js?ver=5.3.13
192.124.249.38200 OK 865 B URL HTTP/2 stainawayinc.com/wp-content/plugins/meteor-slides/js/jquery.touchwipe.1.1.1.js?ver=5.3.13
IP 192.124.249.38:0
Hash dda5602568838422cb232fa01083e579
61e8f1dfd99f275ebdb181f03b7f0ebe7465a5ac
168039b36864328a7d407ac49bb83308d8afbf7ccba1c2390c9faa06da9aac3b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/meteor-slides/js/jquery.touchwipe.1.1.1.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 865
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:43:27 GMT
etag: "4980750-87f-5d8c7f52fe958-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/meteor-slides/js/slideshow.js?ver=5.3.13
192.124.249.38200 OK 857 B URL HTTP/2 stainawayinc.com/wp-content/plugins/meteor-slides/js/slideshow.js?ver=5.3.13
IP 192.124.249.38:0
Hash 8c3d69766d2519b7f1db4414a9cc79a8
3a735209f15a37bbc3d2b95ac4e09081020cbf7b
d1deecda3ad79dce422a93b62955abc22a96ab9faa60fa5114c7fdfcd2bca42b
GET /wp-content/plugins/meteor-slides/js/slideshow.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 857
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:43:27 GMT
etag: "4980751-915-5d8c7f5300c80-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stainawayinc.com/wp-content/plugins/mobile-menu/includes/js/mobmenu.js?ver=2.8
192.124.249.38200 OK 1.9 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/mobile-menu/includes/js/mobmenu.js?ver=2.8
IP 192.124.249.38:0
Hash 7c0a03526ef3e0f763249d2da5a27819
29ca4d969fc9b2d0d12365ee7224f63d6ca2ab15
4602a7b4bacc72d35c8c2cf50d8c56b30cb03f26010234fb00897397235b0ae5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mobile-menu/includes/js/mobmenu.js?ver=2.8 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 1919
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:41:58 GMT
etag: "49809de-1eab-5d8c7efdf6769-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/speed-contact-bar/public/assets/images/phone_dark.svg
192.124.249.38200 OK 462 B URL HTTP/2 stainawayinc.com/wp-content/plugins/speed-contact-bar/public/assets/images/phone_dark.svg
IP 192.124.249.38:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash e6f227e1380d7f72ea17b20a78adc882
a77c16d2a339d418cd2e8604c2aec7aeda020208
ea88e97e989a4b60894cf961597bc93feb046b6e53618aa2b0ba2a60880f89fc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/speed-contact-bar/public/assets/images/phone_dark.svg HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: image/svg+xml
content-length: 462
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
etag: "49e3497-329-59f9e5e83c194-br"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: br
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/wp-social-likes/js/custom-buttons.js?ver=5.3.13
192.124.249.38200 OK 726 B URL HTTP/2 stainawayinc.com/wp-content/plugins/wp-social-likes/js/custom-buttons.js?ver=5.3.13
IP 192.124.249.38:0
Hash 2bb9c9904bb89ee336463ac15fad8808
9629367ffb1feef8cf4e9675955417421a368104
a3cf0e68403adbf56685f565f9a32a68ddbeae4e75c8a133c7d9b769db6e9f81
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-social-likes/js/custom-buttons.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 726
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:45:32 GMT
etag: "4980f9e-69e-5d8c7fcaad137-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/wp-social-likes/js/social-likes.min.js?ver=5.3.13
192.124.249.38200 OK 3.5 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/wp-social-likes/js/social-likes.min.js?ver=5.3.13
IP 192.124.249.38:0
File type Unicode text, UTF-8 text, with very long lines (9360)
Hash 0bf3bb8b9cdaa8fcf3daf46ee119d9f8
337f7cf88a2e432f8507d23e02d08cb95882ba22
5b7cb2b6c91c38e02f0eb3bbf187b8ddcd8938fc65d1c9cf7e4c3db98dbc405a
GET /wp-content/plugins/wp-social-likes/js/social-likes.min.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 3510
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:45:32 GMT
etag: "4980fb7-24f9-5d8c7fcaaf077-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/uploads/2015/07/request-title1.png
192.124.249.38200 OK 6.5 kB URL HTTP/2 stainawayinc.com/wp-content/uploads/2015/07/request-title1.png
IP 192.124.249.38:0
File type PNG image data, 283 x 37, 8-bit/color RGB, non-interlaced\012- data
Hash adb89469d90be71e0fc78d30bb57dffc
41e6b63263fb44b52f64358dba349c70e8d5bf70
6f77bfed495e8def88c87438e121058f71d128a1f811f3233178961aefb46a3f
GET /wp-content/uploads/2015/07/request-title1.png HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: image/png
content-length: 6497
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 10 Jul 2015 04:30:42 GMT
etag: "4980f6d-1961-51a7dd5b377c9"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-includes/js/comment-reply.min.js?ver=5.3.13
192.124.249.38200 OK 1.1 kB URL HTTP/2 stainawayinc.com/wp-includes/js/comment-reply.min.js?ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with very long lines (2337), with no line terminators
Hash 7735003b7e944da3b7243ff1b7154ea2
49b2bcc84b13060be0104b5fa2b605ce549f735b
0a9b6c4d112f01e0fce026b91567f4cb562d8019dff557aaafe7fad2b4328e0d
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/comment-reply.min.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 1115
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
vary: Accept-Encoding
last-modified: Fri, 25 Feb 2022 04:18:27 GMT
etag: "49e0fb6-921-5d8cffd93b42d-gzip"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/ultimate-social-media-plus/js/custom.js?ver=5.3.13
192.124.249.38200 OK 5.9 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/ultimate-social-media-plus/js/custom.js?ver=5.3.13
IP 192.124.249.38:0
File type Unicode text, UTF-8 text, with very long lines (993)
Hash ef6550589dd1b06f542176059a25d6c5
da8f91951f1ad3ef2821d98e27975f4f7701d284
643ab6e74f370bbe5892042d6784f896ae51cf03e2e654a4f2881bd44c27d453
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-social-media-plus/js/custom.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 5919
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:42:17 GMT
etag: "49e37ab-7baf-5d8c7f1047b0e-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
192.124.249.38200 OK 34 kB URL HTTP/2 stainawayinc.com/wp-includes/js/jquery/jquery.js?ver=1.12.4-wp
IP 192.124.249.38:0
File type ASCII text, with very long lines (31997)
Hash acf54950dfb2d6981e941d733b377591
340de686aecd9e6246a32c71e7de63ed69229ceb
d97f66caea5260bc71609f0da43ac0d937ecc09253910e5dda4c9fe4dbde20fc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4-wp HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 33776
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
vary: Accept-Encoding
last-modified: Fri, 25 Feb 2022 04:19:50 GMT
etag: "4b20868-17a69-5d8d002850f28-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/?sccss=1&ver=5.3.13
192.124.249.38200 OK 650 B URL HTTP/2 stainawayinc.com/?sccss=1&ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with CRLF line terminators
Hash dba4808550485bcccd736109f9421f4b
ce03a55b6c06ea3b21410a4f97e9f262b5e6b959
c8ba02288aefb828c7c1b2f4f20708b8ad87c6bd22160f9183c5205eb237a205
GET /?sccss=1&ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css;charset=UTF-8
content-length: 650
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
vary: Accept-Encoding
cache-control: max-age=31536000
expires: Wed, 29 Nov 2023 11:46:50 GMT
content-encoding: br
referrer-policy: no-referrer-when-downgrade
x-sucuri-cache: EXPIRED
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/ultimate-social-media-plus/js/shuffle/modernizr.custom.min.js?ver=5.3.13
192.124.249.38200 OK 1.5 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/ultimate-social-media-plus/js/shuffle/modernizr.custom.min.js?ver=5.3.13
IP 192.124.249.38:0
File type HTML document, ASCII text, with very long lines (2861)
Hash 886178bdf89696770469ca55aa1b34a6
47dfe611c0699c99105e5820404bce727fd117b0
49ef48e9ff775807a00febc8e642e426ff359d22a5bd0dfdf930f67a98e5386b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/ultimate-social-media-plus/js/shuffle/modernizr.custom.min.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 1488
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:42:17 GMT
etag: "49e37b0-c03-5d8c7f105f9df-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/ultimate-social-media-plus/js/shuffle/jquery.shuffle.min.js?ver=5.3.13
192.124.249.38200 OK 4.3 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/ultimate-social-media-plus/js/shuffle/jquery.shuffle.min.js?ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with very long lines (12128)
Hash 87b4ac9b79362bf19cf6da599a563b75
a1b29c92a086f73c81d0328113b6cb2bf9e53b4a
910747d012959808809b5434404207630746c66541f5bbc6fafa7e624d08829f
GET /wp-content/plugins/ultimate-social-media-plus/js/shuffle/jquery.shuffle.min.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 4344
