GET canadavetexpress.b-cdn.net/images/product-pictures/Dorwest-Neutradog-Tablets-for-Dogs-and-Cats-100tabs_08092023_214031.jpg?class=img400
200 OK 9.4 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/Dorwest-Neutradog-Tablets-for-Dogs-and-Cats-100tabs_08092023_214031.jpg?class=img400
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 9.4 kB (9422 bytes)
MD5 986c8d0af405eaa9e1a21fc7e60c2017
SHA1 86404d0477dad6f22b692a429ea5bab43cda7e44
SHA256 76a82dce363aee68ad4aeecca89dad9f276d367ac9862f7a339d5c600887fb3c
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/Dorwest-Neutradog-Tablets-for-Dogs-and-Cats-100tabs_08092023_214031.jpg?class=img400 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 9422
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-289
x-downloadsize: 85175
x-bo-origindownloadtime: 55
x-bo-compressionratio: 88.94%
x-bo-processingtime: 16
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 8300160542529e415b4ba61612a12acc
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-7941cc06.js
200 OK 54 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-7941cc06.js
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (53433)
First Seen 2025-06-13
Last Seen 2025-08-08
Times Seen 2246
Size 54 kB (53552 bytes)
MD5 1d5e48a3dc1ca8087b73688a1ff9d1d9
SHA1 deb1fce1bac5c1d1e563b1d730bd721d34adca5a
SHA256 8e8f6cbc964b3da544e11a2ad0d0cab69a32eb901b8375a3b511ee26c017ba8d
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/js/twk-chunk-7941cc06.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: application/javascript
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb8afbb156be-OSL
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: "1d5e48a3dc1ca8087b73688a1ff9d1d9"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
age: 612896
cf-cache-status: HIT
vary: accept-encoding
alt-svc: h3=":443"; ma=86400
GET guarantee-cdn.com/Web/Seal/Static.aspx?CBF=bs_R.RollCBF&Type=RO&Promocode=Custom&ifID=Custom&DP=br%3DFirefox%3Bvr%3D134.0%3Bos%3DWindows%3Bsno%3Da&HASH=lhNjJXXABLwEjahewcn4ksnDIs%2B3LKml1yCJrwZru04oTpnpdqE9qNWmpGmf27%2FqdWF9cZAF4QbaSMBAQ4ni%2BQ%3D%3D&TS=bb6gg
200 OK 503 B URL GET HTTPS
guarantee-cdn.com/Web/Seal/Static.aspx?CBF=bs_R.RollCBF&Type=RO&Promocode=Custom&ifID=Custom&DP=br%3DFirefox%3Bvr%3D134.0%3Bos%3DWindows%3Bsno%3Da&HASH=lhNjJXXABLwEjahewcn4ksnDIs%2B3LKml1yCJrwZru04oTpnpdqE9qNWmpGmf27%2FqdWF9cZAF4QbaSMBAQ4ni%2BQ%3D%3D&TS=bb6gg
IP / ASN
23.49.31.215
#16625 AKAMAI-AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type HTML document, ASCII text, with very long lines (503), with no line terminators
First Seen 2023-03-12
Last Seen 2025-08-08
Times Seen 55
Size 503 B (503 bytes)
MD5 7238c34f65990657d94859209cb0b6bd
SHA1 f959b89937a3941e404ca6deaf130e93b0fb7181
SHA256 2ce758070a9c9a60b8e37c3934b0a3fd16fcab7e360212806eb15ef00068593b
Certificate Info
Issuer DigiCert Inc
Subject guarantee-cdn.com
Fingerprint 0F:A4:39:14:73:FE:F9:89:B4:5C:BE:39:DF:79:C4:77:A3:D5:C0:0B
Validity Wed, 09 Jul 2025 00:00:00 GMT - Sun, 09 Aug 2026 23:59:59 GMT
Technology Fingerprints
IIS:10.0 (Web servers) Internet Information Services (IIS) is an extensible web server software created by Microsoft for use with the Windows NT family.
Windows Server (Operating systems) Windows Server is a brand name for a group of server operating systems.
GET /Web/Seal/Static.aspx?CBF=bs_R.RollCBF&Type=RO&Promocode=Custom&ifID=Custom&DP=br%3DFirefox%3Bvr%3D134.0%3Bos%3DWindows%3Bsno%3Da&HASH=lhNjJXXABLwEjahewcn4ksnDIs%2B3LKml1yCJrwZru04oTpnpdqE9qNWmpGmf27%2FqdWF9cZAF4QbaSMBAQ4ni%2BQ%3D%3D&TS=bb6gg HTTP/1.1
Host: guarantee-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-encoding: gzip
server: Microsoft-IIS/10.0
p3p: CP="ALL DSP COR CUR ADM DEV TAI PSA PSD IVA IVD CONo HIS OUR SAMi LEG UNI NAV"
x-seal: 22
content-length: 476
cache-control: private, max-age=86400
expires: Sat, 09 Aug 2025 06:22:34 GMT
date: Fri, 08 Aug 2025 06:22:34 GMT
vary: Accept-Encoding
etag: "c435a1be9e399fbe"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/menu-open.png
200 OK 1.3 kB URL GET HTTPS
www.canadavetexpress.com/images/menu-open.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 45 x 45, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.3 kB (1252 bytes)
MD5 5462d220ec834dcf0b1feca424f08938
SHA1 e30c40a140372b6e0336b5bc2f538cf42d94e156
SHA256 b72fb8179859cd18b05622d8d6b736152b1a015b95e2f4714ab426ef086e0015
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/menu-open.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 1252
cf-ray: 96bceb610dff56a2-OSL
last-modified: Thu, 05 Sep 2024 08:56:02 GMT
accept-ranges: bytes
etag: "3fcb5c6f71ffda1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UU3oL9nJ6sMHCB%2BoGJYWWkRmERuLJbhnKuWjtVslQGojat%2Bor7Zf992PVA0m29XbnDRBDNylDva5qSyVBIYO1Fgi5MR5m0nNxNoLr7zEoDRTCJU32aqfiGTbSIxMhCzY82FaJ5%2Fv2qn6tw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=920&min_rtt=392&rtt_var=103&sent=182&recv=137&lost=0&retrans=0&sent_bytes=139262&recv_bytes=7671&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=920&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/nexgard-spectra-tab-xsmall-dog-44-77-lbs-orange-1600.jpg
200 OK 79 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/nexgard-spectra-tab-xsmall-dog-44-77-lbs-orange-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 79 kB (78736 bytes)
MD5 eba089da174931cc6ffa5ada07b3157a
SHA1 71838b01a48bbe038a5bef7310bac4e7aa0de4cd
SHA256 81a95693ffd53c69ab646ef37adefe56924edd865dac0f27fdfd7f32565db28e
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/nexgard-spectra-tab-xsmall-dog-44-77-lbs-orange-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 78736
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-292
x-downloadsize: 108034
x-bo-origindownloadtime: 42
x-bo-compressionratio: 27.12%
x-bo-processingtime: 42
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 3691ba8841baf25e38b5b7c28bc975f8
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/content/css/CatMonth-Promotion-Aug2023.css
302 Found 0 B URL GET HTTPS
www.canadavetexpress.com/content/css/CatMonth-Promotion-Aug2023.css
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-08
Times Seen 5722873
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /content/css/CatMonth-Promotion-Aug2023.css HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: text/html; charset=UTF-8
location: https://www.canadavetexpress.com/Error/NotFound
cf-ray: 96bceb622f6656a2-OSL
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qY90jN9Wc6Dsgh%2BlYVamBo6mnZIcnx2ZHsCMhYBf%2Bb68%2BvcqjMYPV0T1E6d3KWavo7Tw7vb%2B5lvJr2GnRY2crWPsRr9xOq0lRu8%2FAI8hKPlbIpcvqoWAoCoudKpeAfB2tL2V%2FYjPSjdeZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=2407&min_rtt=392&rtt_var=2423&sent=1177&recv=403&lost=0&retrans=1&sent_bytes=1401590&recv_bytes=8794&delivery_rate=51279711&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1072&x=0"
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-runtime.js
200 OK 2.3 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-runtime.js
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (2306), with no line terminators
First Seen 2025-07-23
Last Seen 2025-08-08
Times Seen 491
Size 2.3 kB (2306 bytes)
MD5 80c06e95c7ffc96eed83d9c05d0f11ea
SHA1 d8b4ffc1e2badf2c0061139849011ddd6843be2b
SHA256 f56522322949e289db4262ec6b2277cd1697ba0275ac82fd23daccb963a106b5
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:33 GMT
content-type: application/javascript
cf-ray: 96bceb82e8f356be-OSL
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: W/"80c06e95c7ffc96eed83d9c05d0f11ea"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: accept-encoding
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/black-friday-2023/popup/title.png
200 OK 2.6 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/black-friday-2023/popup/title.png
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 2.6 kB (2554 bytes)
MD5 0058846b3fc57b81e083d369e5568d4d
SHA1 8820f8a27363d59180b000313a992bf5ac637e20
SHA256 c86ba628c6a29234a5fb1ec617e5023ba4ac911f5f8a6523fd37d6378dab3871
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/black-friday-2023/popup/title.png HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 2554
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 07 Aug 2025 04:26:19 GMT
x-bo-server: LA-296
x-downloadsize: 3609
x-bo-origindownloadtime: 207
x-bo-compressionratio: 29.23%
x-bo-processingtime: 2
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/07/2025 04:26:20
cdn-edgestorageid: 830
cdn-requestid: 5f343f65e925f5da0d550285ac63dfc6
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/css/home-2024.css?id=26
200 OK 12 kB URL GET HTTPS
www.canadavetexpress.com/Content/css/home-2024.css?id=26
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with CRLF line terminators
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 12 kB (11986 bytes)
MD5 22fe9e802ae558ad5c80d674edf20c70
SHA1 9717e81884b77406231ce7257c75af04151da1a6
SHA256 0884f4928356a9bcbae968b287d1dd4583fa8fcd80fee049bea1d0a35e23b4cb
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/css/home-2024.css?id=26 HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: text/css
content-length: 3170
cf-ray: 96bceb614e4e56a2-OSL
content-encoding: gzip
last-modified: Mon, 30 Jun 2025 08:24:12 GMT
accept-ranges: bytes
etag: "6715e75b98e9db1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MPLG34XDEJj6wZwkg2irSYX0XfQqOsMX1Mt%2F2ywfUtxH3quCM5cyDZxGEtgpgiMXDyhkPs7kf7TIynurNS2EIEBRiee90V332A%2FlcNJYyWklXt%2Fe11I9Zy7UcBU9R7TfoYDSRzgcW97Anw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1349&min_rtt=392&rtt_var=1279&sent=113&recv=99&lost=0&retrans=0&sent_bytes=65208&recv_bytes=6975&delivery_rate=23297029&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=900&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/SeaFlex-Joint-Skin-and-Vitality-for-Cats-100g_07202023_041337.jpg
200 OK 68 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/SeaFlex-Joint-Skin-and-Vitality-for-Cats-100g_07202023_041337.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 68 kB (67830 bytes)
MD5 1a231bacc0998e943d0291d300baa78d
SHA1 d613b8906bb9a0ba23f20bc5cf98e33ec0c66bb1
SHA256 3c14531aa3360acad0ca4e93e78e20993997195cc05f87d66697dc2b300c82e3
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/SeaFlex-Joint-Skin-and-Vitality-for-Cats-100g_07202023_041337.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 67830
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-294
x-downloadsize: 159453
x-bo-origindownloadtime: 62
x-bo-compressionratio: 57.46%
x-bo-processingtime: 42
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 89f44ef0b015d0c166ba237d56d69b46
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-Offer-Banner/Apoquel-img.png
200 OK 22 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-Offer-Banner/Apoquel-img.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 225 x 177, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 22 kB (21704 bytes)
MD5 1a3805dde9a7347e68a7271b7aaf61b6
SHA1 49a2e43db4a06459b64ca4b4b6a6359e143180e1
SHA256 1499520fa4ec93d75113c1698b8bbce2618256c659a3a6df2809a0f5b0e5df47
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-Offer-Banner/Apoquel-img.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 21704
cf-ray: 96bceb621f4556a2-OSL
last-modified: Thu, 14 Mar 2024 06:44:27 GMT
accept-ranges: bytes
etag: "21293bfdb75da1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ijrwcnKf730R0i86VmTHoDAksPfS%2F1vZRFLZYq%2Bb4fQiEllET%2FqW7ogwDxLl5cxfmF6ecbcx58NeRtcNCm6%2BwuGWZjNDGWuI9OMsihpvxOixWb%2FIpm6jA56B%2BAtu7%2F7%2FnXkebzVkDwwBrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1351&min_rtt=392&rtt_var=825&sent=1465&recv=414&lost=0&retrans=1&sent_bytes=1773227&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1091&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-printset.png
200 OK 2.1 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-printset.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 2.1 kB (2097 bytes)
MD5 eb41d9521cb41f07eda79c37b8f79584
SHA1 dd70d4eb441c42488212f318ddd917778a3a39fc
SHA256 b9d4750de1b45e23bcd411c2b48c2df7f6dc16909a4c32396d3ac2b91b9a79ba
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-printset.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 2097
cf-ray: 96bceb624f8656a2-OSL
last-modified: Tue, 10 Dec 2024 03:33:49 GMT
accept-ranges: bytes
etag: "e93c8d53b44adb1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lhd3gOh8p8w%2FQF545heKfW0aCm9RIwyIXUBPVPLbhKrrsZngHA7sUfG%2B5%2FOZYbldelSjZjMdKbcvo%2BTYWBP%2BgcP%2FynX1af6wbsfR5v2F%2BugRPZyluVelqgglLs9VP9uVWrqT79pj5b%2BDvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=807&min_rtt=392&rtt_var=160&sent=1761&recv=448&lost=0&retrans=1&sent_bytes=2156744&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1112&x=0"
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-vendors.js
200 OK 324 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-vendors.js
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (65465)
First Seen 2025-06-13
Last Seen 2025-08-08
Times Seen 2704
Size 324 kB (324017 bytes)
MD5 a7187987440ee544ae011125a0c9ee40
SHA1 fa2bfdc9cc470a9e8277d6b3f4321fa2ffc6e8cb
SHA256 cacd267bd8b2bea1cab5cfed54427fb06c73c6b286a3de34310b4a72288c9c1b
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/js/twk-chunk-vendors.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:33 GMT
content-type: application/javascript
cf-ray: 96bceb82d8e756be-OSL
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: W/"a7187987440ee544ae011125a0c9ee40"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: accept-encoding
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/css/max-widget.css
200 OK 100 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/css/max-widget.css
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with very long lines (65536), with no line terminators
First Seen 2025-06-19
Last Seen 2025-08-08
Times Seen 2101
Size 100 kB (100514 bytes)
MD5 c5d5c6a53a4701fdf2366cd6a14c5172
SHA1 147035905c7fa9af055c79f2c6da48e37e4c6e73
SHA256 7f7f1a88ed3480e7a5aace83c2b93fb22dd24c1fbd5b49bfc6dee3a159b4e90c
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/css/max-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: text/css
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb8cabca56be-OSL
last-modified: Wed, 23 Jul 2025 10:30:15 GMT
etag: "c5d5c6a53a4701fdf2366cd6a14c5172"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
age: 603463
cf-cache-status: HIT
vary: accept-encoding
alt-svc: h3=":443"; ma=86400
GET canadavetexpress.b-cdn.net/images/product-pictures/636355815166477187.jpg
200 OK 10 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/636355815166477187.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 10 kB (10366 bytes)
MD5 e152e9c7860a4a226eb8079d4a083a23
SHA1 763c7432220fa656e44efad7706fd231af1df402
SHA256 5b590870584553de7c9f42058ad7ff3ffc3c7ddc27e2e3bb087d8f8ab0f244c4
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/636355815166477187.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 10366
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-290
x-downloadsize: 47592
x-bo-origindownloadtime: 17
x-bo-compressionratio: 78.22%
x-bo-processingtime: 6
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 57cd67dbbb4766f27f1ce654c3444070
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/favicon.ico
200 OK 188 kB URL GET HTTPS
www.canadavetexpress.com/favicon.ico
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type MS Windows icon resource - 9 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 188 kB (188317 bytes)
MD5 43d15c587e5cce040d5df33fdd8745f0
SHA1 3bdc2577a2137c93469dd7b8aaaacd0a56206f3a
SHA256 ac1ac12a3887caf007459b425a7f3d65dd1aeb56212db43802fbde8a1dd8aa9b
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1; HomeProduct=0; TrandingProductDog=0; TrandingProductCat=0; usource=wg; uts_id=uts1754634151.986; LCUTS_UID_901003=901003; __CK__WG__=12707_1738588_17546338021349_ab25f880fc; cf_clearance=cLfCY3vOfbSDLqZfvr09Z34ZCmb995wk6wNa1IOxgpY-1754634151-1.2.1.1-AdloZsgEnsvFJb3uo6plB0oFxihERrhB0ECU2YIyVVS1fNpTRmQPs4uoxuri9dKEZrbuUQNAjrP4KqzuJrwvXAaia6d68qXsnUZv1d3aAu8xJqvx_Fl_p4o2g.UnXy99LutOdJyk3WzJBvJh5c_iPHV4_L7UadJmYqAyMA9E2hA4OXCe4mOSsRwGv_R_ynrBt5UlEA91OQ.EpehEYcM6EtKAlpPW1x.QziqMEbgZPhE
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:32 GMT
content-type: image/x-icon
content-encoding: br
last-modified: Fri, 30 Jun 2023 05:10:33 GMT
etag: W/"36b4b93211abd91:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nEBLvRmNJfngbl%2F%2B9fuLc4jGRH8zMlHmVSBEmUTfuTTkBVw5xg%2FnGlELWUMa6FDdZyo9jtRF6CaAmvvgkEo9ZJK9havEF5O7VcktOiouFjJIAIWtta%2FPT9EXHr4W7H1fRxzkimRRO9%2BkUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 96bceb7a8d0756a2-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=944&min_rtt=392&rtt_var=741&sent=3285&recv=742&lost=0&retrans=1&sent_bytes=4063533&recv_bytes=24576&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=4848&x=0"
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-main.js
200 OK 121 B URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-main.js
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with no line terminators
First Seen 2023-03-07
Last Seen 2025-08-08
Times Seen 34136
Size 121 B (121 bytes)
MD5 da5bb1dc647470204df0e49f5afac2de
SHA1 f5cbf596ca5e4fe208e4c55af6e45b71f9febbe8
SHA256 705186becc9e0a306a6b4867ae2768aa9dd3b8c12393d9f9c52029e9a6fcf31c
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:33 GMT
content-type: application/javascript
content-encoding: br
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 96bceb82d8e356be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/css/model.css?id=1
200 OK 9.1 kB URL GET HTTPS
www.canadavetexpress.com/Content/css/model.css?id=1
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with very long lines (498), with CRLF line terminators
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 9.1 kB (9125 bytes)
MD5 df9fdd9954a9d6127f3733d7acb9dd73
SHA1 2f91e54b8d29bd7483b914b0b23a7be9dab35f13
SHA256 84b160ff47a09e78896e7164dec15f61b3a955bead70eae14292d29d4f60d4af
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/css/model.css?id=1 HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: text/css
content-length: 2878
cf-ray: 96bceb60fdda56a2-OSL
content-encoding: gzip
last-modified: Mon, 16 Dec 2024 09:16:35 GMT
accept-ranges: bytes
etag: "82e25a349b4fdb1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nQpVKPEtMhp90Uh5tOg9Ak2gYWnU0Ce6oEJ2zmPIr93UVnJKllpgJBHN9RDqLlmpBYBdAmqH18%2FgXdYtQm5uMBJdBdeyaPkcBBSH8HbPI7dKRxci8Z3NbxnBVXQa6IKgoo5LQb6aL6fjbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=943&min_rtt=392&rtt_var=773&sent=89&recv=82&lost=0&retrans=0&sent_bytes=48055&recv_bytes=5747&delivery_rate=23297029&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=876&x=0"
X-Firefox-Spdy: h2
GET nsg.symantec.com/Web/Seal/AltSealInfo.aspx?S=Large&T=M&Elem=ImgTagSeal&HASH=lhNjJXXABLwEjahewcn4ksnDIs%2B3LKml1yCJrwZru04oTpnpdqE9qNWmpGmf27%2FqdWF9cZAF4QbaSMBAQ4ni%2BQ%3D%3D&CBF=AB&AB=1&DP=fn=;src=ImgTagSeal;grt=true
200 OK 43 B URL GET HTTPS
nsg.symantec.com/Web/Seal/AltSealInfo.aspx?S=Large&T=M&Elem=ImgTagSeal&HASH=lhNjJXXABLwEjahewcn4ksnDIs%2B3LKml1yCJrwZru04oTpnpdqE9qNWmpGmf27%2FqdWF9cZAF4QbaSMBAQ4ni%2BQ%3D%3D&CBF=AB&AB=1&DP=fn=;src=ImgTagSeal;grt=true
IP / ASN
23.44.47.55
#16625 AKAMAI-AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type GIF image data, version 89a, 2 x 2
First Seen 2023-04-07
Last Seen 2025-08-08
Times Seen 195
Size 43 B (43 bytes)
MD5 6f70137b36f56c01695d840ba7e9a5e1
SHA1 9fea215be26ad875617dc50018e2993d8f066d5f
SHA256 32c7d53386c1adf86da869d56b7feda846e069bc9d66c6ca3144985d0cb4a606
Certificate Info
Issuer DigiCert Inc
Subject nsg.symantec.com
Fingerprint 22:E2:64:63:47:B1:DF:9F:61:2D:C9:93:82:01:CD:2F:B8:3A:0B:F1
Validity Mon, 13 Jan 2025 00:00:00 GMT - Fri, 13 Feb 2026 23:59:59 GMT
Technology Fingerprints
IIS:10.0 (Web servers) Internet Information Services (IIS) is an extensible web server software created by Microsoft for use with the Windows NT family.
Windows Server (Operating systems) Windows Server is a brand name for a group of server operating systems.
GET /Web/Seal/AltSealInfo.aspx?S=Large&T=M&Elem=ImgTagSeal&HASH=lhNjJXXABLwEjahewcn4ksnDIs%2B3LKml1yCJrwZru04oTpnpdqE9qNWmpGmf27%2FqdWF9cZAF4QbaSMBAQ4ni%2BQ%3D%3D&CBF=AB&AB=1&DP=fn=;src=ImgTagSeal;grt=true HTTP/1.1
Host: nsg.symantec.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/octet-stream
server: Microsoft-IIS/10.0
content-disposition: inline; filename=MP943026743a_Seal_BRX.gif
p3p: CP="ALL DSP COR CUR ADM DEV TAI PSA PSD IVA IVD CONo HIS OUR SAMi LEG UNI NAV"
x-seal: 22
content-length: 43
expires: Fri, 08 Aug 2025 06:22:28 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 08 Aug 2025 06:22:28 GMT
set-cookie: buySAFE=UniqueID=748d1d0f-6778-4fde-bb66-8c5283df03fa_54; expires=Sat, 08-Aug-2026 06:22:28 GMT; path=/
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-cart2.png
200 OK 1.2 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-cart2.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 25 x 24, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.2 kB (1244 bytes)
MD5 38cd2095425d32cb0f09f98498c2de82
SHA1 27bcefa47d850312f32465729715b10952b046cb
SHA256 b8e679563b4deba8a1a112df649d024def930bb7cb58ba2c478d8dae3a1b97fa
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-cart2.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/home-2024.css?id=26
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/png
content-length: 1244
cf-ray: 96bceb71aad056a2-OSL
last-modified: Fri, 06 Sep 2024 08:33:33 GMT
accept-ranges: bytes
etag: "f987875370db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=szEyfPiuv2pIZRgiZP0%2F4nhNLeNcFtm8jHww%2BjeaxHWi0ZtmhKzIcrE53hI5N5yApXLEKh6XBMu7ejRyqC9vr25MVrydsFkR2svfP86%2FbgDKqUldlIT8Td4ZTuaaKxqXfXBzWoO%2Bg9srXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1309&min_rtt=392&rtt_var=787&sent=2988&recv=656&lost=0&retrans=1&sent_bytes=3717609&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3424&x=0"
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/languages/en.json
200 OK 12 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/languages/en.json
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JSON text data
First Seen 2025-06-18
Last Seen 2025-08-08
Times Seen 2547
Size 12 kB (11595 bytes)
MD5 4662c7c182dfe30065936bfa05f8c773
SHA1 d1f155c335c31be5947ef8ebf82be1eee2782fc2
SHA256 2d2d85dfc80ec4f42d12bea574d59879d269b5c06557cf888367fbfa9036fe47
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/languages/en.json HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.canadavetexpress.com/
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: application/json
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb87dabdb4fa-OSL
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: W/"4662c7c182dfe30065936bfa05f8c773"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: accept-encoding
alt-svc: h3=":443"; ma=86400
GET www.canadavetexpress.com/Content/js/jquery.validate.unobtrusive.js
200 OK 19 kB URL GET HTTPS
www.canadavetexpress.com/Content/js/jquery.validate.unobtrusive.js
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text
First Seen 2023-03-08
Last Seen 2025-08-08
Times Seen 29
Size 19 kB (19366 bytes)
MD5 b8ce1b651fecf18f796c94235fb1baf9
SHA1 46313806832ea8dc5a45dc3188cfc7a3bfeb1a49
SHA256 5cd342f044b0dbd8a8a512ee91545ace53f8e13c678c698441a9c72799079ad9
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/js/jquery.validate.unobtrusive.js HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript
content-length: 5827
cf-ray: 96bceb628fef56a2-OSL
content-encoding: gzip
last-modified: Tue, 12 May 2020 05:05:14 GMT
accept-ranges: bytes
etag: "501f15ec1a28d61:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JRR9ANNNmWI2Sr5uQ%2FqUP5sdfN0NyCy45%2FjHR55ozaznroh91VOxdLWP8Q2aAGeJ7Cz3MT21HA36sVwAmbdLJJqZ1GPaZC7zzUNVWLmozfYKQf1SSoJ142eeTkZIgrbU2Eryvdfb6ofcpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=844&min_rtt=392&rtt_var=79&sent=480&recv=287&lost=0&retrans=0&sent_bytes=494343&recv_bytes=8794&delivery_rate=66143209&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=998&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/css/header-footer-2024.css
200 OK 21 kB URL GET HTTPS
www.canadavetexpress.com/Content/css/header-footer-2024.css
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with very long lines (375), with CRLF line terminators
First Seen 2025-08-01
Last Seen 2025-08-08
Times Seen 3
Size 21 kB (21205 bytes)
MD5 4bcf273113ab4824fc5f609cdb35eab2
SHA1 da133564eb93d229a33c273774e46f6190084516
SHA256 01460b2d555174a2fbfacb81f8ee93ec4df81be20d630639eb767035057b4422
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/css/header-footer-2024.css HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: text/css
content-length: 5855
cf-ray: 96bceb610de656a2-OSL
content-encoding: gzip
last-modified: Thu, 12 Jun 2025 03:03:54 GMT
accept-ranges: bytes
etag: "51c39ea146dbdb1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tmExSbfmGKpYd8q%2BCty8JZv5rEzd%2BDkDKvz8TKCKa3UdnUXbyPxXkLpqYbCWr4SDQ8gsKdcdiAojEhj3J861Gf4FvN2gKvszyQNChgSdtfpdrQol2J2iRzObc6hqTUIiqu5dyqXyxzw%2BbA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1134&min_rtt=392&rtt_var=833&sent=122&recv=105&lost=0&retrans=0&sent_bytes=70062&recv_bytes=7233&delivery_rate=23297029&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=911&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/banner/CVE-main-Itch-Free-August-25.png
200 OK 29 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/banner/CVE-main-Itch-Free-August-25.png
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 2
Size 29 kB (29324 bytes)
MD5 97e5cf9204f17fa5fe935e8e49e4c78d
SHA1 ac130979eb5f4eb8fcc1cb92a9f6e773ae7756fa
SHA256 48edc74c28f7de3aa9b75c61ad460f39d235eff8b5aa08ba9062debfa77ee0e4
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/banner/CVE-main-Itch-Free-August-25.png HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 29324
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-289
x-downloadsize: 82808
x-bo-origindownloadtime: 37
x-bo-compressionratio: 64.59%
x-bo-processingtime: 20
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 5580a8eb07347065f44c3c5e9c1b9a8f
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Mobile-03-new-Au-25.png
200 OK 100 kB URL GET HTTPS
www.canadavetexpress.com/images/Mobile-03-new-Au-25.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 300 x 495, 8-bit/color RGBA, non-interlaced
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 2
Size 100 kB (100122 bytes)
MD5 14539e25dadd983c39b521301f306a45
SHA1 b8934a4e91fb6fa2aaaa7a5b445470de3ceaa64b
SHA256 2f12d9b472f4abbf18941e7a975bf3a1ad4630d9bf8f0e024f4e335ba26f8399
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Mobile-03-new-Au-25.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 100122
cf-ray: 96bceb61cef556a2-OSL
last-modified: Mon, 04 Aug 2025 09:49:13 GMT
accept-ranges: bytes
etag: "9112149255dc1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kNzl%2Fp9FPwmp0aTDazuQe4%2FxJYNr6YrEFm3wIE5%2FiWBBgjauFmI0G5XaWnFUg0jNiPiKUtYVQ3tMdWMC3T4FiO29aUlhrZ5sCmgklI0%2B7FzCdRK4zCLfJGwG3f1pj1RmnU8aIKe%2BGPS3Iw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=989&min_rtt=392&rtt_var=673&sent=748&recv=387&lost=0&retrans=1&sent_bytes=839171&recv_bytes=8794&delivery_rate=44471744&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1032&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-chat/typing-right.gif
200 OK 9.4 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-chat/typing-right.gif
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type GIF image data, version 89a, 516 x 274
First Seen 2023-09-18
Last Seen 2025-08-08
Times Seen 11
Size 9.4 kB (9423 bytes)
MD5 b3a063bf1cb386360c3a0571498858c3
SHA1 c3c6483a7fa83fb9d2aeb7b7a230fa6abd915e7f
SHA256 9c829af722284d6777a18d1aed76f415923aed40d883d2a98c6a0181b04319b0
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-chat/typing-right.gif HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/gif
content-length: 9423
cf-ray: 96bceb626fd356a2-OSL
last-modified: Tue, 13 Sep 2022 05:44:28 GMT
accept-ranges: bytes
etag: "daac80e333c7d81:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UDhkF3TU2yVCOYsdwAQFw7sa46B6YqvVrs%2BpvhJJZ6%2Be0r0D%2BVeiKR%2B8rZK0xyEP3QGjtBp5xrwHa5UFT69oR3Ti%2BYhSOp%2B76oBEHGVljPRnVKmhjJvrYxyzyaXmF3yIgyIK5O3CU49lvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1226&min_rtt=392&rtt_var=870&sent=1544&recv=422&lost=0&retrans=1&sent_bytes=1876940&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1096&x=0"
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/css/message-preview.css
200 OK 54 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/css/message-preview.css
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with very long lines (54179)
First Seen 2025-05-21
Last Seen 2025-08-08
Times Seen 2474
Size 54 kB (54227 bytes)
MD5 cf8b411f67553ed2b3bf1b657505ee79
SHA1 3904b1f9bb1cbd141da1b82a2a97f25806bf268e
SHA256 cb2d548de9156da6f2ab619092a1caa835bb8f9eb5bdb2e3fc221fd00c27e1ef
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/css/message-preview.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: text/css
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb8c6bc656be-OSL
last-modified: Wed, 23 Jul 2025 10:30:15 GMT
etag: "cf8b411f67553ed2b3bf1b657505ee79"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
age: 776261
cf-cache-status: HIT
vary: accept-encoding
alt-svc: h3=":443"; ma=86400
GET canadavetexpress.b-cdn.net/images/product-pictures/nexgard-combo-for-cats-upto-55lbs-1600.jpg
200 OK 42 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/nexgard-combo-for-cats-upto-55lbs-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 42 kB (41736 bytes)
MD5 df427b7b2144dcbdac47b68e90220492
SHA1 8297319211d4ddf9a327f5d2e54350b682f31b78
SHA256 0b0b05c3fabf7e74310c6328e7aa4df4fce594bb612f09aaf9e854c4fd913a16
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/nexgard-combo-for-cats-upto-55lbs-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 41736
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-293
x-downloadsize: 66485
x-bo-origindownloadtime: 24
x-bo-compressionratio: 37.22%
x-bo-processingtime: 34
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: a110445f7ddc082d60e06af9b34552bc
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/revolution-for-kittens-puppies-pink-1600.jpg
200 OK 60 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/revolution-for-kittens-puppies-pink-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 60 kB (59560 bytes)
MD5 17c7af7ab1b5ac7c7946f0b731209e45
SHA1 eeead0fa1bd475985a2791396a74fa0cbf94b1fc
SHA256 d54d0e5adca3a83c851ef41fb73888c91ea0efde84f8994c58981058188c38ac
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/revolution-for-kittens-puppies-pink-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:29 GMT
content-type: image/webp
content-length: 59560
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-296
x-downloadsize: 77739
x-bo-origindownloadtime: 671
x-bo-compressionratio: 23.38%
x-bo-processingtime: 32
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:29
cdn-edgestorageid: 830
cdn-requestid: 2c0e0279e44958784f96d58c913d42a8
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-cart3.png
200 OK 1.2 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-cart3.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 25 x 24, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.2 kB (1167 bytes)
MD5 0002af40fd094da317f77ec8e689025d
SHA1 75cf8272305b3172a89037aad041496a1804523a
SHA256 f1573a4b6a77a061a241d3d618bc1d0e039a89cc2c7fb5d0b44e9c237bb10590
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-cart3.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/common.css
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/png
content-length: 1167
cf-ray: 96bceb719ac756a2-OSL
last-modified: Fri, 06 Sep 2024 08:33:54 GMT
accept-ranges: bytes
etag: "27d07182370db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u5YlNzkY0cWNzKh%2Fo5iFMtKzyY7uyxIJxH2433PIuSFu0pdUnJZ6OPiZhTZgCyt6xPcm6lL4RacYVWuy4Mq4cQ0fIhJCsDWgnyr7n%2BokKBAudqfUu94Xmd%2FjxfDzXtUhr4aY6BUDyiWcsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=899&min_rtt=392&rtt_var=320&sent=2960&recv=649&lost=0&retrans=1&sent_bytes=3690745&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3403&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-2024/Tranding-Product-dog.jpg
200 OK 34 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-2024/Tranding-Product-dog.jpg
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 390x575, components 3
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 34 kB (33567 bytes)
MD5 2150d74c57f1891377e4c23f1a10d9cc
SHA1 1d1f3897454b4ec04007a8ef02a56d104a8444a4
SHA256 cfa943f6c9d3a58bea310357dfa71256df2a46d0b6b611d1bf748f67c08a7dee
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-2024/Tranding-Product-dog.jpg HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/home-2024.css?id=26
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/jpeg
content-length: 33567
cf-ray: 96bceb719acd56a2-OSL
last-modified: Mon, 09 Sep 2024 07:41:21 GMT
accept-ranges: bytes
etag: "349dcaa8b2db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zzzd%2BWnx8kKGcmI1iuW2tcFNU15zmmJ6YoOioCBtsjctEBEfVr9RPdCBJgxSe3qjuDrOpIIEeLzEqOFIf7hqg5%2B3eut6R9425CE0m6N5XXyyQrkoCWlxaab9upWC1SDIH8ZAQL45UHLjXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1470&min_rtt=392&rtt_var=1470&sent=2967&recv=651&lost=0&retrans=1&sent_bytes=3695043&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3410&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/close.png
200 OK 4.2 kB URL GET HTTPS
www.canadavetexpress.com/images/close.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 200 x 200, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 4.2 kB (4155 bytes)
MD5 8ef724c5a027d467285f4303eeaea49c
SHA1 96cbbe98490fde49b6c5985ab888c00438dda42b
SHA256 da7c30419ef8d3f231b4ac69836d28cb9d919d249ca597ed8e3e72ae2f144349
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/close.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 4155
cf-ray: 96bceb612e2456a2-OSL
last-modified: Fri, 19 Jan 2024 06:27:37 GMT
accept-ranges: bytes
etag: "34534098a04ada1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l3yjT5JrGlAoCMoKuleCrs7TjxGZz7x4zBuwdns96xx8U%2F89LZZ%2BNBYTPTUnLpF8wnTwa1AQHnXBrnOBFJhBayd6uxxvpBC0oEBh0pSHEpGPI7X%2BjEdyEe3b9OED4pOclpKnm3ii9U1tAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=910&min_rtt=392&rtt_var=535&sent=107&recv=95&lost=0&retrans=0&sent_bytes=60483&recv_bytes=6686&delivery_rate=23297029&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=895&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/Dorwest-Omega-Star-For-Dogs-500ml_04222024_032220.jpg?class=img400
200 OK 7.4 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/Dorwest-Omega-Star-For-Dogs-500ml_04222024_032220.jpg?class=img400
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 7.4 kB (7414 bytes)
MD5 f634bf992f8c6576c3d78d2dd94912e1
SHA1 4888603c20344041df00cae76aecfda7e3a6ca84
SHA256 273cc572763c8eceba78fda25417824db0795a568c4c34599d3950564fae4f0a
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/Dorwest-Omega-Star-For-Dogs-500ml_04222024_032220.jpg?class=img400 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:29 GMT
content-type: image/webp
content-length: 7414
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-290
x-downloadsize: 25351
x-bo-origindownloadtime: 639
x-bo-compressionratio: 70.75%
x-bo-processingtime: 7
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:29
cdn-edgestorageid: 830
cdn-requestid: 95ab3fe10eb1205f3d37442057e32971
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-Offer-Banner/Apoquel-logo.png
200 OK 5.8 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-Offer-Banner/Apoquel-logo.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 150 x 40, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 5.8 kB (5822 bytes)
MD5 8f42593e4aded90eeac14b926c3244b3
SHA1 cb9f4062fbb95971ca2df8bd9c067e96a7e459ca
SHA256 376ac294ba064f06d5871db2257de8faba322b08e57cdb665af8f764677fa310
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-Offer-Banner/Apoquel-logo.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 5822
cf-ray: 96bceb620f4256a2-OSL
last-modified: Fri, 15 Mar 2024 09:46:52 GMT
accept-ranges: bytes
etag: "cc8e84b5bd76da1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BLLBD6BQFiBJLXWEWC42VpoSgoXQ2vKT51ZIG6aoBCDaWiBLbmLkzV8BiyuHMlmg5VkdIRom6oA%2FmrJ80HdlQuNqEWNoQGhnf%2Bg%2FITuiigkutu3rmtsXEmLYZCXzikrU68JsL2sg9CnUqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1068&min_rtt=392&rtt_var=859&sent=648&recv=380&lost=0&retrans=1&sent_bytes=707305&recv_bytes=8794&delivery_rate=44471744&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1022&x=0"
X-Firefox-Spdy: h2
GET cdn.izooto.com/scripts/d230cc476f8e85412fb1980639a4caf19c96cc29.js
200 OK 3.8 kB URL GET HTTPS
cdn.izooto.com/scripts/d230cc476f8e85412fb1980639a4caf19c96cc29.js
IP / ASN
104.16.255.64
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (3756), with no line terminators
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 3.8 kB (3766 bytes)
MD5 67a44e2dd4b30eb6fe96f48292d9149c
SHA1 60672f129f326b6745f4c8b40e62b326f03a7e0e
SHA256 b2408626a6271dc8912c778c48ecdc79abd4a6954c71703a49fc8fa677b986af
Certificate Info
Issuer Google Trust Services
Subject izooto.com
Fingerprint 4D:18:5E:7B:8A:86:32:4E:5A:22:DA:BC:F1:5C:E2:CB:3B:04:B4:F6
Validity Tue, 29 Jul 2025 14:44:04 GMT - Mon, 27 Oct 2025 15:43:45 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Cloudflare Bot Management (Security) Cloudflare bot management solution identifies and mitigates automated traffic to protect websites from bad bots.
