firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 16 Sep 2022 08:05:40 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: iPvQ5QlGroxXXhZBD00qWAkfgFrgA6a_gpr6IoJIgNZxPJaAVt4Zdw==
Age: 1731
stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
67.227.198.95301 Moved Permanently 297 B URL HTTP/1.1 stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
IP 67.227.198.95:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash fd8c4b293d3aae86d2655df125eefce4
f22aff15f87332a61d417d2743375afacb5338c0
6c72a832d4e7dec305bb031db58db0d7147f341131203decca9cdea015fdd0f2
GET /login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso HTTP/1.1
Host: stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 16 Sep 2022 08:34:30 GMT
Server: Apache
Location: https://stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Content-Length: 297
Keep-Alive: timeout=2, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96daaf84cd2c07756756caf7a2724a29
d24d47c68eec98d44bf341dab9d893df97103e1a
fef9ce9f75ec19e7ae2ccbffb6654db2473a2b4acc94c1b4303e5ec24149465f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FEF9CE9F75EC19E7AE2CCBFFB6654DB2473A2B4ACC94C1B4303E5EC24149465F"
Last-Modified: Thu, 15 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4844
Expires: Fri, 16 Sep 2022 09:55:15 GMT
Date: Fri, 16 Sep 2022 08:34:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 04:35:16 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 0jx9PsyASFv1JZEU3IwNTbXmGwtcRXVXG9OJyJWiF08s_Kd9d1LcMA==
age: 14356
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 16 Sep 2022 08:34:31 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Fri, 16 Sep 2022 08:03:22 GMT
Expires: Fri, 16 Sep 2022 08:44:49 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FZeApvhv2MzkyCZDjwWR7hDy_tLgasVr69wmM5GxYa38IVyeKsjLrA==
Age: 1869
stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
67.227.198.95301 Moved Permanently 0 B URL HTTP/2 stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
IP 67.227.198.95:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso HTTP/1.1
Host: stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-redirect-by: WordPress
location: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 0
content-type: text/html; charset=UTF-8
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d597af1ab2f21a983bf0f0d105b94209
9d5dd938777abde094c89066b539141a02106b88
a614eb7f969544c8040642be7c852625341e2441e757d063d2af1ff465c8c3f4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5744
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:31 GMT
Last-Modified: Fri, 16 Sep 2022 06:58:47 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css
151.101.85.229200 OK 23 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/css/bootstrap.min.css
IP 151.101.85.229:0
File type Unicode text, UTF-8 text, with very long lines (65306)
Hash f1883dfe3d1a16da0d5ad68f7228f99a
37e13f8f11c6c21ad2ea36a108e9006132586635
601ab8c5f5909131ea6a53a997f04c7c6e733127858045caeaa53701978f7e7a
GET /npm/bootstrap@5.0.2/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"260c5-fByeBXPlzqi603M74vxjqoxo6o0"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 16 Sep 2022 08:34:32 GMT
age: 12057236
x-served-by: cache-fra19150-FRA, cache-bma1645-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 22977
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash 4195db4ac8672ab4fe86c9d7903c3cce
a8d95a834b4bda1df0d23e7340d1e7cdbcee0976
4a279997f1946d92a48d963130a5429d70dadbec167df357a83f2d80a4e1f6c2
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 16 Sep 2022 08:34:32 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "287E65071FC823F44B97DF6751AEB94551AF2B30"
Expires: Fri, 16 Sep 2022 20:00:00 GMT
Last-Modified: Fri, 16 Sep 2022 08:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 182
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74b84376a87cb512-OSL
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/font-awesome/css/font-awesome.min.css
67.227.198.95200 OK 7.1 kB URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/font-awesome/css/font-awesome.min.css
IP 67.227.198.95:0
File type ASCII text, with very long lines (30837), with CRLF line terminators
Hash bf03b8f20ac9063cd68fdaad99f33471
b7ed452624cf0ad672802f062a90c32cfbcc33fc
47ab379a793e73b136a795ef9e1d1a4fc95e7109a74863c3a6df40d0f9086c13
GET /wp-content/themes/stahlroofing/assets/font-awesome/css/font-awesome.min.css HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 21 May 2022 09:30:42 GMT
etag: "791c-5df8242bd5480-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 7057
content-type: text/css
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/owlcarousel/assets/owl.carousel.min.css
67.227.198.95200 OK 1.1 kB URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/owlcarousel/assets/owl.carousel.min.css
IP 67.227.198.95:0
File type ASCII text, with very long lines (3184), with CRLF line terminators
Hash 876317e545381a07cee87c128b58caee
b7ee0636454c35d65266e3184417c48dc27cc29a
c52b1d154239012738c124d954c81601915ce231f896b982ca79c2f94b2a81d0
GET /wp-content/themes/stahlroofing/assets/owlcarousel/assets/owl.carousel.min.css HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 21 May 2022 09:39:40 GMT
etag: "d1c-5df8262ce8f00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 1072
content-type: text/css
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
104.17.25.14200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.4.1/jquery.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (65451)
Hash 638a4990025383a0f83ebf29bdb84a68
153e8818dc42f598e47fde8cf398f1447649a4d0
878e34b89800bb271d3588e526eb3598eb3822e263f3bdaf53645847d39d0ad6
GET /ajax/libs/jquery/3.4.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 08:34:32 GMT
content-type: application/javascript; charset=utf-8
content-length: 27748
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-15851"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 3167051
expires: Wed, 06 Sep 2023 08:34:32 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ry1OanhWuC8Lwndyir5etf1irEOpU6DJQcd2yHs5ZO50kGxvBsuRyCuBwCRaef%2FfVXHZeu3BCM9aG5Qxnr%2Bh%2FU7uFJEBi0znYmccwOgEqlUJL2jTOgpsva3N44YCQmWAJnFdQqD5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74b8437708840b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js
151.101.85.229200 OK 22 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js
IP 151.101.85.229:0
File type ASCII text, with very long lines (65299)
Hash 84e585e508257b149cf52b5ba65dafba
141cd4a3560a4dd2b4fdf9e961079c300f494030
