Report - webgraffiti.ca/Templates/mercy/envelope.zip

Report Overview

Submitted URL
webgraffiti.ca/Templates/mercy/envelope.zip
IP
71.19.241.30
ASN
#11831 ESECUREDATA
Submitted
2022-12-02 01:18:49
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.160.184.41
v3media.ca	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	122 kB	71.19.254.121
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	45 kB	142.250.74.168
cdn.v3media.ca	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	11 kB	344 kB	138.199.40.58
cdn-cookieyes.com	48201	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	816 B	141 kB	104.26.0.70
log.cookieyes.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	460 B	34.247.143.101
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.4 kB	93.184.220.29
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	10 kB	543 kB	142.250.74.35
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	338 B	728 B	95.101.11.115
www.google-analytics.com	40	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	367 B	21 kB	142.250.74.110
webgraffiti.ca	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	846 B	1.1 kB	71.19.241.30
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	5.6 kB	142.250.74.131
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	48 kB	34.120.237.76
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	1.0 kB	143.204.42.158
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	9.8 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-02	medium	webgraffiti.ca/Templates/mercy/envelope.zip	Phishing
2022-12-02	medium	webgraffiti.ca/Templates/mercy/envelope.zip	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (42)

	URL	Size	First Seen	Last Seen
	cdn.v3media.ca/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-17
Pretty URL cdn.v3media.ca/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-17 19:29:15 Times Seen31774 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	v3media.ca/	202 B	2023-03-07	2023-03-26
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:35 Last Seen2023-03-26 12:34:59 Times Seen2 Hash 135cc362d4661cd34427ad9f77af2b49 eb934f46c8e22c77683eec7f7e7c5fa3666528e9 3d620c6271a6c9bdf7f17babfb7e8cf9266614d15d33e297ddbba2e28c57ad43 Loading...

	cdn.v3media.ca/wp-content/cache/min/1/client_data/8b64c9e0b2e796da1eda3c36/script.js?ver=1669413364	96 kB	2023-03-08	2023-03-13
Pretty URL cdn.v3media.ca/wp-content/cache/min/1/client_data/8b64c9e0b2e796da1eda3c36/script.js?ver=1669413364 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-03-13 19:02:27 Times Seen1 Hash 31242a1aadd236f1f1d3252657890b06 297ea552f67d6e2a5332f40fd9b5f720e2aeb496 1671783b37882a65fe9047efe426a4ebd9358c1eb50f54576a0ce418ad0dc5ff Loading...

	cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/motion-effects.js?ver=1669413364	158 kB	2023-03-08	2024-03-26
Pretty URL cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/motion-effects.js?ver=1669413364 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2024-03-26 18:43:29 Times Seen19 Hash 9532f6aceb99071b747d182e6ce8a39b 4cda100b2a67d02ca41ad858beb37e6486cd590c e01cdc14e1fc1c0d63fe0c2d675fda978877da01219a6ae3d6094e748a5e57eb Loading...

	cdn.v3media.ca/wp-includes/js/comment-reply.min.js?ver=6.1.1	3.0 kB	2023-03-07	2024-04-18
Pretty URL cdn.v3media.ca/wp-includes/js/comment-reply.min.js?ver=6.1.1 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-18 08:37:27 Times Seen29140 Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789 Loading...

	cdn.v3media.ca/wp-content/cache/min/1/wp-content/uploads/wtfdivi/wp_footer.js?ver=1669413364	856 B	2023-03-07	2023-04-16
Pretty URL cdn.v3media.ca/wp-content/cache/min/1/wp-content/uploads/wtfdivi/wp_footer.js?ver=1669413364 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:35 Last Seen2023-04-16 06:30:15 Times Seen7 Hash 0fe2796c3518ea3881d648832e0f3ebf ca93f488d82b82115cb6072521199c7e02314ace c1a89ce84bb7c0a6cf04b246022d5e1d6b78cc1f34559ee9578abc24bc80bb60 Loading...

	cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=1669413364	5.8 kB	2023-03-07	2024-04-17
Pretty URL cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=1669413364 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:35 Last Seen2024-04-17 15:50:19 Times Seen35 Hash f5f3cad2263f33eb31240e48656efa66 a3dcd0749ecc87a4abe67895e07381af6696bb10 6a5903cf07e1a61c4a067b313db60e006f5ee432187eeb6ad7d0086d0a6dbb67 Loading...

	cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/magnific-popup.js?ver=1669413364	22 kB	2023-03-07	2024-03-04
Pretty URL cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/magnific-popup.js?ver=1669413364 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:35 Last Seen2024-03-04 08:18:49 Times Seen40 Hash b2ae85d8663d012ec28d174c1cc272cf fff17cf7f5e3a95f7c0b20850bfcda0c165144aa 471210fa5cf3f1ef554edcd6aeb1b09e5f6998e83dc86c50315e573ad8de230a Loading...

	www.googletagmanager.com/gtag/js?id=UA-7344442-3	115 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=UA-7344442-3 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-03-08 14:22:10 Times Seen1 Hash 08f1c3a9c1139a71fce0d3aea1b7e297 3543862c7e9d0524c77f4c88d6f71432ff80a111 6eef8711448a2778268cf6e06aa6316faae83887438bbfaead845b7cc1660806 Loading...

	cdn.v3media.ca/wp-content/themes/Divi/js/scripts.min.js?ver=4.19.2	274 kB	2023-03-08	2024-04-16
Pretty URL cdn.v3media.ca/wp-content/themes/Divi/js/scripts.min.js?ver=4.19.2 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2024-04-16 05:10:13 Times Seen246 Hash 8115ebe3b0544b7c5f218658b1a5ebd3 50b3f04903e15b688c9a8cb691812175a8db6b61 425c17cc0de74e7e5ce91bbb6ceb6405518d61a38d298938099ad3289ab5c1d3 Loading...

	connect.facebook.net/en_US/fbevents.js	105 kB	2023-03-08	2023-11-28
Pretty URL connect.facebook.net/en_US/fbevents.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-11-28 17:55:58 Times Seen32 Hash a6ef7927128284961f4cadd572969f09 57e21033749687e69de710a0be6d4244edf1fe51 d5c905d7ce4679b183eb11f7c6811682ddffbf0f037590360ae2b1a84a51ef1b Loading...

	v3media.ca/	5 B	2023-03-07	2024-04-06
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:09:03 Last Seen2024-04-06 02:05:10 Times Seen188 Hash fe1f6492572d993e79f8dad09ea6051c eed8a2b3e0a28262309b5f75ae4cba3cd3eb3132 82e98be6a02f16ded7b88c1fcc2f3da25f554909075c6bffc85e984e8bc0768d Loading...

	v3media.ca/	515 B	2023-03-08	2023-03-11
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-03-11 23:18:19 Times Seen1 Hash d7a88bc7868abb73324fa2e2860baa76 57e6f032f2a71015ccfd34ba2a75e3b1558103be 7a2d041a05054805342d0d7f9156ad0536c11c5723239fdd849b3480da870910 Loading...

	v3media.ca/	153 B	2023-03-07	2024-03-27
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:35 Last Seen2024-03-27 19:16:35 Times Seen64 Hash 13fc81e9e69f092136fdb8ea16b6453e ed5311efbe6d7cb85c577463a94b29a73be1aa78 0f9866d85250f6cd94b8e0ea6b51c5fc0fbb8c7d07e94a85a175916feb2be164 Loading...

	v3media.ca/	369 B	2023-03-08	2023-03-26
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-03-26 12:34:58 Times Seen2 Hash e4c25bd15995e14ed521ca9ced65167d 60a09981e2011859245c9f6487ac21cb6d60b39c e1844c7ff57bd9e76e33a2336082b5aeb85a11f2d3c1ee5dbd47bb509e81f318 Loading...

	v3media.ca/	382 B	2023-03-07	2024-04-11
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:11 Last Seen2024-04-11 14:36:29 Times Seen1005 Hash fc9be1f90b34ea9b460669e6d39663ed a5df6bb03ac3c2a09f07e0bc7ab0b5f9553b5c8e 31bd4b0882dd13a90dab3b1fb9795f645979fa959e17f5873865fe1a5f9f912c Loading...

	v3media.ca/	433 B	2023-03-08	2024-04-17
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:13:23 Last Seen2024-04-17 15:50:14 Times Seen119 Hash 278ab671b79501589b5bd24258c13fa7 2cf6cf4013891dac845d8500775020c432670083 8a3595c2020844daa93f3f810bc22a8176c5af06814dc88b619095c6cee8182e Loading...