GET /scripts/d230cc476f8e85412fb1980639a4caf19c96cc29.js HTTP/1.1
Host: cdn.izooto.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript
cf-ray: 96bceb6528715696-OSL
last-modified: Fri, 15 Nov 2024 03:52:01 GMT
vary: Accept-Encoding
etag: W/"6736c561-eb6"
x-xss-protection: 1; mode=block
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 93368
expires: Sat, 09 Aug 2025 06:22:28 GMT
cache-control: public, max-age=86400
set-cookie: __cf_bm=5Iqqf9sSy71msFx2FoTtFhG_mBMSg_ifEUd3vAksuAo-1754634148-1.0.1.1-weJAPKOPHoiyfBS67XnkaRyueEBWPj2g4Qy0qDObYUur.I3LxD2EcQ7tD2qiPAtPz6tHnAQbDpHCndFqKNJDfkHh.oSxwiEMZn_yMVguAUo; path=/; expires=Fri, 08-Aug-25 06:52:28 GMT; domain=.izooto.com; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/8359bcf47b68/main.js?
200 OK 10 kB URL GET HTTPS
www.canadavetexpress.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/8359bcf47b68/main.js?
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (10058), with no line terminators
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 4
Size 10 kB (10058 bytes)
MD5 02caed99d2c5294728cd7cf4ceafcc8b
SHA1 55e4e56ee6e8dba7852d93756b8aaa7ef925f8b7
SHA256 93a48ae54980300bbeb86cb5b8a1aa2d06c6219be7ea0ff263c0cedb1f285862
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/8359bcf47b68/main.js? HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1; HomeProduct=0; TrandingProductDog=0; TrandingProductCat=0; usource=wg; uts_id=uts1754634151.986; LCUTS_UID_901003=901003; __CK__WG__=12707_1738588_17546338021349_ab25f880fc
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:31 GMT
content-type: application/javascript; charset=UTF-8
content-encoding: br
cache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eme2l2PSzIXs8wqeIhzRYhG7bqSV1TwnQ%2B8Nb3GKauUIxosplOZ9esVIEWCwqkonSD4oJmnEXLnmPkoBLbkC%2FiFNOgx0%2FKPevaCigSsTRgnBqAsK%2F4g0j0WR0DFgkPNwxjLwap7ljXy4Eg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 96bceb77291056a2-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=2432&min_rtt=392&rtt_var=3822&sent=3269&recv=717&lost=0&retrans=1&sent_bytes=4055151&recv_bytes=11686&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=4252&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/Seraquin-joint-60x800mg-tab_03202025_042853.jpg
200 OK 27 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/Seraquin-joint-60x800mg-tab_03202025_042853.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 27 kB (27378 bytes)
MD5 3fadb3747001fb74a6bae75e872757f4
SHA1 e998eb9bee0a294e8fa2bd20f01d19a7706ad5b6
SHA256 33d538dc32b7f1d2292fa9b454596a597209aceb4972319fc293ca15a7b3215c
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/Seraquin-joint-60x800mg-tab_03202025_042853.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 27378
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-292
x-downloadsize: 124966
x-bo-origindownloadtime: 23
x-bo-compressionratio: 78.09%
x-bo-processingtime: 14
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 65d5c51be817a7285720b21fb5660130
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/js/lozad.min.js
200 OK 3.1 kB URL GET HTTPS
www.canadavetexpress.com/Content/js/lozad.min.js
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (1499)
First Seen 2023-03-07
Last Seen 2025-08-08
Times Seen 1239
Size 3.1 kB (3095 bytes)
MD5 0f856c2800426884c2acdd3e1819f3f7
SHA1 fc2b43e560c45bb887add98f17b084068a9232cb
SHA256 98e15110586a9877906d7a4ada5a789c0deaa285600027e1f3c7e925fb4b05b7
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/js/lozad.min.js HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript
content-length: 1523
cf-ray: 96bceb626fa756a2-OSL
content-encoding: gzip
last-modified: Wed, 17 May 2023 16:39:19 GMT
accept-ranges: bytes
etag: "25159420de88d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XR4AVRihCsjpHSyIV2FqdCOkd5eSR%2B8ujnTZ0%2FHFOpDoON1%2BYgxGmG446VMAP4Teck3EwBC7J6oh4ZVLOJA7xpLT1RkySjmI7ZwzLQREr5iC3Hq41JH5YWiJ96C9386WuYWar8bVxqeIFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=842&min_rtt=392&rtt_var=177&sent=1964&recv=473&lost=0&retrans=1&sent_bytes=2412871&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1145&x=0"
X-Firefox-Spdy: h2
GET trklc.canadavetexpress.com/js/uts_landing.php?source=uts&cgid=901003&cval=wg&cdur=30&aref=&dnt=1&uts_id=uts1754634151.986&backup_usource=&ls_uts_id=null&dc_uts_id=null&j12=[]&f63=LC1754634151.272
200 OK 0 B URL GET HTTPS
trklc.canadavetexpress.com/js/uts_landing.php?source=uts&cgid=901003&cval=wg&cdur=30&aref=&dnt=1&uts_id=uts1754634151.986&backup_usource=&ls_uts_id=null&dc_uts_id=null&j12=[]&f63=LC1754634151.272
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-08
Times Seen 5722873
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /js/uts_landing.php?source=uts&cgid=901003&cval=wg&cdur=30&aref=&dnt=1&uts_id=uts1754634151.986&backup_usource=&ls_uts_id=null&dc_uts_id=null&j12=[]&f63=LC1754634151.272 HTTP/1.1
Host: trklc.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Cookie: usource=wg; uts_id=uts1754634151.986; LCUTS_UID_901003=901003
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:31 GMT
content-type: text/html; charset=UTF-8
content-encoding: br
set-cookie: uts_901003=wg; expires=Sun, 07-Sep-2025 06:22:31 GMT; Max-Age=2592000; path=/; samesite=none; domain=.linkconnector.com; secure
uts_id_901003=uts1754634151.986; expires=Sun, 07-Sep-2025 06:22:31 GMT; Max-Age=2592000; path=/; samesite=none; domain=.linkconnector.com; secure
x-server: lcweb1
p3p: CP="NOI DSP COR NID CUR OUR NOR"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mFtLDadPGet1Ovvgsz63bqdzViQT3w3aNkbH7PPPRB9eiuQLr2l7C%2B0Bu94aDR5EaRgO5C7X7FnLW3i8v6QWBikHAcEmBPDi00POih6LtJcp8UEcyfFUwv93ZisQJUhAn3qpe0%2FJsNjnduB5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 96bceb743daa56a2-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1146&min_rtt=392&rtt_var=1020&sent=3281&recv=738&lost=0&retrans=1&sent_bytes=4062692&recv_bytes=24222&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=4547&x=0"
X-Firefox-Spdy: h2
GET va.tawk.to/v1/widget-settings?propertyId=5e99814e35bcbb0c9ab2119f&widgetId=default&sv=null
200 OK 2.6 kB URL GET HTTPS
va.tawk.to/v1/widget-settings?propertyId=5e99814e35bcbb0c9ab2119f&widgetId=default&sv=null
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JSON text data
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 2.6 kB (2631 bytes)
MD5 e514b4ed08905aeb78ad75e17d9a127e
SHA1 71b8895e3c2b15d449affa0dea387cfb7d1e4605
SHA256 bfd14a0b3bf4278d97ec5e16f47bd2826b1749ddec7b34771e15968e2d4c9a01
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /v1/widget-settings?propertyId=5e99814e35bcbb0c9ab2119f&widgetId=default&sv=null HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.canadavetexpress.com/
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: application/json
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb87cabcb4fa-OSL
x-served-by: visitor-application-preemptive-khn3
access-control-allow-origin: *
access-control-max-age: 3600
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-51-0"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
alt-svc: h3=":443"; ma=86400
GET canadavetexpress.b-cdn.net/images/product-pictures/revolution-plus-for-kittens-and-small-cats-28-55lbs-125-25kg-yellow-1600.jpg?class=img200
200 OK 6.7 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/revolution-plus-for-kittens-and-small-cats-28-55lbs-125-25kg-yellow-1600.jpg?class=img200
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 6.7 kB (6696 bytes)
MD5 461d434978a4eaa0601c20a27aeb1937
SHA1 7a618fa15825b6eeb9672492d4f5b1943e47d91d
SHA256 af0d89c75ad6fe6acc8450e0570ee10cb915bb9bd3bf36e144d59a28119aeed7
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/revolution-plus-for-kittens-and-small-cats-28-55lbs-125-25kg-yellow-1600.jpg?class=img200 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 6696
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 07 Aug 2025 04:26:19 GMT
x-bo-server: LA-296
x-downloadsize: 98644
x-bo-origindownloadtime: 110
x-bo-compressionratio: 93.21%
x-bo-processingtime: 7
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/07/2025 04:26:20
cdn-edgestorageid: 830
cdn-requestid: 238dd7fd56efefa23d80ea3b9b305d87
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/CVE-product-3-new-Aug-25.png
200 OK 101 kB URL GET HTTPS
www.canadavetexpress.com/images/CVE-product-3-new-Aug-25.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 302 x 496, 8-bit/color RGBA, non-interlaced
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 2
Size 101 kB (101003 bytes)
MD5 69b7f8fa6f9af528936c74908fa3c379
SHA1 86af3dff2e9b24987bf835545df50cc83db18f7a
SHA256 e4f3c61e6e3544a68160ad84ac4ce5ce24c5e360ad21d1c94c028994484b61f0
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/CVE-product-3-new-Aug-25.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 101003
cf-ray: 96bceb61beeb56a2-OSL
last-modified: Mon, 04 Aug 2025 09:43:04 GMT
accept-ranges: bytes
etag: "542c92d245dc1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=p6GWcCeUeWr1dc1OIp9mwcrQLpkXKhlmuG8CrqNZttTzOKQjtE6j2jlNIe%2FvRqkibdzNqcDJxX3dc8n%2Bf2k5912tM9BJzdt2yfjhWsnqWBMcAKK2t%2BtwWG7DORVyYGznnZkTjk0lXf2%2FtA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1638&min_rtt=392&rtt_var=1803&sent=773&recv=388&lost=0&retrans=1&sent_bytes=872577&recv_bytes=8794&delivery_rate=44471744&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1038&x=0"
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-2d0da3af.js
200 OK 14 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-2d0da3af.js
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (14269), with no line terminators
First Seen 2025-07-23
Last Seen 2025-08-08
Times Seen 388
Size 14 kB (14269 bytes)
MD5 06e9cc323c32604cc879c07600394713
SHA1 1be8ab437edbcbee98642d599c1342ec13fa7cc9
SHA256 63d366c0b721195caea66d9dcb2dda25a4cec0885eeb26b42637621b04bc51bf
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/js/twk-chunk-2d0da3af.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: application/javascript
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb8aebaf56be-OSL
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: "06e9cc323c32604cc879c07600394713"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
age: 605810
cf-cache-status: HIT
vary: accept-encoding
alt-svc: h3=":443"; ma=86400
GET www.canadavetexpress.com/images/Home-Offer-Banner/Simparica-Trio-img.png
200 OK 37 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-Offer-Banner/Simparica-Trio-img.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 225 x 177, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 37 kB (36781 bytes)
MD5 de857a4aadc84c0f6dc92f285c47627a
SHA1 85daa2d450104423ce357bf3e0a6299a3dbafc19
SHA256 6c4314482a3ebb09a1b0402dc8f755760430cef625d427261fe8dd2b5535d607
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-Offer-Banner/Simparica-Trio-img.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 36781
cf-ray: 96bceb622f6456a2-OSL
last-modified: Thu, 14 Mar 2024 06:44:39 GMT
accept-ranges: bytes
etag: "c0be3e16db75da1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VVcpW%2BOwEIxdqjcA1V9vzGHe7OEChFAPDqqr4bqAuN1eUJnVqNmgIa%2FJW6vonsEsIifOqSzD08S0IgVa5dW%2FePyN%2FA9p41%2B4jta94DFrc%2F2ClR2NuxPk5fXempBX9XnhxjdlnrAA4VwNqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1356&min_rtt=392&rtt_var=832&sent=1592&recv=428&lost=0&retrans=1&sent_bytes=1934681&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1104&x=0"
X-Firefox-Spdy: h2
POST va.tawk.to/log-performance/v3
200 OK 5 B URL POST HTTPS
va.tawk.to/log-performance/v3
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with CRLF line terminators
First Seen 2023-04-06
Last Seen 2025-08-08
Times Seen 4349
Size 5 B (5 bytes)
MD5 fda44910deb1a460be4ac5d56d61d837
SHA1 f6d0c643351580307b2eaa6a7560e76965496bc7
SHA256 933b971c6388d594a23fa1559825db5bec8ade2db1240aa8fc9d0c684949e8c9
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
POST /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.canadavetexpress.com/
Content-Type: application/json; charset=utf-8
Content-Length: 95
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:35 GMT
content-type: text/html; charset=utf-8
server: cloudflare
x-content-type-options: nosniff
content-encoding: br
x-served-by: visitor-application-preemptive-dl8c
access-control-allow-origin: https://www.canadavetexpress.com
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
cf-ray: 96bceb8fdbed56be-OSL
alt-svc: h3=":443"; ma=86400
POST www.canadavetexpress.com/CustomChatBot/GetRecentConversations
200 OK 26 B URL POST HTTPS
www.canadavetexpress.com/CustomChatBot/GetRecentConversations
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with no line terminators
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 26 B (26 bytes)
MD5 b04a6a0aedcd258ddb51d83913eacfbc
SHA1 a06cdf491b43d28972cc840211e38db19d4029cd
SHA256 d203d565254a77c98adcd3acfdeb586c437cd5c73f80dd0e85fb5c54ca965055
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET:4.0.30319 (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /CustomChatBot/GetRecentConversations HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
X-Requested-With: XMLHttpRequest
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1; HomeProduct=0; TrandingProductDog=0; TrandingProductCat=0; usource=wg; uts_id=uts1754634151.986; LCUTS_UID_901003=901003
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:31 GMT
content-type: application/json; charset=utf-8
content-length: 26
cf-ray: 96bceb754f2556a2-OSL
cache-control: private, s-maxage=0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pykxfaGBBUocFAMbu2fWqVPvCtvwZfM10NZ5BteBTCPa0x2UcCncFjqy1gBfZxQ6feeFdRQr%2FRU%2BJR5JYEtEJsWCVkWN6tUtk3F4cCJyMRJjHHVng0GhWdxG3%2Bpa5qfEKGYaLgdytGkufw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1545&min_rtt=392&rtt_var=1566&sent=3277&recv=734&lost=0&retrans=1&sent_bytes=4060492&recv_bytes=24222&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=4510&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/js/responsiveTabs.min.js
200 OK 10 kB URL GET HTTPS
www.canadavetexpress.com/Content/js/responsiveTabs.min.js
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (9739)
First Seen 2023-03-12
Last Seen 2025-08-08
Times Seen 15
Size 10 kB (9962 bytes)
MD5 67bfcfbe2c1b6299ac605d842cc7498f
SHA1 1b8bcbc2c86edb28985e90593632f2eaad2516b4
SHA256 7137986f2edcd543b27e124f01c4611fa9fc534379168381e20e1ab6ec39fbf4
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/js/responsiveTabs.min.js HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript
content-length: 3540
cf-ray: 96bceb625fa156a2-OSL
content-encoding: gzip
last-modified: Thu, 15 Mar 2018 09:14:40 GMT
accept-ranges: bytes
etag: "040cc3ebcd31:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2AZIsZRVMJgF4pZhU1yUkM6qeMu2t36qLXV6DYu%2B%2Fn%2BQDzce5eE%2Bfe2H0EiHxSLyMJmJLOuIQRLoVNtgoUluTZzk19FrXbrbnyOa5PltlfFO9d6uMFXDP2%2FOAwObaC4QdkQrnky89LMbcA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=891&min_rtt=392&rtt_var=263&sent=1765&recv=450&lost=0&retrans=1&sent_bytes=2159634&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1118&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/Content/css/jquery-confirm.css
200 OK 22 kB URL GET HTTPS
canadavetexpress.b-cdn.net/Content/css/jquery-confirm.css
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with very long lines (22185), with no line terminators
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 22 kB (22185 bytes)
MD5 e243d7b19fc333e2567fc67334f33871
SHA1 2ffa6fbf77529d36d47241809e32d668e79dec68
SHA256 715a2036c9a21d55954e66c2ea15ea353336f4994f30d125e015741c28b1a370
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /Content/css/jquery-confirm.css HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
content-encoding: br
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-291
x-downloadsize: 24231
x-bo-origindownloadtime: 44
x-bo-processingtime: 2
x-bo-compressionratio: 0%
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 62690e2b44ec5c25b672538f7952157d
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-search.png
200 OK 516 B URL GET HTTPS
www.canadavetexpress.com/images/icon-search.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 20 x 20, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 516 B (516 bytes)
MD5 e2da5d33453c067bd6be3095797700ee
SHA1 e01d72fde17ae63bad2342a354e6758c62f90b66
SHA256 acefeb02335be16e3ba4a31b65041e4bfb57b79539fa08f1da1d1e784d8ad2c4
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-search.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/header-footer-2024.css
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/png
content-length: 516
cf-ray: 96bceb717aad56a2-OSL
last-modified: Thu, 05 Sep 2024 07:08:19 GMT
accept-ranges: bytes
etag: "9834ec6262ffda1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=c%2F2RhisLIE4GlSRrztrD2OVd26pFDGyZvyJnzDiPjWElEjVaZeg46LAwVwafBoyGITurEeqRzR2t3LYBRFh0KwfJEy9QB%2F158EEbUHAemNWjb9S74ST3PopSgk9lhyb57eJZxnivnr%2Bkzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=874&min_rtt=392&rtt_var=148&sent=3128&recv=681&lost=0&retrans=1&sent_bytes=3895889&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3548&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/we-accept.png
200 OK 4.8 kB URL GET HTTPS
www.canadavetexpress.com/images/we-accept.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 132 x 27, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 4.8 kB (4775 bytes)
MD5 64fa175d5eeda2898fb0615a66909906
SHA1 0fb6015fb68c14eecb21f1ff05cb955f459d1288
SHA256 645fa21cef02b3fb1b2ecef2d97528f8b78aa3e6c88c37f0d09bea85f330ae3a
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/we-accept.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 4775
cf-ray: 96bceb624f8756a2-OSL
last-modified: Fri, 06 Sep 2024 06:18:28 GMT
accept-ranges: bytes
etag: "725bf96240db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JfWR1SbGm1WYF4kxVaGnfkVdUVJH2luoxOAXYmD7JifW%2BiyjxhnfG2xVtSCUwRy3CKfF8%2Fl8BGUEHM2xXdn5uqSgJepUAV3h4wLgz4ZhbicMlChvV2QBSeoB%2FHiNg3zOeDG0ZBqhk6mKbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=910&min_rtt=392&rtt_var=442&sent=1716&recv=437&lost=0&retrans=1&sent_bytes=2097978&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1110&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/js/sweetalert.min.js
200 OK 17 kB URL GET HTTPS
www.canadavetexpress.com/Content/js/sweetalert.min.js
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (16977), with no line terminators
First Seen 2023-03-07
Last Seen 2025-08-08
Times Seen 2017
Size 17 kB (16977 bytes)
MD5 0068f44b0aa1b83fa7679860ceb26590
SHA1 20d5cdb9d2002442843baab241f2e883563d1de5
SHA256 7a056fc64aba501090c8acd106b0c7bbc9a267914e695ae34aa42a6ae2a094a7
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/js/sweetalert.min.js HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript
content-length: 6751
cf-ray: 96bceb627fe756a2-OSL
content-encoding: gzip
last-modified: Tue, 21 May 2019 13:37:03 GMT
accept-ranges: bytes
etag: "90a76046dafd51:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ITh%2BGcKJXkJKjphTfvVsbucVS15nKvzPNG%2FjS7d%2BzS%2BVavGBk7s%2BXDIQTy8OHcaHuPigmKDzhHfVe0vsRgWLei54O6lhi5qmh3eT%2BzJaxEpiWUX1UtBxhsQlaDtNjNnl%2BHPuTaUPicvRbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1208&min_rtt=392&rtt_var=716&sent=1575&recv=427&lost=0&retrans=1&sent_bytes=1915186&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1102&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/arrow-down2.png
200 OK 232 B URL GET HTTPS
www.canadavetexpress.com/images/arrow-down2.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 8 x 8, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 232 B (232 bytes)
MD5 1b0170d403f3e4ef12172fc4bbc6709e
SHA1 bd3d85ac26e07ec65e9a81a2fe22e4c4d1559a17
SHA256 a28227d3d038efe6a35f723442c7e3e56dd98eb936b9b1dbf3df2184d877fe5b
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/arrow-down2.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/header-footer-2024.css
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/png
content-length: 232
cf-ray: 96bceb717ab156a2-OSL
last-modified: Thu, 05 Sep 2024 09:27:01 GMT
accept-ranges: bytes
etag: "38b217c375ffda1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KM9v4gUQI6Tgfip5sjbwH3WPQckxwUlyxJNf16iu4kuuAq7Ihuv0MPvHxG9DjPsGC4bXZGy%2B98TnqiAuFD%2BzUpsHmSEIgohRFqvUbdjckw%2BdlOBQuFYVbrj3xWlOVsmZAg9m8siPF0QYkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=823&min_rtt=392&rtt_var=167&sent=2954&recv=647&lost=0&retrans=1&sent_bytes=3688108&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3391&x=0"
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-common.js
200 OK 239 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-common.js
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (65458)
First Seen 2025-07-23
Last Seen 2025-08-08
Times Seen 492
Size 239 kB (238742 bytes)
MD5 9c9de45502eefb0e53a176e6afa25477
SHA1 5cd431aabce89a486150e5ffe59829cce6889659
SHA256 0de680dc2196f28902229fc1b8e444f52f84403a50583378b3f571b5d6cc7eb1
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:33 GMT
content-type: application/javascript
cf-ray: 96bceb82d8eb56be-OSL
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: W/"9c9de45502eefb0e53a176e6afa25477"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: accept-encoding
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/css/home-responsive-2024.css?id=17
200 OK 10 kB URL GET HTTPS
www.canadavetexpress.com/Content/css/home-responsive-2024.css?id=17
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with CRLF line terminators
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 10 kB (10354 bytes)
MD5 9f0f9a2ee49faa06abfe69345bb1aee2
SHA1 2e55fc1050f8244d9de7c2400075b3f5b5d82aa4
SHA256 fcb447a48edf31787c06e1e44303ce37dbf7c916d5ee88610aa0580bdf232a48
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/css/home-responsive-2024.css?id=17 HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: text/css
content-length: 2709
cf-ray: 96bceb614e5356a2-OSL
content-encoding: gzip
last-modified: Mon, 30 Jun 2025 08:33:44 GMT
accept-ranges: bytes
etag: "3cd9e7b099e9db1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FRwWLE4CwvzI9dWizo4LrynrQtO0xl2v5iHh01tvzNVwuzfSu%2BXs0IgaYOvJHH0H%2B6bJShg%2BLg2rayu0Rm2DvKYaA3%2BzCr9NBZVlowv7JmQb916E6KhnYR4bWt%2FvVrwW%2B2oSrLuH1pfIJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1045&min_rtt=392&rtt_var=328&sent=185&recv=138&lost=0&retrans=0&sent_bytes=141308&recv_bytes=7671&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=921&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/simparica-trio-for-dogs-28-55-lbs-gold-1600-1.jpg
200 OK 26 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/simparica-trio-for-dogs-28-55-lbs-gold-1600-1.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 26 kB (25546 bytes)
MD5 3c8275fd35086818b09611821a92fae3
SHA1 3a3b05ec3b3cf5ff771f7bf7619685929c5393ca
SHA256 e19992a2438c978a47437503ce06d10f0f5d98b39675f526374aedab3c6a2f1d
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/simparica-trio-for-dogs-28-55-lbs-gold-1600-1.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 25546
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-294
x-downloadsize: 56280
x-bo-origindownloadtime: 65
x-bo-compressionratio: 54.61%
x-bo-processingtime: 11
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 706858f3e2398818a2f5edfe54c4edf7
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-2024/icon-satisfaction.png
200 OK 3.3 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-2024/icon-satisfaction.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 84 x 78, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 3.3 kB (3347 bytes)
MD5 b7c4c869c1f8d2a59a11a83375398871
SHA1 074196744678c4b0e593ae958a27b45718ca0939
SHA256 1a0e97a28efdd00973c86f6887764aa8a7a46324df9ea53337dfee693782c9ca
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-2024/icon-satisfaction.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 3347
cf-ray: 96bceb61ff3556a2-OSL
last-modified: Mon, 16 Sep 2024 08:25:39 GMT
accept-ranges: bytes
etag: "f73f583128db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WAYrZSW4kj0SOtb3uaAAdASwAefsNzrwSWphAiaQYu%2Fc6GIwuryXUMuc78umb0HN7aY6q05byVZb0WlQJCE31A4lO6x5DI4QKquh%2BNDyObjNor%2FtTR8bvsEbJv7J%2FgJFtAn1O6doxTLqZw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=781&min_rtt=392&rtt_var=80&sent=638&recv=377&lost=0&retrans=1&sent_bytes=699855&recv_bytes=8794&delivery_rate=44471744&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1021&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-Offer-Banner/Comfortis-Plus-img.png
200 OK 36 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-Offer-Banner/Comfortis-Plus-img.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 225 x 177, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 36 kB (36124 bytes)
MD5 a68c6d87ab604d022708e6738f3e2b04
SHA1 c95a2ebfdc8256bba543ea5c0a60e01267477fbe
SHA256 8573eecbce7b432b8914b391d408818a2c32facebb1c63086318563d2fe90374
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-Offer-Banner/Comfortis-Plus-img.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 36124
cf-ray: 96bceb621f5156a2-OSL
last-modified: Thu, 14 Mar 2024 06:43:19 GMT
accept-ranges: bytes
etag: "e0c5e8e6da75da1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=O8ljKkW4NVS%2FqmOnvx53EL%2FInQik7GW7UFE9a51nNzte6LG2%2FRWjjSEm4LxnPY92GWzTk77%2F97oV9d%2FLR3CUYD9KzsXi78QFc0rBqPsdXzRwFZ%2F%2BVlI4SnDeA42mrpuvYS1YZHxkqY%2BeAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1118&min_rtt=392&rtt_var=833&sent=279&recv=184&lost=0&retrans=0&sent_bytes=239942&recv_bytes=8402&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=946&x=0"
X-Firefox-Spdy: h2
POST va.tawk.to/v1/session/start
200 OK 1.1 kB URL POST HTTPS
va.tawk.to/v1/session/start
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JSON text data
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 1
Size 1.1 kB (1115 bytes)
MD5 b2672109824ef9c9b69361a570ca7e07
SHA1 83e5cc222a5e592b6fe372c55ea2d64a8af9cdb1
SHA256 0cb3b44e6db75cf53b5cd1e966fd49531bf25856de0cacdc33633b4229af626f
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
POST /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.canadavetexpress.com/
Content-Type: application/json; charset=utf-8
Content-Length: 283
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: application/json
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb88fac5b4fa-OSL
x-served-by: visitor-application-preemptive-dl8c
access-control-allow-origin: https://www.canadavetexpress.com
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
alt-svc: h3=":443"; ma=86400
GET embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-6289ff8e.js
200 OK 105 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-6289ff8e.js
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
First Seen 2025-07-23
Last Seen 2025-08-08
Times Seen 397
Size 105 kB (105323 bytes)
MD5 729b866c272123661068102b59877f20
SHA1 e86afd95f8cc443694586b6a1c5c2565beb2ecf8
SHA256 91aa0c14b5799a9be6d07b3cd2f462bb511b0510c8052fd48601a8b474cc9fb0
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/js/twk-chunk-6289ff8e.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: application/javascript
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb8afbb256be-OSL
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: "729b866c272123661068102b59877f20"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
age: 706529
cf-cache-status: HIT
vary: accept-encoding
alt-svc: h3=":443"; ma=86400
GET www.canadavetexpress.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
200 OK 1.2 kB URL GET HTTPS
www.canadavetexpress.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (1238)
First Seen 2023-03-07
Last Seen 2025-08-08
Times Seen 99118
Size 1.2 kB (1239 bytes)
MD5 9e8f56e8e1806253ba01a95cfc3d392c
SHA1 a8af90d7482e1e99d03de6bf88fed2315c5dd728
SHA256 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript
last-modified: Tue, 05 Aug 2025 19:08:06 GMT
etag: W/"68925696-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=soJUUxwXiT62YXPcUdgdhmfVEvUd7k%2BLvLQ9xx62ElGKW3na46o7DuinwrsayKsmfZKo5LJ1hiiWF%2BaQin4tROaXg1ibVIllF6yAdX9RGo3disOKuUsxp%2FZsbcC9r%2FH3VLJtxoPgKk9fAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 96bceb624f8856a2-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 10 Aug 2025 06:22:28 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-phone.png
200 OK 1.9 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-phone.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.9 kB (1890 bytes)
MD5 3e7ac7e9e67ab4036edf1f5966f31fa9
SHA1 104cc5f8c8970fe2da7e4d504379a3f10f9ee00f
SHA256 014cd41b58c1f1ff984b291faf75cdda972da5026eba9c20a6345c5118ea8c4e
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-phone.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/header-footer-2024.css
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/png
content-length: 1890
cf-ray: 96bceb717aa956a2-OSL
last-modified: Mon, 16 Sep 2024 08:31:57 GMT
accept-ranges: bytes
etag: "b159dce4128db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AJzZSOaB5G%2FALyYDnA3H7gUbO0A7%2F8aXcym1IHwiVdPCUWUFPVhn%2Bs%2BXfepofrwUvkJGZthfQ99rpzbIzJ6XL7oOtDKdOiSTQwdMI3cP9qO5fuO%2B5Xetn%2B39CbBWASXUGQxyUqL2Y7XOLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1171&min_rtt=392&rtt_var=647&sent=3168&recv=683&lost=0&retrans=1&sent_bytes=3946366&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3554&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/mobiflex-mobility-supplement-for-dogs-and-cats-1600.jpg