1a00d92371bb1b61d8fdce1473af8c69798eaa34ee7941f58babd75c8283d56d
GET /npm/bootstrap@5.0.2/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stahlroofing.ca
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 5.0.2
x-jsd-version-type: version
etag: W/"13397-kBFpUnUH/55mLPZNjjYfNZMIlw0"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 16 Sep 2022 08:34:32 GMT
age: 15463629
x-served-by: cache-fra19122-FRA, cache-bma1633-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 22442
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/bootstrap-filestyle/2.1.0/bootstrap-filestyle.min.js
104.17.25.14200 OK 2.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/bootstrap-filestyle/2.1.0/bootstrap-filestyle.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (1906)
Hash 2bfe9867b3b2a5c0d24973298b351f11
d625f345903a76e60bc33c4c302289408972147d
f1698811f3ec3b4b65b5e8d2f88994878540b1004b12d6b34e834aa47d8332d5
GET /ajax/libs/bootstrap-filestyle/2.1.0/bootstrap-filestyle.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stahlroofing.ca
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 16 Sep 2022 08:34:32 GMT
content-type: application/javascript; charset=utf-8
content-length: 2018
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d8e-2429"
last-modified: Mon, 04 May 2020 16:06:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1217866
expires: Wed, 06 Sep 2023 08:34:32 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aFdr%2BX5a8drQYaPawM%2BfctTFgTQPPweb3YEeVmckzb5%2FjXSktqTonPnPHaioKSUSsSxufJjGrwPhjjFzKswezjf1WOXXktj9K81a4%2BzqSv0Y6vxYx6olFI9thPE5rbRmXCYcDDM9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 74b843770a640b59-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/owlcarousel/assets/owl.theme.default.min.css
67.227.198.95200 OK 483 B URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/owlcarousel/assets/owl.theme.default.min.css
IP 67.227.198.95:0
File type ASCII text, with very long lines (846), with CRLF line terminators
Hash 7289586978e1e6a7550ab8aa6b9e1580
8eea7b1ca6fd4116e12fa7e0f5cf26ddb36bbee9
8283290cc552c5abf6d614d307b205e311dbbe2eb1478d6f9b643da737596a21
GET /wp-content/themes/stahlroofing/assets/owlcarousel/assets/owl.theme.default.min.css HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 21 May 2022 09:39:40 GMT
etag: "3fa-5df8262ce8f00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 483
content-type: text/css
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/css/main.css
67.227.198.95200 OK 3.8 kB URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/css/main.css
IP 67.227.198.95:0
Hash 2b521984d4c82fe4448cf468cd20a929
3f64041f99885597175b3546a0e03d0cedf22be8
4523f152ae07fe7ce94ccde6a4ff2ea130544d6c85fd3302fdfc3c9b1a5feeb3
GET /wp-content/themes/stahlroofing/assets/css/main.css HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Fri, 01 Jul 2022 19:45:10 GMT
etag: "c971-5e2c39fbcbd80-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 3768
content-type: text/css
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/css/responsive.css
67.227.198.95200 OK 2.3 kB URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/css/responsive.css
IP 67.227.198.95:0
File type ASCII text, with CRLF line terminators
Hash 338d05edbcf5d2574d2f28c15e1dd673
2831e1c1ac1c741bbd802492b8bebe92e9c8d5cc
94d24f39324b9c98bdc8093f539d7e7722bb921b6b28270c1f6452be14c32b03
GET /wp-content/themes/stahlroofing/assets/css/responsive.css HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 21 May 2022 09:24:54 GMT
etag: "3eb2-5df822dff4580-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 2313
content-type: text/css
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/cache/minify/584df.js
67.227.198.95200 OK 8.2 kB URL HTTP/2 www.stahlroofing.ca/wp-content/cache/minify/584df.js
IP 67.227.198.95:0
File type HTML document, ASCII text, with very long lines (14856), with CRLF line terminators
Hash 2ca9d17bec9c5b63c45f1dde68194b24
ceb40627a79995b556245b1df3fcfcced403fdf8
6e4b25d0199d6c68514851b370023dc64820632d8f34af3d2f9bace2ebb46fa5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/minify/584df.js HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 15 Sep 2022 17:37:51 GMT
etag: "1ff4-5e8bab462b878"
accept-ranges: bytes
content-length: 8180
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-type: application/x-javascript
content-encoding: gzip
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 91dad4479f7dcb623266cf0dcfef5875
9fcf1f0e16c17a43021ab8fb01089d2d9c9f1d3a
0dc4f9c3ecdccb7e1b7a651c72ee63acc06482b362f060547534c3196e561412
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.43.61.95101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.61.95:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zB38nzYpFyCsuL0kGH1rBg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: iPUoklIijX18FHqLwPZzvDkjBng=
www.google.com/recaptcha/api.js?render=6LfcyecUAAAAANMr3HWzCR-eNwjB_yxzG-NRhw-L&ver=3.0
142.250.74.164200 OK 586 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6LfcyecUAAAAANMr3HWzCR-eNwjB_yxzG-NRhw-L&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash d008dec6c7c6049555cf88ab8058b58a
715726a083a1abb51df291c3bb8532db5ef357b0
404f2e39fecf6c2858824bf6cfe0624b481508819d30a2efbc0f246ea001cc1d
GET /recaptcha/api.js?render=6LfcyecUAAAAANMr3HWzCR-eNwjB_yxzG-NRhw-L&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Fri, 16 Sep 2022 08:34:32 GMT
date: Fri, 16 Sep 2022 08:34:32 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 586
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/fontawesome-6/css/all.min.css
67.227.198.95200 OK 21 kB URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/fontawesome-6/css/all.min.css
IP 67.227.198.95:0
File type ASCII text, with very long lines (65312), with CRLF line terminators
Hash 79ad770eb2ea5fbd59f414edf10c22b5
8bd1f9fcbcda2dd029b20b994c3f68053e17063a
8643c664a1a98f2a902b9b4f8bde46d48846cbe43f45101a60b439ec6d1b5eb8
GET /wp-content/themes/stahlroofing/assets/fontawesome-6/css/all.min.css HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 21 May 2022 09:48:10 GMT
etag: "189b3-5df8281348a80-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 20566
content-type: text/css
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/build/style.css
67.227.198.95200 OK 4.4 kB URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/build/style.css
IP 67.227.198.95:0
Hash a0aa69460416d4e23680ad376c4466bf
ddb3df62f8ae02aaaebbbfb4733777dbecbbd5b7
603e2ffc10d9bb6b19ba9e7c0ccca98dda8ba581834cfeade32e68080b9e9ac2