	v3media.ca/	1.6 kB	2023-03-08	2023-03-08
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-03-08 14:22:10 Times Seen1 Hash 3c6f36fbdeb7b80828317ff8f7ea5117 4a4f3def0c36439f7b5e91a39df926836673e5ec e9b001b5e796d4ae0cef79276c2c02760216d60fbeb542bcbd71cd76a1a57c84 Loading...

	cdn.v3media.ca/wp-content/plugins/image-carousel-divi/scripts/frontend-bundle.min.js?ver=1.0	44 kB	2023-03-07	2024-03-14
Pretty URL cdn.v3media.ca/wp-content/plugins/image-carousel-divi/scripts/frontend-bundle.min.js?ver=1.0 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:35 Last Seen2024-03-14 12:27:05 Times Seen24 Hash 25a696ed81508dc958584514616e66e7 25286d1479707053a9eb43c67e0d25c4620afef4 5ba327135fbbb120031cf7ba2b5e5a0177d8f070b08eeff7e9d80bd320eab2cd Loading...

	cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/core/admin/js/common.js?ver=1669413364	890 B	2023-03-07	2024-04-17
Pretty URL cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/core/admin/js/common.js?ver=1669413364 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:09 Last Seen2024-04-17 15:50:14 Times Seen172 Hash 06e520ea40f9541033d7803ce9014cc2 a8a91796a99ca0591dbe40ef0afbd07a6d085a48 72e8f92bc41d9dd380115197e1080d5cded646448be3a51b73ae5b1ee7fbf28b Loading...

	cdn.v3media.ca/wp-content/plugins/pojo-accessibility/assets/js/app.min.js?ver=1.0.0	5.3 kB	2023-03-07	2024-03-22
Pretty URL cdn.v3media.ca/wp-content/plugins/pojo-accessibility/assets/js/app.min.js?ver=1.0.0 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:02 Last Seen2024-03-22 12:48:15 Times Seen368 Hash 461b6b1ba04107ff2df92b3577d04c0e e53dec173ebcc0684f1a78f26855f836119b7675 d5575de801172d286dc7cdb712db3081a3fa0702672d2bf33f806301706e3e09 Loading...

	v3media.ca/	215 B	2023-03-07	2024-04-18
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:15:11 Last Seen2024-04-18 01:58:52 Times Seen2896 Hash 35cbb7b9895191e5bfe46064786c9d54 26a3d66370d64124f84a78d0eff4fff02c6b6991 c2982a05f154f49ade6e669b1521734bb5b5e63503edc841e56e957b31063ec5 Loading...

	v3media.ca/	1.6 kB	2023-03-08	2023-03-13
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-03-13 19:02:27 Times Seen1 Hash 266e39ecbac329f791307ad23a942f37 21ae656b19bbddf27627a9dbf1ed8b9274d7f54d a13e0360ca2b7092a32df22c78e7c63b7b23a45c488cd726d0e31e65b79f768f Loading...

	v3media.ca/	444 B	2023-03-07	2023-03-26
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:35 Last Seen2023-03-26 12:34:58 Times Seen2 Hash 656786907a8fdb2b4037604f873c58f2 a1441240ca523c4d03d2647711910a1dfdffec47 4a6cd083002c09f8335aee361d5589233f39a4c56ee81c21bcf2bd8f02a28cc6 Loading...

	v3media.ca/	94 B	2023-03-07	2024-04-10
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:25 Last Seen2024-04-10 13:21:09 Times Seen323 Hash 28381c623b4c0a668f1e55ca63a4edef f992277365c6f9869ac04582204dbd02129060f5 aa304df1f223450ddecd71ba2f2fca453ab98af9ab496215601e86acda182f7c Loading...

	cdn.v3media.ca/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js	8.3 kB	2023-03-07	2024-04-18
Pretty URL cdn.v3media.ca/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:43 Last Seen2024-04-18 02:58:03 Times Seen3055 Hash b00219cb958052cb557115d55f0c8d48 3c55bbf5a8082db61decff924aaf787f4337df86 8ceb3992861ed1fda25855c2e500e76842ae0d788405e50e3a9f45df36499cf6 Loading...