200 OK 24 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/mobiflex-mobility-supplement-for-dogs-and-cats-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 24 kB (23628 bytes)
MD5 aae07664cbb49d0dd98fed69cc2be1af
SHA1 4afe76f726f167257614c6e22d9eb85b0afa3cd1
SHA256 321e7af0fcf4e5136bb4c4506c78a4a86f12e7f9172d0b4579ac7b82cf1ee3d0
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/mobiflex-mobility-supplement-for-dogs-and-cats-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 23628
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-292
x-downloadsize: 38554
x-bo-origindownloadtime: 49
x-bo-compressionratio: 38.71%
x-bo-processingtime: 32
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: baff89de2c110f5c0363bbc8dd604614
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/drontal-for-cats-up-to-88lbs-1600.jpg
200 OK 32 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/drontal-for-cats-up-to-88lbs-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 32 kB (31766 bytes)
MD5 0cf530a696306a8040a56005e95e2269
SHA1 63d05545512371889bc199645dd87492983db2a7
SHA256 60e484136ba9cd991885057940f0d13c48e4baeebfdfced222753c385ed890df
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/drontal-for-cats-up-to-88lbs-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 31766
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-292
x-downloadsize: 52954
x-bo-origindownloadtime: 15
x-bo-compressionratio: 40.01%
x-bo-processingtime: 30
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 377914a50f422d99c58ee260fbb6c24e
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/js/GoogleOneTapLogin.js
200 OK 2.3 kB URL GET HTTPS
www.canadavetexpress.com/Content/js/GoogleOneTapLogin.js
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with CRLF line terminators
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 2.3 kB (2287 bytes)
MD5 ef745afd2065890991847e7937aa1dc1
SHA1 68bdbbb5845801a2b1d142410c05f0f5cd37d5d0
SHA256 22af54ef9594c26b0ba2981a9716169977a09589977fceb6034991c6efd5b350
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/js/GoogleOneTapLogin.js HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript
content-length: 1170
cf-ray: 96bceb62d87756a2-OSL
content-encoding: gzip
last-modified: Mon, 26 Feb 2024 06:20:01 GMT
accept-ranges: bytes
etag: "ea8d7bd47b68da1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gn%2BV3Tvv8f3IW3BMOT8402FQ%2BbnGNxE%2FDfnsch%2FgUDOoAYTIi4B6k5euRmC9EtRJNHNVQUuItZsYidVivoV%2BpBXACOk3sAPgTko3IhNe5OMRMo7JqKperzUR9qA9L7avPZpwCe2JTumtpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=821&min_rtt=392&rtt_var=88&sent=2150&recv=504&lost=0&retrans=1&sent_bytes=2647008&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1217&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/BG-Newsletter.jpg
200 OK 4.6 kB URL GET HTTPS
www.canadavetexpress.com/images/BG-Newsletter.jpg
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1200x170, components 3
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 4.6 kB (4622 bytes)
MD5 efc13709cf832015eec97ced206300bf
SHA1 f564fc27262984a8c8c02c28ba153acf23d698e2
SHA256 0a6ed1c51c49f0c9a6e3795ace0133efc66579a7cf4862fa866fb15da554728f
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/BG-Newsletter.jpg HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/header-footer-2024.css
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/jpeg
content-length: 4622
cf-ray: 96bceb71caf756a2-OSL
last-modified: Mon, 16 Sep 2024 08:26:52 GMT
accept-ranges: bytes
etag: "f34f862e128db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HSfHve5EZRLaCQl3Y4sRDW3bQEyoailVAPNmr20cWGGe3S9YOZL6cf%2FUzoAykr%2BTfG86sOZZYiJ4pdWwOyzT3KF9tXpa02xxsWiwQq6A724KQnjnTAYF3j5SP%2B1xT0w%2FxP6dt%2FTJkUEALQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=2466&min_rtt=392&rtt_var=2597&sent=3004&recv=659&lost=0&retrans=1&sent_bytes=3736659&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3439&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-2024/BG-Home-Testimonials.jpg
200 OK 170 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-2024/BG-Home-Testimonials.jpg
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 2056x428, components 3
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 170 kB (169844 bytes)
MD5 8fa7848be7999046be50b199357f451f
SHA1 2aec7bb134b45dd30314dfb56aa6fbf11a5c04d0
SHA256 880c3837bc5239aca2b7cfac7798031263a2ca806ccac95aeff2dd02a7a04619
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-2024/BG-Home-Testimonials.jpg HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/home-2024.css?id=26
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/jpeg
content-length: 169844
cf-ray: 96bceb71caf656a2-OSL
last-modified: Thu, 19 Sep 2024 05:20:20 GMT
accept-ranges: bytes
etag: "77a4309f53adb1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FRy3JOV6KxcqcRbPD59XnuC8lHVDr1gjLCRt3OESh1gOaqxzBGYoRCs%2Brvp%2F%2FwRf0ifJVQwMuLhwdNdd7TLzfy%2FZb6F6ImhCB6bGqL2RQHz4QaisrnpHaY9OAZd%2Fmlc%2Bc7LlcCJkMBvMaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1472&min_rtt=392&rtt_var=1403&sent=3023&recv=665&lost=0&retrans=1&sent_bytes=3759134&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3463&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-2024/icon-free-shipping.png
200 OK 451 B URL GET HTTPS
www.canadavetexpress.com/images/Home-2024/icon-free-shipping.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 32 x 22, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 451 B (451 bytes)
MD5 f66f8140743829233afb68fbfa95c1e8
SHA1 cbf43e625e6aa282872bd5c7f90531f5732a3227
SHA256 af6dc9a2cf19f9a24d47908fecfd374f8d3c9ca706fbfc88152f833d7a3812da
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-2024/icon-free-shipping.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 451
cf-ray: 96bceb610dfc56a2-OSL
last-modified: Thu, 05 Sep 2024 06:52:39 GMT
accept-ranges: bytes
etag: "81f8e3360ffda1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KbS3F6r5xBf3n5Q3Ib71bV2lIWpaJ4%2F7QTbOULVmUmxM%2FsiTkflR%2Fch08%2F1%2B6ZVJH2lPpLkicaXc8t68j8ca24e63EcchNGl6Rb0amS1T%2FczuTdwH7DxOKxugtDhP3Nx1LDbFL%2BthW7AFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=968&min_rtt=392&rtt_var=262&sent=251&recv=170&lost=0&retrans=0&sent_bytes=213402&recv_bytes=8212&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=934&x=0"
X-Firefox-Spdy: h2
GET accounts.google.com/gsi/style
200 OK 719 B URL GET HTTPS
accounts.google.com/gsi/style
IP / ASN
142.250.150.84
#15169 GOOGLE
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with very long lines (719), with no line terminators
First Seen 2025-06-24
Last Seen 2025-08-08
Times Seen 5715
Size 719 B (719 bytes)
MD5 fa096f673da30f4376837855ae5571e0
SHA1 fefa42a00b477dfd1c53e15c0629d4425d2a5c88
SHA256 0e0cd6f15de1d56e6ec8035f3d8b613e4d439e9960db744ddff94a308b77eada
Certificate Info
Issuer Google Trust Services
Subject *.google.com
Fingerprint 60:9F:41:D7:83:68:5E:64:22:9D:7C:5E:2D:7B:C9:C5:07:DA:C6:D8
Validity Mon, 07 Jul 2025 08:34:14 GMT - Mon, 29 Sep 2025 08:34:13 GMT
GET /gsi/style HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
expires: Fri, 08 Aug 2025 06:22:33 GMT
date: Fri, 08 Aug 2025 06:22:33 GMT
cache-control: private, max-age=86400
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-security-policy: script-src 'nonce-sAkouhLDR0zJrpMlXzJyDg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET canadavetexpress.b-cdn.net/images/product-pictures/heartgard-plus-chewables-small-dogs-up-to-25lbs-blue-1600.jpg?class=img200
200 OK 7.0 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/heartgard-plus-chewables-small-dogs-up-to-25lbs-blue-1600.jpg?class=img200
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2024-08-19
Last Seen 2025-08-08
Times Seen 11
Size 7.0 kB (6976 bytes)
MD5 192ae94132b2db76e4e38f270630d7b5
SHA1 682e06eb18b4485f20b1ee4621ae67abe0c4572c
SHA256 2529f34ae4ba6b43ec93ca6b6dd0314622a9dbac00f85eaaf1edf492b99bb7b2
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/heartgard-plus-chewables-small-dogs-up-to-25lbs-blue-1600.jpg?class=img200 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 6976
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-294
x-downloadsize: 99363
x-bo-origindownloadtime: 72
x-bo-compressionratio: 92.98%
x-bo-processingtime: 7
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: ed4b1b390b56678289d0be682891e98e
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/rating-star.png?id=1
200 OK 8.8 kB URL GET HTTPS
www.canadavetexpress.com/images/rating-star.png?id=1
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 300 x 55, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 8.8 kB (8782 bytes)
MD5 51044c3da3d08071f3b9293757e4971b
SHA1 059ba33940516c03ffbdc055e19f55b7f4e0ea6d
SHA256 cb3a00154ace0c08a8f6a534d6b5216e5be61b28dcb97444944407f3ae088bc0
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/rating-star.png?id=1 HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 8782
cf-ray: 96bceb619ecb56a2-OSL
last-modified: Thu, 12 Jun 2025 03:53:01 GMT
accept-ranges: bytes
etag: "2831177e4ddbdb1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dr5ceJXv990yuWETfGO1VaH66Z9chcgB1e2iq1hJCqMA7oHCtdE06AWIs4TWzbcxPl1bjr%2FzfORvvUwoP4ttpXLP0QCDPpT8pa0xROGTXORJerzflUngpVV1Qrd0CotX71fH0oyAUjQueA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1276&min_rtt=392&rtt_var=1284&sent=313&recv=202&lost=0&retrans=0&sent_bytes=280458&recv_bytes=8487&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=969&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/triworm-d-dewormer-for-dogs-1600.jpg
200 OK 23 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/triworm-d-dewormer-for-dogs-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 23 kB (23046 bytes)
MD5 32ddb20fad0660a1eb2a0b5f56fabf2f
SHA1 97b04af11659474abdbfd94170d090ef41d3af5d
SHA256 436c8fa5c7484a5f3e67a74ee8a07901e105e2c9b5dae6d7344cd5b95de62773
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/triworm-d-dewormer-for-dogs-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 23046
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-289
x-downloadsize: 37788
x-bo-origindownloadtime: 52
x-bo-compressionratio: 39.01%
x-bo-processingtime: 30
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 94ef37d17a6f7bf3351bafe8e6e8ab9d
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/profender-small-cats-and-kittens-035-ml-22-55-lbs-1600-of.jpg
200 OK 22 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/profender-small-cats-and-kittens-035-ml-22-55-lbs-1600-of.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 22 kB (21602 bytes)
MD5 cbfb1d667fdaf892d4694eab64e6db34
SHA1 a7e5b78572b3f0b74226cd80496f4d671d2f9b7e
SHA256 a0cff944a86bbe5633ca24ae439220e389a5ff7ffef87a7c4a303281e1f5c2ce
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/profender-small-cats-and-kittens-035-ml-22-55-lbs-1600-of.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 21602
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-295
x-downloadsize: 51868
x-bo-origindownloadtime: 70
x-bo-compressionratio: 58.35%
x-bo-processingtime: 10
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 3d2c3230adabeeab1e05a0be76136ebe
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/dog-gif.gif
200 OK 320 kB URL GET HTTPS
www.canadavetexpress.com/images/dog-gif.gif
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type GIF image data, version 89a, 640 x 640
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 320 kB (320303 bytes)
MD5 9005ea0d0e0161838dc1afb9775eadb2
SHA1 9e05a3766ffa4a833ed3603de580dd5ce0c7c5ae
SHA256 7808b208e4cae2f618cf44dd6f2ed7df5a6ce23d7b71504077cbe1dcc1420f5f
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/dog-gif.gif HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/gif
content-length: 320303
cf-ray: 96bceb622f6756a2-OSL
last-modified: Fri, 24 Mar 2023 05:18:29 GMT
accept-ranges: bytes
etag: "93accf11105ed91:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uYyr9y%2B4z7iobqxS1kYAMkIv68ClUCsRtGAIwpqoODpovrUXtMOXbIGmqnmpypFSeym1E1dk%2B9pkwMvafXHo0JbVwRlRe1ZMbHsQaGSy9yKSuvr7leRt4NU5hAc2MN%2FXxZGA7mcjCdmzqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1351&min_rtt=392&rtt_var=825&sent=1440&recv=414&lost=0&retrans=1&sent_bytes=1739827&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1091&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/js/jquery.min.js
200 OK 87 kB URL GET HTTPS
www.canadavetexpress.com/Content/js/jquery.min.js
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (65451)
First Seen 2023-03-07
Last Seen 2025-08-08
Times Seen 68189
Size 87 kB (86927 bytes)
MD5 a09e13ee94d51c524b7e2a728c7d4039
SHA1 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
SHA256 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/js/jquery.min.js HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript
content-length: 38892
cf-ray: 96bceb624f8c56a2-OSL
content-encoding: gzip
last-modified: Tue, 31 Dec 2024 04:42:57 GMT
accept-ranges: bytes
etag: "7e12e2763e5bdb1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pILo76dOZY%2FyJV8DMR%2B3iDQq1ftX37azson3BLIiYMuK%2BrOAp0gg2fEHX1bGiU6GZbz84FvYYKeyRJbO%2FtHs7NpeV%2B78BnsKKfIJJle4CZkMRqi%2BWSgW3hYkcM0kRn4aChtYF728TQOD3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=879&min_rtt=392&rtt_var=173&sent=1934&recv=472&lost=0&retrans=1&sent_bytes=2373310&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1144&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/css/CustomChatBot.css?id=81
200 OK 20 kB URL GET HTTPS
www.canadavetexpress.com/Content/css/CustomChatBot.css?id=81
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with CRLF line terminators
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 20 kB (20337 bytes)
MD5 97e24d8cfedeb4eba254efc6fa414769
SHA1 8ad9f26ced869f67811cbc9091a69384aa25cec7
SHA256 84347c62a458d51733ce0e92972c96ecc570d4936f9e964a67bf8b900e5a39e0
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/css/CustomChatBot.css?id=81 HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: text/css
content-length: 5789
cf-ray: 96bceb626fc356a2-OSL
content-encoding: gzip
last-modified: Wed, 04 Jun 2025 04:24:49 GMT
accept-ranges: bytes
etag: "9a53189c8d5db1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FzrIPirpZO%2B3934%2FxQ8upQu4foSHNh%2BlOLTyq9Aij8Z4fS54JHD0NaFROxkk2abn1yNYJHFDR5PlWEJkpoZ1YlOV%2BRrCVdynImErWE61jE%2B0hNcmMNNZ2da3sTxsiGyi0EWiOupoJyp8xw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=846&min_rtt=392&rtt_var=222&sent=1770&recv=452&lost=0&retrans=1&sent_bytes=2163750&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1122&x=0"
X-Firefox-Spdy: h2
POST www.canadavetexpress.com/cdn-cgi/challenge-platform/h/b/jsd/r/0.22711467230365526:1754633472:JHWDdZ0YMzr4ykS-B8-1KixX8B9b7sSHELnL3ZqLMio/96bceb5cc8ea56a2
200 OK 0 B URL POST HTTPS
www.canadavetexpress.com/cdn-cgi/challenge-platform/h/b/jsd/r/0.22711467230365526:1754633472:JHWDdZ0YMzr4ykS-B8-1KixX8B9b7sSHELnL3ZqLMio/96bceb5cc8ea56a2
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-08
Times Seen 5722873
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /cdn-cgi/challenge-platform/h/b/jsd/r/0.22711467230365526:1754633472:JHWDdZ0YMzr4ykS-B8-1KixX8B9b7sSHELnL3ZqLMio/96bceb5cc8ea56a2 HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 12252
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1; HomeProduct=0; TrandingProductDog=0; TrandingProductCat=0; usource=wg; uts_id=uts1754634151.986; LCUTS_UID_901003=901003; __CK__WG__=12707_1738588_17546338021349_ab25f880fc
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:31 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
cf-ray: 96bceb78ca8f56a2-OSL
set-cookie: cf_clearance=cLfCY3vOfbSDLqZfvr09Z34ZCmb995wk6wNa1IOxgpY-1754634151-1.2.1.1-AdloZsgEnsvFJb3uo6plB0oFxihERrhB0ECU2YIyVVS1fNpTRmQPs4uoxuri9dKEZrbuUQNAjrP4KqzuJrwvXAaia6d68qXsnUZv1d3aAu8xJqvx_Fl_p4o2g.UnXy99LutOdJyk3WzJBvJh5c_iPHV4_L7UadJmYqAyMA9E2hA4OXCe4mOSsRwGv_R_ynrBt5UlEA91OQ.EpehEYcM6EtKAlpPW1x.QziqMEbgZPhE; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=canadavetexpress.com; Expires=Sat, 08 Aug 2026 06:22:31 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MBAqa3hcm9qHr9EGLnGQUMuZSiIQztoqBNe5jMgwBhiDLLN0TXCW3PD3jgRi9Iy%2F9jfivc0AiIH%2FL54JGZQjwPKjF9%2FfqVc2im2J1bs2nboEhHROYnNzp1DiNwr5u48nixrjQLmNYA1t3A%3D%3D"}],"group":"cf-nel","max_age":604800}, {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=I2Y5z7iZLlVSb_YIwDhVG2.4Ygc7DF4xBtsH7EX25DM-1754634151-1.0.1.1-R5msQZpTr1zRuCcF8me.yK6nhMIqDKaQXSpjmSWTNDjqeqwkCWrSuPxGd0IPJv7X555GSPW1WO92qoEAf2ULqnEmA025qH2s3pt6E4v6Syu2Av6KaS44DO7r6aCObouVbX43LO44qyED6lVpyihpFzxH79Nm23_WxfZJuzUyiSw"}],"group":"cf-csp-endpoint","max_age":86400}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=I2Y5z7iZLlVSb_YIwDhVG2.4Ygc7DF4xBtsH7EX25DM-1754634151-1.0.1.1-R5msQZpTr1zRuCcF8me.yK6nhMIqDKaQXSpjmSWTNDjqeqwkCWrSuPxGd0IPJv7X555GSPW1WO92qoEAf2ULqnEmA025qH2s3pt6E4v6Syu2Av6KaS44DO7r6aCObouVbX43LO44qyED6lVpyihpFzxH79Nm23_WxfZJuzUyiSw; report-to cf-csp-endpoint
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1225&min_rtt=392&rtt_var=1149&sent=3280&recv=737&lost=0&retrans=1&sent_bytes=4061268&recv_bytes=24222&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=4517&x=0"
X-Firefox-Spdy: h2
OPTIONS play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 0 B URL OPTIONS HTTPS
play.google.com/log?format=json&hasfast=true&authuser=0
IP / ASN
142.250.74.142
#15169 GOOGLE
Requested by https://accounts.google.com/gsi/iframe/select?client_id=369742478805-m7k8dldnb8oklq7e54kps1bh8it7eogi.apps.googleusercontent.com&ux_mode=popup&ui_mode=card&as=85rOmAMkWmeaxz4C6QrReXyWp3d9rgKFlEeUCNKtFLo&is_itp=true&channel_id=85cdf0d95a0de4bccf862512873fabeb14c0a36c5c7699550547266d61705ed9&origin=https%3A%2F%2Fwww.canadavetexpress.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-08
Times Seen 5722873
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject *.google.com
Fingerprint CC:B6:27:D3:02:ED:CD:98:15:4D:FA:8E:6E:11:2C:57:EF:3D:FF:DF
Validity Mon, 07 Jul 2025 08:34:03 GMT - Mon, 29 Sep 2025 08:34:02 GMT
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"clearcut-frontend-http-prod-hiqos","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/httpsserver2/clearcut-frontend-http-prod-hiqos"}]}
content-security-policy-report-only: script-src 'none';form-action 'none';frame-src 'none'; report-uri https://csp.withgoogle.com/csp/httpsserver2/clearcut-frontend-http-prod-hiqos
access-control-allow-origin: https://accounts.google.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Fri, 08 Aug 2025 06:22:45 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/css/common.css
200 OK 20 kB URL GET HTTPS
www.canadavetexpress.com/Content/css/common.css
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with very long lines (476), with CRLF line terminators
First Seen 2025-08-01
Last Seen 2025-08-08
Times Seen 3
Size 20 kB (20352 bytes)
MD5 1dc6a8e13a11d4e2226ea30ffc9d5091
SHA1 c7a280250eed72ba00b2f6669594bd381bad5727
SHA256 5aa1392c51becf08987e50e1d74f7792ba786aab2e04c81d9fc53f7ca1daeb09
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/css/common.css HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: text/css
content-length: 6364
cf-ray: 96bceb60fde056a2-OSL
content-encoding: gzip
last-modified: Wed, 30 Jul 2025 07:17:35 GMT
accept-ranges: bytes
etag: "8f6d66221dc1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EOw0IGfUR%2FrOJoeEYd8amUrxRQ3wBvE7uyYtGm7PFc06xr7drsTEQbk2fiuzPysUGLnfI74zXM9OF%2FRFxwlctQ7s%2Bjs1%2FDhOfvDNSUA8IHx7lcE2WPm9IK42PV2HxAxokeaCiYyQeymogg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=793&min_rtt=392&rtt_var=576&sent=79&recv=73&lost=0&retrans=0&sent_bytes=41058&recv_bytes=5033&delivery_rate=23297029&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=863&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/ZYLKENE-for-cats-and-small-dogs-75MG-20-TABS_04192023_023634.jpg
200 OK 27 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/ZYLKENE-for-cats-and-small-dogs-75MG-20-TABS_04192023_023634.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 27 kB (26946 bytes)
MD5 22df370b8fa472e0e6b93aebc7c6a4bb
SHA1 2767df3f43cb0cc57e42af8eb9d603b6dea7f1e5
SHA256 fffce90d7c475a8d34f0c4c767812804395115746c4172cd565696b86651e952
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/ZYLKENE-for-cats-and-small-dogs-75MG-20-TABS_04192023_023634.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:29 GMT
content-type: image/webp
content-length: 26946
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-291
x-downloadsize: 64529
x-bo-origindownloadtime: 634
x-bo-compressionratio: 58.24%
x-bo-processingtime: 14
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:29
cdn-edgestorageid: 830
cdn-requestid: fc10eb191d4ab23959ebd0ea2d49e4c0
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/Seraquin-joint-60x800mg-tab_03202025_042858.jpg
200 OK 27 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/Seraquin-joint-60x800mg-tab_03202025_042858.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 27 kB (27378 bytes)
MD5 3fadb3747001fb74a6bae75e872757f4
SHA1 e998eb9bee0a294e8fa2bd20f01d19a7706ad5b6
SHA256 33d538dc32b7f1d2292fa9b454596a597209aceb4972319fc293ca15a7b3215c
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/Seraquin-joint-60x800mg-tab_03202025_042858.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 27378
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-293
x-downloadsize: 124966
x-bo-origindownloadtime: 20
x-bo-compressionratio: 78.09%
x-bo-processingtime: 13
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 285fb5b49a76d304e79b2f5572702d54
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET analytics.webgains.io/clk.min.js
200 OK 62 kB URL GET HTTPS
analytics.webgains.io/clk.min.js
IP / ASN
54.240.174.77
#16509 AMAZON-02
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (61958), with no line terminators
First Seen 2025-08-01
Last Seen 2025-08-08
Times Seen 19
Size 62 kB (61998 bytes)
MD5 85705ea9651be09cbf327ee98cf35987
SHA1 2a1f8ff6ba0508835768acad513ae25bba13d381
SHA256 c695fae09889f1d0fd723d3903bae32286baa4a67eaa48b81a10057887146cd4
Certificate Info
Issuer Amazon
Subject *.webgains.io
Fingerprint 12:AC:3F:61:D2:91:92:2B:18:BB:D2:3E:32:14:E2:06:01:37:36:47
Validity Sun, 25 May 2025 00:00:00 GMT - Tue, 23 Jun 2026 23:59:59 GMT
Technology Fingerprints
Amazon S3 (CDN) Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.
Amazon Web Services (PaaS) Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.
Amazon CloudFront (CDN) Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.
GET /clk.min.js HTTP/1.1
Host: analytics.webgains.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 01 Aug 2025 10:11:23 GMT
content-encoding: gzip
x-amz-server-side-encryption: AES256
server: AmazonS3
date: Thu, 07 Aug 2025 13:38:59 GMT
etag: W/"85705ea9651be09cbf327ee98cf35987"
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: KIW7qqnTWlXwznMSQ4EaogYp0bl2iUc7faoubMwWa486ltFu53fI8Q==
age: 60213
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/Virbac-anxitane-S-dog-cate_03202025_043146.jpg
200 OK 16 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/Virbac-anxitane-S-dog-cate_03202025_043146.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 16 kB (15494 bytes)
MD5 43509b311033e755d27028c2c343300a
SHA1 caaf12742668e0bc81aeded3fae5d2df40c6c37d
SHA256 75dca2c449c47a73b1fffe0197a65095b5b222cc0bcdf3c025a1cbc86c8aa0f3
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/Virbac-anxitane-S-dog-cate_03202025_043146.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 15494
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-289
x-downloadsize: 76238
x-bo-origindownloadtime: 48
x-bo-compressionratio: 79.68%
x-bo-processingtime: 11
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 5f2ca0873d81d59cf22502b459cfaf52
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-2d0b383d.js
200 OK 686 B URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-2d0b383d.js
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (686), with no line terminators
First Seen 2025-01-10
Last Seen 2025-08-08
Times Seen 6286
Size 686 B (686 bytes)
MD5 34312812f7dddcf71dd6e3448516aa3b
SHA1 f6360863c25395582063ee7d514e98e8bbdbd553
SHA256 38eb2a87e5f34a104ee13b7c9d12ed8e9d43036c587c96fe146a232a0131805d
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/js/twk-chunk-2d0b383d.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: application/javascript
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: br
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: W/"34312812f7dddcf71dd6e3448516aa3b"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
age: 699188
cf-cache-status: HIT
cf-ray: 96bceb8aebae56be-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
GET canadavetexpress.b-cdn.net/images/product-pictures/drontal-oral-suspension-for-puppies-1600.jpg
200 OK 31 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/drontal-oral-suspension-for-puppies-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 31 kB (30988 bytes)
MD5 bcd18337437deefd9fce578f9555a2cd
SHA1 e08317f1a98ac4d66147be647967a63b75ec80a5
SHA256 d88e2c824e334cc58d7bad90c5a569a0b78753be8fdd4cab96b4cd15ec85699e
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/drontal-oral-suspension-for-puppies-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 30988
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-291
x-downloadsize: 53090
x-bo-origindownloadtime: 28
x-bo-compressionratio: 41.63%
x-bo-processingtime: 32
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: da8f7951acea68d4d732347dd0e5d19b
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-chat/chat-arrow1.png
200 OK 1.2 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-chat/chat-arrow1.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.2 kB (1155 bytes)
MD5 7c054be3a0410e10cbe69c7c3b996b63
SHA1 82dea6616a883f26507992ff6237def555654c19
SHA256 36e7bd6d550c75ca0b7022a69c0973be043edeb41f07e28c11d9ee3639369e45
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-chat/chat-arrow1.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 1155
cf-ray: 96bceb627fe156a2-OSL
last-modified: Tue, 13 Sep 2022 05:49:53 GMT
accept-ranges: bytes
etag: "6cb42ba534c7d81:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pX24%2FOyB2dZ1wtqdPocrc3DDfhIPDKZ4aaqfGTPO%2ByRluMknannOAG5He6BkWBlbqj2xORjO9b3ydfqD1MpytyAZW7jRltsouT9f0AyM%2BTO3bX54pQMrbz6PMbZdjC5Re6vpyfM3%2FkkpHg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=842&min_rtt=392&rtt_var=177&sent=1982&recv=473&lost=0&retrans=1&sent_bytes=2431458&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1147&x=0"
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtm.js?id=GTM-TCN8CZW
200 OK 336 kB URL GET HTTPS
www.googletagmanager.com/gtm.js?id=GTM-TCN8CZW
IP / ASN
142.250.74.136
#15169 GOOGLE
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (6253)
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 1
Size 336 kB (336505 bytes)
MD5 b12cafb97defbcd1327bd380bb9b0890
SHA1 740f9da28a6494b7566513742ce07ccf58d58a87
SHA256 67ce5068ac2890d2932879b5b628700c6e82cb3a2c5caa408bb336777118d102
Certificate Info
Issuer Google Trust Services
Subject *.google-analytics.com
Fingerprint A2:8A:24:AD:51:7D:A4:62:BB:34:6F:C9:21:A1:B9:E1:2D:A6:0E:C1
Validity Mon, 07 Jul 2025 08:34:03 GMT - Mon, 29 Sep 2025 08:34:02 GMT
GET /gtm.js?id=GTM-TCN8CZW HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Aug 2025 06:22:31 GMT
expires: Fri, 08 Aug 2025 06:22:31 GMT
cache-control: private, max-age=900
last-modified: Fri, 08 Aug 2025 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1341:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1341:0
report-to: {"group":"ascgcycc:1341:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1341:0"}],}
server: Google Tag Manager
content-length: 113987
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET guarantee-cdn.com/Web/Seal/Dynamic.aspx?CBF=bs_R.WriteKickersHTML&Promocode=Kicker%20Custom%20Null&ifID=&DP=br%3DFirefox%3Bvr%3D134.0%3Bos%3DWindows%3Bsno%3Da&HASH=lhNjJXXABLwEjahewcn4ksnDIs%2B3LKml1yCJrwZru04oTpnpdqE9qNWmpGmf27%2FqdWF9cZAF4QbaSMBAQ4ni%2BQ%3D%3D&fpc=
200 OK 30 B URL GET HTTPS
guarantee-cdn.com/Web/Seal/Dynamic.aspx?CBF=bs_R.WriteKickersHTML&Promocode=Kicker%20Custom%20Null&ifID=&DP=br%3DFirefox%3Bvr%3D134.0%3Bos%3DWindows%3Bsno%3Da&HASH=lhNjJXXABLwEjahewcn4ksnDIs%2B3LKml1yCJrwZru04oTpnpdqE9qNWmpGmf27%2FqdWF9cZAF4QbaSMBAQ4ni%2BQ%3D%3D&fpc=
IP / ASN
23.49.31.215
#16625 AKAMAI-AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with no line terminators
First Seen 2023-03-07
Last Seen 2025-08-08
Times Seen 376
Size 30 B (30 bytes)
MD5 d8f9aa8e4b7527ea5ff81adc878f1dee
SHA1 278994ebf990ee145995a67da58a329e26c1340b
SHA256 cb3e4299b9a47e3c0963ef53143ca69dc2dba8cfe9d9e56c4e91cb874416e435
Certificate Info
Issuer DigiCert Inc
Subject guarantee-cdn.com
Fingerprint 0F:A4:39:14:73:FE:F9:89:B4:5C:BE:39:DF:79:C4:77:A3:D5:C0:0B
Validity Wed, 09 Jul 2025 00:00:00 GMT - Sun, 09 Aug 2026 23:59:59 GMT
Technology Fingerprints
Windows Server (Operating systems) Windows Server is a brand name for a group of server operating systems.
IIS:10.0 (Web servers) Internet Information Services (IIS) is an extensible web server software created by Microsoft for use with the Windows NT family.