GET /wp-content/themes/stahlroofing/assets/build/style.css HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 26 May 2022 02:33:02 GMT
etag: "5b20-5dfe10240f380-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 4438
content-type: text/css
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
67.227.198.95200 OK 12 kB URL HTTP/2 www.stahlroofing.ca/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 67.227.198.95:0
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 14 Jul 2022 23:37:50 GMT
etag: "15b64-5e3cc63c14f80-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 11681
content-type: text/css
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/plugins/album-and-image-gallery-plus-lightbox/assets/css/magnific-popup.css?ver=1.6
67.227.198.95200 OK 1.8 kB URL HTTP/2 www.stahlroofing.ca/wp-content/plugins/album-and-image-gallery-plus-lightbox/assets/css/magnific-popup.css?ver=1.6
IP 67.227.198.95:0
Hash d9e778f0c6f5908f59dcae3f2301770c
9a8fc0c32e1f3affb6f54ba33c5beabf3dbc839a
2e24aa9540b66090d65f38e670f06dfe751598a9db0ce5cc2a010b538a734564
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/album-and-image-gallery-plus-lightbox/assets/css/magnific-popup.css?ver=1.6 HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 23 Jun 2022 01:03:28 GMT
etag: "1b26-5e213057eb800-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 1816
content-type: text/css
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
67.227.198.95200 OK 972 B URL HTTP/2 www.stahlroofing.ca/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 67.227.198.95:0
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 01 Sep 2022 12:22:18 GMT
etag: "aab-5e79caa20efe8-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 972
content-type: text/css
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 8ff1c0d8a380ce4a561609526d995bf5
135ecd7e71ea2823d39f8c1efcb2121618ed8167
f7228281af8d6de222aa47b3a78a627f85315244e65a8956fa2c0c7dff1bb7ad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.stahlroofing.ca/wp-content/plugins/album-and-image-gallery-plus-lightbox/assets/css/aigpl-public.css?ver=1.6
67.227.198.95200 OK 1.6 kB URL HTTP/2 www.stahlroofing.ca/wp-content/plugins/album-and-image-gallery-plus-lightbox/assets/css/aigpl-public.css?ver=1.6
IP 67.227.198.95:0
File type ASCII text, with CRLF line terminators
Hash a29c9f807e34634164949072d1e955d7
bbfa59bc4ea0b55ea18bdc1fd53f164174db26a7
0878702a3d032e460dd038dd3dd960ba9be97e5d5b67de99a4474f441b67c015
GET /wp-content/plugins/album-and-image-gallery-plus-lightbox/assets/css/aigpl-public.css?ver=1.6 HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 23 Jun 2022 01:03:28 GMT
etag: "194e-5e213057eb800-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 1598
content-type: text/css
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/themes/twentytwentyone/style.css?ver=1.4
67.227.198.95200 OK 1.7 kB URL HTTP/2 www.stahlroofing.ca/wp-content/themes/twentytwentyone/style.css?ver=1.4
IP 67.227.198.95:0
File type Unicode text, UTF-8 text, with very long lines (403)
Hash 511721823e2fd85580ccedec84a51417
4b4488846708c6b049cc0c87e775a65bb82aef69
9630b528da694ab2a0359ea92f6060a670a9ae88b78014846cd52883d4ccc984
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/twentytwentyone/style.css?ver=1.4 HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 25 May 2022 21:39:52 GMT
etag: "124f-5dfdce9ceda00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 1686
content-type: text/css
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/img/Stahl-Roof-Systems-Logo1.svg
67.227.198.95200 OK 2.1 kB URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/img/Stahl-Roof-Systems-Logo1.svg
IP 67.227.198.95:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash cfe8a8e5445f29d9e45f590053af4241
b2af6b8274adfbb95a4e1aef6f2e325a438485b9
410656d26daef8555d5e6a2f6774f0aca4429a6247ebe8656f0c31f46630a56f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/stahlroofing/assets/img/Stahl-Roof-Systems-Logo1.svg HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 21 May 2022 11:12:22 GMT
etag: "158f-5df83ae53f180-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 2133
content-type: image/svg+xml
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/cache/minify/2a6b9.js
67.227.198.95200 OK 507 B URL HTTP/2 www.stahlroofing.ca/wp-content/cache/minify/2a6b9.js
IP 67.227.198.95:0
File type ASCII text, with very long lines (999), with no line terminators
Hash 79485124fd4b36895922e7e80104785a
34e12be8b515d54eff22b02006afbfef045fe43e
d3f7ed2ad411c2c2f241b83812a2fce16d524c433f559576339ac0c73c8213d7
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/minify/2a6b9.js HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 15 Sep 2022 17:37:51 GMT
etag: "1fb-5e8bab46738d0"
accept-ranges: bytes
content-length: 507
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-type: application/x-javascript
content-encoding: gzip
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/img/reachfirst-logo.png
67.227.198.95200 OK 2.6 kB URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/img/reachfirst-logo.png
IP 67.227.198.95:0
File type PNG image data, 114 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 0085a29a13f69d0cd9de09de1f727278
23b576bb7c5d3c22a2da4698b6f40fa5d784fd9f
f15124111c5ab6d8c3175ade43908f09f7cf8517a85d9780637711aae659202a
GET /wp-content/themes/stahlroofing/assets/img/reachfirst-logo.png HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 21 May 2022 09:28:08 GMT
etag: "a2f-5df82398f7a00"
accept-ranges: bytes
content-length: 2607
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-type: image/png
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/cache/minify/1f540.js
67.227.198.95200 OK 2.9 kB URL HTTP/2 www.stahlroofing.ca/wp-content/cache/minify/1f540.js
IP 67.227.198.95:0
File type ASCII text, with very long lines (9680), with no line terminators
Hash 8cccd767eaac5db1dd3b0ae5ddc0fced
49d2e032e9ccf44936fe10d3cde719ab0e9e758c
6750c05c1a6189fdbc0840cd4875ce1a16307b8f7a2be774bf7c8a413aa90159
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/minify/1f540.js HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 15 Sep 2022 17:37:51 GMT
etag: "b4a-5e8bab466e6c8"
accept-ranges: bytes
content-length: 2890
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-type: application/x-javascript
content-encoding: gzip
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/cache/minify/4cc0b.js
67.227.198.95200 OK 4.3 kB URL HTTP/2 www.stahlroofing.ca/wp-content/cache/minify/4cc0b.js
IP 67.227.198.95:0
File type HTML document, ASCII text, with very long lines (12347)