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:42:17 GMT
etag: "49e37ae-2f61-5d8c7f10578f7-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/ultimate-social-media-plus/js/shuffle/random-shuffle-min.js?ver=5.3.13
192.124.249.38200 OK 703 B URL HTTP/2 stainawayinc.com/wp-content/plugins/ultimate-social-media-plus/js/shuffle/random-shuffle-min.js?ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with very long lines (1477)
Hash dbe2a2d90b7dd8e52780859b0e0e7b97
89685ddbc391ad323a37906cd946b64ddbff73bb
db9ba43835b9908b5a9d45a33bb012b35ecab4ca4dc476e569c7078cc32eff45
GET /wp-content/plugins/ultimate-social-media-plus/js/shuffle/random-shuffle-min.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 703
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:42:17 GMT
etag: "49e37af-5c6-5d8c7f105caff-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6
192.124.249.38200 OK 4.0 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6
IP 192.124.249.38:0
Hash 8c4d31dfd6e4e0ec7bf46f75470f236d
09f89ce61ffde0147b2cf337d18778530ff5e866
8ec7b5eddb98eab9e9826968f7b0207fa1bcb39b801787c8a3a56fba24d79c07
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/scripts.js?ver=5.1.6 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 3993
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:45:02 GMT
etag: "4a02900-3869-5d8c7fae40b18-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-includes/js/wp-embed.min.js?ver=5.3.13
192.124.249.38200 OK 739 B URL HTTP/2 stainawayinc.com/wp-includes/js/wp-embed.min.js?ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with very long lines (1391), with no line terminators
Hash 60d8829560031a011771efa2f39708af
a4689c3b70f773deb896eec78028e0902ef15097
a0176bd4cc53bd2e920b0dfd10f56d2a4a3820d671539414ef4b3e2b3e50b9b7
GET /wp-includes/js/wp-embed.min.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: application/x-javascript
content-length: 739
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
vary: Accept-Encoding
last-modified: Fri, 25 Feb 2022 04:18:39 GMT
etag: "49e1018-56f-5d8cffe4c4a4c-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/widget-google-reviews/static/js/grp-time.js?ver=5.3.13
192.124.249.38200 OK 2.7 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/widget-google-reviews/static/js/grp-time.js?ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with very long lines (593)
Hash ae68246e3651262e5a3cae15c0d36615
9ad961dbc111b26248d552134ce75b0bf893202c
bc1e6d127ed0791398c9b207c929c9c45982c18c78722024b1e9d77edd1cc26d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/widget-google-reviews/static/js/grp-time.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
content-length: 2701
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:45:40 GMT
etag: "4981f69-4237-5d8c7fd1ad127-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/simple-responsive-menu/sr-script.js?ver=1.0
192.124.249.38200 OK 691 B URL HTTP/2 stainawayinc.com/wp-content/plugins/simple-responsive-menu/sr-script.js?ver=1.0
IP 192.124.249.38:0
Hash 314a4b00400284ecdb84ab0215fd5afd
ee5531c768a265ab8f79a6aa9960a89bd6b1b0cd
cb8fbb3d414caee57904317f20ac2d8c1209b5368ef423007691b7eb21b8e444
GET /wp-content/plugins/simple-responsive-menu/sr-script.js?ver=1.0 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
content-length: 691
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:42:18 GMT
etag: "49804bc-92d-5d8c7f11b431b-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.2
192.124.249.38200 OK 681 B URL HTTP/2 stainawayinc.com/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.2
IP 192.124.249.38:0
File type ASCII text, with very long lines (1398)
Hash cbc6d37912c120b4f1cd3419846dd244
9aa5ae7a74883bdb17db80298ad8ff855bd63fc6
60873755268138e863bf8121e177deb467681e92f595546311d1f01dcb0f7e5f
GET /wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.2 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
content-length: 681
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:38:56 GMT
etag: "4a014d2-577-5d8c7e509ae39-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-includes/js/wp-emoji-release.min.js?ver=5.3.13
192.124.249.38200 OK 4.6 kB URL HTTP/2 stainawayinc.com/wp-includes/js/wp-emoji-release.min.js?ver=5.3.13
IP 192.124.249.38:0
File type ASCII text, with very long lines (10927)
Hash cecddf5ddbcefd9b5e6e2c9ccf2b0f88
47af5b49999884a7baa802269b58844df86adda3
17273e8bdfa2d374b963fda5ed3fff219ee4d53031356c6181430f92aea473e7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
content-length: 4619
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
vary: Accept-Encoding
last-modified: Fri, 25 Feb 2022 04:18:40 GMT
etag: "49e101b-3619-5d8cffe57101f-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/themes/stainaway/js/jquery.meanmenu.js
192.124.249.38200 OK 3.4 kB URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/js/jquery.meanmenu.js
IP 192.124.249.38:0
Hash 774a71aae1b091fad290e5dc269976fe
c71cf7efd3fadaeb75bcf3ba6da979bde33a208f
e500b4df7e8ac54881fc9935fb547e59a5bd322db69227c91cc02d5d172825e2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/stainaway/js/jquery.meanmenu.js HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
content-length: 3372
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:38:22 GMT
etag: "49802aa-300a-5d8c7e30ded52-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/uploads/2020/02/Logo3.png
192.124.249.38200 OK 8.7 kB URL HTTP/2 stainawayinc.com/wp-content/uploads/2020/02/Logo3.png
IP 192.124.249.38:0
File type PNG image data, 325 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash 4ec018150b0621aa99ed9a7b574d8557
d05e541bef64702ba7ffed6c8c7762e57abefdb2
3a4855cd3b854ffd40c8bdf74ea1c6ba7ee00a081ed58276d70c4d8893406cd1
GET /wp-content/uploads/2020/02/Logo3.png HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/png
content-length: 8742
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 28 Feb 2020 08:28:00 GMT
etag: "4ba0003-2226-59f9e9d91fc8e"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.9.4
192.124.249.38200 OK 1.0 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.9.4
IP 192.124.249.38:0
File type ASCII text, with very long lines (2940)
Hash 54d2b6ee95b80fc7332c7c98d38bc193
a5e9d979c32c8c8d0c0d51f0c4edacfa4d6f224b
8046ec33bbb07d5e416992e31b3206bfd12b000e35782a12e046315b737f2062
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=3.9.4 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
content-length: 1045
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:39:10 GMT
etag: "49e3f7c-b7d-5d8c7e5e466a3-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
192.124.249.38200 OK 982 B URL HTTP/2 stainawayinc.com/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4
IP 192.124.249.38:0
File type ASCII text, with very long lines (1680)
Hash 99e4af841d674d17ca7d75bc53389870
b1d566b442c47f890317f88e82ace6a14628b46d
0db037bdb1d46e7583cd86b06429f446314b5f2f51c4b17b950c59a7046d4087
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
content-length: 982
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:38:58 GMT
etag: "49e3ded-737-5d8c7e532680c-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.9.4
192.124.249.38200 OK 769 B URL HTTP/2 stainawayinc.com/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.9.4
IP 192.124.249.38:0
File type ASCII text, with very long lines (1985)
Hash 97a46fc50dd8b19f81751923dda7cae5
e8736b7e9d29545b009532d59afc0a584aaf6352
d72ed817122a5ece527bafdf0233f90021ad47fa8832994b879d18b04e6619e9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=3.9.4 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
content-length: 769
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:39:11 GMT
etag: "49e3f90-7c2-5d8c7e5ede456-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.9.4
192.124.249.38200 OK 1.0 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.9.4
IP 192.124.249.38:0
File type HTML document, ASCII text, with very long lines (2750)
Hash a4f3392f86c6d4a0050da2b66c72e8e1
90101a75c3b685156cdb9dc9f51af1c7c8fbd776
eda2411295e0d153c44d950d2982f2ba8d944e0317e0f08e1a254357034dd130
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=3.9.4 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
content-length: 1020
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:39:10 GMT
etag: "49e3f77-abf-5d8c7e5e001a2-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/mage-google-maps/source/js/gmaps.js
192.124.249.38200 OK 10 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/mage-google-maps/source/js/gmaps.js
IP 192.124.249.38:0
Hash c5bae65c9490f4330b5e892094c8eb78
fa9411acba7ff8f4b317c449258bcbc33d2cf7e2
7ca6677956b88ab30d202cb552d0f4a5fc11fbe2d139252627dfd03a512a3f29
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mage-google-maps/source/js/gmaps.js HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