GET /Web/Seal/Dynamic.aspx?CBF=bs_R.WriteKickersHTML&Promocode=Kicker%20Custom%20Null&ifID=&DP=br%3DFirefox%3Bvr%3D134.0%3Bos%3DWindows%3Bsno%3Da&HASH=lhNjJXXABLwEjahewcn4ksnDIs%2B3LKml1yCJrwZru04oTpnpdqE9qNWmpGmf27%2FqdWF9cZAF4QbaSMBAQ4ni%2BQ%3D%3D&fpc= HTTP/1.1
Host: guarantee-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-encoding: gzip
server: Microsoft-IIS/10.0
p3p: CP="ALL DSP COR CUR ADM DEV TAI PSA PSD IVA IVD CONo HIS OUR SAMi LEG UNI NAV"
x-seal: 20
content-length: 150
expires: Fri, 08 Aug 2025 06:22:34 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 08 Aug 2025 06:22:34 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/nexgard-combo-for-cats-upto-55lbs-1600.jpg?class=img200
200 OK 6.9 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/nexgard-combo-for-cats-upto-55lbs-1600.jpg?class=img200
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 2
Size 6.9 kB (6872 bytes)
MD5 b84e70e870c55fde53918202ebdc3123
SHA1 2f363e0e746aca41dbcabc9c4c5c431a226977b6
SHA256 c83bb4fac7c6950e6b02ab60b7a844e0691176c4f5555be34d68954a5d901bce
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/nexgard-combo-for-cats-upto-55lbs-1600.jpg?class=img200 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 6872
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 07 Aug 2025 04:26:19 GMT
x-bo-server: LA-295
x-downloadsize: 66485
x-bo-origindownloadtime: 42
x-bo-compressionratio: 89.66%
x-bo-processingtime: 7
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/07/2025 04:26:19
cdn-edgestorageid: 830
cdn-requestid: d519aa4fc290f1d7b482b1bdf5dcda9c
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/bravecto-for-toy-dogs-44-to-99-lbs-yellow-1600.jpg?class=img200
200 OK 3.9 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/bravecto-for-toy-dogs-44-to-99-lbs-yellow-1600.jpg?class=img200
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2024-12-11
Last Seen 2025-08-08
Times Seen 10
Size 3.9 kB (3910 bytes)
MD5 3c78bfee068ae26c612b9e6229d117db
SHA1 7864e209b8840a524ea11cbdf426ac2ec18b52f7
SHA256 121fbd92e31817bb1a9181890c23e3a05d1c3ee99ae241563059fd8b42d056d2
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/bravecto-for-toy-dogs-44-to-99-lbs-yellow-1600.jpg?class=img200 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 3910
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 07 Aug 2025 04:26:19 GMT
x-bo-server: LA-295
x-downloadsize: 55042
x-bo-origindownloadtime: 114
x-bo-compressionratio: 92.9%
x-bo-processingtime: 6
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/07/2025 04:26:20
cdn-edgestorageid: 830
cdn-requestid: 3d1799ac7a3ccc9d5a8a5bd6efe9001d
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-2d0c8092.js
200 OK 5.3 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-2d0c8092.js
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (5261), with no line terminators
First Seen 2025-07-23
Last Seen 2025-08-08
Times Seen 402
Size 5.3 kB (5261 bytes)
MD5 8575190a800c597745fcd97e3bbc57f4
SHA1 26a1555d60b4d5ad947484d9290449a8c0f4fd23
SHA256 428da9c51d0586b536ae03479ed941a7c770a2c2c4197c6fff624f5f985740b5
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/js/twk-chunk-2d0c8092.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: application/javascript
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb8afbb356be-OSL
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: "8575190a800c597745fcd97e3bbc57f4"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
age: 705639
cf-cache-status: HIT
vary: accept-encoding
alt-svc: h3=":443"; ma=86400
GET www.canadavetexpress.com/images/icon-phone2.png
200 OK 680 B URL GET HTTPS
www.canadavetexpress.com/images/icon-phone2.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 48 x 48, 8-bit gray+alpha, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 680 B (680 bytes)
MD5 262007fbb3ef28e748c9136587c02c05
SHA1 a5c56c14af2604ae203c71aad9d952a5fb7e3342
SHA256 87f16e2316942d7bf7ace4aa2b74e5ed9152dbdc943c4dcef379447c4badd48a
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-phone2.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 680
cf-ray: 96bceb612e1b56a2-OSL
last-modified: Mon, 30 Aug 2021 05:30:50 GMT
accept-ranges: bytes
etag: "0e14831609dd71:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DvHFyclO6E5R8FU2%2BZzNBlYM9xzYY3HnLfiUv%2BHyN5lR2IBh88sl7qDKfHBd%2F%2BYrzcb6d6S9NuLFER3sv%2B5sOloSuRsEtBnkPWRVrXg%2FLKYdoDLIOgShvWlmBHE07mBaxnnsv31BmoGlvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=889&min_rtt=392&rtt_var=395&sent=137&recv=114&lost=0&retrans=0&sent_bytes=82105&recv_bytes=7493&delivery_rate=23297029&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=918&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/revolution-for-kittens-puppies-pink-1600.jpg?class=img200
200 OK 4.5 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/revolution-for-kittens-puppies-pink-1600.jpg?class=img200
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 4.5 kB (4458 bytes)
MD5 4fb15085840d88b2025721118d9c1ddf
SHA1 d28153153d62836d9fcf5861a6df28242f01193f
SHA256 5106fb3c4c62d4dd6171ec6be339ad05b79c1a265674884dd65d44cf0220eb14
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/revolution-for-kittens-puppies-pink-1600.jpg?class=img200 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 4458
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 07 Aug 2025 04:26:19 GMT
x-bo-server: LA-295
x-downloadsize: 77739
x-bo-origindownloadtime: 69
x-bo-compressionratio: 94.27%
x-bo-processingtime: 7
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/07/2025 04:26:20
cdn-edgestorageid: 830
cdn-requestid: 6a03c1235a67c73606fa49d614cf6926
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/scullcap-and-valerian-tablets-for-dogs-and-cats-1600.jpg
200 OK 29 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/scullcap-and-valerian-tablets-for-dogs-and-cats-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 29 kB (28960 bytes)
MD5 2826b848a8d3d5598f9bd7a1617d2385
SHA1 96ab15ea0be6aa8fa1ffb2a6099c919a8bab72aa
SHA256 c59e2dba72e64908d9565dfb0618824ead183eb63f25960fd56198a40cf8e1bb
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/scullcap-and-valerian-tablets-for-dogs-and-cats-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:29 GMT
content-type: image/webp
content-length: 28960
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-294
x-downloadsize: 46894
x-bo-origindownloadtime: 633
x-bo-compressionratio: 38.24%
x-bo-processingtime: 27
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:29
cdn-edgestorageid: 830
cdn-requestid: 3e8fd3685a186a5ead38119dcabca570
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/js/common.js
200 OK 24 kB URL GET HTTPS
www.canadavetexpress.com/Content/js/common.js
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with CRLF line terminators
First Seen 2025-08-01
Last Seen 2025-08-08
Times Seen 3
Size 24 kB (23474 bytes)
MD5 3a16e961948475ea6caf755d8bee80af
SHA1 e602df56d515e90221a167247fb4bfadbf5bf0ab
SHA256 c9458305ba7f56f3dff6985a199054eb7aa8467968239759c55ad1aacb2c7684
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/js/common.js HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript
content-length: 7339
cf-ray: 96bceb625f9e56a2-OSL
content-encoding: gzip
last-modified: Fri, 28 Mar 2025 04:21:14 GMT
accept-ranges: bytes
etag: "1bdee2d7989fdb1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YCvArvDqsttQjQwmi6y1HwmlZKks9XrO%2BrX4LoAPLbYO3QiP9H4OVhlezKk3LZ5EFuE16FDvQAHw0DV8u8OkGF7YmuVNj%2BuOJr6A9oylSN8O4k39pAwOPb5MVXyndiO7F%2B1oLvSP5Y2WgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=833&min_rtt=392&rtt_var=238&sent=1792&recv=455&lost=0&retrans=1&sent_bytes=2188435&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1129&x=0"
X-Firefox-Spdy: h2
POST play.google.com/log?format=json&hasfast=true&authuser=0
200 OK 131 B URL POST HTTPS
play.google.com/log?format=json&hasfast=true&authuser=0
IP / ASN
142.250.74.142
#15169 GOOGLE
Requested by https://accounts.google.com/gsi/iframe/select?client_id=369742478805-m7k8dldnb8oklq7e54kps1bh8it7eogi.apps.googleusercontent.com&ux_mode=popup&ui_mode=card&as=85rOmAMkWmeaxz4C6QrReXyWp3d9rgKFlEeUCNKtFLo&is_itp=true&channel_id=85cdf0d95a0de4bccf862512873fabeb14c0a36c5c7699550547266d61705ed9&origin=https%3A%2F%2Fwww.canadavetexpress.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth
Resource Info
File type JSON text data
First Seen 2023-04-05
Last Seen 2025-08-08
Times Seen 129225
Size 131 B (131 bytes)
MD5 ca0b7e866005f6774d284b9f438ebfd2
SHA1 53644f5ee3640189bdb223473ba6a2d46606c556
SHA256 502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
Certificate Info
Issuer Google Trust Services
Subject *.google.com
Fingerprint CC:B6:27:D3:02:ED:CD:98:15:4D:FA:8E:6E:11:2C:57:EF:3D:FF:DF
Validity Mon, 07 Jul 2025 08:34:03 GMT - Mon, 29 Sep 2025 08:34:02 GMT
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 440
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
cross-origin-opener-policy-report-only: same-origin; report-to=coop_reporting
report-to: {"group":"clearcut-frontend-http-prod-hiqos","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/httpsserver2/clearcut-frontend-http-prod-hiqos"}]}
content-security-policy-report-only: script-src 'none';form-action 'none';frame-src 'none'; report-uri https://csp.withgoogle.com/csp/httpsserver2/clearcut-frontend-http-prod-hiqos
access-control-allow-origin: https://accounts.google.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Fri, 08 Aug 2025 06:22:45 GMT
server: Playlog
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/CVE-Logo2-2024.png
200 OK 8.2 kB URL GET HTTPS
www.canadavetexpress.com/images/CVE-Logo2-2024.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 286 x 45, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 8.2 kB (8192 bytes)
MD5 171ac2f7614214842e09602c7c53abb0
SHA1 5399dcd576cdd808d0f7b388b7105241f13891c8
SHA256 d1f64d49e4a1448e8c7fdddb40f6880843c5ff6be344d701e23c033b80a73e49
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/CVE-Logo2-2024.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 8192
cf-ray: 96bceb612e1556a2-OSL
last-modified: Tue, 17 Sep 2024 03:55:33 GMT
accept-ranges: bytes
etag: "6574e871b58db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JrbZOv4bz%2B54OjopbNaNF6XVa858UaoAzv0hDmf%2B71EvS35gYpvOe9e3rt7s1Mx2MziXii874HNHyPxxEve9VOT3xcSvyfOJ%2BV9Sj9YvyGKEh%2BYIXmXcoeUvZ4IWnBkIAJWArZ%2BjIJQsHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=910&min_rtt=392&rtt_var=535&sent=99&recv=95&lost=0&retrans=0&sent_bytes=51465&recv_bytes=6686&delivery_rate=23297029&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=892&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Mobile-02-new-Au-25.png
200 OK 125 kB URL GET HTTPS
www.canadavetexpress.com/images/Mobile-02-new-Au-25.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 301 x 495, 8-bit/color RGBA, non-interlaced
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 2
Size 125 kB (124882 bytes)
MD5 deb215f94e758273c57602e40d2afa9f
SHA1 2edb774b3c6b8fd6b501e9b781eed5795a8a7236
SHA256 6294994650ebe4f37aff4ada206a47c279fc782fa1137bc7131b7b6914064d2a
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Mobile-02-new-Au-25.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 124882
cf-ray: 96bceb61cef456a2-OSL
last-modified: Mon, 04 Aug 2025 09:48:08 GMT
accept-ranges: bytes
etag: "911b5ae2245dc1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jXPd5JDchbTaaZSs6A8J%2B4iAigJyiMR%2BSRPK7%2FtoILwrZ%2FR96yR0PW0pv%2FZ62mJtw0cBEaSArj%2F9wblfEsOOfHxht94%2Bwr2y3j3%2F3TejhhF%2Ba2meOCYJn0qIDjxEjInrN1uEs7O1ljoXCA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=881&min_rtt=392&rtt_var=347&sent=219&recv=156&lost=0&retrans=0&sent_bytes=176542&recv_bytes=8124&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=931&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Error/NotFound
200 OK 0 B URL GET HTTPS
www.canadavetexpress.com/Error/NotFound
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-08
Times Seen 5722873
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET:4.0.30319 (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Error/NotFound HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: text/html; charset=utf-8
content-encoding: br
cache-control: private, s-maxage=0
vary: Accept-Encoding
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v%2BirzDLd7Vi1fLm9I7pfutfp%2BuHj6ntfe9LyR7Ep7FCCiSENNCUXr3EBziufUGiWN0PppjiDSVr2FoH6xud3K7UOAPVR5VCbuPSjpdpsx35QBKo61cpoCBTW%2FzeyQYcOUWFdmZk6ewRaTQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 96bceb70493956a2-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=1798&min_rtt=392&rtt_var=2021&sent=2918&recv=613&lost=0&retrans=1&sent_bytes=3664170&recv_bytes=8873&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3250&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/simparica-trio-for-dogs-28-55-lbs-gold-1600-1.jpg?class=img200
200 OK 6.3 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/simparica-trio-for-dogs-28-55-lbs-gold-1600-1.jpg?class=img200
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 6.3 kB (6288 bytes)
MD5 bd3dc2f9f5846e130ac887bb22774b05
SHA1 c4fef4888be1481c1bf31d20aac2eb6112adde6b
SHA256 c51928af255d6b412324ac3ba074ff89248eef970b20978a6a372dc83d6e8ed5
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/simparica-trio-for-dogs-28-55-lbs-gold-1600-1.jpg?class=img200 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 6288
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-290
x-downloadsize: 56280
x-bo-origindownloadtime: 53
x-bo-compressionratio: 88.83%
x-bo-processingtime: 4
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: b21ce99e112d818218c6fd37363c6e1b
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/Content/css/sweetalert.css
200 OK 17 kB URL GET HTTPS
canadavetexpress.b-cdn.net/Content/css/sweetalert.css
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with very long lines (13957)
First Seen 2025-08-01
Last Seen 2025-08-08
Times Seen 3
Size 17 kB (17214 bytes)
MD5 19ab9356923363039b3be2b6f231565a
SHA1 88a258aac481ff04af0415626a50d449187405c6
SHA256 eb0f4f4252e747c893c88a1b74cb15145d913b5584972a06e0bfa2675557cc70
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /Content/css/sweetalert.css HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=2592000
content-encoding: br
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-289
x-downloadsize: 26800
x-bo-origindownloadtime: 28
x-bo-processingtime: 2
x-bo-compressionratio: 0%
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: b3030544b73056e021b07631a1258253
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/js/tabcontent.js
200 OK 8.1 kB URL GET HTTPS
www.canadavetexpress.com/Content/js/tabcontent.js
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with CRLF line terminators
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 8.1 kB (8065 bytes)
MD5 341de66e3f42b84cccffb808627fa9d9
SHA1 3437e93b04cbc8839d7f05eb887890134a489e80
SHA256 05563215384359471be91ff98c13f36524f002bf52004d8af41782a966158fae
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/js/tabcontent.js HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript
content-length: 3181
cf-ray: 96bceb62a82056a2-OSL
content-encoding: gzip
last-modified: Fri, 13 Oct 2023 04:21:29 GMT
accept-ranges: bytes
etag: "7a43edbc8cfdd91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=peICZTd6fuC0upn1cpVd2%2B%2BNkFHVqLap22l5wJ8ZY7oKUrs67MErU9MNRekJBX1SsYSUrqVTzpFAx2V8zX3xtPqUjjFFCm5JJv699by9zPEUQ4pm6veBUHOfzMdYS5lXVOJiEykvCUT%2BqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1504&min_rtt=392&rtt_var=1621&sent=830&recv=389&lost=0&retrans=1&sent_bytes=946698&recv_bytes=8794&delivery_rate=44471744&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1040&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/selehold-selamectin-for-puppykitten-upto-55lbs-pink-15mg025ml-1600.jpg
200 OK 27 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/selehold-selamectin-for-puppykitten-upto-55lbs-pink-15mg025ml-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 27 kB (26952 bytes)
MD5 13ed50d361ad291c33b3a5da1747f403
SHA1 597bc528d97e58b3b924176133a9b46a27c81042
SHA256 84a00a3b50720a66247117b79cc75a71dc1ee86d0efaf106deaf494531f09d4c
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/selehold-selamectin-for-puppykitten-upto-55lbs-pink-15mg025ml-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 26952
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-292
x-downloadsize: 46617
x-bo-origindownloadtime: 63
x-bo-compressionratio: 42.18%
x-bo-processingtime: 32
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 92ae580337009b3d115925226856d18b
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-twitter.png
200 OK 1.7 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-twitter.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.7 kB (1663 bytes)
MD5 88e19524a56bac1b588a265fa0bff216
SHA1 8f8212110778dd4e3289cf24bd1234e6c090c6e5
SHA256 990b95d0f352985dc794841fe89dd43ff936cea860c6e9ae8fa901e620a54338
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-twitter.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 1663
cf-ray: 96bceb623f7c56a2-OSL
last-modified: Tue, 10 Dec 2024 03:33:28 GMT
accept-ranges: bytes
etag: "38202647b44adb1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D42W0wkjY6KkXTZNwJyrHuWMDnuuVRa6o2uuV9bHkX97Esz0LDXg%2B%2FwRqpfh7GaO7enmTVjxa6DtGBO4HDbyAz53aVF91QVnTvs3pa9tdmG1ZPvTWWgkANob1tBS10tIQuSMgM3bCqwTkw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1351&min_rtt=392&rtt_var=825&sent=1436&recv=414&lost=0&retrans=1&sent_bytes=1737579&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1090&x=0"
X-Firefox-Spdy: h2
OPTIONS api.webgains.io/tracking-event
204 No Content 0 B URL OPTIONS HTTPS
api.webgains.io/tracking-event
IP / ASN
13.43.206.83
#16509 AMAZON-02
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-08
Times Seen 5722873
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Amazon
Subject *.webgains.io
Fingerprint FB:4B:EC:58:1D:1A:65:90:C1:D1:26:F4:E5:3B:F7:02:2C:67:72:26
Validity Sun, 11 May 2025 00:00:00 GMT - Tue, 09 Jun 2026 23:59:59 GMT
Technology Fingerprints
Nginx (Web servers, Reverse proxies) Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.
OPTIONS /tracking-event HTTP/1.1
Host: api.webgains.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.canadavetexpress.com/
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Fri, 08 Aug 2025 06:22:33 GMT
server: nginx
access-control-allow-origin: *
access-control-allow-headers: Authorization, Content-Type
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/blog/wp-content/uploads/2025/03/Essential-Tips-to-Prevent-Lyme-Disease-in-Dogs.jpg
200 OK 423 kB URL GET HTTPS
www.canadavetexpress.com/blog/wp-content/uploads/2025/03/Essential-Tips-to-Prevent-Lyme-Disease-in-Dogs.jpg
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=3, xresolution=50, yresolution=58, resolutionunit=2], progressive, precision 8, 1200x675, components 3
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 423 kB (423432 bytes)
MD5 114f927913de917f6ed36731dfe926e1
SHA1 10701a72551cf712575fe32a1276efa8bc7fa145
SHA256 ff85ec80cbf9dbf38d883f60a4146fac594c5a095d20380d5fa1e048700265d2
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /blog/wp-content/uploads/2025/03/Essential-Tips-to-Prevent-Lyme-Disease-in-Dogs.jpg HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:29 GMT
content-type: image/jpeg
content-length: 423432
cf-ray: 96bceb61ff2756a2-OSL
cache-control: max-age=2419200
expires: Fri, 05 Sep 2025 06:22:28 GMT
last-modified: Thu, 27 Mar 2025 08:01:22 GMT
accept-ranges: bytes
etag: "67608-6314e5c0f9880"
x-ws-ratelimit-limit: 1000
x-ws-ratelimit-remaining: 999
x-powered-by: ARR/3.0, ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WBWadNlynzq%2BtjrAlWC8ipZfgjxUr4dEdm5rnNBJJKMPQ8ITj91jzZQ%2F%2FmW73GkjqyGstW5xTFiM1a1Oenm2qAffjZtaFfXS2vWy2TByGtaNNKEunCSiJihK79t47gC%2FWgoqcb%2Bs4cG6Zg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=782&min_rtt=392&rtt_var=120&sent=2300&recv=541&lost=0&retrans=1&sent_bytes=2843926&recv_bytes=8794&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1805&x=0"
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-2d0d2b7c.js
200 OK 11 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-2d0d2b7c.js
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (10789), with no line terminators
First Seen 2025-04-29
Last Seen 2025-08-08
Times Seen 2906
Size 11 kB (10789 bytes)
MD5 2fbc89a58786b22123cdd3346cc3b728
SHA1 1f4af46a87647949bde1f12d5922fa01b984362e
SHA256 d67f9d7dca1c007e3bc5605e3f02d8e4990385b145d9b692e6d38692b1f5a766
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/js/twk-chunk-2d0d2b7c.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: application/javascript
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb8adba956be-OSL
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: "2fbc89a58786b22123cdd3346cc3b728"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
age: 361057
cf-cache-status: HIT
vary: accept-encoding
alt-svc: h3=":443"; ma=86400
GET embed.tawk.to/_s/v4/app/6880b98ef42/css/branding-widget.css
200 OK 19 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/css/branding-widget.css
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with very long lines (19281)
First Seen 2025-05-21
Last Seen 2025-08-08
Times Seen 1850
Size 19 kB (19329 bytes)
MD5 fe979c92a5ad992510e5629b84a23526
SHA1 4fee6cd9de53fa82feef4042aa83202f4cd194a5
SHA256 de84306c96c98314e1a796f26df99a70f20590c535a678215d89560007b4dacf
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/css/branding-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: text/css
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb8cabc956be-OSL
last-modified: Wed, 23 Jul 2025 10:30:15 GMT
etag: W/"fe979c92a5ad992510e5629b84a23526"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
age: 1367154
cf-cache-status: HIT
vary: accept-encoding
alt-svc: h3=":443"; ma=86400
GET canadavetexpress.b-cdn.net/images/product-pictures/Malaseb-combo-pack_03202025_204429.jpg
200 OK 22 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/Malaseb-combo-pack_03202025_204429.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 22 kB (21536 bytes)
MD5 22d24836f5f77a06e30d487d435beb89
SHA1 626b10a9d93b4aaed2050defd51517e8b814cec5
SHA256 070a0d293d6f7d144d46588980319504db1b19fc6c3d84736baf88636cf10d5b
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/Malaseb-combo-pack_03202025_204429.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:29 GMT
content-type: image/webp
content-length: 21536
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-290
x-downloadsize: 105143
x-bo-origindownloadtime: 794
x-bo-compressionratio: 79.52%
x-bo-processingtime: 14
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:29
cdn-edgestorageid: 830
cdn-requestid: ec09f960c4d06a61f1147f76e042f160
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/blog/wp-content/uploads/2025/07/Why-is-My-Puppy-Whining.jpg
200 OK 196 kB URL GET HTTPS
www.canadavetexpress.com/blog/wp-content/uploads/2025/07/Why-is-My-Puppy-Whining.jpg
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=3, xresolution=50, yresolution=58, resolutionunit=2], progressive, precision 8, 1200x675, components 3
First Seen 2025-08-01
Last Seen 2025-08-08
Times Seen 3
Size 196 kB (195777 bytes)
MD5 fb9a19707f817b70df36bd1095de4f83
SHA1 ab3433fa13bc3953131aa9806a5511d1fbf17fab
SHA256 aa6d63bb1b98686ab9bea320fbd27458b162d8f70a0d8f7f0c81b82d0023c1d2
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /blog/wp-content/uploads/2025/07/Why-is-My-Puppy-Whining.jpg HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:29 GMT
content-type: image/jpeg
content-length: 195777
cf-ray: 96bceb61ef2556a2-OSL
cache-control: max-age=2419200
expires: Fri, 05 Sep 2025 06:22:28 GMT
last-modified: Thu, 17 Jul 2025 09:13:13 GMT
accept-ranges: bytes
etag: "2fcc1-63a1c6b3e3c40"
x-ws-ratelimit-limit: 1000
x-ws-ratelimit-remaining: 997
x-powered-by: ARR/3.0, ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZDfaY1FaJEShQ49iop9fJOb0F7t1ymqwqoO%2BSPevFWE2ZXmy5Zt6kFb7lrzjLtscKMUv2LFQKkJ9ngDCWVGf2ZVlgbDojNziGZMxzIKk0vtubZlUEu61gJ8DOKlE2O26kqUPClu64DRAxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=813&min_rtt=392&rtt_var=184&sent=2275&recv=538&lost=0&retrans=1&sent_bytes=2810553&recv_bytes=8794&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1801&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/menu-arrow2.png
200 OK 1.1 kB URL GET HTTPS
www.canadavetexpress.com/images/menu-arrow2.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 8 x 14, 8-bit/color RGB, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.1 kB (1081 bytes)
MD5 e59279aed389ed9f05b6e9c44a5734ce
SHA1 ef4ab9fd6c8b75ae92b34bc0915cd30242927933
SHA256 706da93b5de00509e538da91e9bfe444914adb93ba2932d4ca3ff0461eba5fbc
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/menu-arrow2.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/header-footer-2024.css
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/png
content-length: 1081
cf-ray: 96bceb718ab656a2-OSL
last-modified: Fri, 06 Sep 2024 03:36:41 GMT
accept-ranges: bytes
etag: "9f7fdfcd0db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0gJxjr2Gid64Kd4UAV38pq9o0ImEp4hA4t7OHB0rGAkBtBaIYsardMdtHqEbIUp5cffY1cXP7GSkGcTmZk98hDWECX6K6xP18MyEy8ZcxgkvQFNA6av6GxHt0KmZmh8F1LBZMzj3isOOXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=931&min_rtt=392&rtt_var=342&sent=2957&recv=648&lost=0&retrans=1&sent_bytes=3689102&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3399&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/js/jquery.validate.min.js
200 OK 24 kB URL GET HTTPS
www.canadavetexpress.com/Content/js/jquery.validate.min.js
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (24236)
First Seen 2023-04-05
Last Seen 2025-08-08
Times Seen 1923
Size 24 kB (24376 bytes)
MD5 2adc424801bb73bee0fa69c743346a66
SHA1 0ae93cd2e60fe32e1e9027753ad5886c1881fbc3
SHA256 4d387da2ff19dfde5d0c90c4c0f0f97a8da665a6e0f9553758626d0135c08714
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/js/jquery.validate.min.js HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript
content-length: 9837
cf-ray: 96bceb628fed56a2-OSL
content-encoding: gzip
last-modified: Tue, 12 May 2020 04:22:45 GMT
accept-ranges: bytes
etag: "de1a3fc1428d61:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D7trtEJ5OjoQzt1AAzgMXehZcYeGQiKYU7nanCzItTwOxpke4KLu5xh7V0gym%2BoTvjhJBkADzFWf7tYb0pD9b50U4EIHLZ4Uhcnep1nkSGnsPQt6hVrwwiQc7Q1o2VEP47DJTjPUnktkIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1029&min_rtt=392&rtt_var=555&sent=1707&recv=433&lost=0&retrans=1&sent_bytes=2087533&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1110&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/search-icon.png
200 OK 1.7 kB URL GET HTTPS
www.canadavetexpress.com/images/search-icon.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 50 x 50, 8-bit/color RGB, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.7 kB (1658 bytes)
MD5 1a0636057cc7f51ca5afc954602d7cd1
SHA1 5a85412c2f4659b24284a7903f91b990738570f5
SHA256 1b64626d54b5f856116428353876b9dda794128bb1f5da8938b75804a17ae08b
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/search-icon.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 1658
cf-ray: 96bceb612e2556a2-OSL
last-modified: Mon, 09 Dec 2024 04:53:14 GMT
accept-ranges: bytes
etag: "b25c1d41f649db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OQoHA9DJRpaFyArS6mBc%2F7ehYE5cn8iqt%2FeXPD2%2F%2BoJ4q3ZRZhnQD5JwVERM9tWMQMA39uNYP3bsDRn4X73Yg2%2ByImSnWa3KNQhu%2BGQNZVmKWeIF7RfQNj5A9JG6V%2FosUhuPk6fdFYzHvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=968&min_rtt=392&rtt_var=262&sent=247&recv=170&lost=0&retrans=0&sent_bytes=211182&recv_bytes=8212&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=933&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/blog/wp-content/uploads/2025/07/A-Step-by-Step-Guide-to-Potty-Train-Your-Dog.jpg
200 OK 263 kB URL GET HTTPS
www.canadavetexpress.com/blog/wp-content/uploads/2025/07/A-Step-by-Step-Guide-to-Potty-Train-Your-Dog.jpg
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JPEG image data, baseline, precision 8, 1200x675, components 3
First Seen 2025-08-01
Last Seen 2025-08-08
Times Seen 3
Size 263 kB (263230 bytes)
MD5 f165e6277a533362b200d798770d02b5
SHA1 4a9e04256798e4278d9e484ea2df624a44ccb5ea
SHA256 bfff39b01e9a5ac7b445d4dcc368c728ec8c5e90499ad1ec387aed7304d7dd69
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /blog/wp-content/uploads/2025/07/A-Step-by-Step-Guide-to-Potty-Train-Your-Dog.jpg HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:29 GMT
content-type: image/jpeg
content-length: 263230
cf-ray: 96bceb61ef1a56a2-OSL
cache-control: max-age=2419200
expires: Fri, 05 Sep 2025 06:22:28 GMT
last-modified: Wed, 30 Jul 2025 11:16:09 GMT
accept-ranges: bytes
etag: "4043e-63b23a6d2f040"
x-ws-ratelimit-limit: 1000
x-ws-ratelimit-remaining: 998
x-powered-by: ARR/3.0, ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T4THdoXSisLfYbOUQfztZ4fInHGxB6vO1WsAcOVhzRLLYwXz%2FF96W%2FS40jOngM9qPV7YuZohoqqqBQT25kpnDUnthp5SJdbv7mAVcewysB0jdFLyY9cSXhC%2F9pEm2FLb523Xd6b872fNQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=789&min_rtt=392&rtt_var=177&sent=2250&recv=525&lost=0&retrans=1&sent_bytes=2776895&recv_bytes=8794&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1797&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-Offer-Banner/Comfortis-Plus-logo.png
200 OK 5.1 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-Offer-Banner/Comfortis-Plus-logo.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 150 x 40, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 5.1 kB (5087 bytes)
MD5 5d3fac69d2b4527b6a457ecad2aab3e8
SHA1 c5152cb7c45be94e5bcd6534745c0b3c265b1a67
SHA256 fb32e1aa30d33231bd940bee426dd60c75794fc86ef610bb0be0604fd93d64eb
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-Offer-Banner/Comfortis-Plus-logo.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 5087
cf-ray: 96bceb621f4856a2-OSL
last-modified: Thu, 14 Mar 2024 06:47:09 GMT
accept-ranges: bytes
etag: "99c2f46fdb75da1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x9goic0huulB%2F795v8p96SwNfF06yAWqOm3Hlb2mlP%2B4z0XrHl%2F9jahwCMGcbKcZFsreBdxT37GpI4kTdE8yN1ni0gtdkt6gNu6RIsM3D8vy1Jtd9WqBJ0aBrrQbuJOAJk9UzR%2BdQHdVYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1922&min_rtt=392&rtt_var=2051&sent=917&recv=390&lost=0&retrans=1&sent_bytes=1060297&recv_bytes=8794&delivery_rate=44471744&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1044&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-Offer-Banner/Revolution-Plus-img.png
200 OK 52 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-Offer-Banner/Revolution-Plus-img.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 225 x 177, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 52 kB (52327 bytes)
MD5 d3c6da582f4dd0b2fb57e9d1b8675857
SHA1 88a5ce37db8085246d490174684274a41b7b3d0a
SHA256 6d6e9de36e36887b79eb9eb8d3c6d4f9a92f229fe48d39878cc23e07fec3d85c
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-Offer-Banner/Revolution-Plus-img.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 52327
cf-ray: 96bceb621f5a56a2-OSL
last-modified: Thu, 14 Mar 2024 06:43:40 GMT
accept-ranges: bytes
etag: "21f539f3da75da1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BSYUN3%2FWBgay5y4rJfGtbr6FqR3WP%2FvMaLxtzPCUbDYwqsg30%2Fj7L4bDFh7MB5aSXIlkVZCfZ6sraUSMSleipc7Wr3%2Bn4DZC8mr5ZVDAkY9Jh0VsHhIsVs8PzD1vFPGyuh3ZpvyP3MykCQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1029&min_rtt=392&rtt_var=555&sent=1657&recv=433&lost=0&retrans=1&sent_bytes=2020516&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1109&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/bravecto-plus-for-small-cats-112-mg-26-to-62-lbs-green-1600.jpg
200 OK 41 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/bravecto-plus-for-small-cats-112-mg-26-to-62-lbs-green-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-03-09
Last Seen 2025-08-08
Times Seen 8
Size 41 kB (40680 bytes)
MD5 d79ea75ce88b239d05881369e16a0f90
SHA1 c94a7a7a3cc1cecb4f29799a027dbd28645f68cf
SHA256 b347ea3211c84ccf13b78cc027829fe515d1b45fc1d860d29606545b1f2f077f
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/bravecto-plus-for-small-cats-112-mg-26-to-62-lbs-green-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 40680
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-290
x-downloadsize: 54960
x-bo-origindownloadtime: 49
x-bo-compressionratio: 25.98%
x-bo-processingtime: 30
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: a2700261df3614ed5be80c2df0cd4606
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-2024/icon-MoneyBackGuarantee.png
200 OK 3.7 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-2024/icon-MoneyBackGuarantee.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 84 x 78, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 3.7 kB (3746 bytes)
MD5 ded1362e0e39fff38fb23263f486e0a1
SHA1 bb51fe37475b187707e17ef0ec95935751ec1fbd
SHA256 fdd060592b5d97675af9e3283a3bc3e099b37b407b687e3c89c439c9ee39b1db
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-2024/icon-MoneyBackGuarantee.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 3746
cf-ray: 96bceb61ff3656a2-OSL
last-modified: Mon, 16 Sep 2024 08:25:44 GMT
accept-ranges: bytes
etag: "bc36e6128db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AF%2Bx3p8DxKDerMbVw6BBfgTJuTRggpGi0jSfAZC5OQJVVlT4Gz576plIWEuu8i6s%2Fg2TdjO7w0kDwgCiIxjMwUUl0FiDItWJXZ8Tzc42L49ykG7CwE%2FDV1bXliYOh0CEYpPzyQG6rel34g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=998&min_rtt=392&rtt_var=462&sent=213&recv=152&lost=0&retrans=0&sent_bytes=172003&recv_bytes=7941&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=927&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/black-friday-2023/popup/blk-cyber.png
200 OK 4.4 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/black-friday-2023/popup/blk-cyber.png
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 4.4 kB (4386 bytes)
MD5 02eea9e4a2a4894ff3ea7089945a8228
SHA1 f8bbc1ddae65edbc6c737d1da35109744cf0d7f6
SHA256 57f8d58b09cece7f28412845cfe0319371353cf95d643292f033175d234ec764
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/black-friday-2023/popup/blk-cyber.png HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 4386
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 07 Aug 2025 04:26:19 GMT
x-bo-server: LA-290
x-downloadsize: 10283
x-bo-origindownloadtime: 33
x-bo-compressionratio: 57.35%
x-bo-processingtime: 4
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/07/2025 04:26:19
cdn-edgestorageid: 830
cdn-requestid: f79e87616338ba4a96ab34667dd2902b
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/arrow-down5.png
200 OK 2.0 kB URL GET HTTPS
www.canadavetexpress.com/images/arrow-down5.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 8 x 10, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 2.0 kB (1954 bytes)
MD5 9a9a06980feb7370bf2d9d8505694ab9
SHA1 8b6d45f6ac9e8750401cd36deb8ac099932ec691
SHA256 ae22db34fca062c26262ea7e3439915e036a57747ea98feba901e3728146cd90
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/arrow-down5.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/home-2024.css?id=26
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/png
content-length: 1954
cf-ray: 96bceb71aace56a2-OSL
last-modified: Fri, 27 Sep 2024 03:45:52 GMT
accept-ranges: bytes
etag: "cbf87c08f10db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yWT%2FvmJMSSZDL%2BpWdHKxyUALr0KpZo%2FV7f9xal8pQ9TGecIJ0zPOatE5LgDKtgYtlyLN1jx797PyWZqH%2BnuYoDdJRv%2FrMKwZ9Rj3qzWCimHwBJH%2Bc%2Bue4yhj3j4SkK%2FjQtgAeP7Far4UHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1399&min_rtt=392&rtt_var=812&sent=2984&recv=655&lost=0&retrans=1&sent_bytes=3715095&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3417&x=0"
X-Firefox-Spdy: h2
GET cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.js
200 OK 3.1 kB URL GET HTTPS
cdnjs.cloudflare.com/ajax/libs/jquery-cookie/1.4.1/jquery.cookie.js
IP / ASN
104.17.24.14
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text
First Seen 2023-03-07
Last Seen 2025-08-08
Times Seen 8517
Size 3.1 kB (3121 bytes)
MD5 d5528dde0006c78be04817327c2f9b6f
SHA1 31e1bcc4cf805a2c2fee21f48ded1e598f64a2a8
SHA256 b84161c9fbf7520cd14e7019f92120bd87a928a074156e91a992eba9fc9436e8
Certificate Info
Issuer Google Trust Services
Subject cdnjs.cloudflare.com
Fingerprint 66:D5:51:E0:8E:D7:2C:D1:E3:98:58:99:22:9B:73:C4:6F:32:FD:EC
Validity Sun, 20 Jul 2025 17:08:10 GMT - Sat, 18 Oct 2025 18:08:03 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /ajax/libs/jquery-cookie/1.4.1/jquery.cookie.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript; charset=utf-8
content-length: 1119
cf-ray: 96bceb650c6156a4-OSL
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec1-c31"
last-modified: Mon, 04 May 2020 16:11:45 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 509653
expires: Wed, 29 Jul 2026 06:22:28 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XoyH6Q4jHIuBFkoBe0NCsId5Al45sRbFKw8%2B6EA%2BU6WFyS%2B1GfX6Krls0CnGsu2FRwyRsixTE5iSv46ZOGhzCz%2BPX9Jm71myPXXAtOJD5vx7PEn2q98QVL5w4vinpPODHTuDVKiY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
POST www.canadavetexpress.com/Home/LazyLoadElements
200 OK 730 B URL POST HTTPS
www.canadavetexpress.com/Home/LazyLoadElements
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JSON text data
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 730 B (730 bytes)
MD5 ce110b60f9e4ae3cb0977cdac7b9db8c
SHA1 20a31a613095370339b507f414e0ceea2f75d3ca
SHA256 5f51ef32d20b61a16563748ec77d8e0e4e06d1722ddbed1bcc77c4330925a40e
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET:4.0.30319 (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /Home/LazyLoadElements HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=utf-8
X-Requested-With: XMLHttpRequest
Content-Length: 2
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1; HomeProduct=0; TrandingProductDog=0; TrandingProductCat=0; usource=wg; uts_id=uts1754634151.986; LCUTS_UID_901003=901003
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:31 GMT
content-type: application/json; charset=utf-8
content-encoding: br
cache-control: private, s-maxage=0
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZLmPg2WkCSZ9gCMcBQEG%2FyRHm1BOECR2NtjMCogS4FWkcyGnzdEmmFn1yjsjFotN6Kfz5o9Kg19buDNehrESob4kMerrQjMN1xZ3t0iXORf9ytHZNOHICvch6DwqqqlfmoWEMIRQIcsNJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 96bceb753efa56a2-OSL
server-timing: cfL4;desc="?proto=TCP&rtt=6892&min_rtt=392&rtt_var=11983&sent=3260&recv=707&lost=0&retrans=1&sent_bytes=4050442&recv_bytes=11505&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=4093&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/heartgard-plus-chewables-small-dogs-up-to-25lbs-blue-1600.jpg
200 OK 78 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/heartgard-plus-chewables-small-dogs-up-to-25lbs-blue-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 78 kB (77742 bytes)
MD5 e21c918a79430d5afd4c0c87bba707c5
SHA1 98e86326d6c471eb051b3b0e551d8fde0b37009c
SHA256 b87f17d0ff3f5f76ac9a21adf92a8a7220f1e4b82e12742ffd7ef26786ff4c50
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/heartgard-plus-chewables-small-dogs-up-to-25lbs-blue-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:29 GMT
content-type: image/webp
content-length: 77742
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-291
x-downloadsize: 99363
x-bo-origindownloadtime: 692
x-bo-compressionratio: 21.76%
x-bo-processingtime: 50
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:29
cdn-edgestorageid: 830
cdn-requestid: c55eccd2f70ee63e6605b9ef78d0f7e6
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/nexgard-chewables-for-small-dogs-4-10lbs-orange-11mg-1600.jpg
200 OK 80 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/nexgard-chewables-for-small-dogs-4-10lbs-orange-11mg-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 80 kB (79482 bytes)
MD5 3547817bdfb1c1a03463fee260e956a3
SHA1 69eb1740d870122fd909dda7cf5eef259c3cc54f
SHA256 103da2abccb538fde052749f085fa10956e825253dd7e6c1b6dc42d844b86f0a
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/nexgard-chewables-for-small-dogs-4-10lbs-orange-11mg-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 79482
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-296
x-downloadsize: 101010
x-bo-origindownloadtime: 17
x-bo-compressionratio: 21.31%
x-bo-processingtime: 37
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 25c5df3af93a405860fb5dfecf9a7328
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/CVE-product-4-new-Aug-25.png
200 OK 80 kB URL GET HTTPS
www.canadavetexpress.com/images/CVE-product-4-new-Aug-25.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 302 x 496, 8-bit/color RGBA, non-interlaced
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 2
Size 80 kB (80548 bytes)
MD5 19effc0259037f3bd35e9957b951b3cb
SHA1 f505ff39f79df8c02095e012a01482e2b5d3ed34
SHA256 b0455d9a47b07fb6367d0756cbf7abfb6ed609ef65baf4bcea018efde94349c2
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/CVE-product-4-new-Aug-25.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 80548
cf-ray: 96bceb61bef056a2-OSL
last-modified: Mon, 04 Aug 2025 09:43:08 GMT
accept-ranges: bytes
etag: "4eff982f245dc1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bb3VbwxV%2BQcHbShUJfr2N0kNj6ip9U1NosKajo0XTMffQe30KP8KlFoJAJKwJGyx%2BHYVIiMYkz9Mwlj0DoeV%2BCdndChOZc590jB6s0t9mw6F%2BJEb3Ib0CvoFEPf9MdX7twRKvxAZO30xWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=781&min_rtt=392&rtt_var=80&sent=613&recv=377&lost=0&retrans=1&sent_bytes=666481&recv_bytes=8794&delivery_rate=44471744&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1020&x=0"
X-Firefox-Spdy: h2
GET ajax.aspnetcdn.com/ajax/jquery.validate/1.11.1/jquery.validate.min.js
200 OK 21 kB URL GET HTTPS
ajax.aspnetcdn.com/ajax/jquery.validate/1.11.1/jquery.validate.min.js
IP / ASN
23.36.77.73
#20940 Akamai International B.V.