Hash 41a00c25e878d50853774da4e86b3e4b
ec7f514d06a910d4bac6f137c1da5c659fa6c9cb
835eba1f13679d7af3e840a3773acf6f9a1af6bb1c22863332730206bca7ff07
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/minify/4cc0b.js HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 15 Sep 2022 17:37:51 GMT
etag: "10e5-5e8bab4687920"
accept-ranges: bytes
content-length: 4325
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-type: application/x-javascript
content-encoding: gzip
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/plugins/album-and-image-gallery-plus-lightbox/assets/css/slick.css?ver=1.6
67.227.198.95200 OK 536 B URL HTTP/2 www.stahlroofing.ca/wp-content/plugins/album-and-image-gallery-plus-lightbox/assets/css/slick.css?ver=1.6
IP 67.227.198.95:0
Hash ea13895dbfed3e229913b35a8c18c293
5f6d7de0c0ccce3916fa9056571901970a57d1fb
f897e6b5b85c25df8d0338efc9a2acab1ed2048649f35b94fb37f566102546ec
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/album-and-image-gallery-plus-lightbox/assets/css/slick.css?ver=1.6 HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 23 Jun 2022 01:03:28 GMT
etag: "60a-5e213057eb800-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 536
content-type: text/css
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/img/logo.png
67.227.198.95200 OK 4.6 kB URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/img/logo.png
IP 67.227.198.95:0
File type PNG image data, 160 x 136, 8-bit/color RGBA, non-interlaced\012- data
Hash b8089ef29cb595af659e94c478b36f21
39370757917fb58a94754b831e3402dc63c14966
de7683aa4d624ded6da76c48712d8c54fa7054eca85b54f39bd38a081144bdd1
GET /wp-content/themes/stahlroofing/assets/img/logo.png HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 21 May 2022 09:28:26 GMT
etag: "11d2-5df823aa22280"
accept-ranges: bytes
content-length: 4562
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-type: image/png
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/cache/minify/31730.js
67.227.198.95200 OK 9.3 kB URL HTTP/2 www.stahlroofing.ca/wp-content/cache/minify/31730.js
IP 67.227.198.95:0
File type Unicode text, UTF-8 text, with very long lines (19139)
Hash 41c452346676e6bc3756c1734ccc6960
a007315683dee30bdc3250e1ec2493f3ca4dff82
7dfba5f3e008eada98021a05c3918fc5d7a2a8a69df9c716000c1f4422d8f384
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/minify/31730.js HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 15 Sep 2022 17:37:51 GMT
etag: "244f-5e8bab467b1e8"
accept-ranges: bytes
content-length: 9295
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-type: application/x-javascript
content-encoding: gzip
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/cache/minify/6a7a5.js
67.227.198.95200 OK 12 kB URL HTTP/2 www.stahlroofing.ca/wp-content/cache/minify/6a7a5.js
IP 67.227.198.95:0
File type ASCII text, with very long lines (31997), with CRLF, LF line terminators
Hash ff12fd122845922df628ffeb94e109a4
92effa0dc1d56373d1b6fde3a01fcab2dbfc9082
6d1734e0efa7f8d100f7682b83eb0f56741838dd94cf35fd2690e83ad0c1c606
Analyzer Verdict Alert fortinet Malware
GET /wp-content/cache/minify/6a7a5.js HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Thu, 15 Sep 2022 17:37:51 GMT
etag: "2ea3-5e8bab467bda0"
accept-ranges: bytes
content-length: 11939
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-type: application/x-javascript
content-encoding: gzip
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3b816941816ca5fed922c0604e9da8dc
94c14ea6c512c6c262479b4299f1cd4dd99ea5cd
a05000788114487ba8b8c661ba1370b29c96a93a16275b3fab497cf75722b51d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/img/cta-image.jpg
67.227.198.95200 OK 141 kB URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/img/cta-image.jpg
IP 67.227.198.95:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1120x500, components 3\012- data
Size 141 kB (140611 bytes)
Hash 06dbca691d98de2678f891576d610ad3
3e227117b2d26a5bb5264d0e7cabaa781a35dbe4
731df28b5ef42e951265b138b81748711a4ab595d4a1b6e63ade164ccf45eaa4
GET /wp-content/themes/stahlroofing/assets/img/cta-image.jpg HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 21 May 2022 09:28:12 GMT
etag: "22543-5df8239cc8300"
accept-ranges: bytes
content-length: 140611
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:31 GMT
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-type: image/jpeg
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
67.227.198.95200 OK 5.0 kB URL HTTP/2 www.stahlroofing.ca/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 67.227.198.95:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 25 May 2022 09:54:48 GMT
etag: "48b9-5dfd3104b0a00-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:32 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 5009
content-type: application/x-javascript
date: Fri, 16 Sep 2022 08:34:32 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/themes/twentytwentyone/assets/css/print.css?ver=1.4
67.227.198.95200 OK 1.1 kB URL HTTP/2 www.stahlroofing.ca/wp-content/themes/twentytwentyone/assets/css/print.css?ver=1.4
IP 67.227.198.95:0
Hash ffb300f922250ca4dc6e0bbd4d0f302a
a340446e431cdaa0081e78fde866506266fbbed2
91c03bb7f1a3ee98f49eaaca571a4f2f5aa2bcd27bdb9569f6817a97dcbbcf20
GET /wp-content/themes/twentytwentyone/assets/css/print.css?ver=1.4 HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Wed, 25 May 2022 19:19:26 GMT
etag: "b51-5dfdaf3944b80-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:32 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 1084
content-type: text/css
date: Fri, 16 Sep 2022 08:34:32 GMT
server: Apache
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-NPWQQ2M
142.250.74.72200 OK 58 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NPWQQ2M
IP 142.250.74.72:0
File type ASCII text, with very long lines (3671)
Hash e0dace72d115189952f7d6d9f0c0c405
64c4a2dcad7fe2a445369d3252348211e6771698
cab0d32b1e3ca36ba98fe181ea3e326eafba08e6be0d96512072a7a1995e6e30
GET /gtm.js?id=GTM-NPWQQ2M HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 16 Sep 2022 08:34:32 GMT
expires: Fri, 16 Sep 2022 08:34:32 GMT
cache-control: private, max-age=900
last-modified: Fri, 16 Sep 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 57567
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3b816941816ca5fed922c0604e9da8dc
94c14ea6c512c6c262479b4299f1cd4dd99ea5cd
a05000788114487ba8b8c661ba1370b29c96a93a16275b3fab497cf75722b51d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/fontawesome-6/webfonts/fa-brands-400.woff2
67.227.198.95200 OK 106 kB URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/fontawesome-6/webfonts/fa-brands-400.woff2