content-length: 10286
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:42:21 GMT
etag: "498112f-ca4e-5d8c7f142f730-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
192.124.249.38200 OK 3.5 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70
IP 192.124.249.38:0
File type ASCII text, with very long lines (9172)
Hash 8a2d130503b56b81ac586ce26342857e
abd8cd02d77995495b7e843d1fe90ac4894f61b6
4cead1d3efe87801dc4c4116fbb3b309e5fc6e0e3f38c5f6559083bfd9d9ed1b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.70 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
content-length: 3534
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:39:12 GMT
etag: "49e3faf-255f-5d8c7e6017fe3-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/themes/stainaway/library/js/bootstrap.min.js?ver=2.2.2
192.124.249.38200 OK 7.3 kB URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/library/js/bootstrap.min.js?ver=2.2.2
IP 192.124.249.38:0
File type ASCII text, with very long lines (27605)
Hash 20e736c4eac7fe9853c9870f2b5413d1
0857a403fa660c1289d5875b0eeac609a71c75f7
763ec73cdcf55eff60a919425c962a8df77b7b1e8360642a93461d398828907d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/stainaway/library/js/bootstrap.min.js?ver=2.2.2 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
content-length: 7254
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:38:24 GMT
etag: "4980289-6c4f-5d8c7e31e0a57-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/themes/stainaway/library/js/theme.js?ver=5.3.13
192.124.249.38200 OK 615 B URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/library/js/theme.js?ver=5.3.13
IP 192.124.249.38:0
Hash 38eac92b931409ae80ccf6acf5cb6249
59f20599760e72de44006b2e9a30d192ca7d3d71
e011b500d11a3703f78d6b528b807a95777ed47b3774259cdbdad05e127a16fc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/stainaway/library/js/theme.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
content-length: 615
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:38:24 GMT
etag: "4980288-4fb-5d8c7e31e4cbf-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.9.4
192.124.249.38200 OK 1.1 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.9.4
IP 192.124.249.38:0
File type ASCII text, with very long lines (6758), with no line terminators
Hash bac3c679da4930209be92b338cb74b7f
1a18633b3aecdcb7146475a1f6a90c58058f9e9b
b5b63cee0120e4cf9a183bab0905af9d4fa8712d4afef4d0b7d7c0f914ae26b3
GET /wp-content/plugins/woocommerce/assets/css/woocommerce-smallscreen.css?ver=3.9.4 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: text/css
content-length: 1055
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 15 Jul 2021 07:19:51 GMT
etag: "49e3fc5-1a66-5c7244bfafa78-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/themes/stainaway/js/bootstrap.min.js
192.124.249.38301 Moved Permanently 1 B URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/js/bootstrap.min.js
IP 192.124.249.38:0
Hash eccbc87e4b5ce2fe28308fd9f2a7baf3
77de68daecd823babbb58edb1c8e14d7106e83bb
4e07408562bedb8b60ce05c1decfe3ad16b72230967de01f640b7e4729b49fce
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/stainaway/js/bootstrap.min.js HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 301 Moved Permanently
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: text/html; charset=UTF-8
content-length: 1
location: http://stainawayinc.com
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-redirect-by: WordPress
vary: Accept-Encoding
content-encoding: br
referrer-policy: no-referrer-when-downgrade
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/uploads/2014/04/powerwash.jpg
192.124.249.38200 OK 85 kB URL HTTP/2 stainawayinc.com/wp-content/uploads/2014/04/powerwash.jpg
IP 192.124.249.38:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 500x334, components 3\012- data
Hash aeed5820f49bbfea3c669c92e06aa555
7de7341e266f4db27cf19669ce9347ceb8da98d0
ef4006924c8e6ca5bcd8d96d7938f019345540417017eca7893ac118fc71dc11
GET /wp-content/uploads/2014/04/powerwash.jpg HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: image/jpeg
content-length: 85302
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Jun 2015 06:29:48 GMT
etag: "498032c-14d36-5193da22b4f00"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.237.93.5101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.93.5:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: p6gkOYo8m4WKGjnjORyzlw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oGCTh3gGZGHD5HhZGoyh3VTY2t8=
stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/themes/tiles/ug-theme-tiles.js?ver=5.3.13
192.124.249.38200 OK 1.8 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/themes/tiles/ug-theme-tiles.js?ver=5.3.13
IP 192.124.249.38:0
Hash f6ad5e38476e38fd46143af965901755
4dec94223874d7148d6a6271a39bb08d8f9f27a7
5371da3f7e1eb1bcac42a0cf55b1f202e2e3d36b50c607934fb788a4ec1c6eab
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/unite-gallery-lite/unitegallery-plugin/themes/tiles/ug-theme-tiles.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
content-length: 1847
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:44:34 GMT
etag: "49e36ad-169c-5d8c7f9335d3d-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/uploads/2014/03/estimate.jpg
192.124.249.38200 OK 79 kB URL HTTP/2 stainawayinc.com/wp-content/uploads/2014/03/estimate.jpg
IP 192.124.249.38:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 960x170, components 3\012- data
Hash 9cba329eefbae70d811767f373054bcd
f71f2bf29773435b68336511259fb3307ae8cce5
89ecdb0c08f69d4295b16b4edeb75e15487eedc768137db3e42178ae56e35c46
GET /wp-content/uploads/2014/03/estimate.jpg HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: image/jpeg
content-length: 78658
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Jun 2015 06:29:48 GMT
etag: "4980308-13342-5193da22b4f00"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
216.58.207.195200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 22504, version 1.0\012- data
Hash 1c6c65523675abc6fcd78e804325bd77
898d9808304dc157f5dcb18ca169ec6e2b96b3d7
08664859baab5ed98f0bf818ed77e38464ff1826dc6406d5ecbd651409afbd92
GET /s/lato/v23/S6u9w4BMUTPHh50XSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://stainawayinc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22504
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:15:33 GMT
expires: Wed, 22 Nov 2023 17:15:33 GMT
cache-control: public, max-age=31536000
age: 585077
last-modified: Tue, 26 Apr 2022 16:04:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
216.58.207.195200 OK 23 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Hash de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://stainawayinc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 21:11:39 GMT
expires: Sun, 26 Nov 2023 21:11:39 GMT
cache-control: public, max-age=31536000
age: 225311
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
216.58.207.195200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://stainawayinc.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 17:10:21 GMT
expires: Wed, 22 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 585389
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stainawayinc.com/wp-content/themes/stainaway/images/myspace.jpg
192.124.249.38200 OK 2.8 kB URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/images/myspace.jpg
IP 192.124.249.38:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 45x47, components 3\012- data
Hash 1889e2313cc62567ee0c46af4a58ee7d
f9cea9dceb99e744f0d629c46863463e7b82a036
24450f69ca2e7faf90617b8e902fb374f63ab6aa6d353ef89f56ca2113ee41fa
GET /wp-content/themes/stainaway/images/myspace.jpg HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/themes/stainaway/style.css?ver=5.3.13
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/jpeg
content-length: 2814
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Jun 2015 06:29:48 GMT
etag: "49802ba-afe-5193da22b4f00"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/themes/stainaway/images/gplus.jpg
192.124.249.38200 OK 1.6 kB URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/images/gplus.jpg
IP 192.124.249.38:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 46x47, components 3\012- data
Hash 84b00d2eee285772316aeb743946e835
40d146ff481c05ac2f183838399de24d76507207
b78f09a202bbe075b4ee7e54edc491c6fc406d26d84db633572e918d6f41ba20
GET /wp-content/themes/stainaway/images/gplus.jpg HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/themes/stainaway/style.css?ver=5.3.13
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/jpeg
content-length: 1645
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Jun 2015 06:29:48 GMT
etag: "49802c5-66d-5193da22b4f00"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/themes/stainaway/images/fb.jpg