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (20964)
First Seen 2023-04-05
Last Seen 2025-08-08
Times Seen 906
Size 21 kB (21068 bytes)
MD5 02a4a78977c67935d388e92928e6b735
SHA1 87b58387cd22f3280a081e30470648edceb4e4b0
SHA256 46dc5b21ccb40ed8e13a10b2e62a01648a841672091671f6b03bee034a0d00d4
Certificate Info
Issuer Microsoft Corporation
Subject ajax.microsoft.com
Fingerprint 67:7D:DB:2D:BB:27:07:2D:C9:20:48:81:00:BE:4D:DC:81:08:A9:2D
Validity Wed, 15 Jan 2025 17:50:49 GMT - Sat, 10 Jan 2026 17:50:49 GMT
GET /ajax/jquery.validate/1.11.1/jquery.validate.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-length: 6367
content-type: application/javascript
accept-ranges: bytes
access-control-allow-origin: *
content-encoding: gzip
etag: "08a7370d033d21:0"
last-modified: Mon, 31 Oct 2016 23:42:28 GMT
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public, max-age=31486972
date: Fri, 08 Aug 2025 06:22:28 GMT
vary: Accept-Encoding
akamai-grn: 0.454d2417.1754634148.7b26c9f
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/languages/en_dev.json
200 OK 11 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/languages/en_dev.json
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JSON text data
First Seen 2025-07-18
Last Seen 2025-08-08
Times Seen 606
Size 11 kB (10639 bytes)
MD5 586d518585b166811a617b7f5060f71e
SHA1 6ea81179776e5977ac49304b176923e61409393e
SHA256 2cc3a63ae0b79ab96b21a927c9f9a192ff287e877df5e54ee0b0dbe33debb900
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/languages/en_dev.json HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.canadavetexpress.com/
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: application/json
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb87dabeb4fa-OSL
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: W/"586d518585b166811a617b7f5060f71e"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: accept-encoding
alt-svc: h3=":443"; ma=86400
GET canadavetexpress.b-cdn.net/images/product-pictures/nexgard-spectra-tab-xsmall-dog-44-77-lbs-orange-1600.jpg?class=img200
200 OK 8.9 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/nexgard-spectra-tab-xsmall-dog-44-77-lbs-orange-1600.jpg?class=img200
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2024-08-19
Last Seen 2025-08-08
Times Seen 11
Size 8.9 kB (8924 bytes)
MD5 e75d89999ac7395fda42bc9988fe06ca
SHA1 371592561c262d15a812ab7c6bdb88959a1d4800
SHA256 7f7e84d1330dd1aff643ed18f12dda6533d016a842673771ca0a86351ea76fb1
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/nexgard-spectra-tab-xsmall-dog-44-77-lbs-orange-1600.jpg?class=img200 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 8924
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 07 Aug 2025 04:26:19 GMT
x-bo-server: LA-292
x-downloadsize: 108034
x-bo-origindownloadtime: 757
x-bo-compressionratio: 91.74%
x-bo-processingtime: 8
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/07/2025 04:26:20
cdn-edgestorageid: 830
cdn-requestid: eac442ce0ea71608d54ee0523267c899
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/CVE-product-2-new-Aug-25.png
200 OK 126 kB URL GET HTTPS
www.canadavetexpress.com/images/CVE-product-2-new-Aug-25.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 302 x 496, 8-bit/color RGBA, non-interlaced
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 2
Size 126 kB (126394 bytes)
MD5 153fcb0803366102fe9ae449058a1fa7
SHA1 bd5f593f9c0be727324cb542cad2d1f704ac10af
SHA256 48e08bc73fd60752dd0d622aab1bf48d4eacefe2b18fad533e786f143e81a659
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/CVE-product-2-new-Aug-25.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 126394
cf-ray: 96bceb61bee956a2-OSL
last-modified: Mon, 04 Aug 2025 09:42:59 GMT
accept-ranges: bytes
etag: "8d42aa29245dc1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VFlfYgUOawsWvreq0WQJkPy1gm3Ox9RCdKWNmK9lBqmlpxNK4QpyuUuKlWSoOs0CQh9eFpiVS%2FcLeSoDgItTRoz8XEPtD1hyvaYAbtMfg6AdiNWknPhvMQCngV%2B8hXld1krxEMGct8NwPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1658&min_rtt=392&rtt_var=1730&sent=501&recv=297&lost=0&retrans=1&sent_bytes=517254&recv_bytes=8794&delivery_rate=658780&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1009&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/mobiflex-mobility-supplement-for-cats-and-dogs-1600.jpg
200 OK 24 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/mobiflex-mobility-supplement-for-cats-and-dogs-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 24 kB (23628 bytes)
MD5 aae07664cbb49d0dd98fed69cc2be1af
SHA1 4afe76f726f167257614c6e22d9eb85b0afa3cd1
SHA256 321e7af0fcf4e5136bb4c4506c78a4a86f12e7f9172d0b4579ac7b82cf1ee3d0
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/mobiflex-mobility-supplement-for-cats-and-dogs-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 23628
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-291
x-downloadsize: 38554
x-bo-origindownloadtime: 27
x-bo-compressionratio: 38.71%
x-bo-processingtime: 29
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 69967b6e6f077a06179590ca9c240d44
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Chat-now-icon.png
200 OK 9.8 kB URL GET HTTPS
www.canadavetexpress.com/images/Chat-now-icon.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 103 x 105, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 9.8 kB (9794 bytes)
MD5 48e7015e57f29b93f39cfe7b086dd52c
SHA1 fec069ca8727f3310eee30a0c32443a423a7434e
SHA256 47866cf4688fab25586ab6b8f7ead721fa857d24b33b91c3dd3e627751cbc41e
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Chat-now-icon.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 9794
cf-ray: 96bceb626fc856a2-OSL
last-modified: Tue, 11 Mar 2025 06:38:13 GMT
accept-ranges: bytes
etag: "3369b295092db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7Z4JrgzF7cX3fCqaRM1ttihaGnnt5%2F%2FKXUzyRR%2FXFqKCfy0%2B5Jm7g8VKPaYcYjMYHedp1AVyhH6YaN8PUKMr7bcWBhI30mb0STYm55jtOnwqQ7%2FCyIFQjsKWmCyr%2FQOSHE20KB7ad%2FPQGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=879&min_rtt=392&rtt_var=173&sent=1902&recv=472&lost=0&retrans=1&sent_bytes=2332654&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1144&x=0"
X-Firefox-Spdy: h2
GET guarantee-cdn.com/Web/Seal/gjs.aspx?SN=943026743
200 OK 2.8 kB URL GET HTTPS
guarantee-cdn.com/Web/Seal/gjs.aspx?SN=943026743
IP / ASN
23.49.31.215
#16625 AKAMAI-AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (506), with CRLF, LF line terminators
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 2.8 kB (2836 bytes)
MD5 dd1343958ec3781f7f30cb5b760c1912
SHA1 23f44aea49fc25602e371220df5807747dab6760
SHA256 db7621167052bb5ddb6840d6e10a4abf1ae95e0ef7d810502c2005fd535d6618
Certificate Info
Issuer DigiCert Inc
Subject guarantee-cdn.com
Fingerprint 0F:A4:39:14:73:FE:F9:89:B4:5C:BE:39:DF:79:C4:77:A3:D5:C0:0B
Validity Wed, 09 Jul 2025 00:00:00 GMT - Sun, 09 Aug 2026 23:59:59 GMT
Technology Fingerprints
IIS:10.0 (Web servers) Internet Information Services (IIS) is an extensible web server software created by Microsoft for use with the Windows NT family.
Windows Server (Operating systems) Windows Server is a brand name for a group of server operating systems.
GET /Web/Seal/gjs.aspx?SN=943026743 HTTP/1.1
Host: guarantee-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
server: Microsoft-IIS/10.0
p3p: CP="ALL DSP COR CUR ADM DEV TAI PSA PSD IVA IVD CONo HIS OUR SAMi LEG UNI NAV"
x-seal: 21
content-length: 1625
cache-control: private, max-age=86400
expires: Sat, 09 Aug 2025 06:22:28 GMT
date: Fri, 08 Aug 2025 06:22:28 GMT
vary: Accept-Encoding
etag: "6c6c4ca42cf45b0c"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/btn-next2.png
200 OK 1.2 kB URL GET HTTPS
www.canadavetexpress.com/images/btn-next2.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.2 kB (1207 bytes)
MD5 00012d797dd022d7533846577c0749ed
SHA1 8329c70f0e83e6dcf22f71afda120670644c9587
SHA256 5bc558e4ce46c80df29f91e6768a6a51a0b43c6dbb082738667e61ac1fd43981
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/btn-next2.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/home-2024.css?id=26
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1; HomeProduct=0; TrandingProductDog=0; TrandingProductCat=0; usource=wg; uts_id=uts1754634151.986; LCUTS_UID_901003=901003
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:31 GMT
content-type: image/png
content-length: 1207
cf-ray: 96bceb762ff756a2-OSL
last-modified: Mon, 09 Sep 2024 11:07:29 GMT
accept-ranges: bytes
etag: "fa163776a82db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xh5FPBZ2k6kUT1CxWUEL8edYkACGANcIfdOZfsquK6Eg1U%2BP9XA%2Fmd%2F%2FKZBPn0yHxQ%2FbaxwBCSf%2FgCmwXnjG1NtowjCy4vdT5wlHcZKqIFMgwvSiyugfQinBTBJ9T0FAK3rxAsatVLLx1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=3401&min_rtt=392&rtt_var=5601&sent=3266&recv=713&lost=0&retrans=1&sent_bytes=4053317&recv_bytes=11505&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=4151&x=0"
X-Firefox-Spdy: h2
GET cdn.izooto.com/scripts/sak/iz_setcid.html?v=1
200 OK 3.7 kB URL GET HTTPS
cdn.izooto.com/scripts/sak/iz_setcid.html?v=1
IP / ASN
104.16.255.64
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type HTML document, ASCII text
First Seen 2024-10-25
Last Seen 2025-08-08
Times Seen 799
Size 3.7 kB (3677 bytes)
MD5 520630ce509b3331cd1491c384ba841b
SHA1 95361110833dcdf14ff074df2d31b3d4282650d0
SHA256 a3c7cb1431d2db94f0cbf503e8f3ae4cd2232654f4123c405eff1920b673859d
Certificate Info
Issuer Google Trust Services
Subject izooto.com
Fingerprint 4D:18:5E:7B:8A:86:32:4E:5A:22:DA:BC:F1:5C:E2:CB:3B:04:B4:F6
Validity Tue, 29 Jul 2025 14:44:04 GMT - Mon, 27 Oct 2025 15:43:45 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /scripts/sak/iz_setcid.html?v=1 HTTP/1.1
Host: cdn.izooto.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Cookie: __cf_bm=5Iqqf9sSy71msFx2FoTtFhG_mBMSg_ifEUd3vAksuAo-1754634148-1.0.1.1-weJAPKOPHoiyfBS67XnkaRyueEBWPj2g4Qy0qDObYUur.I3LxD2EcQ7tD2qiPAtPz6tHnAQbDpHCndFqKNJDfkHh.oSxwiEMZn_yMVguAUo
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:31 GMT
content-type: text/html
content-encoding: br
last-modified: Tue, 14 May 2024 14:09:56 GMT
vary: Accept-Encoding
x-xss-protection: 1; mode=block
access-control-allow-origin: *
cf-cache-status: HIT
age: 620496
expires: Mon, 08 Sep 2025 06:22:31 GMT
cache-control: public, max-age=2678400
priority: u=4,i=?0
server: cloudflare
cf-ray: 96bceb762fc00b65-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-app.js
200 OK 151 B URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-app.js
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with no line terminators
First Seen 2023-03-07
Last Seen 2025-08-08
Times Seen 34176
Size 151 B (151 bytes)
MD5 e736e189edb5d0d9d5b8e7f23dd9114a
SHA1 bcabee193f13756fa9154fc492fe420c47140343
SHA256 13cf82e6f9d48221cd55f8b3c3d206f7bdb83f291034b478e484ccfef7d500dd
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:33 GMT
content-type: application/javascript
content-encoding: br
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 96bceb82e8f456be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET fonts.googleapis.com/css2?family=Sora:wght@100..800&display=swap
200 OK 826 B URL GET HTTPS
fonts.googleapis.com/css2?family=Sora:wght@100..800&display=swap
IP / ASN
142.250.178.106
#15169 GOOGLE
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text
First Seen 2025-06-01
Last Seen 2025-08-08
Times Seen 145
Size 826 B (826 bytes)
MD5 f17aee340afd9b7e61c0541ff491a079
SHA1 e97807368a6884ee10f15607287a87ab32b3124e
SHA256 a00eaa05b9886ff459dfacf5f7e541a93877ece89c085c985bbc409f10bf9d72
Certificate Info
Issuer Google Trust Services
Subject upload.video.google.com
Fingerprint DF:A1:DB:1F:BC:5E:31:D7:F8:FE:26:E3:B9:B3:02:98:B1:C8:50:EC
Validity Mon, 07 Jul 2025 08:35:11 GMT - Mon, 29 Sep 2025 08:35:10 GMT
GET /css2?family=Sora:wght@100..800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 08 Aug 2025 06:22:28 GMT
date: Fri, 08 Aug 2025 06:22:28 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/essential-6-for-cats-1600.jpg?class=img400
200 OK 11 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/essential-6-for-cats-1600.jpg?class=img400
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 11 kB (10696 bytes)
MD5 3804ca4d3cadde83c31882c0411f77ea
SHA1 751bf5a7324b9161efcddd503d97f30a82e1f01a
SHA256 c45675008762437d7dfe62a7af6814b8cdd17cda0ebd3ffccfa8e7c40461762d
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/essential-6-for-cats-1600.jpg?class=img400 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 10696
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-296
x-downloadsize: 60625
x-bo-origindownloadtime: 44
x-bo-compressionratio: 82.36%
x-bo-processingtime: 11
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: e96adf5b40e64d9c8c37d7cb7f45d41c
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=G-N58L3MTBVX&cx=c>m=457e5870h2za200&tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105033763~105033765~105103161~105103163~105135708~105135710
200 OK 361 kB URL GET HTTPS
www.googletagmanager.com/gtag/js?id=G-N58L3MTBVX&cx=c>m=457e5870h2za200&tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105033763~105033765~105103161~105103163~105135708~105135710
IP / ASN
142.250.74.136
#15169 GOOGLE
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (7998)
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 1
Size 361 kB (360967 bytes)
MD5 68af37597e1a88029e1bd4af990f8694
SHA1 6c818c18d5c92d4baacea6df965dde893dd6e1fb
SHA256 5d821d0b451ef67bed5cd3e7c445e67a71ff690c6393b12543da6e28ca8d24e0
Certificate Info
Issuer Google Trust Services
Subject *.google-analytics.com
Fingerprint A2:8A:24:AD:51:7D:A4:62:BB:34:6F:C9:21:A1:B9:E1:2D:A6:0E:C1
Validity Mon, 07 Jul 2025 08:34:03 GMT - Mon, 29 Sep 2025 08:34:02 GMT
GET /gtag/js?id=G-N58L3MTBVX&cx=c>m=457e5870h2za200&tag_exp=101509157~103116026~103200004~103233427~104684208~104684211~105033763~105033765~105103161~105103163~105135708~105135710 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Aug 2025 06:22:32 GMT
expires: Fri, 08 Aug 2025 06:22:32 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1099:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1099:0
report-to: {"group":"ascgcycc:1099:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1099:0"}],}
server: Google Tag Manager
content-length: 124178
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-vendor.js
200 OK 83 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-vendor.js
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (65472)
First Seen 2024-03-08
Last Seen 2025-08-08
Times Seen 7672
Size 83 kB (82913 bytes)
MD5 3b341e35b39f6195793ecaf5db7c1d63
SHA1 3ef56ed9ac8bfbf5347dc4592653703f59763083
SHA256 548669d6434f5204dca25b9a6f8a02f63301b8c1b58a717b91fec8b6c2918305
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:33 GMT
content-type: application/javascript
cf-ray: 96bceb82d8e556be-OSL
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: W/"3b341e35b39f6195793ecaf5db7c1d63"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: accept-encoding
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/SeaFlex-joint-skin-vitality_06182025_024440.jpg
200 OK 39 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/SeaFlex-joint-skin-vitality_06182025_024440.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 39 kB (39332 bytes)
MD5 56d4f69c18d565fec2ab2adfd3f65544
SHA1 bf99cc9b1c75ca7a0a057ec7c56f7e6a78eb6b36
SHA256 615c6d0526a97c4ccb5bb42b7e6302db38dcc41bdcc984e092b9fac2af6d6c37
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/SeaFlex-joint-skin-vitality_06182025_024440.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 39332
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-294
x-downloadsize: 133076
x-bo-origindownloadtime: 35
x-bo-compressionratio: 70.44%
x-bo-processingtime: 38
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: b0ee8aecfa65d51938d8a0f96c1bc39d
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/black-friday-2023/popup/Dog.png
200 OK 18 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/black-friday-2023/popup/Dog.png
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 18 kB (18378 bytes)
MD5 e181b5542d7483bda01b6433dd75d195
SHA1 0d979ab7ac866142c4c643e7c273e2df23e9799b
SHA256 66b704f2e34fd046ae461ecf18f34c0c8db5ca87c052806977d0d749cf7df8d4
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/black-friday-2023/popup/Dog.png HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 18378
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 07 Aug 2025 04:26:19 GMT
x-bo-server: LA-292
x-downloadsize: 157962
x-bo-origindownloadtime: 137
x-bo-compressionratio: 88.37%
x-bo-processingtime: 15
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/07/2025 04:26:20
cdn-edgestorageid: 830
cdn-requestid: e11238d720658de7a15e7989ab86e41f
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/menu-arrow1.png
200 OK 1.1 kB URL GET HTTPS
www.canadavetexpress.com/images/menu-arrow1.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 8 x 14, 8-bit/color RGB, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.1 kB (1087 bytes)
MD5 a34833b390f9ec930663dcab3c6b0b04
SHA1 a9c8fee072fddaa8c6977ac90f465e2f770b4732
SHA256 bf8c396e2ee48f27d9f96ea0e7556d92da08da30d0e7b427e30e053ae1795eb6
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/menu-arrow1.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/header-footer-2024.css
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/png
content-length: 1087
cf-ray: 96bceb718ab556a2-OSL
last-modified: Fri, 06 Sep 2024 03:36:17 GMT
accept-ranges: bytes
etag: "fed48beed0db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hFNAYWeyq1yVpSNlqrurSPGJ0aejC6j0frLBnyNG06mfbJRld6Kbc2rUVpsRb3qMoXOBIv%2B9Ud%2BV5Us00Wm607I9OySK%2BiSVk02Pzf%2FkP%2BSMsFxDqaKnpdUj8tFUZmnoFghVgoiJRXKhxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1046&min_rtt=392&rtt_var=427&sent=3191&recv=687&lost=0&retrans=1&sent_bytes=3973655&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3560&x=0"
X-Firefox-Spdy: h2
GET pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
200 OK 160 kB URL GET HTTPS
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP / ASN
142.250.178.66
#15169 GOOGLE
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (4327)
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 1
Size 160 kB (159613 bytes)
MD5 f4c84f86aa87fe4dcd139f2faf30f83c
SHA1 e5f09ded591df9ae7e9604c184d186f573a7efda
SHA256 add26b28194d9d5cb41cb3f9209ac61b3e7b693c53c6482fbf197ea526f8608b
Certificate Info
Issuer Google Trust Services
Subject *.g.doubleclick.net
Fingerprint 86:B3:55:17:6A:EE:01:BC:51:90:81:E3:71:E4:ED:03:DC:45:AA:3F
Validity Mon, 07 Jul 2025 08:34:03 GMT - Mon, 29 Sep 2025 08:34:02 GMT
GET /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.canadavetexpress.com/
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
link: <https://googleads.g.doubleclick.net>; rel="preconnect"; crossorigin
vary: Accept-Encoding
date: Fri, 08 Aug 2025 06:22:32 GMT
expires: Fri, 08 Aug 2025 06:22:32 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 5996700068835215173
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 53965
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET guarantee-cdn.com/Web/Seal/AltSealInfo.aspx?Info=1&PR=&CBF=bs_R.AltSeal&Elem=_GUARANTEE_SealSpan&SN=buysafeseal_1&HASH=lhNjJXXABLwEjahewcn4ksnDIs%2B3LKml1yCJrwZru04oTpnpdqE9qNWmpGmf27%2FqdWF9cZAF4QbaSMBAQ4ni%2BQ%3D%3D&S=Large&T=M&MSPHASH=&fpc=&DP=br%3DFirefox%3Bvr%3D134.0%3Bos%3DWindows%3Bsno%3Da&I=&TS=ed91152a89
200 OK 889 B URL GET HTTPS
guarantee-cdn.com/Web/Seal/AltSealInfo.aspx?Info=1&PR=&CBF=bs_R.AltSeal&Elem=_GUARANTEE_SealSpan&SN=buysafeseal_1&HASH=lhNjJXXABLwEjahewcn4ksnDIs%2B3LKml1yCJrwZru04oTpnpdqE9qNWmpGmf27%2FqdWF9cZAF4QbaSMBAQ4ni%2BQ%3D%3D&S=Large&T=M&MSPHASH=&fpc=&DP=br%3DFirefox%3Bvr%3D134.0%3Bos%3DWindows%3Bsno%3Da&I=&TS=ed91152a89
IP / ASN
23.49.31.215
#16625 AKAMAI-AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with very long lines (889), with no line terminators
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 1
Size 889 B (889 bytes)
MD5 2c39bd459b7c54bbac5db5d611d59af3
SHA1 06fd009f16b85d38aba2c03bfe52d13b9ae05f0c
SHA256 90a1a06ce0f95470ac1382c754e07ab43ac09098a9e6c13989d0b3a198b40068
Certificate Info
Issuer DigiCert Inc
Subject guarantee-cdn.com
Fingerprint 0F:A4:39:14:73:FE:F9:89:B4:5C:BE:39:DF:79:C4:77:A3:D5:C0:0B
Validity Wed, 09 Jul 2025 00:00:00 GMT - Sun, 09 Aug 2026 23:59:59 GMT
Technology Fingerprints
Windows Server (Operating systems) Windows Server is a brand name for a group of server operating systems.
IIS:10.0 (Web servers) Internet Information Services (IIS) is an extensible web server software created by Microsoft for use with the Windows NT family.