	cdn.v3media.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-18
Pretty URL cdn.v3media.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-18 08:40:11 Times Seen68469 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=1669413364	8.0 kB	2023-03-07	2024-04-17
Pretty URL cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=1669413364 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:35 Last Seen2024-04-17 15:50:18 Times Seen54 Hash 33ce0a1165bab576b2225789bc98dd9e a5881caf42910161443e44d8329315d2d8f64611 8f512eeaede1bcad9ba631ab48668b7f4c2be94ed6f2aa33bdcea477e0931d14 Loading...

	cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=1669413364	7.5 kB	2023-03-07	2024-04-17
Pretty URL cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=1669413364 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:35 Last Seen2024-04-17 15:50:19 Times Seen38 Hash 68111fbfa7571186a636a81930e9d943 729d4cfe93c0ae86498ff0c6f5ef5b4e65cee4d4 01209f68ba26dc9b29a828d39ed1c211067d5c4b3158691de80eaa2e7134f21c Loading...

	v3media.ca/	83 B	2023-03-08	2023-03-13
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-03-13 19:02:27 Times Seen1 Hash afa4210ea2644787f5b5483eb9613a73 0e29dc8993c803821bf5a7611dcb66daa94f5302 a70d1844390377c2a434f7bcd23fc1c1870ded6d5fcd88df7c02d15c8f042f5d Loading...

	v3media.ca/	928 B	2023-03-07	2023-03-17
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:35 Last Seen2023-03-17 10:16:27 Times Seen1 Hash 84f220a082266d94e62f44b6a89cd91f 180816e114703a7302a8213be98cc4f414cc0f4b 8ac131b23d00e0f4a4037075189fe000e25bc5d490382e3cb1ba23dab67aa539 Loading...

	v3media.ca/	2.1 kB	2023-03-07	2024-04-18
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-18 07:31:57 Times Seen6326 Hash 9cd47ac5a0389a37b4d8e7d194e17c9a 9121da7907e37462c10ce8616f06b5c22f640744 ae37d2523200d80db4a789404c079f2cb1bb172ed526cb27909f929c9d935cda Loading...

	cdn-cookieyes.com/client_data/8b64c9e0b2e796da1eda3c36/banner.js	93 kB	2023-03-08	2023-03-12
Pretty URL cdn-cookieyes.com/client_data/8b64c9e0b2e796da1eda3c36/banner.js IP 104.26.0.70 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-03-12 12:49:30 Times Seen1 Hash 8f0912dbb808880c21aa75e7df34809a d7b5a610f5f0e6b4617d5b4b4025328d482043cf 0490f99570ad4bb18ed90442b505080f4c938526503e8704e112b5843926952a Loading...

	v3media.ca/	47 B	2023-03-07	2024-04-18
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-04-18 08:46:36 Times Seen6604 Hash 2f518cfc8223c53c44094f57eacc972f a919f586352875054a0a7f438c3e3d33cb5768b3 1d89df5c4aeb93c45e67d479e74ca02e5a104d7e421e4f2415e4a204c9816b0b Loading...

	v3media.ca/	1.8 kB	2023-03-07	2024-04-17
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:13 Last Seen2024-04-17 12:43:51 Times Seen1146 Hash 4987c278554aca0f434be960093da5ea a84e797c1bf51ba6880369c108139892b4ff222e 0bb088a70492e66de65d971724f3e1ffc81e79d10b7baad3881f38d5e41d159e Loading...

	v3media.ca/	35 B	2023-03-07	2024-02-26
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:46 Last Seen2024-02-26 15:59:25 Times Seen376 Hash ddf11fbee9221046d2eeb0eae8829346 6bb92e7a90d5a26cbfecf983b902e37d40c87132 f7b0221d73674c169def983e82e1188090074f35425004a7e4a1e2628436f0ff Loading...

	v3media.ca/	390 B	2023-03-07	2023-03-26
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:39:35 Last Seen2023-03-26 12:34:58 Times Seen2 Hash 013fc1a621af45b08b6c277fe6f7f34f 30c5be8f57f4cc2e226506cc69b67388a1101138 da190cd5701f2906630db5a454f5280fab2579c2e742f821d99498a636355bc8 Loading...

	v3media.ca/	3.4 kB	2023-03-07	2024-04-18
Pretty URL v3media.ca/ IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-04-18 07:31:57 Times Seen6139 Hash a94b76e45c11675df9f26fd25a8e4359 1cd29363bb1b514e6f7ef031f1831008df181f17 4569f5c3704a88394335b0fabccd6460ba5e582c3058f9286f42cc589da02899 Loading...

	cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=1669413364	2.5 kB	2023-03-07	2024-04-17
Pretty URL cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=1669413364 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:09 Last Seen2024-04-17 15:50:16 Times Seen122 Hash 016ffb98b63cc4c6818198051cc3cdba 0de1b9947b9770990a8cc45268b62418d9867d93 a22673305aeee63a54f6309e869296e559dac057a8dbcfa467d2aec9d2aabaa3 Loading...

	cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/sticky-elements.js?ver=1669413364	217 kB	2023-03-08	2023-03-13
Pretty URL cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/sticky-elements.js?ver=1669413364 IP 138.199.40.58 ASN #60068 Datacamp Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:10 Last Seen2023-03-13 19:02:27 Times Seen1 Hash 856831745ca836f36e819e087c30d596 f4c304f78c090202eed0f6b728e3e5bbf8d83ba7 c1c6881740b166c92fdc6379ff8607a1a2cc09f5ab57143c7075e2525da779ba Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-08	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:22:31 Last Seen2024-04-15 19:32:36 Times Seen1507 Hash fda30e8a22c9bcd954fd8d0fadd0e77c ae47cd34cbde081a48d7f92fc80aaf06a1381193 b42e4a056cb5b80c5a315040826866445ec9332f0749e184509ab2d9d3b86719 Loading...

	v3media.ca/wp-content/plugins/official-facebook-pixel/js/openbridge_plugin.js	186 kB	2023-03-07	2024-01-26
Pretty URL v3media.ca/wp-content/plugins/official-facebook-pixel/js/openbridge_plugin.js IP 71.19.254.121 ASN #11831 ESECUREDATA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:47 Last Seen2024-01-26 21:20:56 Times Seen227 Hash bd83c501b0e38f5230ee7c7e506232c3 1a4fc2c2d140f6c5cb34d6b018314a67fdeffec0 761aeff2e8803ba4c48511b4424f2bef7ec26194f4decf3ed8d2741d52952871 Loading...

HTTP Transactions (90)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6008
Expires: Fri, 02 Dec 2022 02:58:45 GMT
Date: Fri, 02 Dec 2022 01:18:37 GMT
Connection: keep-alive

webgraffiti.ca/Templates/mercy/envelope.zip

71.19.241.30

301 Moved Permanently

259 B

URL HTTP/1.1
webgraffiti.ca/Templates/mercy/envelope.zip
IP
71.19.241.30:0
ASN
#11831 ESECUREDATA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
259 B (259 bytes)
Hash
fc559b389984117c065b9af59eb4ecbf
6a9a0dacd2eefe88e5fb05a51787fb1b8fb403a2
8379f05ac88b003ac9eedab96932f8122a405161f3874fb97476ab5e61b346eb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Templates/mercy/envelope.zip HTTP/1.1
Host: webgraffiti.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 01:18:37 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Location: https://webgraffiti.ca/Templates/mercy/envelope.zip
Content-Length: 259
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3403
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:18:37 GMT
Etag: "63888270-1d7"
Last-Modified: Fri, 02 Dec 2022 00:21:54 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 01:18:10 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 27
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4343
Expires: Fri, 02 Dec 2022 02:31:00 GMT
Date: Fri, 02 Dec 2022 01:18:37 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: PU/q0j41GzbqH02guvkhs2pn+2yflcXAVRuBl26TRhvDlxH8GvzauewNxYSg1f8QOOlide3fh+Q=
x-amz-request-id: WC8RD08FXQQYBZNZ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 00:45:52 GMT
age: 1965
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 01:18:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 01:08:57 GMT
cache-control: public,max-age=3600
age: 581
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

webgraffiti.ca/Templates/mercy/envelope.zip

71.19.241.30

301 Moved Permanently

227 B

URL HTTP/1.1
webgraffiti.ca/Templates/mercy/envelope.zip
IP
71.19.241.30:0
ASN
#11831 ESECUREDATA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
227 B (227 bytes)
Hash
e3d666d7daf135e0939eeb51019b4062
edeaf6fb84aaaf3c0d744354a07cd960fbe714c2
4718b80f5d436b01dad918345048304532dadad0cab0c214c3d6ef51b6f91b5c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /Templates/mercy/envelope.zip HTTP/1.1
Host: webgraffiti.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 01:18:38 GMT
Server: Apache
Strict-Transport-Security: max-age=300; includeSubDomains; preload
Location: https://v3media.ca/
Content-Length: 227
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3393
Cache-Control: max-age=117884
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:18:38 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:03:22 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