192.124.249.38200 OK 1.9 kB URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/images/fb.jpg
IP 192.124.249.38:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 48x47, components 3\012- data
Hash 51ddb61b2410e64842da57386308cf26
0c1c8d61829cd95e76ae6796a41fbdddd16c062b
427473e2d4509b786f01366b34f87dd0dbb087539b0b7dc83a32d6886c0a1ed5
GET /wp-content/themes/stainaway/images/fb.jpg HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/themes/stainaway/style.css?ver=5.3.13
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/jpeg
content-length: 1881
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Jun 2015 06:29:48 GMT
etag: "49802be-759-5193da22b4f00"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/themes/stainaway/images/tw.jpg
192.124.249.38200 OK 2.1 kB URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/images/tw.jpg
IP 192.124.249.38:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 45x47, components 3\012- data
Hash 520a6d309e0c25925eb7c9caa0501eaf
ba1e76d39af43c8910471cf89462685344d216bb
f6ac4babbcfc3bc1d0a0144ed7709384a2fd7ae4f371667681006236d8b1f0bd
GET /wp-content/themes/stainaway/images/tw.jpg HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/themes/stainaway/style.css?ver=5.3.13
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/jpeg
content-length: 2076
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Jun 2015 06:29:48 GMT
etag: "49802bc-81c-5193da22b4f00"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/themes/stainaway/images/myspace1.jpg
192.124.249.38200 OK 2.4 kB URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/images/myspace1.jpg
IP 192.124.249.38:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 43x43, components 3\012- data
Hash fd2dbc875c07599842bd5b5a312fb482
105d7e03c527cc5905ca69951d229c91b9bc34ab
3e1e9b17f5bda0e58b4b099ad68885a0c638f3d7eb785df9b550e9dc802ab844
GET /wp-content/themes/stainaway/images/myspace1.jpg HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/themes/stainaway/style.css?ver=5.3.13
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/jpeg
content-length: 2424
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Jun 2015 06:29:48 GMT
etag: "49802c8-978-5193da22b4f00"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/themes/stainaway/images/strip1.jpg
192.124.249.38200 OK 904 B URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/images/strip1.jpg
IP 192.124.249.38:0
File type gzip compressed data, max compression\012- data
Hash 71ce66de9e0c63074fdbe98255871230
8d61c7914e37fb8abd5cdddf5a364064ea86a119
71c744b858c9dfd06d45691c924f381c4fa8d95cfd64db25c316b98f10cdd5e0
GET /wp-content/themes/stainaway/images/strip1.jpg HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/themes/stainaway/style.css?ver=5.3.13
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/jpeg
content-length: 356
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Jun 2015 06:29:48 GMT
etag: "49802d0-164-5193da22b4f00"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/themes/stainaway/images/footer.jpg
192.124.249.38200 OK 15 kB URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/images/footer.jpg
IP 192.124.249.38:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 131x387, components 3\012- data
Hash a73397d810e1dd60ea322ea68f09e9b2
936df353eba2400db2aa3e9e4a379eab2d03e83b
34e83ae15bd878db0779c502babe45d5c144fbdcb30f9a49186c9ebe1cc106eb
GET /wp-content/themes/stainaway/images/footer.jpg HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/themes/stainaway/style.css?ver=5.3.13
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/jpeg
content-length: 15412
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Jun 2015 06:29:48 GMT
etag: "49802bb-3c34-5193da22b4f00"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/themes/stainaway/images/logo1.png
192.124.249.38200 OK 22 kB URL HTTP/2 stainawayinc.com/wp-content/themes/stainaway/images/logo1.png
IP 192.124.249.38:0
File type PNG image data, 177 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash 7e66229c2dd7af9be212293dab69ea2f
b6eaef4fd204bc76a2666a9f02018a076f8fcbf9
a52efb2f550d18bffb7bb2ce03c7039b13faad615380cfd9a77d2842f94196a7
GET /wp-content/themes/stainaway/images/logo1.png HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/themes/stainaway/style.css?ver=5.3.13
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/png
content-length: 21596
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Jun 2015 06:29:48 GMT
etag: "49802ce-545c-5193da22b4f00"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/contact-form-7/images/ajax-loader.gif
192.124.249.38200 OK 847 B URL HTTP/2 stainawayinc.com/wp-content/plugins/contact-form-7/images/ajax-loader.gif
IP 192.124.249.38:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash af962b37779a443a77ab836b3b7a93f5
cad7feb11183c71b87470e11e022b16ecdcc7ac9
65b72e15d975f67fbd1cb126d57772c06c21fa016e5651b6ce213b26ce0e6877
GET /wp-content/plugins/contact-form-7/images/ajax-loader.gif HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.1.6
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/gif
content-length: 847
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 28 Feb 2020 08:12:49 GMT
etag: "4a028cf-34f-59f9e673a00c3"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/lightbox-arrow-right.png
192.124.249.38200 OK 1.3 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/lightbox-arrow-right.png
IP 192.124.249.38:0
File type PNG image data, 50 x 110, 8-bit/color RGBA, non-interlaced\012- data
Hash 7650365ad6fef79d14669c832932bc11
b6912b6c717845ba52cc09ae23fceec4b0ce2e35
c1fbfc362a6671ecdf556b9b780f653daf44e6842164a3fd8975d96408e3e3d4
GET /wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/lightbox-arrow-right.png HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/css/unite-gallery.css?ver=5.3.13
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/png
content-length: 1317
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 28 Feb 2020 08:10:39 GMT
etag: "49e368c-525-59f9e5f8789b1"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/loader_skype_trans.gif
192.124.249.38200 OK 10 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/loader_skype_trans.gif
IP 192.124.249.38:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash 2449c29be8ee63d41d5662809971ccb1
50c2dc8ae47dc94d140c437e5ab265ee48a25f76
b78d3b7bf7885dcf801383dea7e83ac41b86a673e232c84addc4df8afd0e9702
GET /wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/loader_skype_trans.gif HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/css/unite-gallery.css?ver=5.3.13
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/gif
content-length: 10280
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 28 Feb 2020 08:10:39 GMT
etag: "49e368b-2828-59f9e5f8785c9"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11688
Expires: Tue, 29 Nov 2022 15:01:39 GMT
Date: Tue, 29 Nov 2022 11:46:51 GMT
Connection: keep-alive
stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/lightbox-arrow-left.png
192.124.249.38200 OK 1.3 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/lightbox-arrow-left.png
IP 192.124.249.38:0
File type PNG image data, 50 x 110, 8-bit/color RGBA, non-interlaced\012- data
Hash b21180c91d4f26c9a6ea33ef22ca966a
a07559adf424a535a969b88a1aa8312333fb4a72
bd6bd65c1a60cb97793f55b17c04b2bb5befa471ae7ec5eef569f9665b81342d
GET /wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/lightbox-arrow-left.png HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/css/unite-gallery.css?ver=5.3.13
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/png
content-length: 1315
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 28 Feb 2020 08:10:39 GMT
etag: "49e368f-523-59f9e5f879569"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/lightbox-icon-close.png
192.124.249.38200 OK 946 B URL HTTP/2 stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/lightbox-icon-close.png
IP 192.124.249.38:0
File type PNG image data, 36 x 72, 8-bit/color RGBA, non-interlaced\012- data
Hash acfeff0993ec38fe326bcee730b9ee96
af18b6a4f76680c1389b6833fd9d24879fd564a7
68faf17abde7912dd96ff9df5794bb1f8b15a7fd223afb9a38b3b4dfe0c98ece
GET /wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/lightbox-icon-close.png HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/css/unite-gallery.css?ver=5.3.13
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/png
content-length: 946
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 28 Feb 2020 08:10:39 GMT
etag: "49e367b-3b2-59f9e5f874361"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11688
Expires: Tue, 29 Nov 2022 15:01:39 GMT
Date: Tue, 29 Nov 2022 11:46:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11688
Expires: Tue, 29 Nov 2022 15:01:39 GMT
Date: Tue, 29 Nov 2022 11:46:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11688