GET /Web/Seal/AltSealInfo.aspx?Info=1&PR=&CBF=bs_R.AltSeal&Elem=_GUARANTEE_SealSpan&SN=buysafeseal_1&HASH=lhNjJXXABLwEjahewcn4ksnDIs%2B3LKml1yCJrwZru04oTpnpdqE9qNWmpGmf27%2FqdWF9cZAF4QbaSMBAQ4ni%2BQ%3D%3D&S=Large&T=M&MSPHASH=&fpc=&DP=br%3DFirefox%3Bvr%3D134.0%3Bos%3DWindows%3Bsno%3Da&I=&TS=ed91152a89 HTTP/1.1
Host: guarantee-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
server: Microsoft-IIS/10.0
p3p: CP="ALL DSP COR CUR ADM DEV TAI PSA PSD IVA IVD CONo HIS OUR SAMi LEG UNI NAV"
x-seal: 21
content-length: 729
expires: Fri, 08 Aug 2025 06:22:33 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Fri, 08 Aug 2025 06:22:33 GMT
vary: Accept-Encoding
set-cookie: buySAFE=UniqueID=10bb2394-72ef-48fe-bac8-b38574a60911_54; expires=Sat, 08-Aug-2026 06:22:33 GMT; path=/
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/googlesans/v58/4UaRrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iq2vgCIhMl07v0x.woff2
200 OK 52 kB URL GET HTTPS
fonts.gstatic.com/s/googlesans/v58/4UaRrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iq2vgCIhMl07v0x.woff2
IP / ASN
142.250.74.35
#15169 GOOGLE
Requested by https://accounts.google.com/gsi/iframe/select?client_id=369742478805-m7k8dldnb8oklq7e54kps1bh8it7eogi.apps.googleusercontent.com&ux_mode=popup&ui_mode=card&as=85rOmAMkWmeaxz4C6QrReXyWp3d9rgKFlEeUCNKtFLo&is_itp=true&channel_id=85cdf0d95a0de4bccf862512873fabeb14c0a36c5c7699550547266d61705ed9&origin=https%3A%2F%2Fwww.canadavetexpress.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 52212, version 1.0
First Seen 2023-12-21
Last Seen 2025-08-08
Times Seen 9849
Size 52 kB (52212 bytes)
MD5 bbf2ef715b5ac4aa6f847006052e38af
SHA1 047a89aa049c69af81be14668316f11026c5feba
SHA256 b342a0861eda53a8b25cea5573516c6ba50a9f3b32257bf160c8a425a307896d
Certificate Info
Issuer Google Trust Services
Subject *.gstatic.com
Fingerprint 43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD
Validity Mon, 07 Jul 2025 08:35:11 GMT - Mon, 29 Sep 2025 08:35:10 GMT
GET /s/googlesans/v58/4UaRrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iq2vgCIhMl07v0x.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 52212
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Aug 2025 10:16:14 GMT
expires: Fri, 07 Aug 2026 10:16:14 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 May 2023 16:35:56 GMT
content-type: font/woff2
age: 72381
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/css/model.css
200 OK 9.1 kB URL GET HTTPS
www.canadavetexpress.com/Content/css/model.css
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with very long lines (498), with CRLF line terminators
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 9.1 kB (9125 bytes)
MD5 df9fdd9954a9d6127f3733d7acb9dd73
SHA1 2f91e54b8d29bd7483b914b0b23a7be9dab35f13
SHA256 84b160ff47a09e78896e7164dec15f61b3a955bead70eae14292d29d4f60d4af
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/css/model.css HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: text/css
content-length: 2299
cf-ray: 96bceb610df256a2-OSL
content-encoding: gzip
last-modified: Mon, 16 Dec 2024 09:16:35 GMT
accept-ranges: bytes
etag: "80db16349b4fdb1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9y%2BF3d0mM05Q8SeT5s9muUPaq%2BldlqYNDZm2q9a1zZWhgd23GnQAL0PCNCpG23px20SP%2B7YGpvkEN5VtVcx8mt%2BE0VvACascgya3%2BzMWTRDvYaVQdW6m06Omo3nkp3wo8h0qiU16nfZMug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1034&min_rtt=443&rtt_var=798&sent=74&recv=66&lost=0&retrans=0&sent_bytes=38133&recv_bytes=4735&delivery_rate=23297029&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=860&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-Offer-Banner/Revolution-Plus-logo.png
200 OK 5.9 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-Offer-Banner/Revolution-Plus-logo.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 150 x 40, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 5.9 kB (5946 bytes)
MD5 3b91238fcce42fc87753385e8a4d8a9b
SHA1 76bfbb15d1799aaea753d6c9549e3844fb08138c
SHA256 426833a73c4b6bb5dc56469c73b5b2c4c9a58a8d03b7276a093371c4c05f8ffb
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-Offer-Banner/Revolution-Plus-logo.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 5946
cf-ray: 96bceb621f5856a2-OSL
last-modified: Thu, 14 Mar 2024 06:47:26 GMT
accept-ranges: bytes
etag: "286bfc79db75da1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RpfhFwKd%2BmOMZhyvyMBng7ahvIBw4RR%2Bg5TfZMGPqHyX%2BFPShNSHhh2ZJ%2FFPIsTBRWxYTmIHmpiWWul4XfjwnpDiIQ%2F%2BsVN%2FnMJPPg7wLgExz4z8bqRL8jIy90EgCK4NLihIph%2B1NQMEJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=966&min_rtt=392&rtt_var=368&sent=255&recv=174&lost=0&retrans=0&sent_bytes=214403&recv_bytes=8402&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=938&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/content/js/owl.carousel.min.js
200 OK 44 kB URL GET HTTPS
www.canadavetexpress.com/content/js/owl.carousel.min.js
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (31997)
First Seen 2023-03-07
Last Seen 2025-08-08
Times Seen 19945
Size 44 kB (44342 bytes)
MD5 f416f9031fef25ae25ba9756e3eb6978
SHA1 e2a600e433df72b4cfde93d7880e3114917a3cbe
SHA256 a53c43f834b32309b084ea9314df8307e9c78cee2202c6e07f216ae4ae5b704d
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /content/js/owl.carousel.min.js HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript
content-length: 15044
cf-ray: 96bceb62c85156a2-OSL
content-encoding: gzip
last-modified: Fri, 20 Apr 2018 13:22:10 GMT
accept-ranges: bytes
etag: "06d3596aad8d31:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mn4uGF9ku14zf7pnFzOcoYNU5dXL2eVrgp48NZrblpC2pUDwlCvARyRZRgl8SUWjttLnjBg1dxhrZIWHS%2FnsNML5Wq%2B7hBQpcybnYo1lh8P28e3JKTs8C4j4IIQqKgQgtI4l%2BXr2YGL%2BLA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=842&min_rtt=392&rtt_var=177&sent=1969&recv=473&lost=0&retrans=1&sent_bytes=2415801&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1146&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/btn-prev2.png
200 OK 1.2 kB URL GET HTTPS
www.canadavetexpress.com/images/btn-prev2.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 40 x 40, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.2 kB (1203 bytes)
MD5 f3072a8edcacfbac237a389716f4c48d
SHA1 7f0c6a7f985a515e40a1d96187b867ab769eaaab
SHA256 74b3a4c5a8afd7ec1d8a794ca0cc440d77d7e781f1cef5be00924a96ee3f1171
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/btn-prev2.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/home-2024.css?id=26
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1; HomeProduct=0; TrandingProductDog=0; TrandingProductCat=0; usource=wg; uts_id=uts1754634151.986; LCUTS_UID_901003=901003
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:31 GMT
content-type: image/png
content-length: 1203
cf-ray: 96bceb762ff556a2-OSL
last-modified: Mon, 09 Sep 2024 11:06:45 GMT
accept-ranges: bytes
etag: "3a43bf5ba82db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4uyrDQrQst295O0tt%2FDOWeXjCgDsuzEHu%2F248Kxmcj%2BWgdTCvHBkovvnMLyLYpgz7ELIHaii3347b34Wmjt%2FBsdpwM3ksw8v4rriS4X3K7vVeasx%2FhaiEhjdmAwWJT84c8WJxJVb%2BGOHjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=4839&min_rtt=392&rtt_var=8145&sent=3263&recv=710&lost=0&retrans=1&sent_bytes=4051525&recv_bytes=11505&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=4142&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/banner/CVE-Top-Dog-cat-Offer-23Jan25.jpg
200 OK 221 kB URL GET HTTPS
www.canadavetexpress.com/images/banner/CVE-Top-Dog-cat-Offer-23Jan25.jpg
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1200x415, components 3
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 221 kB (220777 bytes)
MD5 6d4c8db14e82a00558dbbaaa1aed2780
SHA1 8158cc52a737f1270274dffa353d7b2e959dd8cf
SHA256 ad592994ac9ef50a84dbb05b27c117a88cd4eaad051fe2e12c84ef52a85b875c
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/banner/CVE-Top-Dog-cat-Offer-23Jan25.jpg HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/jpeg
content-length: 220777
cf-ray: 96bceb617eb156a2-OSL
last-modified: Fri, 24 Jan 2025 09:31:47 GMT
accept-ranges: bytes
etag: "1ed9cdc9426edb1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jFn3mj2rPg19h4%2BWdNQO4SKodfjY4QqppyRjhEmvQbb9QlME4gMyTzWjq2W4W%2FsiFNQNN%2FkNvtiFCF1lYKHuS9gSfg7g3SGlqLG0T8LyWQuXtemyReTSlrrCB%2FTgpxm0Z92xB0JQaCDjDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1199&min_rtt=392&rtt_var=17&sent=410&recv=251&lost=0&retrans=0&sent_bytes=406157&recv_bytes=8576&delivery_rate=66143209&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=983&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/milbemax-small-dogs-under-11-lbs-1600.jpg
200 OK 30 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/milbemax-small-dogs-under-11-lbs-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 30 kB (29862 bytes)
MD5 59333005fe6972bb978dbdc5b6924fbb
SHA1 4712cdf9a32e47374b16603421378ac8b776153c
SHA256 45afbee47e31b8cb75b7954def3b5ee8be6c71c8716e1e667b5cb9d5463b3933
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/milbemax-small-dogs-under-11-lbs-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:29 GMT
content-type: image/webp
content-length: 29862
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-289
x-downloadsize: 49232
x-bo-origindownloadtime: 659
x-bo-compressionratio: 39.34%
x-bo-processingtime: 51
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:29
cdn-edgestorageid: 830
cdn-requestid: be088401f6fc8b8b2cc2781c89ed2c00
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/CVENew/Buy_Icon.png
200 OK 1.0 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/CVENew/Buy_Icon.png
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.0 kB (1008 bytes)
MD5 2f4a29f2ea82c467c6f7245b87bc0d69
SHA1 5e51271e8af006a24218cbf6bcfcc7d31cd8eb64
SHA256 17d8428a3428da32392dbeb059e7c892edd0b902bab2e844ed4f1763bbc1769c
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/CVENew/Buy_Icon.png HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 1008
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-291
x-downloadsize: 1112
x-bo-origindownloadtime: 21
x-bo-compressionratio: 9.35%
x-bo-processingtime: 0
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 92a68f7b08052465af9ccd57551fc45d
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET guarantee-cdn.com/Web/Seal/ii.aspx?CBF=bs_R.ii&fpc=&TS=bb6gg
200 OK 17 B URL GET HTTPS
guarantee-cdn.com/Web/Seal/ii.aspx?CBF=bs_R.ii&fpc=&TS=bb6gg
IP / ASN
23.49.31.215
#16625 AKAMAI-AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with no line terminators
First Seen 2023-03-07
Last Seen 2025-08-08
Times Seen 431
Size 17 B (17 bytes)
MD5 0f14cb4412e59f0eb530fa24eb1fb746
SHA1 e2871e5421a27c8ca10381efb27a2512e1e78c7d
SHA256 0695d09457105da5fe66b52107c7f61f2df163a43d37db5174661e69c15c591d
Certificate Info
Issuer DigiCert Inc
Subject guarantee-cdn.com
Fingerprint 0F:A4:39:14:73:FE:F9:89:B4:5C:BE:39:DF:79:C4:77:A3:D5:C0:0B
Validity Wed, 09 Jul 2025 00:00:00 GMT - Sun, 09 Aug 2026 23:59:59 GMT
Technology Fingerprints
IIS:10.0 (Web servers) Internet Information Services (IIS) is an extensible web server software created by Microsoft for use with the Windows NT family.
Windows Server (Operating systems) Windows Server is a brand name for a group of server operating systems.
GET /Web/Seal/ii.aspx?CBF=bs_R.ii&fpc=&TS=bb6gg HTTP/1.1
Host: guarantee-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript; charset=utf-8
content-encoding: gzip
server: Microsoft-IIS/10.0
p3p: CP="ALL DSP COR CUR ADM DEV TAI PSA PSD IVA IVD CONo HIS OUR SAMi LEG UNI NAV"
x-seal: 21
content-length: 137
cache-control: private, max-age=86400
expires: Sat, 09 Aug 2025 06:22:33 GMT
date: Fri, 08 Aug 2025 06:22:33 GMT
vary: Accept-Encoding
etag: "fa22010460abcda3"
X-Firefox-Spdy: h2
GET guarantee-cdn.com/private/rollover/rollover.core.js
200 OK 51 kB URL GET HTTPS
guarantee-cdn.com/private/rollover/rollover.core.js
IP / ASN
23.49.31.215
#16625 AKAMAI-AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (570)
First Seen 2024-01-25
Last Seen 2025-08-08
Times Seen 333
Size 51 kB (50798 bytes)
MD5 a62481b9f7777aa383b92819fa342d7c
SHA1 0f1a474cfa79a2c3ec85f1a9b53e361813f5a87a
SHA256 d740acdbd01d9ffb8666de41785431970e1b7c008db03575fc4e800db535948c
Certificate Info
Issuer DigiCert Inc
Subject guarantee-cdn.com
Fingerprint 0F:A4:39:14:73:FE:F9:89:B4:5C:BE:39:DF:79:C4:77:A3:D5:C0:0B
Validity Wed, 09 Jul 2025 00:00:00 GMT - Sun, 09 Aug 2026 23:59:59 GMT
Technology Fingerprints
IIS:10.0 (Web servers) Internet Information Services (IIS) is an extensible web server software created by Microsoft for use with the Windows NT family.
Windows Server (Operating systems) Windows Server is a brand name for a group of server operating systems.
GET /private/rollover/rollover.core.js HTTP/1.1
Host: guarantee-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 02 Jul 2025 22:19:16 GMT
accept-ranges: bytes
server: Microsoft-IIS/10.0
p3p: CP="ALL DSP COR CUR ADM DEV TAI PSA PSD IVA IVD CONo HIS OUR SAMi LEG UNI NAV"
x-seal: 21
content-length: 18651
cache-control: private, max-age=86400
expires: Sat, 09 Aug 2025 06:22:32 GMT
date: Fri, 08 Aug 2025 06:22:32 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
GET guarantee-cdn.com/Web/Seal/si.aspx?s=943026743&p=11&t=a&TS=bb6gg&R=0&x=BRX
200 OK 3.7 kB URL GET HTTPS
guarantee-cdn.com/Web/Seal/si.aspx?s=943026743&p=11&t=a&TS=bb6gg&R=0&x=BRX
IP / ASN
23.49.31.215
#16625 AKAMAI-AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 100 x 54, 8-bit/color RGBA, non-interlaced
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 1
Size 3.7 kB (3703 bytes)
MD5 9752230ce119ea5d2df6f7bc20966ff0
SHA1 d6c32a2b83233353af94e9c6141c207b94a52259
SHA256 7e0594b0ff54f6d1bc14d7fdfccf9eb57f181027977dafa93581688b7217a984
Certificate Info
Issuer DigiCert Inc
Subject guarantee-cdn.com
Fingerprint 0F:A4:39:14:73:FE:F9:89:B4:5C:BE:39:DF:79:C4:77:A3:D5:C0:0B
Validity Wed, 09 Jul 2025 00:00:00 GMT - Sun, 09 Aug 2026 23:59:59 GMT
Technology Fingerprints
IIS:10.0 (Web servers) Internet Information Services (IIS) is an extensible web server software created by Microsoft for use with the Windows NT family.
Windows Server (Operating systems) Windows Server is a brand name for a group of server operating systems.
GET /Web/Seal/si.aspx?s=943026743&p=11&t=a&TS=bb6gg&R=0&x=BRX HTTP/1.1
Host: guarantee-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/octet-stream; charset=utf-8
server: Microsoft-IIS/10.0
content-disposition: inline; filename=s.png
p3p: CP="ALL DSP COR CUR ADM DEV TAI PSA PSD IVA IVD CONo HIS OUR SAMi LEG UNI NAV"
x-seal: 20
content-length: 3703
cache-control: private, max-age=86400
expires: Sat, 09 Aug 2025 06:22:33 GMT
date: Fri, 08 Aug 2025 06:22:33 GMT
etag: "1c05cabd6642fc1b"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/css/owl.carousel.min.css
200 OK 3.9 kB URL GET HTTPS
www.canadavetexpress.com/Content/css/owl.carousel.min.css
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 3.9 kB (3942 bytes)
MD5 1ab6d199f4b6b9676c5f0ccc13132226
SHA1 aef3b0aba6e9d1d1e94506d0bdb81e64744dd1e5
SHA256 992efda41c26730f6aec145e21ab2f4660b22c467cff4ce9b6228396db228f69
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/css/owl.carousel.min.css HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: text/css
content-length: 1463
cf-ray: 96bceb615e5d56a2-OSL
content-encoding: gzip
last-modified: Mon, 09 Dec 2024 04:09:50 GMT
accept-ranges: bytes
etag: "ee945931f049db1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7CWw0OuIfTSDWucoTPn6pFUPygY9AdfApkPQKkN9tn8Mqzm%2BlKvZmF4rY2pI1kq9zzLihZeL7q7EBY4tjViF4nch3KzRNeInJHR2EXOvHTnlJ8gVJzzmJKr8Ae%2FH0DLlluGv5tqYTQ9jFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=876&min_rtt=392&rtt_var=602&sent=133&recv=111&lost=0&retrans=0&sent_bytes=80039&recv_bytes=7409&delivery_rate=23297029&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=916&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/cat-gif.gif
200 OK 326 kB URL GET HTTPS
www.canadavetexpress.com/images/cat-gif.gif
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type GIF image data, version 89a, 640 x 640
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 326 kB (326293 bytes)
MD5 00fec80c7aeb2b00b1928f0fda59080e
SHA1 f644c2c75893e833bdf08547de1df2ec3b27331e
SHA256 9d31f1126643cdb76dab28edf85fc163d9e7ab7eb58cb5c825108ad31bf92132
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/cat-gif.gif HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/gif
content-length: 326293
cf-ray: 96bceb623f7356a2-OSL
last-modified: Fri, 24 Mar 2023 05:21:12 GMT
accept-ranges: bytes
etag: "8c24ad72105ed91:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WUsn0kYaYPUE3sxOd%2FMkDFqrRIyZ90rH%2FfYDiAJCngaU5nBycK3KuT9dSn6TRzpM6C8sVH0sSUvzSuc1f4znjG%2FY%2B2Fj0wMSt4t7s0s9r7F%2BujXv1y9dE3XoymyOx9yj99BDTeWObQJ3Nw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=2093&min_rtt=392&rtt_var=2736&sent=300&recv=196&lost=0&retrans=0&sent_bytes=263473&recv_bytes=8487&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=966&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-youtube.png
200 OK 1.8 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-youtube.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.8 kB (1847 bytes)
MD5 31c2bce274695731821301936cbee824
SHA1 8d6cbaacd1a16aeb637b37179da994d9b7d90dd7
SHA256 d10dafea197957b2dcdb38c722351e57bc665e4cfbe10e9b2555ad9f7cf5d954
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-youtube.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 1847
cf-ray: 96bceb623f7d56a2-OSL
last-modified: Tue, 10 Dec 2024 03:33:35 GMT
accept-ranges: bytes
etag: "8b38454bb44adb1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C1Skod6um4kWGmsncs%2B2Rnt0ik%2BeXlThXniTsgMNry0O4DD44qWgHve4XAbhp5CqoHUipLz12gdItqFsR28vWroamF%2Bt9YriRjKNo4x1vaXKRUEP73O0rxWQWCmPAEYdNok1slCd14iPdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1351&min_rtt=392&rtt_var=825&sent=1380&recv=414&lost=0&retrans=1&sent_bytes=1666435&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1088&x=0"
X-Firefox-Spdy: h2
GET trklc.canadavetexpress.com/core.js
200 OK 8.1 kB URL GET HTTPS
trklc.canadavetexpress.com/core.js
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (981)
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 1
Size 8.1 kB (8147 bytes)
MD5 9ec25b07b0428ecc78b5caf450925882
SHA1 58a715abc40920a3aadbdce31c6ce9b0276bb839
SHA256 c002fdfdfe80e5830e2e4fcdb39bc6b8ba53b3f1ef81c70aef5f96e46cb637c0
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /core.js HTTP/1.1
Host: trklc.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:29 GMT
content-type: text/javascript; charset=UTF-8
content-length: 3082
cf-ray: 96bceb62d87956a2-OSL
x-content-type-options: nosniff
access-control-allow-origin: https://www.canadavetexpress.com
timing-allow-origin: *
cache-control: no-cache, must-revalidate
set-cookie: uts_901003_lpcheck=1; expires=Fri, 08-Aug-2025 07:22:28 GMT; Max-Age=3600; path=/; samesite=none; domain=.linkconnector.com; secure
content-encoding: gzip
vary: Accept-Encoding
x-server: lcweb1
p3p: CP="NOI DSP COR NID CUR OUR NOR"
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=133eR3yZssvlz8KP9RdBedPiqgAYtd7khHxLmaG0tIwE%2Bhef3JranCFWnjZR8wvGz%2Bwi54I9sH%2FYn9nadcytM51vD4uvGjlBDMuJt%2B5FJ4YMI28W6nTZAFcmo4Huj9ujlnmx1Ca9FReWGJFB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=941&min_rtt=392&rtt_var=175&sent=2245&recv=520&lost=0&retrans=1&sent_bytes=2772988&recv_bytes=8794&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1790&x=0"
X-Firefox-Spdy: h2
GET embed.tawk.to/5e99814e35bcbb0c9ab2119f/default
200 OK 2.1 kB URL GET HTTPS
embed.tawk.to/5e99814e35bcbb0c9ab2119f/default
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text
First Seen 2025-08-01
Last Seen 2025-08-08
Times Seen 3
Size 2.1 kB (2121 bytes)
MD5 4e6426b2a967d3e36925758ed2df3c3a
SHA1 adec36c5f1c2a40484ec3f307dc2643f0844888e
SHA256 dc521e9888a78e006675535b35290223b5f1218190e86ca1ef03214b039f59e2
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /5e99814e35bcbb0c9ab2119f/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:31 GMT
content-type: application/x-javascript
cf-ray: 96bceb742e4656be-OSL
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-6880b98ef42"
vary: Accept-Encoding
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-2d224aff.js
200 OK 18 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-2d224aff.js
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (18393), with no line terminators
First Seen 2025-07-23
Last Seen 2025-08-08
Times Seen 400
Size 18 kB (18393 bytes)
MD5 c317c412f2839108b624f1fefb4dc964
SHA1 f2bfa16ac58cef8232e0f2d5ffd0a9db256f0de7
SHA256 825b20ebbb1a4b18b7d68b2bf2f374ee4c6a3c4cd273391fca24510ac4a6ede0
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/js/twk-chunk-2d224aff.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: application/javascript
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb8aebad56be-OSL
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: "c317c412f2839108b624f1fefb4dc964"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
age: 691275
cf-cache-status: HIT
vary: accept-encoding
alt-svc: h3=":443"; ma=86400
GET embed.tawk.to/_s/v4/app/6880b98ef42/css/min-widget.css
200 OK 36 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/css/min-widget.css
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with very long lines (36049)
First Seen 2025-05-21
Last Seen 2025-08-08
Times Seen 2567
Size 36 kB (36092 bytes)
MD5 af9830eef563b4df395870a483ce549c
SHA1 2c678a245c7b8984569447c9bbfe182583ef7e56
SHA256 5d919993a3fe6ec4c27ec6696b643900c02b95584a4a21a518eb8809edf12531
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/css/min-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: text/css
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb8c4bc556be-OSL
last-modified: Wed, 23 Jul 2025 10:30:15 GMT
etag: "af9830eef563b4df395870a483ce549c"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
age: 786892
cf-cache-status: HIT
vary: accept-encoding
alt-svc: h3=":443"; ma=86400
GET canadavetexpress.b-cdn.net/images/banner/CVE-main-summer-Aug25_08042025_030258.jpg?id=203715
200 OK 56 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/banner/CVE-main-summer-Aug25_08042025_030258.jpg?id=203715
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-08-01
Last Seen 2025-08-08
Times Seen 3
Size 56 kB (55984 bytes)
MD5 70656d154e595f56c7f118664580443f
SHA1 0ab58cc9c5afce52042e4a3e8de5cbc82b9cf932
SHA256 9313b0072883e4580189c615a2485b5ee351554cf981264090439ca10b05ceee
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/banner/CVE-main-summer-Aug25_08042025_030258.jpg?id=203715 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 55984
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-294
x-downloadsize: 185718
x-bo-origindownloadtime: 43
x-bo-compressionratio: 69.86%
x-bo-processingtime: 36
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 3bddf3da46ee464b019b9fe7611e9401
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/banner/CVE-App-in-Itch-Free-August-25.png
200 OK 22 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/banner/CVE-App-in-Itch-Free-August-25.png
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 2
Size 22 kB (22044 bytes)
MD5 4df285604d79462ca83f860a3a5cb89a
SHA1 d31d67d32224226cc30b66f52650c628a2e22831
SHA256 f547231426467653e63b85096a3a797c363890708b89b7d822b18d008fa8a4bc
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/banner/CVE-App-in-Itch-Free-August-25.png HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 22044
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-295
x-downloadsize: 48964
x-bo-origindownloadtime: 88
x-bo-compressionratio: 54.98%
x-bo-processingtime: 10
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: f323ef9ed90a70c2fb1be90a3c52d732
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
POST api.webgains.io/tracking-event
200 OK 16 B URL POST HTTPS
api.webgains.io/tracking-event
IP / ASN
13.43.206.83
#16509 AMAZON-02
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JSON text data
First Seen 2023-04-05
Last Seen 2025-08-08
Times Seen 45353
Size 16 B (16 bytes)
MD5 7363e85fe9edee6f053a4b319588c086
SHA1 a15e2127145548437173fc17f3e980e3f3dee2d0
SHA256 c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
Certificate Info
Issuer Amazon
Subject *.webgains.io
Fingerprint FB:4B:EC:58:1D:1A:65:90:C1:D1:26:F4:E5:3B:F7:02:2C:67:72:26
Validity Sun, 11 May 2025 00:00:00 GMT - Tue, 09 Jun 2026 23:59:59 GMT
Technology Fingerprints
Nginx (Web servers, Reverse proxies) Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.
PHP:8.4.5 (Programming languages) PHP is a general-purpose scripting language used for web development.
POST /tracking-event HTTP/1.1
Host: api.webgains.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.canadavetexpress.com/
Content-Type: application/json
Content-Length: 464
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:33 GMT
content-type: application/json
server: nginx
x-powered-by: PHP/8.4.5
cache-control: no-cache, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/CVE-Logo-2024-Aqua.png
200 OK 26 kB URL GET HTTPS
www.canadavetexpress.com/images/CVE-Logo-2024-Aqua.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 410 x 170, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 26 kB (25499 bytes)
MD5 3d2fa2ca91de78909d20883fb316d47b
SHA1 b08f6fded81043f4b83a4f184db3e37bbede82cf
SHA256 22cef3033080782816853e50cf452512aa71ba6e7ad0368ba938422c9e3f8256
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/CVE-Logo-2024-Aqua.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 25499
cf-ray: 96bceb611e0756a2-OSL
last-modified: Mon, 23 Dec 2024 06:04:59 GMT
accept-ranges: bytes
etag: "30701099055db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Yaqkl5PfIcV7qTmRgsO7uZOk8jtsnoO6%2B%2B6HamW%2B6vOWiOtSBJTe%2FPsR7rOy3fa8qni4htCK5rr5pySslxWzjwBGcgWtvgSPKyIJKZJq1ZFZEd0Xzduo1O1NBU78hwZLJUo1DrztALK6EQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1079&min_rtt=392&rtt_var=314&sent=189&recv=139&lost=0&retrans=0&sent_bytes=144627&recv_bytes=7671&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=922&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/frontline-plus-for-cats-1600.jpg
200 OK 74 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/frontline-plus-for-cats-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 74 kB (74162 bytes)
MD5 22ae19f6dda3252cb9ef4ea91d88e658
SHA1 09f07e2f24f64bf12f0c42c30a6a18c1410e4702
SHA256 bd7a835aa98b755ecde00c7be8af2ef6ebb8fdb45285d1206f7ca255c33eab12
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/frontline-plus-for-cats-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 74162
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-289
x-downloadsize: 96090
x-bo-origindownloadtime: 81
x-bo-compressionratio: 22.82%
x-bo-processingtime: 37
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 3523a7752b6f5fbb5e19865465e32292
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-subscribe.png
200 OK 2.1 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-subscribe.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 2.1 kB (2132 bytes)
MD5 e100aa3f2134e8eb79d8510a1a986017
SHA1 4d501527ce183e340ded59c2bc2ab1251146b415
SHA256 bd5e1ffecc7a6e2c855139cbf5cacc3d6365135c0c71a6202eb6f3c4f25a5c94
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-subscribe.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/header-footer-2024.css
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/png
content-length: 2132
cf-ray: 96bceb71cafb56a2-OSL
last-modified: Tue, 17 Sep 2024 02:51:14 GMT
accept-ranges: bytes
etag: "55de75ac8db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5h5dNuUjEBxh5rIHN9HuoPVwvzG2KZEz2Du9ZzeNWkHZ3nALRwij9L8gG2WJstOf%2BwcKrbXKoZ69nHaVLkz%2FpbclZvhO2lON%2BZhqNR35StsIVwJ3%2BtRbz6gkc0lD1iEQ3dzRg086F%2B4Syw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1327&min_rtt=392&rtt_var=959&sent=3218&recv=693&lost=0&retrans=1&sent_bytes=4007989&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3581&x=0"
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/googlesans/v58/4UaRrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iq2vgCIhMl07v0x.woff2
200 OK 52 kB URL GET HTTPS
fonts.gstatic.com/s/googlesans/v58/4UaRrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iq2vgCIhMl07v0x.woff2
IP / ASN
142.250.74.35
#15169 GOOGLE
Requested by https://accounts.google.com/gsi/iframe/select?client_id=369742478805-m7k8dldnb8oklq7e54kps1bh8it7eogi.apps.googleusercontent.com&ux_mode=popup&ui_mode=card&as=85rOmAMkWmeaxz4C6QrReXyWp3d9rgKFlEeUCNKtFLo&is_itp=true&channel_id=85cdf0d95a0de4bccf862512873fabeb14c0a36c5c7699550547266d61705ed9&origin=https%3A%2F%2Fwww.canadavetexpress.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 52212, version 1.0
First Seen 2023-12-21
Last Seen 2025-08-08
Times Seen 9849
Size 52 kB (52212 bytes)
MD5 bbf2ef715b5ac4aa6f847006052e38af
SHA1 047a89aa049c69af81be14668316f11026c5feba
SHA256 b342a0861eda53a8b25cea5573516c6ba50a9f3b32257bf160c8a425a307896d
Certificate Info
Issuer Google Trust Services
Subject *.gstatic.com
Fingerprint 43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD
Validity Mon, 07 Jul 2025 08:35:11 GMT - Mon, 29 Sep 2025 08:35:10 GMT
GET /s/googlesans/v58/4UaRrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iq2vgCIhMl07v0x.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://accounts.google.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 52212
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Aug 2025 10:16:14 GMT
expires: Fri, 07 Aug 2026 10:16:14 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 23 May 2023 16:35:56 GMT
content-type: font/woff2
age: 72381
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/Dorwest-Wheatgerm-Oil-Liquid-for-Dogs-and-Cats-100ml_08092023_221636.jpg?class=img400
200 OK 6.5 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/Dorwest-Wheatgerm-Oil-Liquid-for-Dogs-and-Cats-100ml_08092023_221636.jpg?class=img400
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 6.5 kB (6516 bytes)
MD5 d759315fdd1a075b020b05409bc95f4a
SHA1 7af13aff097630ecf459c16a003ad6e0bf006533
SHA256 80d208ae6abef43701f310ed83de20b74dd86554a2616f269ac3faf6b732ed39
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/Dorwest-Wheatgerm-Oil-Liquid-for-Dogs-and-Cats-100ml_08092023_221636.jpg?class=img400 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 6516
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-296
x-downloadsize: 56584
x-bo-origindownloadtime: 16
x-bo-compressionratio: 88.48%
x-bo-processingtime: 14
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 134ca0f6339424a14b15027af1320bd2
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Banner/CVE-Main-Feb.jpg
200 OK 126 kB URL GET HTTPS
www.canadavetexpress.com/images/Banner/CVE-Main-Feb.jpg
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1201x159, components 3
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 126 kB (126471 bytes)
MD5 f73df2e36fe62178a359ce4532fcce7f
SHA1 03e6e44e3315a1d82ce39cd3e795e4cfcedd96f3
SHA256 f60ce0aa10cd24d835c9053f2959f8a338adb3852ae0791b026804ef64f051fe
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Banner/CVE-Main-Feb.jpg HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/jpeg
content-length: 126471
cf-ray: 96bceb622f6856a2-OSL
last-modified: Fri, 16 Feb 2024 10:42:17 GMT
accept-ranges: bytes
etag: "5fd278cfc460da1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7vijHj02F2j831V6%2F6aiDCVoCctMFtabhAe8ZjVrgklsNn9exfwlNcshOd1gtKi%2FwCQB9MYGrxpFdIrkuaztygJqqCyks3cRfeqGLs5e%2Fzequ368uUyPpvCApcFO1q86Q6GBlQ7jyHrwxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1029&min_rtt=392&rtt_var=555&sent=1682&recv=433&lost=0&retrans=1&sent_bytes=2054122&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1110&x=0"
X-Firefox-Spdy: h2
GET accounts.google.com/gsi/status?client_id=369742478805-m7k8dldnb8oklq7e54kps1bh8it7eogi.apps.googleusercontent.com&cas=tWnI86v0ygb229uMHSpr%2FiKbBghsUE7A3niZZJuInlk&is_itp=true
200 OK 72 B URL GET HTTPS
accounts.google.com/gsi/status?client_id=369742478805-m7k8dldnb8oklq7e54kps1bh8it7eogi.apps.googleusercontent.com&cas=tWnI86v0ygb229uMHSpr%2FiKbBghsUE7A3niZZJuInlk&is_itp=true
IP / ASN
142.250.150.84
#15169 GOOGLE
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 1
Size 72 B (72 bytes)
MD5 25fc2e3c4adc917fb38d89d83a7b08ca
SHA1 094b92889f6714c980855bdf6f3bb813d593c271
SHA256 f85b4a4443095c8d0596ac1d43e833c1be4c1372008eb0f9505f618f24a7d85e
Certificate Info
Issuer Google Trust Services
Subject *.google.com
Fingerprint 60:9F:41:D7:83:68:5E:64:22:9D:7C:5E:2D:7B:C9:C5:07:DA:C6:D8
Validity Mon, 07 Jul 2025 08:34:14 GMT - Mon, 29 Sep 2025 08:34:13 GMT
GET /gsi/status?client_id=369742478805-m7k8dldnb8oklq7e54kps1bh8it7eogi.apps.googleusercontent.com&cas=tWnI86v0ygb229uMHSpr%2FiKbBghsUE7A3niZZJuInlk&is_itp=true HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/json; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
x-content-type-options: nosniff
access-control-allow-origin: https://www.canadavetexpress.com
access-control-allow-credentials: true
access-control-allow-methods: GET
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 08 Aug 2025 06:22:34 GMT
content-disposition: attachment; filename="json.txt"; filename*=UTF-8''json.txt
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-security-policy: require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, script-src 'nonce-FMmvun5a1VuBWtAKtsiPtg' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET accounts.google.com/gsi/iframe/select?client_id=369742478805-m7k8dldnb8oklq7e54kps1bh8it7eogi.apps.googleusercontent.com&ux_mode=popup&ui_mode=card&as=85rOmAMkWmeaxz4C6QrReXyWp3d9rgKFlEeUCNKtFLo&is_itp=true&channel_id=85cdf0d95a0de4bccf862512873fabeb14c0a36c5c7699550547266d61705ed9&origin=https%3A%2F%2Fwww.canadavetexpress.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth
200 OK 266 kB URL GET HTTPS
accounts.google.com/gsi/iframe/select?client_id=369742478805-m7k8dldnb8oklq7e54kps1bh8it7eogi.apps.googleusercontent.com&ux_mode=popup&ui_mode=card&as=85rOmAMkWmeaxz4C6QrReXyWp3d9rgKFlEeUCNKtFLo&is_itp=true&channel_id=85cdf0d95a0de4bccf862512873fabeb14c0a36c5c7699550547266d61705ed9&origin=https%3A%2F%2Fwww.canadavetexpress.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth
IP / ASN
142.250.150.84
#15169 GOOGLE
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type HTML document, ASCII text, with very long lines (63769)
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 1
Size 266 kB (265810 bytes)
MD5 542dee7b7d91fcd37c83802b7570590a
SHA1 28ebe9c2596efd06b7b856f06957e5ec98e926ad
SHA256 1bd512a2b4653800c7d91e55d80c74a278f6c5ba75044f0299271a3033517b19
Certificate Info
Issuer Google Trust Services
Subject *.google.com
Fingerprint 60:9F:41:D7:83:68:5E:64:22:9D:7C:5E:2D:7B:C9:C5:07:DA:C6:D8
Validity Mon, 07 Jul 2025 08:34:14 GMT - Mon, 29 Sep 2025 08:34:13 GMT
GET /gsi/iframe/select?client_id=369742478805-m7k8dldnb8oklq7e54kps1bh8it7eogi.apps.googleusercontent.com&ux_mode=popup&ui_mode=card&as=85rOmAMkWmeaxz4C6QrReXyWp3d9rgKFlEeUCNKtFLo&is_itp=true&channel_id=85cdf0d95a0de4bccf862512873fabeb14c0a36c5c7699550547266d61705ed9&origin=https%3A%2F%2Fwww.canadavetexpress.com&oauth2_auth_url=https%3A%2F%2Faccounts.google.com%2Fo%2Foauth2%2Fv2%2Fauth HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 08 Aug 2025 06:22:34 GMT
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
content-security-policy: script-src 'nonce-NMZWXmelHCBfkdop4mp_EA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
GET www.canadavetexpress.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
302 Found 10 kB URL GET HTTPS
www.canadavetexpress.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-08
Times Seen 5722873
Size 10 kB (10058 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1; HomeProduct=0; TrandingProductDog=0; TrandingProductCat=0; usource=wg; uts_id=uts1754634151.986; LCUTS_UID_901003=901003
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 08 Aug 2025 06:22:31 GMT
content-length: 0
cf-ray: 96bceb759f6056a2-OSL
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/8359bcf47b68/main.js?
cache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FUIPFowcu3GkOnYAs6N3JSv6WCF9q3fJtZzkikzYg2jUEgZRmfRsTgO4jBgMALpOV9LonYNbYtEKcPMA%2FI1ywkfHPDRomPUg7H7oyvofjYqjKmNnyD1YRV3zFZDguedzwXpm1u2rJ09KYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1085&min_rtt=392&rtt_var=491&sent=3258&recv=704&lost=0&retrans=1&sent_bytes=4049876&recv_bytes=11285&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=4001&x=0"
X-Firefox-Spdy: h2
GET s.yimg.com/wi/config/10076894.json
200 OK 2 B URL GET HTTPS
s.yimg.com/wi/config/10076894.json
IP / ASN
188.125.94.204
#10310 YAHOO-1
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JSON text data
First Seen 2023-03-07
Last Seen 2025-08-08
Times Seen 261716
Size 2 B (2 bytes)
MD5 99914b932bd37a50b983c5e7c90ae93b
SHA1 bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
SHA256 44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
Certificate Info
Issuer DigiCert Inc
Subject *.fantasysports.yahoo.com
Fingerprint 23:F5:2B:DB:65:38:6B:AA:39:ED:44:3D:20:8A:A5:5E:CC:18:86:E6
Validity Wed, 30 Jul 2025 00:00:00 GMT - Wed, 17 Sep 2025 23:59:59 GMT
Technology Fingerprints
Apache Traffic Server (Web servers) Apache Traffic Server is an open-source caching and proxying server that serves as an HTTP/1.1 and HTTP/2 reverse proxy with caching capabilities, load balancing, request routing, SSL termination, and support for advanced HTTP features.