IP 67.227.198.95:0
File type Web Open Font Format (Version 2), TrueType, length 105536, version 769.768\012- data
Size 106 kB (105536 bytes)
Hash cd2b4095e9ce66cde642c3502a4022d9
a280ecdddd14695fad22599301ab03adfe5224c0
404c746c8f7e3f9b7611a8f23d908c1a32a5c972236b9d89bb68b05d9bf4b905
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/stahlroofing/assets/fontawesome-6/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/fontawesome-6/css/all.min.css
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sat, 21 May 2022 10:12:56 GMT
etag: "19c40-5df82d9c71a00"
accept-ranges: bytes
content-length: 105536
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:32 GMT
vary: Accept-Encoding
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-type: application/font-woff2
date: Fri, 16 Sep 2022 08:34:32 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/css/fonts/AzoSans-Bold.otf
67.227.198.95200 OK 33 kB URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/css/fonts/AzoSans-Bold.otf
IP 67.227.198.95:0
File type OpenType font data\012- data
Hash e42ba0827834338dc830dd542d3b96ae
008b668edcffe7a88e22298a54561d8f88290f45
f17962d7a34eb4983de2a8f7df380113577346e9c6caa818261dfd464e56322b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/stahlroofing/assets/css/fonts/AzoSans-Bold.otf HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/css/main.css
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 24 May 2022 21:41:16 GMT
etag: "10cec-5dfc8d0f93700-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:32 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-length: 33427
content-type: application/x-font-otf
date: Fri, 16 Sep 2022 08:34:32 GMT
server: Apache
X-Firefox-Spdy: h2
scripts.iconnode.com/71213.js
54.230.111.96200 OK 7.8 kB URL HTTP/2 scripts.iconnode.com/71213.js
IP 54.230.111.96:0
File type Unicode text, UTF-8 text, with very long lines (46867), with no line terminators
Hash bf9a6dc1d0f083e129efe198d68bf144
d5668701de35be84cb0859c5e1de3c9114476b1d
86f4f3f055b60a665fe7f7bc0e4746d34761c8b4e1547f00352cbf26b75bd1b4
GET /71213.js HTTP/1.1
Host: scripts.iconnode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 7751
last-modified: Wed, 15 Jun 2022 20:30:09 GMT
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
date: Fri, 16 Sep 2022 08:34:33 GMT
cache-control: max-age=0
etag: "bf9a6dc1d0f083e129efe198d68bf144"
x-cache: RefreshHit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6K0evynyJGAO1vBLkDg97z-cgDYnbxnfjOBuMdgFotSF0w9aXUaRsA==
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7dff4bc87dbee6fd33e0d7a3dc5ed3bd
59878d4dd98e60b39dcf7ac288e77bb262afab5d
8c3a027cee1f48144eb0504deff1f2b9aa98c9fc3f4e3057ece6caac9f604315
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4125
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:32 GMT
Last-Modified: Fri, 16 Sep 2022 07:25:47 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 56f5d7f608e25d64207135f045f988cb
901eb59372ae330ae85e1384da93479b21ae1082
1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20006
date: Fri, 16 Sep 2022 06:41:12 GMT
expires: Fri, 16 Sep 2022 08:41:12 GMT
cache-control: public, max-age=7200
age: 6800
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash ecb99528d18dbe7952eac9618eaf2d8e
eb59bf3afc849403fa3dde09b75b5fc51f29e7b5
bcecfe43bf3e0f22ff425fe630e189d28fc3ecdc9764dd1686599e5ce59f40cc
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: mlWBehXnnjzlnrTEn/p1ETI5xvuZPqGAbBZIzLJ6EVgCJLFxxzYggefwV/cJ8q8q1U72ZiWfWmTcFFtCPdwWzA==
priority: u=3,i
content-length: 26872
x-fb-trip-id: 1904183273
date: Fri, 16 Sep 2022 08:34:32 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/wcm/loader.js
142.250.74.163200 OK 1.3 kB URL HTTP/2 www.gstatic.com/wcm/loader.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (1123)
Hash 22300d54ba7faf32360c95915053014c
ea83f097bd99413f9d8fcb08d0312ba7ba1be99f
2c4c9c9d6af1ad12556ab11c8021eb5c254025ce04500bc885b69984dd562ce5
GET /wcm/loader.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1339
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 07:58:48 GMT
expires: Fri, 16 Sep 2022 08:58:48 GMT
cache-control: public, max-age=3600
age: 2144
last-modified: Mon, 15 Mar 2021 16:45:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js
142.250.74.163200 OK 158 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (581)
Size 158 kB (157726 bytes)
Hash 6519c7c04cf32a57b1c5ee45a73c233e
4939bb921988e9eb13780cc2244f3099776e9bfb
8352dd4e3e0fe82562cdc280c020fc31d2c6d054f7ead441a3b18de8ef04401b
GET /recaptcha/releases/zmiYzsHi8INTJBWt2QZC9aM5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stahlroofing.ca
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157726
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 14 Sep 2022 05:37:29 GMT
expires: Thu, 14 Sep 2023 05:37:29 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 14 Sep 2022 00:24:01 GMT
content-type: text/javascript
age: 183423
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7dff4bc87dbee6fd33e0d7a3dc5ed3bd
59878d4dd98e60b39dcf7ac288e77bb262afab5d
8c3a027cee1f48144eb0504deff1f2b9aa98c9fc3f4e3057ece6caac9f604315
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4125
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:32 GMT
Last-Modified: Fri, 16 Sep 2022 07:25:47 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
www.stahlroofing.ca/wp-content/uploads/2022/05/Stahl-Roofing-Favicon-Icon.png
67.227.198.95200 OK 642 B URL HTTP/2 www.stahlroofing.ca/wp-content/uploads/2022/05/Stahl-Roofing-Favicon-Icon.png
IP 67.227.198.95:0
File type PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash caa1d4c60856fe9c81b7d7602dc5b42c
594785e698d1954ea2153e91368353b806ef9fed
eaed89db6eea2393f60321b19be296c9563d76a7601e363158bbd870e50816bb
GET /wp-content/uploads/2022/05/Stahl-Roofing-Favicon-Icon.png HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
Connection: keep-alive
Cookie: _gcl_au=1.1.598558802.1663317257; _gd1663317256696=; wc_visitor=71213-a4860d73-0dc0-c5f3-c342-d2c7b23be6bf; _gd1663317256699=; wc_client=direct+..+none+..++..++..++..++..+https%3A%2F%2Fwww.stahlroofing.ca%2Flogin.php%3Fonline_id%3Dcbedf98be5f21f9cdff6dd58b%26country%26iso+..+71213-a4860d73-0dc0-c5f3-c342-d2c7b23be6bf+..+; wc_client_current=direct+..+none+..++..++..++..++..+https%3A%2F%2Fwww.stahlroofing.ca%2Flogin.php%3Fonline_id%3Dcbedf98be5f21f9cdff6dd58b%26country%26iso+..+71213-a4860d73-0dc0-c5f3-c342-d2c7b23be6bf+..+; _ga_K0ES5QG409=GS1.1.1663317256.1.0.1663317256.0.0.0; _ga=GA1.1.878512178.1663317257