Expires: Tue, 29 Nov 2022 15:01:39 GMT
Date: Tue, 29 Nov 2022 11:46:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11688
Expires: Tue, 29 Nov 2022 15:01:39 GMT
Date: Tue, 29 Nov 2022 11:46:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d574c4db20a68295dbd06cb08f5990b
433061bbb226048765a711deca3026ee3e52372f
8cc1a4d18e242f8bfc8ab94637f635b73554b903462c29b06d0ec67872542afb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdef9eb6-c1f1-4337-aff8-0986561782c7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9203
x-amzn-requestid: 8cba52d6-3c1c-495c-bb9d-3ba6f0adc7e1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cHcHmGmQoAMF6dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fa6fd-73abfa592ff223061401af9a;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 17:16:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UmhWm03jrsV8dFagrzIA0E-8eL8dykoO5kw3cYOBd172dCGqNdAX-Q==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:05:38 GMT
age: 27673
etag: "433061bbb226048765a711deca3026ee3e52372f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 02:55:32 GMT
age: 31879
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/loader-black3.gif
192.124.249.38200 OK 10 kB URL HTTP/2 stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/loader-black3.gif
IP 192.124.249.38:0
File type GIF image data, version 89a, 32 x 32\012- data
Hash 87ea48d5063fdb95bfa8b9b19140a5b6
7f4d4bcf790e9efee990dc7d3c39248f5b6783c9
e2196b21d5293c067dcd2359e5d5768b59727161d1f31688b0271888636cb7ac
GET /wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/loader-black3.gif HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/css/unite-gallery.css?ver=5.3.13
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: image/gif
content-length: 10333
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 28 Feb 2020 08:10:39 GMT
etag: "49e367f-285d-59f9e5f8756e9"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4058fd62595d15c58b3d3266de9865a
d0dff35eb78f129b5da407043037bcf9c27e55c0
ab996c23d58871a2ad53f0c34688c87f0d7c0eac5d0c1d8265b86951248449fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe059c7ce-454d-453b-aead-18fae338f84c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4871
x-amzn-requestid: e2dfa7b8-ded7-4104-a913-1b84746a3c6f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLDUUEy_oAMFgSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638118e8-0b229e0f60ff019d26800dd9;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 19:35:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9BUuT9WFwAQMnl8JiTDKo-zHgDL0AdjAAAIh0Mx405zbGwhvRouebQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 12:30:42 GMT
age: 83769
etag: "d0dff35eb78f129b5da407043037bcf9c27e55c0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83c1fedec73299637cc7dc47c48af758
2e3f7326aeea6be8a34bf2c39b34862c07bfdc41
1fea143e23bb0156062f4c06569824900a67ed83cb99fd635d4c4ab968dc65e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5e6403-f1a3-4b44-a62d-0e47d56bb08e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4916
x-amzn-requestid: b8c80a6c-e3f1-4f20-beb8-27b0af760692
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPYcrELFoAMFaeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382d450-155cfb365525173c0ede8adb;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 03:06:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Twtw6dO3pjTB9OLi0HliKKCDgCuHRqgtx4PFTczrZQ9f8JztgXZoSg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 03:01:17 GMT
age: 31534
etag: "2e3f7326aeea6be8a34bf2c39b34862c07bfdc41"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
stainawayinc.com/?wc-ajax=get_refreshed_fragments
192.124.249.38200 OK 123 B URL HTTP/2 stainawayinc.com/?wc-ajax=get_refreshed_fragments
IP 192.124.249.38:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e02b53f55d2f95f105d77e7ecae97991
36ae224f9a99d0308dd2badd49129d615249af6b
b6b5258b6d97d3ced9e8829fc23b24855f2be405a24ea9a8075bc25850a89f85
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/services/powerwash/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://stainawayinc.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/json; charset=UTF-8
content-length: 123
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
content-security-policy: upgrade-insecure-requests;
access-control-allow-origin: https://stainawayinc.com
access-control-allow-credentials: true
x-content-type-options: nosniff, nosniff
x-robots-tag: noindex
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-transform, no-cache, no-store, must-revalidate
vary: Accept-Encoding
content-encoding: br
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4b7d3821d0bd11c196724846a7b9fe22
5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c
b4f820555c4daf6e112c1a395bc57e22f0ef8e2e4299a0ffbb54e0bf18c87f47
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1f728a04-45b0-4726-b646-628601e2ebbc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8578
x-amzn-requestid: 4f948bb9-74db-4a5d-927d-a6b893735531
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFxnWHq-IAMF4LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637efc95-2f9e98ca2dad65a80e2195c2;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 05:09:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: X2x9_hXC0JvEktFODEMuasu3QDg4ChtTLKJOmDVasT7IIsKlxkwXCQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:24:31 GMT
age: 26540
etag: "5b1700fa9cd4f1aaafda28ac28a0e2086fa8499c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: 768fc69c-e91b-4dd9-8add-63634762b2d0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMpbgEFOIAMF71A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bc49-21756db31c4714af0553f21b;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:12:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jS-AS3x8V3XacXRNkU63UJjBxA6unvBer5WcxUYseR5p4eZPK64o2g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:52:21 GMT
age: 24870
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ws.sharethis.com/button/async-buttons.js
54.230.111.56200 OK 19 kB URL HTTP/2 ws.sharethis.com/button/async-buttons.js
IP 54.230.111.56:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 0b3b7d06f8df8276ede0facec198706e
3e42fc6cacb95a5fa1b56c5b3984e8269752fbbe
342ffe242184c80ddf304e21db8b256ccb8aecb1f4bd9363802dcf2f36053837
GET /button/async-buttons.js HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 18813
content-encoding: gzip
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
cache-control: max-age=259200
date: Sun, 27 Nov 2022 21:42:44 GMT
expires: Wed, 30 Nov 2022 21:42:44 GMT
etag: W/"634f1895-16245"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: E7mklq200qgnky9nrms06i8VgwD0YxkcLBAJiwuv-hOTPROrvqaexw==
age: 137047
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/button/css/buttons-secure.css
54.230.111.56200 OK 3.9 kB URL HTTP/2 ws.sharethis.com/button/css/buttons-secure.css
IP 54.230.111.56:0
File type ASCII text, with very long lines (23158), with no line terminators
Hash 61da924a747e08c5f54a6cb31c724a48
8e49d971d6a667c3888a481b742e05cafcf72a43
54302324d4b6aa780466c869b9932504d0b1eaa7ef1df6c5481b35fb0625343a
GET /button/css/buttons-secure.css HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 3851
content-encoding: gzip
last-modified: Tue, 18 Oct 2022 21:20:21 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
date: Mon, 28 Nov 2022 23:28:16 GMT
etag: W/"634f1895-5a76"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZKB6yWqVwx1tbl4zFyXJoEJNvHWulccutOUBj9DpBL-R5V5FmRmM0Q==
age: 44315
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 79840cac9f5ae1a38c0faaaf59e7fe82
f76a3e50f566269c574e7f8904021640366dcc56
1f39ccbd6ad4a9c8fcc3e4d7d83c4c21f9e9fd9fd0d98c6b70cd1bbbdfeb7798
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 79840cac9f5ae1a38c0faaaf59e7fe82
f76a3e50f566269c574e7f8904021640366dcc56
1f39ccbd6ad4a9c8fcc3e4d7d83c4c21f9e9fd9fd0d98c6b70cd1bbbdfeb7798
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
maps.gstatic.com/mapfiles/place_api/icons/generic_business-71.png
142.250.74.163200 OK 384 B URL HTTP/2 maps.gstatic.com/mapfiles/place_api/icons/generic_business-71.png
IP 142.250.74.163:0
File type PNG image data, 71 x 71, 8-bit/color RGBA, non-interlaced\012- data
Hash c5a6e6769201ee0fe66a886e80b2d7e7
0e36ce7a7eddcc50232d5f0f91c5cc3f658df35f
da26b6828e061980acdcdfd5e25d4809791dc766061ea66180c6ae7ce286ad20
GET /mapfiles/place_api/icons/generic_business-71.png HTTP/1.1
Host: maps.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/geo-tactile
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="geo-tactile"
report-to: {"group":"geo-tactile","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/geo-tactile"}]}
content-length: 384
date: Tue, 29 Nov 2022 11:46:51 GMT
expires: Tue, 29 Nov 2022 11:46:51 GMT