35.160.184.41

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.160.184.41:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: grxfjzpHEfOjSzga6xHBJQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: F9rtDONPYpyghgaFVb2mgzYvASs=

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:18:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:18:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjxAwWw.ttf

142.250.74.35

200 OK

33 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjxAwWw.ttf
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 16 tables, 1st "GPOS", 8 names, Microsoft, language 0x409\012- data
Size
33 kB (32826 bytes)
Hash
e0148c76cd6076139a72923e9c96a364
4bfcc46a0127b4d60d146bb5432283fd4da1cec0
402cdd68192ea39b25757751b52189d91b17f3ae6b54e44d49a1aad7731fb1f3

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjxAwWw.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32826
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 05:44:15 GMT
expires: Thu, 30 Nov 2023 05:44:15 GMT
cache-control: public, max-age=31536000
age: 156864
last-modified: Tue, 26 Apr 2022 15:46:27 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:18:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjxAwWA.woff

142.250.74.35

200 OK

31 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjxAwWA.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 30908, version 1.1\012- data
Size
31 kB (30908 bytes)
Hash
cf01af70a3ae9a494a729f504c43804e
c8df5f2b2203ae5137a85c44d840c9fc104b08d1
f8b379928d98040597c080cca7143ca32aa5951c1fffeb0527f87133c863255b

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjxAwWA.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 21:48:23 GMT
expires: Wed, 29 Nov 2023 21:48:23 GMT
cache-control: public, max-age=31536000
age: 185416
last-modified: Tue, 26 Apr 2022 15:46:27 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:18:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHh30AUi-s.woff

142.250.74.35

200 OK

29 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHh30AUi-s.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 29264, version 1.1\012- data
Size
29 kB (29264 bytes)
Hash
67df9a2801e66e104961e566c15da79f
f989a33bd85abb8e6f7d56e2ec1bb0636a270520
0cb73aa0cd166b4a73c8c5479a61a7b4e504cebb63227c90ae7ab4a65f4912fd

HTTP Headers

GET /s/lato/v23/S6u8w4BMUTPHh30AUi-s.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29264
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 20:04:48 GMT
expires: Wed, 29 Nov 2023 20:04:48 GMT
cache-control: public, max-age=31536000
age: 191631
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwaPHw.woff

142.250.74.35

200 OK

30 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwaPHw.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 30356, version 1.1\012- data
Size
30 kB (30356 bytes)
Hash
83bec549b44b3ec087b591478dee7181
f483a91c0a75cea54813e3daf50a07acf7a042ca
0e60dc068a114b61823ba3c8a40fa36e5e2225eb40398477e4d20d18de3601ac

HTTP Headers

GET /s/lato/v23/S6u9w4BMUTPHh6UVSwaPHw.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30356
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 14:53:36 GMT
expires: Sun, 26 Nov 2023 14:53:36 GMT
cache-control: public, max-age=31536000
age: 469503
last-modified: Tue, 26 Apr 2022 15:56:41 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w3aXw.woff

142.250.74.35

200 OK

25 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w3aXw.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 25184, version 1.1\012- data
Size
25 kB (25184 bytes)
Hash
b5fe7d916cc9612c1a546fec6f8ab194
dbfc76d5764f11bbb64d55b386821f03fa96e7de
f90da242756aa2b22002a66553c1918e6db70b4548c10f0870b76faf2bd5d800

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w3aXw.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25184
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 18:58:38 GMT
expires: Wed, 29 Nov 2023 18:58:38 GMT
cache-control: public, max-age=31536000
age: 195601
last-modified: Mon, 11 Jul 2022 18:55:41 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w3aXw.woff

142.250.74.35

200 OK

25 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w3aXw.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 24848, version 1.1\012- data
Size
25 kB (24848 bytes)
Hash
174f3ef949651de275233fb1c93b5c53
37ee033b59cb549649647697b1322635f132816d
5c06aed9794b88a6c135b67adcfe748613bc6bef56fb437d47529bd17de755f9

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w3aXw.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24848
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 26 Nov 2022 14:46:06 GMT
expires: Sun, 26 Nov 2023 14:46:06 GMT
cache-control: public, max-age=31536000
age: 469953
last-modified: Mon, 11 Jul 2022 18:54:02 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1y9osUhiYw.woff