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Tue, 24 May 2022 21:28:30 GMT
etag: "282-5dfc8a350fb80"
accept-ranges: bytes
content-length: 642
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:32 GMT
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-type: image/png
date: Fri, 16 Sep 2022 08:34:32 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 7df27d4646e6e1cd358f0997ad604ea9
bf0c3feb55312e00ed8aa718458cc1e932903ac2
ba7ebd5b66156d280c46a2e492c5830f67e114711498b405b4e57ee1f45f4905
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:32 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 848674a3bc6b0d4d6cba22b140c574bc
ec95f08f3a5b022c3753f78e30f71d03e2895d78
069aaae82ec20e5bbcc694f9603bded464798891e5e2abc27baadeace22f6a05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/700437679/?random=1663317256849&cv=9&fst=1663317256849&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.stahlroofing.ca%2Flogin.php%3Fonline_id%3Dcbedf98be5f21f9cdff6dd58b%26country%26iso&tiba=Page%20not%20found%20-%20Stahlroofing&auid=598558802.1663317257&hn=www.google.com&async=1&rfmt=3&fmt=4
142.250.74.162200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/700437679/?random=1663317256849&cv=9&fst=1663317256849&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.stahlroofing.ca%2Flogin.php%3Fonline_id%3Dcbedf98be5f21f9cdff6dd58b%26country%26iso&tiba=Page%20not%20found%20-%20Stahlroofing&auid=598558802.1663317257&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (2346), with no line terminators
Hash 48f18f8b655ac7f133fbd70a817a6e52
b954c815371c897b931bffd69c1da468a8b65fa9
87ea537f62a301229bdab8a66575566630bf38d523693c57941e0a16b1c41f03
GET /pagead/viewthroughconversion/700437679/?random=1663317256849&cv=9&fst=1663317256849&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&ig=0&frm=0&url=https%3A%2F%2Fwww.stahlroofing.ca%2Flogin.php%3Fonline_id%3Dcbedf98be5f21f9cdff6dd58b%26country%26iso&tiba=Page%20not%20found%20-%20Stahlroofing&auid=598558802.1663317257&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 08:34:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1070
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 16-Sep-2022 08:49:33 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 17b429b19a1966f40285241636c5df37
92d02bf586dad8c7d775675bcd75a2b99c4a6ca8
6cb559e158f080e4e42d4739b83c0a2271d3213991311c04c94b26c96eddec88
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
process.iconnode.com/google-ads/
76.223.116.242200 OK 0 B URL HTTP/2 process.iconnode.com/google-ads/
IP 76.223.116.242:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /google-ads/ HTTP/1.1
Host: process.iconnode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: https://www.stahlroofing.ca
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
date: Fri, 16 Sep 2022 08:34:33 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache/2.4.54 () OpenSSL/1.0.2k-fips PHP/7.4.30
x-powered-by: PHP/7.4.30
access-control-allow-origin: https://www.stahlroofing.ca
access-control-allow-credentials: true
access-control-max-age: 86400
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion/700437679/wcm?cc=ZZ&dn=7802920964&cl=LkeJCK_d-LIBEK-p_80C&ct_eid=2
142.250.74.130302 Found 0 B URL HTTP/2 www.googleadservices.com/pagead/conversion/700437679/wcm?cc=ZZ&dn=7802920964&cl=LkeJCK_d-LIBEK-p_80C&ct_eid=2
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/conversion/700437679/wcm?cc=ZZ&dn=7802920964&cl=LkeJCK_d-LIBEK-p_80C&ct_eid=2 HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stahlroofing.ca
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://www.google.no/pagead/attribution/wcm?cc=ZZ&dn=7802920964&cl=LkeJCK_d-LIBEK-p_80C
access-control-allow-origin: https://www.stahlroofing.ca
access-control-allow-credentials: true
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Fri, 16 Sep 2022 08:34:33 GMT
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 848674a3bc6b0d4d6cba22b140c574bc
ec95f08f3a5b022c3753f78e30f71d03e2895d78
069aaae82ec20e5bbcc694f9603bded464798891e5e2abc27baadeace22f6a05
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash db503d6c6780cb1b8dfeffa10a50eada
51a459bdc02f20576031f526be6788f653095d94
b7a653d3c381c6cea5b6838aea01a7de8ea5c2d8bdf5ff92c4cd5c22829c8e8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash edc3fd16211643f33475ab54eac21a38
2971ab3faf279849c6c89c2e557b361b09010a9b
eeea21b2ec81e44dc5caabf4c8be119c12c8566098253f5da2c45d45a517f0dc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-145778362-1&cid=878512178.1663317257&jid=1711939609&gjid=459001699&_gid=40666039.1663317257&_u=YADAAEAAAAAAAC~&z=813934342
142.251.1.156200 OK 86 kB URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-145778362-1&cid=878512178.1663317257&jid=1711939609&gjid=459001699&_gid=40666039.1663317257&_u=YADAAEAAAAAAAC~&z=813934342
IP 142.251.1.156:0
File type gzip compressed data, from Unix\012- data
Hash d2b2aac43ffa1802f3edc647f3f55af6
09fa63e9b59860a4e83ae89d844e6dfcba2c540c
c506577babbf4dd08fdc51deef48e4877b733b07dedd95e507411e2d0e15e8c2
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j96&tid=UA-145778362-1&cid=878512178.1663317257&jid=1711939609&gjid=459001699&_gid=40666039.1663317257&_u=YADAAEAAAAAAAC~&z=813934342 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.stahlroofing.ca
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.stahlroofing.ca
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 16 Sep 2022 08:34:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/attribution/wcm?cc=ZZ&dn=7802920964&cl=LkeJCK_d-LIBEK-p_80C
142.250.74.3200 OK 87 B URL HTTP/2 www.google.no/pagead/attribution/wcm?cc=ZZ&dn=7802920964&cl=LkeJCK_d-LIBEK-p_80C
IP 142.250.74.3:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 36d9ec9a38ee63b6e93115603d96f7a1
efb8de49ffe231ec8a1266a8ca3a97901356a846
30f732c37c76fae3bcf6bcb7c39492d86abc6c3fbf53dadc4533f89df05c71b2
GET /pagead/attribution/wcm?cc=ZZ&dn=7802920964&cl=LkeJCK_d-LIBEK-p_80C HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Referer: https://www.stahlroofing.ca/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: application/json; charset=UTF-8
access-control-allow-origin: null
access-control-allow-credentials: true
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 16 Sep 2022 08:34:33 GMT
server: cafe
cache-control: private
content-length: 87