cache-control: private, max-age=31536000
last-modified: Tue, 18 May 2021 19:15:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 79840cac9f5ae1a38c0faaaf59e7fe82
f76a3e50f566269c574e7f8904021640366dcc56
1f39ccbd6ad4a9c8fcc3e4d7d83c4c21f9e9fd9fd0d98c6b70cd1bbbdfeb7798
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 79840cac9f5ae1a38c0faaaf59e7fe82
f76a3e50f566269c574e7f8904021640366dcc56
1f39ccbd6ad4a9c8fcc3e4d7d83c4c21f9e9fd9fd0d98c6b70cd1bbbdfeb7798
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af25abbc1f9776cf78b07837dbea38a0
1883049bac2e92f8b3107f6435f00b83d8f4c117
663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5848
Cache-Control: max-age=90584
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:51 GMT
Etag: "6384992b-1d7"
Expires: Wed, 30 Nov 2022 12:56:35 GMT
Last-Modified: Mon, 28 Nov 2022 11:19:07 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 79840cac9f5ae1a38c0faaaf59e7fe82
f76a3e50f566269c574e7f8904021640366dcc56
1f39ccbd6ad4a9c8fcc3e4d7d83c4c21f9e9fd9fd0d98c6b70cd1bbbdfeb7798
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lh3.googleusercontent.com/-8hepWJzFXpE/AAAAAAAAAAI/AAAAAAAAAAA/I80WzYfIxCQ/s64-c/114307615494839964028.jpg
142.250.74.33200 OK 364 B URL HTTP/2 lh3.googleusercontent.com/-8hepWJzFXpE/AAAAAAAAAAI/AAAAAAAAAAA/I80WzYfIxCQ/s64-c/114307615494839964028.jpg
IP 142.250.74.33:0
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash b5568ce6976422a48be274caa091a8de
dbee365cb1588459cb68159d0e75b43fa47b2df8
ff54dca7160a92c016cbe61e9f13b5b4e7f503598f1f066d28da701f55bd6b18
GET /-8hepWJzFXpE/AAAAAAAAAAI/AAAAAAAAAAA/I80WzYfIxCQ/s64-c/114307615494839964028.jpg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename=""
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 364
x-xss-protection: 0
date: Tue, 29 Nov 2022 11:16:14 GMT
expires: Wed, 30 Nov 2022 11:16:14 GMT
cache-control: public, max-age=86400, no-transform
content-type: image/png
age: 1837
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
31.13.72.12200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (1957)
Hash 712fbba8ac0811e7ca9a9cea42b1dba5
79fb72b0362a4402b2b0bff596d1881f29ff13fe
1a5badb89ddac544841e735f9c5540964aeee654d79b406a039fc0cae162115c
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: e9ad67959823d25b89f65fa4148c7931
etag: "db2babd74c006dc25c0d530ae550d9b2"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 29 Nov 2022 12:05:12 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: cS+7qKwIEefKmpzqQrHbpQ==
x-fb-debug: o6x6WUu2GU0dJFEaB9r7YAyTHow1SnZsPGhXCtklyl0Dp2M+rt3K6NmcU/4EUk+ktmb/riaSs+A++I6CoIO+mg==
content-length: 1687
x-fb-trip-id: 1904183273
date: Tue, 29 Nov 2022 11:46:51 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ssl.google-analytics.com/ga.js
142.250.74.72200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 142.250.74.72:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Tue, 29 Nov 2022 10:32:37 GMT
expires: Tue, 29 Nov 2022 12:32:37 GMT
cache-control: public, max-age=7200
age: 4454
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/uploads/2014/04/favicons.png
192.124.249.38200 OK 371 B URL HTTP/2 stainawayinc.com/wp-content/uploads/2014/04/favicons.png
IP 192.124.249.38:0
File type PNG image data, 16 x 16, 8-bit/color RGB, non-interlaced\012- data
Hash f8b643c408ca3ca0b05d1991b27ca145
1884541edb478b47371913d3ecd1228cfe861923
899d96bc632ccd4486a63aa587eadc20ddba5ada4bf3ca70099e79d30f809bfa
GET /wp-content/uploads/2014/04/favicons.png HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:52 GMT
content-type: image/png
content-length: 371
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Wed, 24 Jun 2015 06:29:48 GMT
etag: "4980328-173-5193da22b4f00"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash af25abbc1f9776cf78b07837dbea38a0
1883049bac2e92f8b3107f6435f00b83d8f4c117
663a6d77de7e3c835bcbb4b567eb28053755bf50ddab14b3f668367a85efdf17
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5848
Cache-Control: max-age=90584
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:51 GMT
Etag: "6384992b-1d7"
Expires: Wed, 30 Nov 2022 12:56:35 GMT
Last-Modified: Mon, 28 Nov 2022 11:19:07 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash f50fd635895870df33a17fe377a6a038
dd65dfbbc810b095432cfd59f971af04a9e31ab7
ebd9b6c3f67865c297d08802839c940994424000df3bf8a3f1316b8e13666e94
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 79840cac9f5ae1a38c0faaaf59e7fe82
f76a3e50f566269c574e7f8904021640366dcc56
1f39ccbd6ad4a9c8fcc3e4d7d83c4c21f9e9fd9fd0d98c6b70cd1bbbdfeb7798
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 11:46:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash d1bdc744ef4b94d7f7298793dacc31d8
e340942c8c919edb6cd5852a64c8380391fcb6a5
b35af38438572158866be21146c9571ac4be9b44cf1fc9f4af3c60cba5a87d7d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 29 Nov 2022 11:46:51 GMT
Etag: "6384fa31-1d7"
Last-Modified: Tue, 29 Nov 2022 10:08:16 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 4VHFnQTkwKJNSpUdcfKXSa5r4IgSmjck_BeS-3MS6p8wEVNool_OKA==
Age: 5915
l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669722409894.37562&hostname=stainawayinc.com&location=%2Fservices%2Fpowerwash%2F&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=https%3A%2F%2Fstainawayinc.com%2Fservices%2Fpowerwash%2F&title=Power%20Washing%20Service%20%7C%20Stain%20Away%20Carpet%20Cleaning&sop=false&description=Stain%20Away%20Power%20washing%20incorporates%20state%20of%20the%20art%2C%20true%20steam%20cleaning%20with%20the%20most%20effective%20and%20environmentally%20safe%20products%20available.
35.157.109.18204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669722409894.37562&hostname=stainawayinc.com&location=%2Fservices%2Fpowerwash%2F&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=https%3A%2F%2Fstainawayinc.com%2Fservices%2Fpowerwash%2F&title=Power%20Washing%20Service%20%7C%20Stain%20Away%20Carpet%20Cleaning&sop=false&description=Stain%20Away%20Power%20washing%20incorporates%20state%20of%20the%20art%2C%20true%20steam%20cleaning%20with%20the%20most%20effective%20and%20environmentally%20safe%20products%20available.
IP 35.157.109.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&version=buttons.js&lang=en&sessionID=1669722409894.37562&hostname=stainawayinc.com&location=%2Fservices%2Fpowerwash%2F&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=https%3A%2F%2Fstainawayinc.com%2Fservices%2Fpowerwash%2F&title=Power%20Washing%20Service%20%7C%20Stain%20Away%20Carpet%20Cleaning&sop=false&description=Stain%20Away%20Power%20washing%20incorporates%20state%20of%20the%20art%2C%20true%20steam%20cleaning%20with%20the%20most%20effective%20and%20environmentally%20safe%20products%20available. HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://stainawayinc.com
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: https://stainawayinc.com
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 29 Nov 2022 11:46:51 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/icon-play32.png
192.124.249.38200 OK 688 B URL HTTP/2 stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/icon-play32.png
IP 192.124.249.38:0
File type PNG image data, 38 x 76, 8-bit/color RGBA, non-interlaced\012- data
Hash 734244b57dda927843e074c89b5d49ce
428ffaf7978ab642f5a47b4c1845e4c05c1c9316
970a30ff16d6b9f26cdfbff633f617004c604b3df9faaa50ff456dee22981b84
GET /wp-content/plugins/unite-gallery-lite/unitegallery-plugin/images/icon-play32.png HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/css/unite-gallery.css?ver=5.3.13
Connection: keep-alive
Cookie: __utma=175048672.332045258.1669722411.1669722411.1669722411.1; __utmb=175048672.1.10.1669722411; __utmc=175048672; __utmz=175048672.1669722411.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:52 GMT
content-type: image/png
content-length: 688
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Fri, 28 Feb 2020 08:10:39 GMT
etag: "49e3680-2b0-59f9e5f875ad1"
accept-ranges: bytes
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2
lh3.googleusercontent.com/-CQiiF-ACqbM/AAAAAAAAAAI/AAAAAAAAAEU/0dV4xlUS4pU/photo.jpg
142.250.74.33200 OK 54 kB URL HTTP/2 lh3.googleusercontent.com/-CQiiF-ACqbM/AAAAAAAAAAI/AAAAAAAAAEU/0dV4xlUS4pU/photo.jpg
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, software=Google], baseline, precision 8, 512x505, components 3\012- data
Hash 709c3b5358c05413dd42a742dce89123
298d6b512d67412ea60d3fe98f02b70095c344d6
0b85e7070c6fb46e69daf7d44f78ec64fe1157f93c7113caf53682c3ff6f34d1
GET /-CQiiF-ACqbM/AAAAAAAAAAI/AAAAAAAAAEU/0dV4xlUS4pU/photo.jpg HTTP/1.1
Host: lh3.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v45"
expires: Wed, 30 Nov 2022 11:46:52 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename=""
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 29 Nov 2022 11:46:52 GMT
server: fife