142.250.74.35

200 OK

20 kB

URL HTTP/2
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1y9osUhiYw.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 19592, version 1.1\012- data
Size
20 kB (19592 bytes)
Hash
29ff155e057fad5ac0521b5932381383
591dccacbfb922053c6daa5dfd64d21c213515eb
57190b98b62ebc93e6bb52a80622081d9d6db7af16957be1c063833a42a536db

HTTP Headers

GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1y9osUhiYw.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19592
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:58:10 GMT
expires: Wed, 29 Nov 2023 15:58:10 GMT
cache-control: public, max-age=31536000
age: 206429
last-modified: Mon, 18 Jul 2022 19:13:49 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

v3media.ca/

71.19.254.121

200 OK

63 kB

URL HTTP/1.1
v3media.ca/
IP
71.19.254.121:0
ASN
#11831 ESECUREDATA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (65031), with CRLF, LF line terminators
Size
63 kB (63226 bytes)
Hash
2a5fe11644f30291a980ac73c032e159
638fa2cc5e7ffaa1a501d39354229bf70117b038
12c8bb1b62a7396b9c1f3ae59ce018170ba1528d72c32b490d873f0e6e09eba9

HTTP Headers

GET / HTTP/1.1
Host: v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 01:18:38 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Last-Modified: Thu, 01 Dec 2022 23:15:09 GMT
Accept-Ranges: bytes
Content-Length: 63226
Cache-Control: max-age=0
Expires: Fri, 02 Dec 2022 01:18:38 GMT
Keep-Alive: timeout=5, max=120
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc-.woff

142.250.74.35

200 OK

29 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc-.woff
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format, TrueType, length 28948, version 1.1\012- data
Size
29 kB (28948 bytes)
Hash
52ab1ba80e525b22e7e4498c3482f755
931a8ad1fc677eeff472bcc57d83231bbc455250
62291e66528ccf26fb0ee85ecd32796f42ad31a9640e197579213124a14934be

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc-.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28948
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 20:10:23 GMT
expires: Thu, 30 Nov 2023 20:10:23 GMT
cache-control: public, max-age=31536000
age: 104896
last-modified: Wed, 11 May 2022 19:25:01 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4.woff2

142.250.74.35

200 OK

23 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 22580, version 1.0\012- data
Size
23 kB (22580 bytes)
Hash
1c44e440b54050bdb9c8f4cf048163bc
285209cc8e5df99937d360909021a7501269f6ac
59fb185692872a1d0060ebdb9d6f8664b499b8812e80dc59755ec2f68887450f

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 02:12:20 GMT
expires: Fri, 01 Dec 2023 02:12:20 GMT
cache-control: public, max-age=31536000
age: 83179
last-modified: Wed, 11 May 2022 19:24:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:18:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 30 Nov 2022 19:34:15 GMT
expires: Thu, 30 Nov 2023 19:34:15 GMT
cache-control: public, max-age=31536000
age: 107064
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1y9osUhiZQ.woff2

142.250.74.35

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1y9osUhiZQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 14912, version 1.0\012- data
Size
15 kB (14912 bytes)
Hash
2e6fb868cefe267ab63805f6ecf35a16
bddcf237b47e124ae009ebc246a9d5f44408af98
b141bfdb93f3ba7107bb4584e44ee6a043c118ad9fec150f8368fb74a596a7a0

HTTP Headers

GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1y9osUhiZQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14912
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 13:58:42 GMT
expires: Wed, 29 Nov 2023 13:58:42 GMT
cache-control: public, max-age=31536000
age: 213597
last-modified: Mon, 18 Jul 2022 19:13:49 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w3aXo.woff2

142.250.74.35

200 OK

20 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w3aXo.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 19464, version 1.0\012- data
Size
20 kB (19464 bytes)
Hash
765a7790e9005f066ddfbc939bdd4621
c730bde751b462838db69f24c2c94019f964e029
3c316558e18d2996ed4394bc36b17d993c21584f30d16dd0e6d87673f5892c18

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w3aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19464
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 02:27:04 GMT
expires: Mon, 27 Nov 2023 02:27:04 GMT
cache-control: public, max-age=31536000
age: 427895
last-modified: Mon, 11 Jul 2022 18:54:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w3aXo.woff2