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/700437679/?random=1663317256849&cv=9&fst=1663315200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&frm=0&url=https%3A%2F%2Fwww.stahlroofing.ca%2Flogin.php%3Fonline_id%3Dcbedf98be5f21f9cdff6dd58b%26country%26iso&tiba=Page%20not%20found%20-%20Stahlroofing&async=1&fmt=3&is_vtc=1&random=3693447703&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/700437679/?random=1663317256849&cv=9&fst=1663315200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&frm=0&url=https%3A%2F%2Fwww.stahlroofing.ca%2Flogin.php%3Fonline_id%3Dcbedf98be5f21f9cdff6dd58b%26country%26iso&tiba=Page%20not%20found%20-%20Stahlroofing&async=1&fmt=3&is_vtc=1&random=3693447703&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/700437679/?random=1663317256849&cv=9&fst=1663315200000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2wg9e0&sendb=1&frm=0&url=https%3A%2F%2Fwww.stahlroofing.ca%2Flogin.php%3Fonline_id%3Dcbedf98be5f21f9cdff6dd58b%26country%26iso&tiba=Page%20not%20found%20-%20Stahlroofing&async=1&fmt=3&is_vtc=1&random=3693447703&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 16 Sep 2022 08:34:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=944216499563216&ev=PageView&dl=https%3A%2F%2Fwww.stahlroofing.ca%2Flogin.php%3Fonline_id%3Dcbedf98be5f21f9cdff6dd58b%26country%26iso&rl=&if=false&ts=1663317257192&sw=1280&sh=1024&v=2.9.81&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1663317257192.1793897234&it=1663317256900&coo=false&rqm=GET
31.13.72.36200 OK 44 B URL HTTP/2 www.facebook.com/tr/?id=944216499563216&ev=PageView&dl=https%3A%2F%2Fwww.stahlroofing.ca%2Flogin.php%3Fonline_id%3Dcbedf98be5f21f9cdff6dd58b%26country%26iso&rl=&if=false&ts=1663317257192&sw=1280&sh=1024&v=2.9.81&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1663317257192.1793897234&it=1663317256900&coo=false&rqm=GET
IP 31.13.72.36:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b798f4ce7359fd815df4bdf76503b295
f8cc6addf1707ad236ad9970b0a48f9733d07da5
10d8d42d73a02ddb877101e72fbfa15a0ec820224d97cedee4cf92d571be5caa
GET /tr/?id=944216499563216&ev=PageView&dl=https%3A%2F%2Fwww.stahlroofing.ca%2Flogin.php%3Fonline_id%3Dcbedf98be5f21f9cdff6dd58b%26country%26iso&rl=&if=false&ts=1663317257192&sw=1280&sh=1024&v=2.9.81&r=stable&a=tmgoogletagmanager&ec=0&o=30&fbp=fb.1.1663317257192.1793897234&it=1663317256900&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/gif
date: Fri, 16 Sep 2022 08:34:33 GMT
expires: Fri, 16 Sep 2022 08:34:33 GMT
last-modified: Fri, 21 Dec 2012 00:00:01 GMT
cache-control: no-cache, must-revalidate, max-age=0
set-cookie:
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 44
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash db503d6c6780cb1b8dfeffa10a50eada
51a459bdc02f20576031f526be6788f653095d94
b7a653d3c381c6cea5b6838aea01a7de8ea5c2d8bdf5ff92c4cd5c22829c8e8d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 10 Sep 2022 12:31:58 GMT
expires: Sun, 10 Sep 2023 12:31:58 GMT
cache-control: public, max-age=31536000
age: 504155
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 16 Sep 2022 00:48:31 GMT
expires: Sat, 16 Sep 2023 00:48:31 GMT
cache-control: public, max-age=31536000
age: 27962
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3474
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 08:34:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3474
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 08:34:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3474
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 08:34:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3474
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 08:34:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 35f3deb94b2a985eb02f5a14f033c44f
2076e4cb6faf9a7bf1cbfc8947db9a8550f556bd
1d5c76a54a4ab121ccf5f456516ec99fb7f5129a491e078d97c749b94060970a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1D5C76A54A4AB121CCF5F456516EC99FB7F5129A491E078D97C749B94060970A"
Last-Modified: Thu, 15 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3474
Expires: Fri, 16 Sep 2022 09:32:27 GMT
Date: Fri, 16 Sep 2022 08:34:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 69c9db5022c0c66909867f1e0946f5a8
9825e0fc606dc983280a6cd05803bb07e3435ef6
f2809509eee24ed69e6003ac9263423ea949bcc9205969c6cdd476e89ede9b01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5be0dbac-eae3-494b-bc73-d4df7f6c2f33.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8864
x-amzn-requestid: 6e1a82d1-e35e-4d77-be31-6969a13918da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU_6GiXoAMFaLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b98-46ca0525157031324749ee5b;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:39:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: sZDehRAgImuoJtVDIS6Mgz2871fOYrT0H7cx0QucG6mDuE1NmrW5Hw==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:50:59 GMT
age: 38614
etag: "9825e0fc606dc983280a6cd05803bb07e3435ef6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b7d4ee58e0f26ec6817dbab72aa7db6d
b6e634ef27eba9da38c6472565e0fdca6898e4f0
07db05a6ee70a699164ad55da47bfca58e6639956e256d902cbe0388cd7995c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a73e855-9877-4793-b59a-30b8e5a96117.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8435
x-amzn-requestid: f6efd924-4f54-41a6-8771-087803b5b8ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhU0-EJaoAMFvtQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239b52-37c21ee857fe27d104b70337;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:38:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rgjwYJ-ZzVF3bv7pl1l8TN8EAoENIcaSAXJU_YhFOSNRCzrCuPuKbQ==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:44:10 GMT
age: 39023
etag: "b6e634ef27eba9da38c6472565e0fdca6898e4f0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf0d71b3-30ed-483e-8bef-18d7a833ff57.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf0d71b3-30ed-483e-8bef-18d7a833ff57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 300d3b6181f9bcb7318b0706646787fa
9cf371e2ecdd46de7ea1290bb158b144a9de57bb
7059364a6076210e603301e0e3ad0009a5c1cd0b8821e321f704532e17b95e5e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbf0d71b3-30ed-483e-8bef-18d7a833ff57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6560
x-amzn-requestid: 0532b908-dbda-4d51-8574-dba85e33bfcf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YUrG7GTnoAMF9-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631e8bc5-35c25a2a76c8e0db6d7b06df;Sampled=0
x-amzn-remapped-date: Mon, 12 Sep 2022 01:30:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Xvgf5sF1GJNaJ2uERewkTcfwr3cUHVwU8-CXI7fK2K4t6JCsyPnzJg==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:27:11 GMT
age: 36442