Amazon Web Services (PaaS) Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.
GET /wi/config/10076894.json HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-expose-headers:
access-control-max-age: 0
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
x-amz-request-id: BP7QTZKQ2GEXDSE6
x-amz-id-2: 7iScsGm9SUp5tfGoytPy+BP113PjD1+R9sOLL2SYsxbU0QmQqlVUi5/B83q4kimxgC6atB2fWoI=
content-type: application/json
date: Fri, 08 Aug 2025 06:22:32 GMT
server: ATS
cache-control: public,max-age=3600
age: 1
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-encoding: gzip
content-length: 22
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/bravecto-plus-for-small-cats-112-mg-26-to-62-lbs-green-1600.jpg?class=img200
200 OK 3.8 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/bravecto-plus-for-small-cats-112-mg-26-to-62-lbs-green-1600.jpg?class=img200
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-03-12
Last Seen 2025-08-08
Times Seen 8
Size 3.8 kB (3812 bytes)
MD5 ca9759428a126d52bb918a77d4f2081b
SHA1 2269cd5fe80e7cd8b8a6cf5508dd959048310fea
SHA256 894ee5bdc4f962639ca713b8d3c624efd3813df357ec66cd786d3b83b2de08ea
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/bravecto-plus-for-small-cats-112-mg-26-to-62-lbs-green-1600.jpg?class=img200 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 3812
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 07 Aug 2025 04:26:19 GMT
x-bo-server: LA-289
x-downloadsize: 54960
x-bo-origindownloadtime: 47
x-bo-compressionratio: 93.06%
x-bo-processingtime: 6
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/07/2025 04:26:19
cdn-edgestorageid: 830
cdn-requestid: 75c1284413eed0f38da2046d9e29541a
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/PAW-by-Blackmores-DigestiCare-new_02222024_023324.jpg
200 OK 60 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/PAW-by-Blackmores-DigestiCare-new_02222024_023324.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 5
Size 60 kB (59918 bytes)
MD5 21e03533c567133eaa51651fe8d56508
SHA1 e615c7f417a08e3b5785cb427e546f439641aecd
SHA256 2fe83d3c68d5c902c5d86531ba10614e4f0a2ebc831a3fd5d73bccde7eddd1f1
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/PAW-by-Blackmores-DigestiCare-new_02222024_023324.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:29 GMT
content-type: image/webp
content-length: 59918
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-291
x-downloadsize: 161244
x-bo-origindownloadtime: 671
x-bo-compressionratio: 62.84%
x-bo-processingtime: 46
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:29
cdn-edgestorageid: 830
cdn-requestid: 5a66c76c78ebb7673b8a34f5893a902c
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/css/botchat.css
200 OK 16 kB URL GET HTTPS
www.canadavetexpress.com/Content/css/botchat.css
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with very long lines (16108), with no line terminators
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 16 kB (16108 bytes)
MD5 bdd06c0b2d64e857666789d853b85ab5
SHA1 02c7689598e3ec43f2583ee827614a12d9045f67
SHA256 bfeb9cb5260654ea3402db7e3bed2c99fbb2e6a5ffda65547bff2f72b2253c8c
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/css/botchat.css HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: text/css
content-length: 8097
cf-ray: 96bceb626fb756a2-OSL
content-encoding: gzip
last-modified: Mon, 15 May 2023 05:40:08 GMT
accept-ranges: bytes
etag: "98fc3cb5ef86d91:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B81BLIz%2F96nHK5FSc9LpEf3Vs2W3DYS5a4iZv0Gzz8SeVCjKEUsqb6toeIZaGk92wf8E2%2BRrvl3%2Fq%2F9z8FjgpB6E0cQayKjWjXiVMa5MY1peQbxPGdQwhtZo7sEYh8w0oSX6ztyE7trOUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=2407&min_rtt=392&rtt_var=2423&sent=1180&recv=403&lost=0&retrans=1&sent_bytes=1402366&recv_bytes=8794&delivery_rate=51279711&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1075&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/Content/js/jquery-confirm.js
200 OK 23 kB URL GET HTTPS
canadavetexpress.b-cdn.net/Content/js/jquery-confirm.js
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (23071), with CRLF line terminators
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 23 kB (23366 bytes)
MD5 cfac6cfe4617b7bea9915728fc739ddc
SHA1 8a7d5232a94cf2fb2dc6c41a371c6a354f662400
SHA256 eafdcce6fa86b177943b48a8d326bb1c9a9ed70f87c297ffa47e5a323452eda1
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /Content/js/jquery-confirm.js HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
vary: Accept-Encoding
cache-control: public, max-age=2592000
content-encoding: br
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-292
x-downloadsize: 53383
x-bo-origindownloadtime: 52
x-bo-processingtime: 3
x-bo-compressionratio: 0%
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 4096d2bd7b2b4556c06c11a7ca677a89
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/dorwest-kelp-seaweed-tablets-for-dogs-and-cats--1600.jpg
200 OK 27 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/dorwest-kelp-seaweed-tablets-for-dogs-and-cats--1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 27 kB (27122 bytes)
MD5 d411268807fabc150287ffb4d96c0293
SHA1 2d5d7ff044fd75d7654c4368aa584f691b828f73
SHA256 7e7a4d26eaf62fdd0f96bae6d6911ddc393dcb751cae14e581c160199d864558
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/dorwest-kelp-seaweed-tablets-for-dogs-and-cats--1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 27122
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-293
x-downloadsize: 46414
x-bo-origindownloadtime: 21
x-bo-compressionratio: 41.57%
x-bo-processingtime: 28
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: bae7bee37a9591478bbc1f92cc32a34c
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Banner/CVE-App-Feb24.jpg
200 OK 109 kB URL GET HTTPS
www.canadavetexpress.com/images/Banner/CVE-App-Feb24.jpg
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 800x200, components 3
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 109 kB (109217 bytes)
MD5 3e184651440dd072162d68abea8deaba
SHA1 239c7e422dd78dab9844908629a6cbc0296bedd4
SHA256 c4dc070d0d44be78208ee66881f7c37eb601aa2c05a4b7a28f6e244b00bc8c3d
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Banner/CVE-App-Feb24.jpg HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/jpeg
content-length: 109217
cf-ray: 96bceb622f6a56a2-OSL
last-modified: Fri, 16 Feb 2024 10:48:25 GMT
accept-ranges: bytes
etag: "4da2fabc560da1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lqFvby6w5AozP82oHUDZqrdXlPFUYNYvshslQquCyNlR7uEW6dmmeqK%2FIoZsp3nn6Q7pgIM990tlhC%2BRn3DlHOQyUZEKAGbuuftg%2BczxQZFiIxuu3EU%2BtCDIqRn%2BnGRu%2FgfDSqH7g5H1aA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=813&min_rtt=392&rtt_var=367&sent=262&recv=177&lost=0&retrans=0&sent_bytes=221191&recv_bytes=8402&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=945&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/js/Slide-Menu.js?id=2
200 OK 151 kB URL GET HTTPS
www.canadavetexpress.com/Content/js/Slide-Menu.js?id=2
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (528)
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 151 kB (150852 bytes)
MD5 8378a3944f94c93063b7a42fe4a78c39
SHA1 61bce913ed2b70dfc9daa158bb1eb25f5969ae2e
SHA256 ee6420fca99e4c78d7cf93fa97a9285267cb97167a6779003bddeb4e26f1d3c3
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/js/Slide-Menu.js?id=2 HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: application/javascript
content-length: 49052
cf-ray: 96bceb625f9356a2-OSL
content-encoding: gzip
last-modified: Tue, 31 Dec 2024 12:19:38 GMT
accept-ranges: bytes
etag: "418deb427e5bdb1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tIErqJeoGcf2xJN0shWFfetIPXlkuIgFutAZmhHQXMJ7gOnDfSm5A3htB5Xj%2B8FtJKrprPUMNNzqomHAhDjoEXSjjBWQZDjGvBPQFJrGz%2FtPLRKuPbUWQfdfRZdK6tFqA%2BhuN3PeRK6b7A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1620&min_rtt=392&rtt_var=1600&sent=322&recv=208&lost=0&retrans=0&sent_bytes=289815&recv_bytes=8576&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=975&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-chat/chat-arrow-left.png
200 OK 1.6 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-chat/chat-arrow-left.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.6 kB (1603 bytes)
MD5 d9f3bf7f4ecb31613c1e942b80defcd7
SHA1 3f369add7f0a58e53de7392e583fe41153edf681
SHA256 0240c237e69cf375ec069285cec89f96e33d4f2d052e16cd80b665ae396c43f5
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-chat/chat-arrow-left.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 1603
cf-ray: 96bceb627fe056a2-OSL
last-modified: Tue, 13 Sep 2022 05:51:02 GMT
accept-ranges: bytes
etag: "4ba4d7ce34c7d81:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A1BX1AXMEGP1Aga9x5r%2Fbjr%2BRFOk9QJIFHsE1sNSDDZgNz1u5sUVC5OjCvd2KJ4U61hT%2Bf34uLzWxLM5mczkPWJh8P8TFdzw1stWJHkM9It62n5mjnfQl9Epr3LIoEoZd3%2F%2FqhYzDWY9Tw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=842&min_rtt=392&rtt_var=177&sent=1965&recv=473&lost=0&retrans=1&sent_bytes=2413401&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1146&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/bravecto-for-toy-dogs-44-to-99-lbs-yellow-1600.jpg
200 OK 42 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/bravecto-for-toy-dogs-44-to-99-lbs-yellow-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 42 kB (42258 bytes)
MD5 1a6b83a181391fdac3003be9bee2456b
SHA1 b728bcefb6ff23c5c662403c9659afe8794019b5
SHA256 8b123226e641c7be8cf821b9a0bd6ab38d2f6ce6a7d5331a62b75a7ee2f0ed8f
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/bravecto-for-toy-dogs-44-to-99-lbs-yellow-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 42258
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-291
x-downloadsize: 55042
x-bo-origindownloadtime: 29
x-bo-compressionratio: 23.23%
x-bo-processingtime: 31
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 6e52aed212befb4f446ee741f46d972a
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-2024/icon-FreeShipping.png
200 OK 3.0 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-2024/icon-FreeShipping.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 84 x 78, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 3.0 kB (3004 bytes)
MD5 66190986a50b7c0ae7498d409acfb9fd
SHA1 fcfbacd50297e8119e07295bd6c40358bcf43fe2
SHA256 158d0125c4ab246115f1b0c636aeb562cdbcaf5a05cd7eb1e4c782d9d3fb6652
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-2024/icon-FreeShipping.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 3004
cf-ray: 96bceb61ff2856a2-OSL
last-modified: Mon, 16 Sep 2024 08:25:22 GMT
accept-ranges: bytes
etag: "12aff7f8118db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X5Y3fbxsbEg3Xi%2BilzEghTYz7U9Ua1OwlY8wXIej0W4PD8307FheaSmUbTRMDhF5uHgpM0yqq6%2BMPFwdSIqs%2FdjGIpEZ3h0yz4udWjGAuSDh%2FFZ3y056KHAfsjwRg%2B3tOnlTeo37Zl62SA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1244&min_rtt=392&rtt_var=987&sent=643&recv=378&lost=0&retrans=1&sent_bytes=703750&recv_bytes=8794&delivery_rate=44471744&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1021&x=0"
X-Firefox-Spdy: h2
GET www.googletagmanager.com/gtag/js?id=UA-58145774-1
200 OK 293 kB URL GET HTTPS
www.googletagmanager.com/gtag/js?id=UA-58145774-1
IP / ASN
142.250.74.136
#15169 GOOGLE
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (5911)
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 1
Size 293 kB (293061 bytes)
MD5 4a5fe431e7bf0396b3715b188d51f4a6
SHA1 bcd7392b2e8a444d38287cb7976c6af7022b8bec
SHA256 62f06f4e2935aece6634970b234a1c0e91909625d0c95f07f0b23b24671ef8b4
Certificate Info
Issuer Google Trust Services
Subject *.google-analytics.com
Fingerprint A2:8A:24:AD:51:7D:A4:62:BB:34:6F:C9:21:A1:B9:E1:2D:A6:0E:C1
Validity Mon, 07 Jul 2025 08:34:03 GMT - Mon, 29 Sep 2025 08:34:02 GMT
GET /gtag/js?id=UA-58145774-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 08 Aug 2025 06:22:30 GMT
expires: Fri, 08 Aug 2025 06:22:30 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-security-policy-report-only: script-src 'none'; form-action 'none'; frame-src 'none'; report-uri https://csp.withgoogle.com/csp/scaffolding/ascgcycc:1099:0
cross-origin-opener-policy-report-only: same-origin; report-to=ascgcycc:1099:0
report-to: {"group":"ascgcycc:1099:0","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/scaffolding/ascgcycc:1099:0"}],}
server: Google Tag Manager
content-length: 103219
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/css/CVE-band.css?id=6
200 OK 3.4 kB URL GET HTTPS
www.canadavetexpress.com/Content/css/CVE-band.css?id=6
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with CRLF line terminators
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 3.4 kB (3354 bytes)
MD5 1c6470ba152263b4cc332dcc5ceaef65
SHA1 994819d03a149ece6050fda8592d289315be1c79
SHA256 904042cc66a2743924e6214625e641b8d5a56c10b63fb548c016ebc42e7fb5da
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/css/CVE-band.css?id=6 HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: text/css
content-length: 1202
cf-ray: 96bceb615e5856a2-OSL
content-encoding: gzip
last-modified: Thu, 12 Jun 2025 03:09:20 GMT
accept-ranges: bytes
etag: "668f306447dbdb1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Am6%2BKEzmVDrYYef8B6oH1rVwQ9bfDUeVfahhgCEfRGvrxkD%2BAPs%2FTdXDpCKXQ4FKjr6AWsKkQJ21jwgAmQa9lXzPPQuIHFXKofWOQ7GERzvUDrVMfVaWLe3Q5GZ9EPnXEWoMoQMoPe%2B%2BTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1118&min_rtt=392&rtt_var=833&sent=276&recv=184&lost=0&retrans=0&sent_bytes=238175&recv_bytes=8402&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=946&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-2024/Tranding-Product-cat.jpg
200 OK 24 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-2024/Tranding-Product-cat.jpg
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 390x575, components 3
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 24 kB (24035 bytes)
MD5 59e5508502b4c5383b9be27b58f2cee6
SHA1 4065fb7f22fc0da288a5a38b47faed8c38171acd
SHA256 a672fe050faa1efca43371e14b182076cb8bb5e80ed0c882e151e40ee1a901c5
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-2024/Tranding-Product-cat.jpg HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/home-2024.css?id=26
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/jpeg
content-length: 24035
cf-ray: 96bceb71bae556a2-OSL
last-modified: Mon, 09 Sep 2024 07:52:33 GMT
accept-ranges: bytes
etag: "9edf573a8d2db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lvF51rJcnN4yE4Mo6qk9QaiQZSQ3JC1Qk1D3%2BmsvMfZh%2Bwo72DE5ALrjPE0mpHLuy3BFI5XpKy%2FHDuoN2JX4gVXKkpP5Dt6Xxu47NRA8mhTqfjVcsNNnH2ZNhZcVomlE%2FXwKVkXjGEJetg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1124&min_rtt=392&rtt_var=538&sent=3172&recv=685&lost=0&retrans=1&sent_bytes=3948998&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3558&x=0"
X-Firefox-Spdy: h2
GET s.yimg.com/wi/ytc.js
200 OK 20 kB URL GET HTTPS
s.yimg.com/wi/ytc.js
IP / ASN
188.125.94.204
#10310 YAHOO-1
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (19829), with no line terminators
First Seen 2025-02-10
Last Seen 2025-08-08
Times Seen 9917
Size 20 kB (19829 bytes)
MD5 cca96295b6201a4ce80988bdae868775
SHA1 bde2df3c3022bb932b0cf39d2e8fc5f622d6cd16
SHA256 de25ff38288676dc79292a95d410944c2045e6e09c5e4563c40d08c615a20c54
Certificate Info
Issuer DigiCert Inc
Subject *.fantasysports.yahoo.com
Fingerprint 23:F5:2B:DB:65:38:6B:AA:39:ED:44:3D:20:8A:A5:5E:CC:18:86:E6
Validity Wed, 30 Jul 2025 00:00:00 GMT - Wed, 17 Sep 2025 23:59:59 GMT
Technology Fingerprints
Amazon Web Services (PaaS) Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.
Apache Traffic Server (Web servers) Apache Traffic Server is an open-source caching and proxying server that serves as an HTTP/1.1 and HTTP/2 reverse proxy with caching capabilities, load balancing, request routing, SSL termination, and support for advanced HTTP features.
GET /wi/ytc.js HTTP/1.1
Host: s.yimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: P2j5rBKOMJpxuMDdefNcmfcCcEdpqZqF+TC+FXGjJi67zMPCSb+4PzB6aZnndnSAa5scaABL3ojDJDfp179aCYFcaFWWaU0RwJDEy7G5qX0=
x-amz-request-id: C1BEQ2K8CYSVG84G
date: Fri, 08 Aug 2025 05:42:16 GMT
last-modified: Mon, 10 Feb 2025 13:55:37 GMT
x-amz-expiration: expiry-date="Wed, 18 Mar 2026 00:00:00 GMT", rule-id="standard-lifecycle"
etag: "cca96295b6201a4ce80988bdae868775-df"
x-amz-server-side-encryption: AES256
cache-control: public,max-age=3600
x-amz-version-id: S368G.On_HD5kCG8tTyFviJgJpLggMJN
accept-ranges: bytes
content-type: application/javascript
server: ATS
vary: Origin, Accept-Encoding
age: 2417
x-content-type-options: nosniff
referrer-policy: no-referrer-when-downgrade
content-encoding: gzip
content-length: 6810
strict-transport-security: max-age=31536000
ats-carp-promotion: 1, 1
X-Firefox-Spdy: h2
GET guarantee-cdn.com/Web/Seal/si.aspx?s=943026743&p=11&t=a&TS=bb6gg&R=1&x=BRX
200 OK 14 kB URL GET HTTPS
guarantee-cdn.com/Web/Seal/si.aspx?s=943026743&p=11&t=a&TS=bb6gg&R=1&x=BRX
IP / ASN
23.49.31.215
#16625 AKAMAI-AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 260 x 216, 8-bit/color RGBA, non-interlaced
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 1
Size 14 kB (13721 bytes)
MD5 98a7795263bd0bc4b62776f3d62695f9
SHA1 083d4b1189b6290a117c5d2d060bc3547e0fe5ed
SHA256 d18587e9114898cea12dd5cc82573319e30c6ccd240256abd018f5551f5d120b
Certificate Info
Issuer DigiCert Inc
Subject guarantee-cdn.com
Fingerprint 0F:A4:39:14:73:FE:F9:89:B4:5C:BE:39:DF:79:C4:77:A3:D5:C0:0B
Validity Wed, 09 Jul 2025 00:00:00 GMT - Sun, 09 Aug 2026 23:59:59 GMT
Technology Fingerprints
IIS:10.0 (Web servers) Internet Information Services (IIS) is an extensible web server software created by Microsoft for use with the Windows NT family.
Windows Server (Operating systems) Windows Server is a brand name for a group of server operating systems.
GET /Web/Seal/si.aspx?s=943026743&p=11&t=a&TS=bb6gg&R=1&x=BRX HTTP/1.1
Host: guarantee-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/octet-stream; charset=utf-8
server: Microsoft-IIS/10.0
content-disposition: inline; filename=s.png
p3p: CP="ALL DSP COR CUR ADM DEV TAI PSA PSD IVA IVD CONo HIS OUR SAMi LEG UNI NAV"
x-seal: 20
content-length: 13721
cache-control: private, max-age=86400
expires: Sat, 09 Aug 2025 06:22:34 GMT
date: Fri, 08 Aug 2025 06:22:34 GMT
etag: "ff7aba4e87d9771d"
X-Firefox-Spdy: h2
GET wss://vsa112.tawk.to/s/?k=689597aaef55153d250e52e0&cver=0&pop=false&asver=20370&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZTk5ODE0ZTM1YmNiYjBjOWFiMjExOWYiLCJ2aWQiOiI1ZTk5ODE0ZTM1YmNiYjBjOWFiMjExOWYtTGJQUkw5VTQxaFRtUTJDaUxPU2JfIiwic2lkIjoiNjg5NTk3YWFlZjU1MTUzZDI1MGU1MmUwIiwiaWF0IjoxNzU0NjM0MTU0LCJleHAiOjE3NTQ2MzU5NTQsImp0aSI6Il8yTTZQTW1jT0ZtTERyeUJQT21WTSJ9.WXJYadQM39j5BbuoLKAM4Sa0eVewpDGbXu2GQZGXXsYoeVhP6tLMJ22ni-Wjw-ypo6VdwXwGg0CenWYLSaRr9Q&EIO=3&transport=websocket&__t=PY8M7Av
101 Switching Protocols 0 B URL GET HTTPS
wss://vsa112.tawk.to/s/?k=689597aaef55153d250e52e0&cver=0&pop=false&asver=20370&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZTk5ODE0ZTM1YmNiYjBjOWFiMjExOWYiLCJ2aWQiOiI1ZTk5ODE0ZTM1YmNiYjBjOWFiMjExOWYtTGJQUkw5VTQxaFRtUTJDaUxPU2JfIiwic2lkIjoiNjg5NTk3YWFlZjU1MTUzZDI1MGU1MmUwIiwiaWF0IjoxNzU0NjM0MTU0LCJleHAiOjE3NTQ2MzU5NTQsImp0aSI6Il8yTTZQTW1jT0ZtTERyeUJQT21WTSJ9.WXJYadQM39j5BbuoLKAM4Sa0eVewpDGbXu2GQZGXXsYoeVhP6tLMJ22ni-Wjw-ypo6VdwXwGg0CenWYLSaRr9Q&EIO=3&transport=websocket&__t=PY8M7Av
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-08
Times Seen 5722873
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /s/?k=689597aaef55153d250e52e0&cver=0&pop=false&asver=20370&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1ZTk5ODE0ZTM1YmNiYjBjOWFiMjExOWYiLCJ2aWQiOiI1ZTk5ODE0ZTM1YmNiYjBjOWFiMjExOWYtTGJQUkw5VTQxaFRtUTJDaUxPU2JfIiwic2lkIjoiNjg5NTk3YWFlZjU1MTUzZDI1MGU1MmUwIiwiaWF0IjoxNzU0NjM0MTU0LCJleHAiOjE3NTQ2MzU5NTQsImp0aSI6Il8yTTZQTW1jT0ZtTERyeUJQT21WTSJ9.WXJYadQM39j5BbuoLKAM4Sa0eVewpDGbXu2GQZGXXsYoeVhP6tLMJ22ni-Wjw-ypo6VdwXwGg0CenWYLSaRr9Q&EIO=3&transport=websocket&__t=PY8M7Av HTTP/1.1
Host: vsa112.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://www.canadavetexpress.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Z+R8vem7NDm8BrfxrnkvZg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 08 Aug 2025 06:22:35 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: Si1lxfxxbpqmrYyFArz3lji835E=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 96bceb8b9b3556be-OSL
alt-svc: h3=":443"; ma=86400
GET www.canadavetexpress.com/images/icon-cart.png
200 OK 693 B URL GET HTTPS
www.canadavetexpress.com/images/icon-cart.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 693 B (693 bytes)
MD5 e2b8a736048653ccc1889f335cfcabf3
SHA1 549428bb70ed82d5a52c89eb0727814038b1e384
SHA256 007b78fc292d36d9f7f10b82fb6809f0a5307250b7e2a8c25cc2f6a12702349f
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-cart.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 693
cf-ray: 96bceb612e2156a2-OSL
last-modified: Thu, 05 Sep 2024 07:08:50 GMT
accept-ranges: bytes
etag: "673c67562ffda1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=itiCM7BOb5Jrr0WzY%2Bl4MnqU8ed9N%2BPbcjx%2F%2FGSYkgUDC%2Bg0CerTM1OdjzTTGcslpHqP2TM4zkBIMEY%2B%2BRP6kGdi8bx56aLM%2FjW50dA9PtfNa25sdpYQJmfkyjkmDSEN2FMtts%2FbYP7Tww%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=810&min_rtt=392&rtt_var=113&sent=209&recv=150&lost=0&retrans=0&sent_bytes=170755&recv_bytes=7762&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=923&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/banner/CVE-Top-Dog-cat-Offer-23Jan25-m.jpg
200 OK 180 kB URL GET HTTPS
www.canadavetexpress.com/images/banner/CVE-Top-Dog-cat-Offer-23Jan25-m.jpg
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 800x400, components 3
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 180 kB (179579 bytes)
MD5 388aaa9a8755806a750f656ad7b6723a
SHA1 e8ef90140d098018f2af99b937260ede011cf8d3
SHA256 78044b39755551fbac4183722efba3679df32803b5bbd145006652ca3cf2c114
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/banner/CVE-Top-Dog-cat-Offer-23Jan25-m.jpg HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/jpeg
content-length: 179579
cf-ray: 96bceb617eb356a2-OSL
last-modified: Fri, 24 Jan 2025 09:46:12 GMT
accept-ranges: bytes
etag: "c32ad2cd446edb1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zhl%2BT3FzKDQ7%2BNMKIpH2%2BUJBDXtAjEj8fhZBMNyxoPnJ%2FQQLcUaKSPJ1mnk2rc5hysDBfLBBAy5aGbJ%2FQvuOANtyevA3uJG4Lld4Y5rYguN1Qmx2zrU0WfR%2BtWp3QNRRY0Jz2jj5M2jqPQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1093&min_rtt=392&rtt_var=591&sent=385&recv=215&lost=0&retrans=0&sent_bytes=372512&recv_bytes=8576&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=977&x=0"
X-Firefox-Spdy: h2
GET js.cnnx.link/roi/cnxtag-min.js?id=293646
200 OK 2.3 kB URL GET HTTPS
js.cnnx.link/roi/cnxtag-min.js?id=293646
IP / ASN
3.167.2.25
#0
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (2347), with no line terminators
First Seen 2024-06-11
Last Seen 2025-08-08
Times Seen 293
Size 2.3 kB (2347 bytes)
MD5 c4a0c5695cca837b903b86e4fe8b2dc5
SHA1 0f997adb937d9e0dbf31c5e82121b6b5306b68db
SHA256 d5267085b5489f178aae1444e1367dbca2debc7c061d5ddd803a16711a19c93b
Certificate Info
Issuer Amazon
Subject js.cnnx.link
Fingerprint 38:0B:DD:9B:E0:32:B1:62:DF:53:82:5C:56:8B:6F:38:7D:C4:DD:6C
Validity Sat, 10 May 2025 00:00:00 GMT - Sun, 07 Jun 2026 23:59:59 GMT
Technology Fingerprints
Amazon CloudFront (CDN) Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.
Amazon Web Services (PaaS) Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.