content-length: 53598
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh6.googleusercontent.com/-MWi6_8xNuaI/AAAAAAAAAAI/AAAAAAAAANE/-AYScn2pWPI/photo.jpg
142.250.74.33200 OK 3.5 kB URL HTTP/2 lh6.googleusercontent.com/-MWi6_8xNuaI/AAAAAAAAAAI/AAAAAAAAANE/-AYScn2pWPI/photo.jpg
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=3, software=Google], baseline, precision 8, 177x177, components 3\012- data
Hash 7ff2ae78facb0333aa817445342f7ced
dda77c9bac37c02cc8b136c1b5956e1a6592caf6
19471757aacd9129a2899303453e58cde3c3fdfe246db68851bee9493f449088
GET /-MWi6_8xNuaI/AAAAAAAAAAI/AAAAAAAAANE/-AYScn2pWPI/photo.jpg HTTP/1.1
Host: lh6.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vd1"
expires: Wed, 30 Nov 2022 11:46:52 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename=""
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 29 Nov 2022 11:46:52 GMT
server: fife
content-length: 3461
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh4.googleusercontent.com/-KURCx2ZDqZI/AAAAAAAAAAI/AAAAAAAAK80/dMrjeYWz7tQ/photo.jpg
142.250.74.33200 OK 103 kB URL HTTP/2 lh4.googleusercontent.com/-KURCx2ZDqZI/AAAAAAAAAAI/AAAAAAAAK80/dMrjeYWz7tQ/photo.jpg
IP 142.250.74.33:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google, copyright=Copyright \302\251 Kathryn Grace Photography.], baseline, precision 8, 512x511, components 3\012- data
Size 103 kB (103104 bytes)
Hash 8e12798ea7e873638c6857579d5e94ec
4c4eb2eb700dc0db70a103c98e14c97a83336e58
ed281e3b8250ba2d547bfcbc915ef089507295cb5f75dfd4f8a399fc696f271d
GET /-KURCx2ZDqZI/AAAAAAAAAAI/AAAAAAAAK80/dMrjeYWz7tQ/photo.jpg HTTP/1.1
Host: lh4.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v2bcd"
expires: Wed, 30 Nov 2022 11:46:52 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename=""
content-type: image/jpeg
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 29 Nov 2022 11:46:52 GMT
server: fife
content-length: 103104
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lh5.googleusercontent.com/-_WQ4OpKQcJA/AAAAAAAAAAI/AAAAAAAAAL8/MkBpUfzIlnI/photo.jpg
142.250.74.33200 OK 557 kB URL HTTP/2 lh5.googleusercontent.com/-_WQ4OpKQcJA/AAAAAAAAAAI/AAAAAAAAAL8/MkBpUfzIlnI/photo.jpg
IP 142.250.74.33:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size 557 kB (557314 bytes)
Hash 4853c02bf11e356f0c31a9535e8c6f7c
2131eb676aea1607273303fff0e995f4786e9749
1a00800ff5eb068a921730caef8d26c4cbed5674b9eb73804bc4e8fd9065b55a
GET /-_WQ4OpKQcJA/AAAAAAAAAAI/AAAAAAAAAL8/MkBpUfzIlnI/photo.jpg HTTP/1.1
Host: lh5.googleusercontent.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "vbf"
expires: Wed, 30 Nov 2022 11:46:52 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename=""
content-type: image/png
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
date: Tue, 29 Nov 2022 11:46:52 GMT
server: fife
content-length: 557314
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ws.sharethis.com/images/2017/facebook_counter.png
54.230.111.56200 OK 2.4 kB URL HTTP/2 ws.sharethis.com/images/2017/facebook_counter.png
IP 54.230.111.56:0
File type PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 7ba4aa0077ecbfdad7b112b723bf3b89
8d85c1b4ca791a4a9010c304c3af620cdc2fac94
3488c49147b809d1e457c14a37bf3a79b0455fd159c121325e8f737eea45eb75
GET /images/2017/facebook_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2423
accept-ranges: bytes
cache-control: max-age=31536000
date: Wed, 28 Sep 2022 01:06:56 GMT
etag: "62bdf239-977"
expires: Thu, 28 Sep 2023 01:06:56 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 54_MV5yu-6sbxup_gMxZ8nGCCL3Vch9fu9dfK5LLRznj2t6ghv4QtQ==
age: 5395196
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/images/2017/twitter_counter.png
54.230.111.56200 OK 2.5 kB URL HTTP/2 ws.sharethis.com/images/2017/twitter_counter.png
IP 54.230.111.56:0
File type PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash 3f3b085b38e3d832d18351c78ac1a0e1
a5ecafc51f237b39afdbaabbb60e198bd4592f06
aeae37bae2130513ef8b5ea4fde8fd776b32ff8969b848b59399a63d9455e29a
GET /images/2017/twitter_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2478
accept-ranges: bytes
cache-control: max-age=31536000
date: Thu, 01 Sep 2022 02:16:22 GMT
etag: "62bdf239-9ae"
expires: Fri, 01 Sep 2023 02:16:22 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: b-Bu50YqA5pODHsc05hoH1YYRpFf2WhVejtdgEA-hOZs50S51M1Odw==
age: 7723830
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/images/2017/googleplus_16.png
54.230.111.56200 OK 1.6 kB URL HTTP/2 ws.sharethis.com/images/2017/googleplus_16.png
IP 54.230.111.56:0
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash 9bc6a070e9d0391719e0f9a436ebeac2
e83f2bf6edb27df27a28a40366f59b1af8226ae2
592a848da6f427ea5d9169179bd309484f531d3c23c5aaf858afa22fc28d40c8
GET /images/2017/googleplus_16.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws.sharethis.com/button/css/buttons-secure.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 1567
accept-ranges: bytes
cache-control: max-age=31536000
date: Thu, 08 Sep 2022 04:06:07 GMT
etag: "62bdf239-61f"
expires: Fri, 08 Sep 2023 04:06:07 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YE-z6eJ9AXQdY0VFtFf2JwMc_jPbEZFjlTI9SbsEEPEfFQEzLHTYdA==
age: 7112445
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/images/2017/linkedin_counter.png
54.230.111.56200 OK 2.5 kB URL HTTP/2 ws.sharethis.com/images/2017/linkedin_counter.png
IP 54.230.111.56:0
File type PNG image data, 120 x 44, 8-bit/color RGBA, non-interlaced\012- data
Hash fe09cd7fe7814958b566642c4471e7ed
d3e649a373de39af33aa03ec2faa563c87630d5f
0e3f83554765fa48514ce0a169441466f92010d01cdc716003e02317bffc6993
GET /images/2017/linkedin_counter.png HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 2529
accept-ranges: bytes
cache-control: max-age=31536000
date: Sat, 10 Sep 2022 05:10:33 GMT
etag: "62bdf239-9e1"
expires: Sun, 10 Sep 2023 05:10:33 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _vx4r701_NVN_2Iph0UkCBagrL-LtTr-PJpL4xm5zqjImK_vbZXTjQ==
age: 6935779
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669722409894.37562&hostname=stainawayinc.com&location=%2Fservices%2Fpowerwash%2F&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=https%3A%2F%2Fstainawayinc.com%2Fservices%2Fpowerwash%2F&title=Power%20Washing%20Service%20%7C%20Stain%20Away%20Carpet%20Cleaning&sop=false&description=Stain%20Away%20Power%20washing%20incorporates%20state%20of%20the%20art%2C%20true%20steam%20cleaning%20with%20the%20most%20effective%20and%20environmentally%20safe%20products%20available.&description=Stain%20Away%20Power%20washing%20incorporates%20state%20of%20the%20art%2C%20true%20steam%20cleaning%20with%20the%20most%20effective%20and%20environmentally%20safe%20products%20available.&img_pview=true
35.157.109.18204 No Content 0 B URL HTTP/1.1 l.sharethis.com/pview?event=pview&version=buttons.js&lang=en&sessionID=1669722409894.37562&hostname=stainawayinc.com&location=%2Fservices%2Fpowerwash%2F&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=https%3A%2F%2Fstainawayinc.com%2Fservices%2Fpowerwash%2F&title=Power%20Washing%20Service%20%7C%20Stain%20Away%20Carpet%20Cleaning&sop=false&description=Stain%20Away%20Power%20washing%20incorporates%20state%20of%20the%20art%2C%20true%20steam%20cleaning%20with%20the%20most%20effective%20and%20environmentally%20safe%20products%20available.&description=Stain%20Away%20Power%20washing%20incorporates%20state%20of%20the%20art%2C%20true%20steam%20cleaning%20with%20the%20most%20effective%20and%20environmentally%20safe%20products%20available.&img_pview=true
IP 35.157.109.18:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pview?event=pview&version=buttons.js&lang=en&sessionID=1669722409894.37562&hostname=stainawayinc.com&location=%2Fservices%2Fpowerwash%2F&product=widget&fcmp=false&fcmpv2=false&publisher=ur.00000000-0000-0000-0000-000000000000&url=https%3A%2F%2Fstainawayinc.com%2Fservices%2Fpowerwash%2F&title=Power%20Washing%20Service%20%7C%20Stain%20Away%20Carpet%20Cleaning&sop=false&description=Stain%20Away%20Power%20washing%20incorporates%20state%20of%20the%20art%2C%20true%20steam%20cleaning%20with%20the%20most%20effective%20and%20environmentally%20safe%20products%20available.&description=Stain%20Away%20Power%20washing%20incorporates%20state%20of%20the%20art%2C%20true%20steam%20cleaning%20with%20the%20most%20effective%20and%20environmentally%20safe%20products%20available.&img_pview=true HTTP/1.1
Host: l.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: *
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: stid
Access-Control-Max-Age: 1728000
Cache-Control: no-cache, no-store, must-revalidate
Date: Tue, 29 Nov 2022 11:46:52 GMT
Strict-Transport-Security: max-age=63072000; includeSubDomains;
Connection: keep-alive
connect.facebook.net/en_US/sdk.js?hash=6e5a4d502e3597934f294081a1abe007