etag: "9cf371e2ecdd46de7ea1290bb158b144a9de57bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e20b221-cd14-4696-aa45-979946430e9c.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e20b221-cd14-4696-aa45-979946430e9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ab434eb762838f03bf60457b3039c738
bcacfdb674bdd90c157f7e97d232c49a4d206004
9e1e6b832980c9777e3e90a7ff3d84f96d35bbaab808a74343d91cea01aa1d64
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5e20b221-cd14-4696-aa45-979946430e9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8076
x-amzn-requestid: e5521c18-64d3-4f61-8879-3dac61128920
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YbfzqG_hIAMFaQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6321467d-009f1413346a7b965d1c65e4;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 03:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: iuHNhGHNAWOnDQMh9cgYAVHgnCuyqLcXiYBUBzgK5PFyC1_AaE-CbA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 19:18:41 GMT
age: 47752
etag: "bcacfdb674bdd90c157f7e97d232c49a4d206004"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f876cdc19dca10c62d83d19303512c7f
9f812c7bc1b42b0cea3e42694e7d1f6738789770
c647aac44ba9eb501eb7def781ca0168b4eb71a716283cc6f4e6782939a396cc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F45619ede-b86e-4373-9398-fec60bb9e862.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12123
x-amzn-requestid: 2beedee9-cf7e-47d6-ac4d-3ca9251aa565
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfSWEFAZoAMFd6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322ca8d-37688e4a23c3234a25becf57;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 06:47:41 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: H2ySDtSQZtsrCA99y1a2_fLQcRI8hvN_nvA9U_V_iCm6c3cq3DigXQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 22:11:59 GMT
age: 37354
etag: "9f812c7bc1b42b0cea3e42694e7d1f6738789770"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a0fd33a-4b33-42d9-808a-0df897fbec53.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a0fd33a-4b33-42d9-808a-0df897fbec53.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 974f0e1d052879e47d9230adbd2935e4
d36b8ee08a7c5465ac2b0b0810f9dd4ff9dd6cb2
eb7d70fc9b159adbbaa96c0ee5d6032bb0839883b950b0d586a300dd1d8348bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a0fd33a-4b33-42d9-808a-0df897fbec53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12744
x-amzn-requestid: f5921831-e306-442b-a43f-e4cfc67980aa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YhUj4GlEoAMFxbQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63239ae5-7ae58b110d2dcfb507939612;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 21:36:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _nrQcy13_zOPbKnLI2-OCakZzR4MsMwO3t45Q9T0hnPL6HGnRo3uPQ==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 15 Sep 2022 21:44:03 GMT
age: 39030
etag: "d36b8ee08a7c5465ac2b0b0810f9dd4ff9dd6cb2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-K0ES5QG409>m=2oe9e0&_p=1198261595&cid=878512178.1663317257&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663317256&sct=1&seg=0&dl=https%3A%2F%2Fwww.stahlroofing.ca%2Flogin.php%3Fonline_id%3Dcbedf98be5f21f9cdff6dd58b%26country%26iso&dt=Page%20not%20found%20-%20Stahlroofing&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-K0ES5QG409>m=2oe9e0&_p=1198261595&cid=878512178.1663317257&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663317256&sct=1&seg=0&dl=https%3A%2F%2Fwww.stahlroofing.ca%2Flogin.php%3Fonline_id%3Dcbedf98be5f21f9cdff6dd58b%26country%26iso&dt=Page%20not%20found%20-%20Stahlroofing&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-K0ES5QG409>m=2oe9e0&_p=1198261595&cid=878512178.1663317257&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1663317256&sct=1&seg=0&dl=https%3A%2F%2Fwww.stahlroofing.ca%2Flogin.php%3Fonline_id%3Dcbedf98be5f21f9cdff6dd58b%26country%26iso&dt=Page%20not%20found%20-%20Stahlroofing&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.stahlroofing.ca
Connection: keep-alive
Referer: https://www.stahlroofing.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.stahlroofing.ca
date: Fri, 16 Sep 2022 08:34:33 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash cfd2db57907a02add07cc8f727a30ca6
f9a6f8af7868c0be0a22fee404e0b07cf737bbaa
d8bac3b77cb2732588815a8bcb3ad6a49e518f04f99bf20513d91ffb30eee947
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 16 Sep 2022 08:34:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/css/fonts/Roboto-Light.ttf
67.227.198.95200 OK 0 B URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/css/fonts/Roboto-Light.ttf
IP 67.227.198.95:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/stahlroofing/assets/css/fonts/Roboto-Light.ttf HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/css/main.css
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 21 May 2022 09:25:00 GMT
etag: "1ef48-5df822e5ad300-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:32 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-type: application/x-font-ttf
date: Fri, 16 Sep 2022 08:34:32 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
67.227.198.95404 Not Found 0 B URL HTTP/2 www.stahlroofing.ca/login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso
IP 67.227.198.95:0
GET /login.php?online_id=cbedf98be5f21f9cdff6dd58b&country&iso HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 404 Not Found
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://www.stahlroofing.ca/wp-json/>; rel="https://api.w.org/"
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-type: text/html; charset=UTF-8
date: Fri, 16 Sep 2022 08:34:31 GMT
server: Apache
X-Firefox-Spdy: h2
www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/css/fonts/Roboto-Bold.ttf
67.227.198.95200 OK 0 B URL HTTP/2 www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/css/fonts/Roboto-Bold.ttf
IP 67.227.198.95:0
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/stahlroofing/assets/css/fonts/Roboto-Bold.ttf HTTP/1.1
Host: www.stahlroofing.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.stahlroofing.ca/wp-content/themes/stahlroofing/assets/css/main.css
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
last-modified: Sat, 21 May 2022 09:25:02 GMT
etag: "1f300-5df822e795780-gzip"
accept-ranges: bytes
cache-control: max-age=31536000
expires: Sat, 16 Sep 2023 08:34:32 GMT
content-encoding: gzip
referrer-policy: no-referrer-when-downgrade
access-control-allow-origin: *
content-type: application/x-font-ttf
date: Fri, 16 Sep 2022 08:34:32 GMT
server: Apache
X-Firefox-Spdy: h2