GET /roi/cnxtag-min.js?id=293646 HTTP/1.1
Host: js.cnnx.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript;charset=UTF-8
cache-control: max-age=600
via: 1.1 google, 1.1 57d04bb9ff0f23ac1c33e083d49e973e.cloudfront.net (CloudFront)
date: Fri, 08 Aug 2025 06:22:28 GMT
content-encoding: gzip
vary: accept-encoding
x-cache: Miss from cloudfront
x-amz-cf-pop: OSL50-P2
x-amz-cf-id: JXVaJOCzjv739a5LCdPctlWl3aEcUaQa9mz6v30M-D-usYm3ZPShdg==
X-Firefox-Spdy: h2
GET cdn.izooto.com/scripts/sdk/izooto.js
200 OK 394 kB URL GET HTTPS
cdn.izooto.com/scripts/sdk/izooto.js
IP / ASN
104.16.255.64
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
First Seen 2025-07-26
Last Seen 2025-08-08
Times Seen 11
Size 394 kB (393489 bytes)
MD5 45ffbcefd530454f01cf40c5021a231c
SHA1 04e2f5a80eb6ba67d91798349faf15fdb6cb0533
SHA256 02b3d55a9140b64c87fc0ea75fecfe2b5f24434f6b52e2332a319833bd52aa05
Certificate Info
Issuer Google Trust Services
Subject izooto.com
Fingerprint 4D:18:5E:7B:8A:86:32:4E:5A:22:DA:BC:F1:5C:E2:CB:3B:04:B4:F6
Validity Tue, 29 Jul 2025 14:44:04 GMT - Mon, 27 Oct 2025 15:43:45 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /scripts/sdk/izooto.js HTTP/1.1
Host: cdn.izooto.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Cookie: __cf_bm=5Iqqf9sSy71msFx2FoTtFhG_mBMSg_ifEUd3vAksuAo-1754634148-1.0.1.1-weJAPKOPHoiyfBS67XnkaRyueEBWPj2g4Qy0qDObYUur.I3LxD2EcQ7tD2qiPAtPz6tHnAQbDpHCndFqKNJDfkHh.oSxwiEMZn_yMVguAUo
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:31 GMT
content-type: application/javascript
cf-ray: 96bceb740ddf0b65-OSL
last-modified: Fri, 25 Jul 2025 10:06:19 GMT
vary: Accept-Encoding
etag: W/"6883571b-60111"
x-xss-protection: 1; mode=block
access-control-allow-origin: *
content-encoding: gzip
cf-cache-status: HIT
age: 599957
expires: Sun, 24 Aug 2025 06:22:31 GMT
cache-control: public, max-age=1382400
priority: u=3,i=?0
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET canadavetexpress.b-cdn.net/images/product-pictures/frontline-plus-for-small-dogs-up-to-22lbs-orange-1600.jpg?class=img200
200 OK 7.6 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/frontline-plus-for-small-dogs-up-to-22lbs-orange-1600.jpg?class=img200
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2024-08-19
Last Seen 2025-08-08
Times Seen 10
Size 7.6 kB (7632 bytes)
MD5 9ddc437a7cd03f7065f01d95b8ace2b1
SHA1 9b87e6238ef44f19686cd1fb33aa5db97bdd465b
SHA256 eec5da876d66a56b7bdc2c5c6ec488d8e16e8e44ce89490a33e495f125103baa
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/frontline-plus-for-small-dogs-up-to-22lbs-orange-1600.jpg?class=img200 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 7632
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 07 Aug 2025 04:26:19 GMT
x-bo-server: LA-292
x-downloadsize: 106923
x-bo-origindownloadtime: 28
x-bo-compressionratio: 92.86%
x-bo-processingtime: 7
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/07/2025 04:26:19
cdn-edgestorageid: 830
cdn-requestid: 0bd82d20fd22af6bf0cee1e40b7ec5be
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/Virbac-anxitane-S-dog-cate_03202025_043132.jpg
200 OK 16 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/Virbac-anxitane-S-dog-cate_03202025_043132.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 16 kB (15494 bytes)
MD5 43509b311033e755d27028c2c343300a
SHA1 caaf12742668e0bc81aeded3fae5d2df40c6c37d
SHA256 75dca2c449c47a73b1fffe0197a65095b5b222cc0bcdf3c025a1cbc86c8aa0f3
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/Virbac-anxitane-S-dog-cate_03202025_043132.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 15494
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-294
x-downloadsize: 76238
x-bo-origindownloadtime: 47
x-bo-compressionratio: 79.68%
x-bo-processingtime: 11
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: d1ca53f2b29758fae8acbe72e7388f2f
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/milbemax-for-small-cats-up-to-44lbs-1600.jpg
200 OK 31 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/milbemax-for-small-cats-up-to-44lbs-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 31 kB (31194 bytes)
MD5 141488d3edf8d2e6259681e88b257ea0
SHA1 edac807f3b583cc3efd2976db3ef5afa731c8073
SHA256 83ccdf2701c6b7cd0572460d6020e7bc19ab89fba3b17a24bc9025a9d777c823
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/milbemax-for-small-cats-up-to-44lbs-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 31194
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-296
x-downloadsize: 50773
x-bo-origindownloadtime: 54
x-bo-compressionratio: 38.56%
x-bo-processingtime: 31
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 53f30afd62d6c799e89d955fe0480321
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-fb.png
200 OK 1.8 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-fb.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.8 kB (1779 bytes)
MD5 0b2ea43ba201e3b4bbbb9de516b14fe8
SHA1 5169ae9a8256e314add6f39687d2d695b6880eb6
SHA256 b9df4b88c4b48ac0e33327d906419c97e0e8470e530541c2e3de1378737b6752
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-fb.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 1779
cf-ray: 96bceb623f7a56a2-OSL
last-modified: Tue, 10 Dec 2024 03:33:21 GMT
accept-ranges: bytes
etag: "227dba42b44adb1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YnX096K42yQO9LXxOG66aYtyQx78W3g6EmguN2V%2FukdpVXegr2%2FC6Dp4nUNAV1kM%2BgufT9wMGL1cDsBXuq3l6aRlTCVn1FBzIFywJYEiISHSrnqIyiQqR23rDCHPDCDz2aeb9%2F7vVByrcg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=2188&min_rtt=392&rtt_var=2279&sent=923&recv=392&lost=0&retrans=1&sent_bytes=1065985&recv_bytes=8794&delivery_rate=44471744&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1049&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Mobile-01-new-Au-25.png
200 OK 110 kB URL GET HTTPS
www.canadavetexpress.com/images/Mobile-01-new-Au-25.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 301 x 494, 8-bit/color RGBA, non-interlaced
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 2
Size 110 kB (110378 bytes)
MD5 d1ed8c2d165d4436d06c4d705c894756
SHA1 1aac0584d5b91d108b0fd81e7813cf0706754538
SHA256 a4b86aacc6b99b48e19684d9494b2a2d41b02e3eda2b520369b0f4f46726fa1a
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Mobile-01-new-Au-25.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 110378
cf-ray: 96bceb61bef156a2-OSL
last-modified: Mon, 04 Aug 2025 09:45:47 GMT
accept-ranges: bytes
etag: "ed3ed68d245dc1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o2IKjRdBky7%2BcDo6WhQGjdwUYPbCPUHasJD7G7hOoCGLjlXrk3%2BfoQDr%2BkdOCY81pa6PRASsl%2BUMzSxCwO9YTtyklgj70qL7xps%2F4sPUeBSUC2l68%2FYRn1qyZLrs3PoGbNsH1FGXXdM3IQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=844&min_rtt=392&rtt_var=25&sent=526&recv=322&lost=0&retrans=1&sent_bytes=550863&recv_bytes=8794&delivery_rate=35043562&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1012&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-chat/chart-send.png
200 OK 1.5 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-chat/chart-send.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.5 kB (1493 bytes)
MD5 bae44b68c9c6daea92b41084b06195ff
SHA1 33f3d4c6c4b3543667bad706fc556d6a18835556
SHA256 8abfce967c085daadbbf47d6e08b3ff4cf8b7280407d59ad3ced9a3cbe13b87e
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-chat/chart-send.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 1493
cf-ray: 96bceb627fd856a2-OSL
last-modified: Tue, 13 Sep 2022 05:50:20 GMT
accept-ranges: bytes
etag: "101567b534c7d81:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pP6vYQglK4kPH8A08AC59RX%2BhWtYr%2BaAwRCtWMG4%2BfZQ0uLwwkLfgE6Wtd9Qe6c7zYdqa6EaPMQZzbNt9KX6UBtJpBSlHEY%2BEx%2FVnWAshiSZ5OIAwCTn7LGmql7JWxcDj4Y9c6%2BoC9hKYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=928&min_rtt=392&rtt_var=49&sent=435&recv=263&lost=0&retrans=0&sent_bytes=439565&recv_bytes=8576&delivery_rate=66143209&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=984&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Star_Shine.png?id=1
200 OK 1.9 kB URL GET HTTPS
www.canadavetexpress.com/images/Star_Shine.png?id=1
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 26 x 24, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.9 kB (1935 bytes)
MD5 28eb50677155ae6b4e6ec3212603a977
SHA1 d290e1512a5aea303f76deb4f1bf47c8f4b0b388
SHA256 7b152ad6b5e642292008d849cfa3fc57c482abba60b68d699233258c74cca95f
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Star_Shine.png?id=1 HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/common.css
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/png
content-length: 1935
cf-ray: 96bceb719ac656a2-OSL
last-modified: Thu, 12 Jun 2025 03:27:16 GMT
accept-ranges: bytes
etag: "e15e83e549dbdb1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x7booSt2ALdlRkosd82gM950hpjY%2B3frMGXh%2BW7TjqrGlhVmhyr%2F0%2FAwsVp%2Btc8mlfNrL7E96e8FmzFpzu8Fmz8jydOylEtzZ%2FaIBpGLkCXUEZAmVm5eQ%2Bq%2BTiUxE5RsEeV8fSpa%2FXYIDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=855&min_rtt=392&rtt_var=321&sent=2963&recv=650&lost=0&retrans=1&sent_bytes=3692463&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3408&x=0"
X-Firefox-Spdy: h2
GET embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-4fe9d5dd.js
200 OK 1.0 kB URL GET HTTPS
embed.tawk.to/_s/v4/app/6880b98ef42/js/twk-chunk-4fe9d5dd.js
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (1000), with no line terminators
First Seen 2025-04-29
Last Seen 2025-08-08
Times Seen 2864
Size 1.0 kB (1000 bytes)
MD5 8249fafc9a9fbe0f75d4bef0aae2305a
SHA1 fab6dda0967dfbaf8ba0cfe5cfade8e150d1735d
SHA256 69b650b4d6479fd29987836a9b74147aade85cc9c50024bcacd5dfb2cb793e8d
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
GET /_s/v4/app/6880b98ef42/js/twk-chunk-4fe9d5dd.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: application/javascript
server: cloudflare
x-content-type-options: nosniff
cf-ray: 96bceb8afbb056be-OSL
last-modified: Wed, 23 Jul 2025 10:30:16 GMT
etag: "8249fafc9a9fbe0f75d4bef0aae2305a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
content-encoding: gzip
strict-transport-security: max-age=0; includeSubDomains; preload
age: 691500
cf-cache-status: HIT
vary: accept-encoding
alt-svc: h3=":443"; ma=86400
GET www.canadavetexpress.com/images/CVE-product-1-new-Aug-25.png
200 OK 112 kB URL GET HTTPS
www.canadavetexpress.com/images/CVE-product-1-new-Aug-25.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 302 x 496, 8-bit/color RGBA, non-interlaced
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 2
Size 112 kB (112083 bytes)
MD5 4d193ea01ce9f17f8fcbf2052c2da148
SHA1 e586f6150d6eac10ce5e9f44f30ead79afab3b77
SHA256 4e034a0d7f8cbf6860bed6406a7a89a847a8abfb34e47ce6531db1add448785a
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/CVE-product-1-new-Aug-25.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 112083
cf-ray: 96bceb61bee756a2-OSL
last-modified: Mon, 04 Aug 2025 09:42:53 GMT
accept-ranges: bytes
etag: "688b5b26245dc1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uDdgDNVy5i7OjxmmPUoOQuLgtRU4m6oHZX1MI7%2BTO%2BYkq9InkNwUXE1YVnqCdsXFmjRwW4Z8SkBIm8oLymKqw8hx9KKjTv9HchZNQgVRCBuPzQLijtX2sH74KHxCyhXcber9WUDOnQu3sg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1638&min_rtt=392&rtt_var=1803&sent=798&recv=388&lost=0&retrans=1&sent_bytes=905952&recv_bytes=8794&delivery_rate=44471744&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1038&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/Jurox-Promectin-PLUS-allwormer-paste_03162023_021228.jpg
200 OK 40 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/Jurox-Promectin-PLUS-allwormer-paste_03162023_021228.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 1
Size 40 kB (39932 bytes)
MD5 d35d7a237677104cdc5bef4f1c9cf98c
SHA1 f7be7538643b177c0cd6b2eff50b0f22a4117c13
SHA256 24f9e2ee4b8530a48fb4930a43f09ab08817917aaf6f1b927451c9b175770539
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/Jurox-Promectin-PLUS-allwormer-paste_03162023_021228.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 39932
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-292
x-downloadsize: 105154
x-bo-origindownloadtime: 35
x-bo-compressionratio: 62.03%
x-bo-processingtime: 40
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 46b6aeef30adbf01c0694bc6b7b23c6e
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/black-friday-2023/popup/close.png
200 OK 1.7 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/black-friday-2023/popup/close.png
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 1.7 kB (1726 bytes)
MD5 b5c6624a13b0346d142e4c67dcdcf830
SHA1 e7c02c7aaec0eb010c5796ef452752841ddb03e1
SHA256 2a8f2a307985b68e361e4897ccd40c5e15c4da2ed0a7d54da8979f3d92316c5c
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/black-friday-2023/popup/close.png HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 1726
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 07 Aug 2025 04:26:19 GMT
x-bo-server: LA-295
x-downloadsize: 1828
x-bo-origindownloadtime: 43
x-bo-compressionratio: 5.58%
x-bo-processingtime: 1
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/07/2025 04:26:19
cdn-edgestorageid: 830
cdn-requestid: 8c668b844c102f92386b4278edf8e0a4
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET fonts.gstatic.com/s/sora/v16/xMQbuFFYT72XzQUpDg.woff2
200 OK 34 kB URL GET HTTPS
fonts.gstatic.com/s/sora/v16/xMQbuFFYT72XzQUpDg.woff2
IP / ASN
142.250.74.35
#15169 GOOGLE
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type Web Open Font Format (Version 2), TrueType, length 33628, version 1.0
First Seen 2025-06-01
Last Seen 2025-08-08
Times Seen 319
Size 34 kB (33628 bytes)
MD5 5339ed5f39a648903570b500bc6149b7
SHA1 577e43928cecb4051682fe48c52c560beeaa1359
SHA256 cb6e31ac0b1cb0d954fef37a1e16ce9ea4c26e354b26f6893b5b1ba30d34ca8c
Certificate Info
Issuer Google Trust Services
Subject *.gstatic.com
Fingerprint 43:A0:95:35:FB:C7:02:15:92:9E:20:20:0D:0A:E7:8F:93:61:52:CD
Validity Mon, 07 Jul 2025 08:35:11 GMT - Mon, 29 Sep 2025 08:35:10 GMT
GET /s/sora/v16/xMQbuFFYT72XzQUpDg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33628
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 07 Aug 2025 10:06:20 GMT
expires: Fri, 07 Aug 2026 10:06:20 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 28 May 2025 17:20:20 GMT
content-type: font/woff2
age: 72970
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-2024/BG-NewArrival.jpg
200 OK 103 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-2024/BG-NewArrival.jpg
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 3798x517, components 3
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 103 kB (102994 bytes)
MD5 7e2560314256c5dd7661db4a30ed2b1d
SHA1 b29e73925cadbb031b868156f22423c2c6e7c03a
SHA256 9fe3c65c109f9f9167953e73bb51d0b9394b8790dece730244bef985e648f915
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-2024/BG-NewArrival.jpg HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/home-2024.css?id=26
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/jpeg
content-length: 102994
cf-ray: 96bceb71baee56a2-OSL
last-modified: Thu, 19 Sep 2024 05:31:41 GMT
accept-ranges: bytes
etag: "8e2f463555adb1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CSYHmW66RQjTnJvo1iBS%2Bm65ZvzWgZtaRDvoT9QgeZmm1VxF5%2F1sJ%2FGs76cvb6fmy2uGZplmHYktFImig1C8raJQuRQBQIEhEs7YgiMS1kRagEAxFcdg2Ch95894t%2BG%2FnpnHs20l0A51Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1215&min_rtt=392&rtt_var=779&sent=2991&recv=657&lost=0&retrans=1&sent_bytes=3719491&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3436&x=0"
X-Firefox-Spdy: h2
OPTIONS va.tawk.to/v1/session/start
200 OK 0 B URL OPTIONS HTTPS
va.tawk.to/v1/session/start
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-08
Times Seen 5722873
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.canadavetexpress.com/
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:34 GMT
content-type: text/html; charset=utf-8
server: cloudflare
x-content-type-options: nosniff
content-encoding: br
x-served-by: visitor-application-preemptive-f2bd
access-control-allow-origin: https://www.canadavetexpress.com
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, s-maxage=600, max-age=600
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
cf-ray: 96bceb87dabfb4fa-OSL
alt-svc: h3=":443"; ma=86400
GET www.canadavetexpress.com/images/icon-user.png
200 OK 658 B URL GET HTTPS
www.canadavetexpress.com/images/icon-user.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 658 B (658 bytes)
MD5 c975458cb3e68077e4336877feff288b
SHA1 50653e3d0b45685052134cdaf73648be0993fdfc
SHA256 73de0f67c182499352ffa428e7b1bee6102a1d7e676b77b1a3edb94318d04d2d
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-user.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 658
cf-ray: 96bceb612e1d56a2-OSL
last-modified: Thu, 05 Sep 2024 07:08:44 GMT
accept-ranges: bytes
etag: "a314337262ffda1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SwAmr4eCJ5sxowxZVmiku5uv8VX%2BiRpRHRLX5mkTkHVPylC6ugFtqt47IOt%2Bwz%2BIjKYso7v01E1KiyuahiwhCuUVnFOkhDCm6q3yLnM5mpnEOwETsw0nmUdiwwfJTVwoB9qfyxlBsEYdxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=858&min_rtt=392&rtt_var=57&sent=244&recv=169&lost=0&retrans=0&sent_bytes=209938&recv_bytes=8212&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=932&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/panacur-oral-suspension-for-dogs-and-cats-1600.jpg
200 OK 48 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/panacur-oral-suspension-for-dogs-and-cats-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 48 kB (48338 bytes)
MD5 9c4b301e225e664cab5c71942737c40e
SHA1 2266e53ead6a9e6de6bb7928ba82280891e38d7c
SHA256 7e4af8d3549912e3efb9007374839782311b400c75c3a210f1196588be687064
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/panacur-oral-suspension-for-dogs-and-cats-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 48338
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-295
x-downloadsize: 69553
x-bo-origindownloadtime: 55
x-bo-compressionratio: 30.5%
x-bo-processingtime: 47
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 37b7b6e486ed3ec83824fd37fda0d434
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-Offer-Banner/Simparica-Trio-logo.png
200 OK 5.8 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-Offer-Banner/Simparica-Trio-logo.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 150 x 40, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 5.8 kB (5772 bytes)
MD5 32c6cdc02aa8c84c1e4e5e7b0c73a3d9
SHA1 cfc7cab570e222c99f7675d0a380969f261fa370
SHA256 7d8ed222d42d7b2e7cde2f0e5cc2e8cb71e219d875faead9222e902ef800a37d
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-Offer-Banner/Simparica-Trio-logo.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 5772
cf-ray: 96bceb621f5d56a2-OSL
last-modified: Thu, 14 Mar 2024 06:47:21 GMT
accept-ranges: bytes
etag: "b2f7cf76db75da1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M%2FFiIxZiMdry5xBQczaPmnAbig6VZcc0oK55y4Xo42JmaWC7XJv4o98e%2BZ%2B6q1gYTSSaRyKK8Y9r4NohzI8it89cvi3H5HoISVAncSu6WmuXiubhGspTKzXvFwMsXSB2sE66J5H5Ljy1XA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=964&min_rtt=392&rtt_var=314&sent=293&recv=192&lost=0&retrans=0&sent_bytes=256892&recv_bytes=8402&delivery_rate=38754257&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=951&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-insta.png
200 OK 2.3 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-insta.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 2.3 kB (2250 bytes)
MD5 9d0cc57daf0c53a71823e103338c8040
SHA1 895ba926140840689261ced0313a3a09a9795b77
SHA256 4f6156facedae33bb325c2929828da162cec0e4d5959c7e78875d16b6ba01dfe
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-insta.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 2250
cf-ray: 96bceb623f7f56a2-OSL
last-modified: Tue, 10 Dec 2024 03:33:43 GMT
accept-ranges: bytes
etag: "ce27d34fb44adb1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kRE3NCVqQLAvVdLr3eXSCYeCQHtPsxENg1vBa3xilWuq90YUDyshT%2FB6E93wPqDInPJDzUyaeSaQ1d7urXocGpT5pL8tyNiZ4YdydvbDNIlfexW%2FEFZn3jIMS1WOtU5lsH7kebE%2F%2FBC8kg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=2072&min_rtt=392&rtt_var=1788&sent=1113&recv=400&lost=0&retrans=1&sent_bytes=1317910&recv_bytes=8794&delivery_rate=51279711&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1065&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-chat/speaker-1.png
200 OK 5.3 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-chat/speaker-1.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 215 x 215, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 5.3 kB (5299 bytes)
MD5 e159aa42405ecd70ab97a8338450a4fc
SHA1 759dde42fed5971b220f9bd419e93c0c5bd529e8
SHA256 3c4b641d662e83644621f5c724d5ece9a70b84270a8973702e157a61f9a2885a
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-chat/speaker-1.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 5299
cf-ray: 96bceb627fdb56a2-OSL
last-modified: Tue, 13 Sep 2022 08:42:13 GMT
accept-ranges: bytes
etag: "9b9e5bb84cc7d81:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DG4PttGN2AFinqSpj5cBlhlDkvUfy4zB2w9TRZ%2B%2FADEN2gbR2RzhToWyp4ywpH0%2BnYmOjxd%2F0b4zaI6TE93HuTc4blTCbFHz%2BdKTv1fp8HGzu5LrEVkTOyPmF4uHsLnnCgvZOgrS5L2I5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=861&min_rtt=392&rtt_var=234&sent=1800&recv=456&lost=0&retrans=1&sent_bytes=2196366&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1130&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-email.png
200 OK 2.4 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-email.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 2.4 kB (2434 bytes)
MD5 aa21644692b85fb54a5874a096ce41c6
SHA1 539ca4c194215e3f504e16aa4dedb736bb12d86d
SHA256 f0a3444d9dae866e6a6c92361b3cccc0bf123b78f3dbfae7d5a9c26ee913d5aa
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-email.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 2434
cf-ray: 96bceb623f7756a2-OSL
last-modified: Mon, 16 Sep 2024 08:38:33 GMT
accept-ranges: bytes
etag: "594eb1d0138db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y%2B6jVIxvd%2FTn7Nf2HM%2FqRcLZ6TW6k7%2BsqTZCt94XxDIuHxHAZ97%2FEVv1fsOOKndQWkLmQEtgybAbr10mEQXqUUucRjHiGQn1oCEz77yJ8FVcpN%2FXxsg6RcCUdfz8pn7YjGOnBAEmd0NMwA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1226&min_rtt=392&rtt_var=870&sent=1540&recv=422&lost=0&retrans=1&sent_bytes=1873704&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1095&x=0"
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/revolution-plus-for-kittens-and-small-cats-28-55lbs-125-25kg-yellow-1600.jpg
200 OK 78 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/revolution-plus-for-kittens-and-small-cats-28-55lbs-125-25kg-yellow-1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 78 kB (78410 bytes)
MD5 c568a2c199f7a47877d9dddda660b798
SHA1 30208024dd6ea21b8f203a4e418349c42db4763b
SHA256 a6e24fad713b71ddf2f0d06e2dc4a2284f5fca30dcf27a2453f42ce1afede5bb
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/revolution-plus-for-kittens-and-small-cats-28-55lbs-125-25kg-yellow-1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 78410
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-296
x-downloadsize: 98644
x-bo-origindownloadtime: 32
x-bo-compressionratio: 20.51%
x-bo-processingtime: 36
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: 96b57557437cdae1059f126ab9e90207
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET canadavetexpress.b-cdn.net/images/product-pictures/arthritis-care-tablets--1600.jpg
200 OK 33 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/arthritis-care-tablets--1600.jpg
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 33 kB (32798 bytes)
MD5 583572b72e40ededcbc901f40a249c43
SHA1 ad13ff3ddc15041b1e69eae4c7eb61d238ac42b1
SHA256 dcb9a564a162aabe8bf1e3ca7f4394542d92e8f2d105e994a9703fafe1479671
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/arthritis-care-tablets--1600.jpg HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 32798
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Fri, 08 Aug 2025 06:22:28 GMT
x-bo-server: LA-294
x-downloadsize: 52898
x-bo-origindownloadtime: 16
x-bo-compressionratio: 38%
x-bo-processingtime: 30
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/08/2025 06:22:28
cdn-edgestorageid: 830
cdn-requestid: e6bc76c9c79f8f233fa16c11ac0f23e2
cdn-cache: MISS
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-Offer-Banner/Intercentor-img.png
200 OK 33 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-Offer-Banner/Intercentor-img.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 225 x 177, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 33 kB (33221 bytes)
MD5 0996b0ab4741fd119e86301912651021
SHA1 ab904e96be43add69d56c72adb46fcededb05010
SHA256 b6326a290dd6cdac6e6f786d6ac0668d2745f043dbbf988397ee410c9f87474c
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-Offer-Banner/Intercentor-img.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 33221
cf-ray: 96bceb621f5356a2-OSL
last-modified: Thu, 14 Mar 2024 06:44:10 GMT
accept-ranges: bytes
etag: "127a465db75da1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QOE6ODLg%2BUMwlFKnrWMBr0sc2uNztoODccpXsC%2FJ99pxEXJu1kUikwyTpkHDcvYihsnU3pIT6%2FiGdL1CiHmDGSyKPUzFh4FUsJMawIoyalFzG%2FOX635OeR4UiyZ%2Br4fKFD7K1HrcrLX83g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1450&min_rtt=392&rtt_var=835&sent=1354&recv=413&lost=0&retrans=1&sent_bytes=1632571&recv_bytes=8794&delivery_rate=130177339&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1087&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/pmtloader1.gif
200 OK 55 kB URL GET HTTPS
www.canadavetexpress.com/images/pmtloader1.gif
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type GIF image data, version 89a, 129 x 129
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 55 kB (55099 bytes)
MD5 a0bbaa8bfafb85f6946173dd285ea7a5
SHA1 6e38becee82697a72e8bb059df676767c0c0ae2b
SHA256 e6556a5e80fd103afa1bc2146a32a5144e30ae234af4f0e37f663858224a9628
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/pmtloader1.gif HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/gif
content-length: 55099
cf-ray: 96bceb610df956a2-OSL
last-modified: Wed, 21 Feb 2024 11:49:00 GMT
accept-ranges: bytes
etag: "377eaf5bb64da1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CnSlu0bFbvIkiZvhu4ZgIuft8mC1d4iqwoTwnycZgHxFMTGwIasR9MT8PGNzP1EXeuMKp%2BThDs9TA9VOeaCMjE7A6Rujdz99b8NZHFwZlbmnmVUSYiqmM18zHBBN6zg3W%2BfAyjcV9Kl51A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=889&min_rtt=392&rtt_var=395&sent=140&recv=115&lost=0&retrans=0&sent_bytes=83344&recv_bytes=7586&delivery_rate=23297029&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=918&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/icon-phone3.png
200 OK 2.6 kB URL GET HTTPS
www.canadavetexpress.com/images/icon-phone3.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 2.6 kB (2624 bytes)
MD5 442ba3d770a9b69b52a11f50d0529dfb
SHA1 dd3c3dd28831b941e1cb10bffaf01c87fd45ebde
SHA256 8b2b2dd52f8e1912dfdfae794c4f2d0b839f148624d7583f8e539ce328a1b1fe
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/icon-phone3.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 2624
cf-ray: 96bceb623f7556a2-OSL
last-modified: Mon, 16 Sep 2024 08:38:20 GMT
accept-ranges: bytes
etag: "9b289bc8138db1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JvzZQ0WemUxaQUxF26BCwc7lx5o0oGS%2BAfdUimBTzMEdzBgHcHNLdEP7KPnAZlUHpsOBFIOpMPDGsAFhL5JIUzfxfIZV%2FqmqTeKSLZVXFkb5xOpFwGMmzBcsx77cVpVjEZoWPy6p5cm3hQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=2001&min_rtt=392&rtt_var=1717&sent=1050&recv=395&lost=0&retrans=1&sent_bytes=1233186&recv_bytes=8794&delivery_rate=44471744&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1060&x=0"
X-Firefox-Spdy: h2
GET api.webgains.io/cache
200 OK 36 B URL GET HTTPS
api.webgains.io/cache
IP / ASN
13.43.206.83
#16509 AMAZON-02
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with no line terminators
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 1
Size 36 B (36 bytes)
MD5 735618b8d0007680f9f7aa4d6f64dfba
SHA1 4a54e8d20bc31e2c1458c5aac097e2ec5bcab942
SHA256 44290d435f62bb060981ee096839db9cd1052430e949f034ccfa67ac2a2395cd
Certificate Info
Issuer Amazon
Subject *.webgains.io
Fingerprint FB:4B:EC:58:1D:1A:65:90:C1:D1:26:F4:E5:3B:F7:02:2C:67:72:26
Validity Sun, 11 May 2025 00:00:00 GMT - Tue, 09 Jun 2026 23:59:59 GMT
Technology Fingerprints
PHP:8.4.5 (Programming languages) PHP is a general-purpose scripting language used for web development.
Nginx (Web servers, Reverse proxies) Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.
GET /cache HTTP/1.1
Host: api.webgains.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.canadavetexpress.com/
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:31 GMT
content-type: text/html; charset=UTF-8
server: nginx
x-powered-by: PHP/8.4.5
cache-control: max-age=7776000, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
access-control-allow-origin: *
X-Firefox-Spdy: h2
OPTIONS va.tawk.to/log-performance/v3
200 OK 0 B URL OPTIONS HTTPS
va.tawk.to/log-performance/v3
IP / ASN
172.66.161.212
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type N/A
First Seen 0001-01-01
Last Seen 2025-08-08
Times Seen 5722873
Size 0 B (0 bytes)
MD5 d41d8cd98f00b204e9800998ecf8427e
SHA1 da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Certificate Info
Issuer Google Trust Services
Subject tawk.to
Fingerprint F6:B2:D4:07:34:AA:36:B0:31:B4:46:F7:C0:F1:42:C1:22:C7:52:88
Validity Sun, 13 Jul 2025 02:19:59 GMT - Sat, 11 Oct 2025 03:19:41 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
OPTIONS /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.canadavetexpress.com/
Origin: https://www.canadavetexpress.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 08 Aug 2025 06:22:35 GMT
content-type: text/html; charset=utf-8
server: cloudflare
x-content-type-options: nosniff
content-encoding: br
x-served-by: visitor-application-preemptive-f2bd
access-control-allow-origin: https://www.canadavetexpress.com
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, s-maxage=600, max-age=600
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
cf-ray: 96bceb8ecbda56be-OSL
alt-svc: h3=":443"; ma=86400
GET canadavetexpress.b-cdn.net/images/product-pictures/nexgard-chewables-for-small-dogs-4-10lbs-orange-11mg-1600.jpg?class=img200
200 OK 6.8 kB URL GET HTTPS
canadavetexpress.b-cdn.net/images/product-pictures/nexgard-chewables-for-small-dogs-4-10lbs-orange-11mg-1600.jpg?class=img200
IP / ASN
194.242.11.186
#34989 ServeTheWorld AS
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type RIFF (little-endian) data, Web/P image
First Seen 2024-08-19
Last Seen 2025-08-08
Times Seen 11
Size 6.8 kB (6756 bytes)
MD5 bb9edecf0889eb701211a89fb328aeda
SHA1 4c5742681736f11c12c9ba3e8e05d83f8c458eae
SHA256 6c29d030bd82a4f9f3336930dca182e9d20b479e5184096460f982c7a1a81039
Certificate Info
Issuer Sectigo Limited
Subject *.b-cdn.net
Fingerprint BD:3C:C1:59:4F:6B:71:11:98:74:F8:91:CF:28:05:2B:25:3D:C1:21
Validity Tue, 05 Nov 2024 00:00:00 GMT - Tue, 11 Nov 2025 23:59:59 GMT
Technology Fingerprints
Bunny (CDN) N/A
GET /images/product-pictures/nexgard-chewables-for-small-dogs-4-10lbs-orange-11mg-1600.jpg?class=img200 HTTP/1.1
Host: canadavetexpress.b-cdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/webp
content-length: 6756
server: BunnyCDN-NO1-830
cdn-pullzone: 155724
cdn-uid: 95479911-6167-4736-ad74-81e54c1c4fc0
cdn-requestcountrycode: NO
cache-control: public, max-age=2592000
last-modified: Thu, 07 Aug 2025 04:26:19 GMT
x-bo-server: LA-292
x-downloadsize: 101010
x-bo-origindownloadtime: 59
x-bo-compressionratio: 93.31%
x-bo-processingtime: 7
x-bo-version: 1.0.26
cdn-proxyver: 1.33
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/07/2025 04:26:19
cdn-edgestorageid: 830
cdn-requestid: 4cdca78ec810efd0dc5567575962f4b1
cdn-cache: HIT
cdn-status: 200
cdn-requesttime: 0
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Mobile-04-new-Au-25.png
200 OK 81 kB URL GET HTTPS
www.canadavetexpress.com/images/Mobile-04-new-Au-25.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 301 x 495, 8-bit/color RGBA, non-interlaced
First Seen 2025-08-08
Last Seen 2025-08-08
Times Seen 2
Size 81 kB (81004 bytes)
MD5 7eb50c28e0ce6a13cfca2bb19f11bafe
SHA1 03e5b1c6012b043fb35644275a91403135ae6b2e
SHA256 808fd51245944f545ed0bbdd70f5eb610125eeab765e0b9535ddbad636a55428
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Mobile-04-new-Au-25.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 81004
cf-ray: 96bceb61cefa56a2-OSL
last-modified: Mon, 04 Aug 2025 09:50:10 GMT
accept-ranges: bytes
etag: "a1d6d2b255dc1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PLF7DVdkX9LrhshQ%2By33M%2BI5ThOMO1SCD5p%2BrfKwo838jlAn7nyL4uBOPh4aiHFq6ePoqfmv%2FWnCJi60JO3q0ThSWv02OyO8LJFpC1H7jYcBzdZXEcBco1lVn8Z%2FhvyanYiruwx6boPbpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=2001&min_rtt=392&rtt_var=1717&sent=1025&recv=395&lost=0&retrans=1&sent_bytes=1199826&recv_bytes=8794&delivery_rate=44471744&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1056&x=0"
X-Firefox-Spdy: h2
GET accounts.google.com/gsi/client
200 OK 242 kB URL GET HTTPS
accounts.google.com/gsi/client
IP / ASN
142.250.150.84
#15169 GOOGLE
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type JavaScript source, ASCII text, with very long lines (2261)
First Seen 2025-08-06
Last Seen 2025-08-08
Times Seen 74
Size 242 kB (241949 bytes)
MD5 59710890667fe5f1a090da281368b325
SHA1 90cf67879c4f531f44f7f877e74da664c4f6c4aa
SHA256 08e931bf02b5881c47214a7491077611424915c11b5288840cda00d665386681
Certificate Info
Issuer Google Trust Services
Subject accounts.google.com
Fingerprint 9B:4C:3E:7D:75:3A:C6:33:33:2F:71:BC:DD:98:50:A8:D7:93:6D:D2
Validity Mon, 07 Jul 2025 08:36:02 GMT - Mon, 29 Sep 2025 08:36:01 GMT
GET /gsi/client HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
expires: Fri, 08 Aug 2025 06:22:32 GMT
date: Fri, 08 Aug 2025 06:22:32 GMT
cache-control: private, max-age=1800
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
cross-origin-resource-policy: cross-origin
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-security-policy: script-src 'nonce-7y0D6K_TbipIwuV7mYqDEw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/Content/css/header-footer-responsive-2024.css
200 OK 9.5 kB URL GET HTTPS
www.canadavetexpress.com/Content/css/header-footer-responsive-2024.css
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type ASCII text, with CRLF line terminators
First Seen 2025-08-01
Last Seen 2025-08-08
Times Seen 3
Size 9.5 kB (9475 bytes)
MD5 c4c9981ee177809f36345515f78f0947
SHA1 f8e52bb8b3a1c0557464cc382db8bd223bf702f9
SHA256 c10c40dfc44dc563472e5f37cb496a8b60f0033def5ce6f67f32b282da1966e9
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /Content/css/header-footer-responsive-2024.css HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: text/css
content-length: 2720
cf-ray: 96bceb610df756a2-OSL
content-encoding: gzip
last-modified: Wed, 05 Feb 2025 10:25:22 GMT
accept-ranges: bytes
etag: "73d76543b877db1:0"
vary: Accept-Encoding
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SOo%2FtfcLRDrUSDdqiNfPBB5O%2BCcdNJlgL%2FfLwnL0HDDm%2BjXhZqTECMRxjqEaFeKy7N0kmuYBvBLOY1POx5QM%2FzRpWqACeEA18aQPP04TADccsT8EuCKquYDLVpqVgbxSiBCG1q3ovzVuFw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=928&min_rtt=392&rtt_var=665&sent=129&recv=110&lost=0&retrans=0&sent_bytes=76530&recv_bytes=7409&delivery_rate=23297029&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=915&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Home-Offer-Banner/Interceptor-logo.png
200 OK 6.8 kB URL GET HTTPS
www.canadavetexpress.com/images/Home-Offer-Banner/Interceptor-logo.png
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 150 x 40, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 6.8 kB (6788 bytes)
MD5 b59dc5880ddd30282a3cdb190eb7fb98
SHA1 8e460c58fa64391b193cab7bd0dd47b29e527719
SHA256 0bf7145a044d9b98259319cd521b6d229b27437b3f1cfb1ce5c128e40b1dd30b
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Home-Offer-Banner/Interceptor-logo.png HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:28 GMT
content-type: image/png
content-length: 6788
cf-ray: 96bceb621f5256a2-OSL
last-modified: Fri, 15 Mar 2024 09:46:50 GMT
accept-ranges: bytes
etag: "969962b4bd76da1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TbTXUHGQsVL68C4kP%2FbZW6uupTsGFrBQ1qX6VTpVFa0I%2F00D%2BMXsRy6TQN0cz%2BZrzf8SM4Dgy8GIBTGfqtveD3H4%2FbiMb%2BvfY94zfQPuxBB%2BpYlGl8y3k%2BnE99N3VpffGKCfH2mvZS7iyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1504&min_rtt=392&rtt_var=1621&sent=823&recv=389&lost=0&retrans=1&sent_bytes=939321&recv_bytes=8794&delivery_rate=44471744&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=1039&x=0"
X-Firefox-Spdy: h2
GET www.canadavetexpress.com/images/Star_Blank.png?id=1
200 OK 2.3 kB URL GET HTTPS
www.canadavetexpress.com/images/Star_Blank.png?id=1
IP / ASN
104.26.6.138
#13335 CLOUDFLARENET
Requested by https://www.canadavetexpress.com/?utm_source=webgains&wgu=12707_1738588_17546338021349_ab25f880fc&wgexpiry=1786169802&siteid=1738588
Resource Info
File type PNG image data, 26 x 24, 8-bit/color RGBA, non-interlaced
First Seen 2025-07-04
Last Seen 2025-08-08
Times Seen 7
Size 2.3 kB (2330 bytes)
MD5 4c5b4f21b842fbc0a7237705d70c2dbd
SHA1 9edc218fc1a0d30ae8009621c082e2be1df992fc
SHA256 5df32cc04e14cd4febf397c7007a287ece2c77799c0d42af54e6d293e0ae4109
Certificate Info
Issuer Google Trust Services
Subject canadavetexpress.com
Fingerprint 85:2D:14:F6:CE:73:15:CE:F5:83:6C:B6:01:77:C9:C3:B0:1C:A5:59
Validity Wed, 25 Jun 2025 17:37:55 GMT - Tue, 23 Sep 2025 18:37:53 GMT
Technology Fingerprints
Microsoft ASP.NET (Web frameworks) ASP.NET is an open-source, server-side web-application framework designed for web development to produce dynamic web pages.
Cloudflare (CDN) Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /images/Star_Blank.png?id=1 HTTP/1.1
Host: www.canadavetexpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.canadavetexpress.com/Content/css/common.css
Cookie: ASP.NET_SessionId=ldzcuszvat2vgqdgdfa1qie1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 08 Aug 2025 06:22:30 GMT
content-type: image/png
content-length: 2330
cf-ray: 96bceb719ac556a2-OSL
last-modified: Thu, 12 Jun 2025 03:27:19 GMT
accept-ranges: bytes
etag: "7c179e749dbdb1:0"
x-powered-by: ASP.NET
content-security-policy: https: data: wss: 'unsafe-inline' 'unsafe-eval'
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6DCwGbczp9fVR%2BFkS0fvSGi31zOUeabeSMWOcBathTDHsycO1PQaTio36RTT%2BgBDbxlGd5qL9YQbdpgvXQyTvLFDcK%2BGjSbvvLbEzvXnSUarTcnJf%2FGaGGFKkhXpPt8XL2D0rCIYx04IDw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
server-timing: cfL4;desc="?proto=TCP&rtt=1526&min_rtt=392&rtt_var=1083&sent=2980&recv=653&lost=0&retrans=1&sent_bytes=3712198&recv_bytes=10444&delivery_rate=133605985&cwnd=257&unsent_bytes=0&cid=af612e0fa0f8fc6e&ts=3414&x=0"
X-Firefox-Spdy: h2