31.13.72.12200 OK 87 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=6e5a4d502e3597934f294081a1abe007
IP 31.13.72.12:0
File type ASCII text, with very long lines (13192)
Hash 423406a49354910312518e4e043f2e91
510d95fe9a14fe58484691c45ec196b922c39e1f
2307332e8d61b298f9cb9962cf31bfc6282bde5c2e3e878971ee57fe62f7277b
GET /en_US/sdk.js?hash=6e5a4d502e3597934f294081a1abe007 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://stainawayinc.com
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 0112e060f7b85a91d2710858d06ea129
etag: "3ec2a0fde29e7bd05683a24f5d36e7dd"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 29 Nov 2023 10:26:43 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: QjQGpJNUkQMSUY5OBD8ukQ==
x-fb-debug: zLDWRIqjuDLIobqqBhd/0gDoQiOXTjFLAdPGy6LFLxxflp5IoTZBX+RubL6F+mqXqzV5vrNRZpwfssdZz+dZAA==
content-length: 86897
x-fb-trip-id: 1904183273
date: Tue, 29 Nov 2022 11:46:52 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
count-server.sharethis.com/v2.0/get_counts?url=https%3A%2F%2Fstainawayinc.com%2Fservices%2Fpowerwash%2F&cb=stButtons.processCB&wd=true
54.230.111.35200 OK 131 B URL HTTP/2 count-server.sharethis.com/v2.0/get_counts?url=https%3A%2F%2Fstainawayinc.com%2Fservices%2Fpowerwash%2F&cb=stButtons.processCB&wd=true
IP 54.230.111.35:0
File type ASCII text, with no line terminators
Hash b1a59fed8d6fed4cd465dcfa07a87bf7
98dff8bb4b30a7a24427faa018fe725a71a31028
b4481d7801512bce0a405af782bb3cf576c1b0d70bce557c81f95fca21c35495
GET /v2.0/get_counts?url=https%3A%2F%2Fstainawayinc.com%2Fservices%2Fpowerwash%2F&cb=stButtons.processCB&wd=true HTTP/1.1
Host: count-server.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
content-length: 131
date: Tue, 29 Nov 2022 11:46:52 GMT
cache-control: public, max-age=900
apigw-requestid: cXKe-iT1IAMEaHw=
etag: b1a59fed8d6fed4cd465dcfa07a87bf7
x-cache: Miss from cloudfront
via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: K_lAXEeJdPJKRUmftHp9WD9SD02n4MWV2FZIyi0a93l6wlgsSFOiZg==
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
w.sharethis.com/share4x/images/bubble_arrow_below.png
54.230.111.56200 OK 969 B URL HTTP/2 w.sharethis.com/share4x/images/bubble_arrow_below.png
IP 54.230.111.56:0
File type PNG image data, 6 x 8, 8-bit/color RGBA, non-interlaced\012- data
Hash d1f25a37ca362d92093faa4f380b23e6
bebe0013eae4e14a516d1e1ac3773ff2cca425c3
10ad65fee3c7f0fc6a2122915ac606daf88347db9f6173aa67e3457598665677
GET /share4x/images/bubble_arrow_below.png HTTP/1.1
Host: w.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 969
accept-ranges: bytes
cache-control: max-age=31536000
date: Thu, 30 Jun 2022 19:31:21 GMT
etag: "62bdf239-3c9"
expires: Fri, 30 Jun 2023 19:31:21 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: z3CPeUXN4LtMXOiOpuew74OeTedADsybRfPveDpCyzbmNMfrTJnc7A==
age: 13104931
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/secure/index.html
54.230.111.56200 OK 2.1 kB URL HTTP/2 ws.sharethis.com/secure/index.html
IP 54.230.111.56:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 6253815034ea3685bfd6b86744b4dbe9
de25e04ad470b5c2efdbaf6651e750925147d81c
bc2877e9ad9f24f06b0e2eae2935c8da34432981b77f60634a4717c4200b6cfa
GET /secure/index.html HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 2091
content-encoding: gzip
last-modified: Tue, 18 Oct 2022 21:20:21 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
date: Tue, 29 Nov 2022 00:20:30 GMT
etag: W/"634f1895-1ade"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MPVHurUUZhFL-pAigZq8RQEdm9V5sTZgsHqMpwip2CTEKr8DviGZYw==
age: 41183
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
ws.sharethis.com/secure/js/st.2800e0886b9162ed2cf084671f8108dc.js
54.230.111.56200 OK 24 kB URL HTTP/2 ws.sharethis.com/secure/js/st.2800e0886b9162ed2cf084671f8108dc.js
IP 54.230.111.56:0
File type C source, ASCII text, with very long lines (65536), with no line terminators
Hash 1fbdfcf595af5a8199097a9240c8d98d
12fc87209a15e97286c26b18598e16466118a70e
136ed84a482a7ae5cc01889f4f8b13c1b9fb211ae1916d94e210ff535c594b99
GET /secure/js/st.2800e0886b9162ed2cf084671f8108dc.js HTTP/1.1
Host: ws.sharethis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ws.sharethis.com/secure/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-length: 23781
cache-control: max-age=31536000
content-encoding: gzip
date: Tue, 18 Oct 2022 23:33:22 GMT
etag: W/"634f1895-16104"
expires: Wed, 18 Oct 2023 23:33:22 GMT
server: nginx/1.20.1
x-robots-tag: noindex, nofollow
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 4NimD5eMK4joDeFaV62hJB0Ca5Xmn-BL6pyMl7CY2-KPJ27p0U_viw==
age: 3586411
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:300
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:300
IP 142.250.74.10:0
GET /css?family=Lato:300 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 11:46:50 GMT
date: Tue, 29 Nov 2022 11:46:50 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/mobile-menu/includes/css/mobmenu-icons.css?ver=2.8
192.124.249.38200 OK 0 B URL HTTP/2 stainawayinc.com/wp-content/plugins/mobile-menu/includes/css/mobmenu-icons.css?ver=2.8
IP 192.124.249.38:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/mobile-menu/includes/css/mobmenu-icons.css?ver=2.8 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:50 GMT
content-type: text/css
content-length: 25820
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Sat, 29 Feb 2020 01:37:06 GMT
etag: "49809ed-23808-59facfde44db4-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
stainawayinc.com/
192.124.249.38200 OK 0 B IP 192.124.249.38:0
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: text/html; charset=UTF-8
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
link: <http://stainawayinc.com/wp-json/>; rel="https://api.w.org/"
cache-control: max-age=3600
expires: Tue, 29 Nov 2022 10:02:06 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
x-sucuri-cache: HIT
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3Ainherit%2C400&subset=latin%2Clatin-ext&ver=5.3.13
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3Ainherit%2C400&subset=latin%2Clatin-ext&ver=5.3.13
IP 142.250.74.10:0
GET /css?family=Roboto%3Ainherit%2C400&subset=latin%2Clatin-ext&ver=5.3.13 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 11:46:50 GMT
date: Tue, 29 Nov 2022 11:46:50 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Dosis%3Ainherit%2C400&subset=latin%2Clatin-ext&ver=5.3.13
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Dosis%3Ainherit%2C400&subset=latin%2Clatin-ext&ver=5.3.13
IP 142.250.74.10:0
GET /css?family=Dosis%3Ainherit%2C400&subset=latin%2Clatin-ext&ver=5.3.13 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 11:46:50 GMT
date: Tue, 29 Nov 2022 11:46:50 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Lato:300,400,700,900,100italic,300italic,400italic,700italic,900italic
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Lato:300,400,700,900,100italic,300italic,400italic,700italic,900italic
IP 142.250.74.10:0
GET /css?family=Lato:300,400,700,900,100italic,300italic,400italic,700italic,900italic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 11:46:50 GMT
date: Tue, 29 Nov 2022 11:46:50 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.youtube.com/player_api?ver=5.3.13
142.250.74.142200 OK 0 B URL HTTP/2 www.youtube.com/player_api?ver=5.3.13
IP 142.250.74.142:0
GET /player_api?ver=5.3.13 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://stainawayinc.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Tue, 29 Nov 2022 11:46:50 GMT
date: Tue, 29 Nov 2022 11:46:50 GMT
cache-control: private, max-age=0
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
cross-origin-resource-policy: cross-origin
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=0qpyP69X6AU; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=Uj6_nAdjYRM; Domain=.youtube.com; Expires=Sun, 28-May-2023 11:46:50 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+831; expires=Thu, 28-Nov-2024 11:46:50 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/js/unitegallery.min.js?ver=5.3.13
192.124.249.38200 OK 0 B URL HTTP/2 stainawayinc.com/wp-content/plugins/unite-gallery-lite/unitegallery-plugin/js/unitegallery.min.js?ver=5.3.13
IP 192.124.249.38:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/unite-gallery-lite/unitegallery-plugin/js/unitegallery.min.js?ver=5.3.13 HTTP/1.1
Host: stainawayinc.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 11:46:51 GMT
content-type: application/x-javascript
x-sucuri-id: 19038
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;
last-modified: Thu, 24 Feb 2022 18:44:37 GMT
etag: "49e36bd-3ba41-5d8c7f95fd413-gzip"
cache-control: max-age=315360000
expires: Thu, 31 Dec 2037 23:55:55 GMT
vary: Accept-Encoding
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
pragma: public
x-sucuri-cache: MISS
X-Firefox-Spdy: h2