142.250.74.35

200 OK

20 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w3aXo.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 19768, version 1.0\012- data
Size
20 kB (19768 bytes)
Hash
8b364bf29bcf08955e8ab90358a8c1cb
c8069a4fef1e4643f0454f3b11ae920688a6d121
3c3e418bbd1355279dc9a7b5d7a6ff58a73432bd49d6082a0f1544cc1c593e5c

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w3aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19768
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 18:56:09 GMT
expires: Wed, 29 Nov 2023 18:56:09 GMT
cache-control: public, max-age=31536000
age: 195750
last-modified: Mon, 11 Jul 2022 18:55:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHh30AUi-q.woff2

142.250.74.35

200 OK

23 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6u8w4BMUTPHh30AUi-q.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23316, version 1.0\012- data
Size
23 kB (23316 bytes)
Hash
736b697193ede58046220727821645f5
c9ce136432f83e56d61cb3ad94f63b77c23f2b58
61bbce3ff2aa51bc2bc98f34c109b7125aa91d19f2f888e4dcd97b143a0f89e4

HTTP Headers

GET /s/lato/v23/S6u8w4BMUTPHh30AUi-q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23316
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 08:15:00 GMT
expires: Fri, 01 Dec 2023 08:15:00 GMT
cache-control: public, max-age=31536000
age: 61419
last-modified: Tue, 26 Apr 2022 15:48:57 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwaPGQ.woff2

142.250.74.35

200 OK

25 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwaPGQ.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 24780, version 1.0\012- data
Size
25 kB (24780 bytes)
Hash
9e7827aaaf284662fe90803f0c3390d8
54a677e2d0e39ac9c7063068f42cf1eaed464c02
21d84ae6011313f56bed19d8067c8ffa780e6b8452c43b560c11d53af4c4c211

HTTP Headers

GET /s/lato/v23/S6u9w4BMUTPHh6UVSwaPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24780
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:45:13 GMT
expires: Wed, 29 Nov 2023 15:45:13 GMT
cache-control: public, max-age=31536000
age: 207206
last-modified: Tue, 26 Apr 2022 15:56:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjxAwXg.woff2

142.250.74.35

200 OK

25 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjxAwXg.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 25284, version 1.0\012- data
Size
25 kB (25284 bytes)
Hash
26f5a0992b68bb38801b08a348288591
4dc2e90e40d35482883aea5fa535cfa4e15fd392
386a206aade080bb0045005cfdbb660430ed46d652039eef6bc299d54d7c43ed

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjxAwXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25284
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 21:46:23 GMT
expires: Wed, 29 Nov 2023 21:46:23 GMT
cache-control: public, max-age=31536000
age: 185536
last-modified: Tue, 26 Apr 2022 15:46:28 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc9.ttf

142.250.74.35

200 OK

30 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc9.ttf
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoBoldRoboto BoldVersion 2.137; 2017Roboto-Bo\012- data
Size
30 kB (30055 bytes)
Hash
8aaa45ec9d196f2e4ada1d2eec3afbdb
5f754c159372e80063c941da89023b990a5a1b58
c9b2c896f5586490cc5a675bb6cc2585ca4166da2c9f35e7fa5fa9d686f2a552

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfChc9.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30055
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Dec 2022 07:27:27 GMT
expires: Fri, 01 Dec 2023 07:27:27 GMT
cache-control: public, max-age=31536000
age: 64272
last-modified: Wed, 11 May 2022 19:25:00 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwaPHA.ttf

142.250.74.35

200 OK

32 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwaPHA.ttf
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 16 tables, 1st "GPOS", 8 names, Microsoft, language 0x409\012- data
Size
32 kB (32362 bytes)
Hash
0520335db931af1001c8be560ee72199
0d3fa7bc38bd653087c019a143a99e87120bc002
e639a7bcc25f390c677d3078b91f8135682f2d8ecb6036f5f73e1fd854d828d5

HTTP Headers

GET /s/lato/v23/S6u9w4BMUTPHh6UVSwaPHA.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32362
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 20:09:15 GMT
expires: Wed, 29 Nov 2023 20:09:15 GMT
cache-control: public, max-age=31536000
age: 191364
last-modified: Tue, 26 Apr 2022 15:56:41 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1y9osUhiYA.ttf

142.250.74.35

200 OK

20 kB

URL HTTP/2
fonts.gstatic.com/s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1y9osUhiYA.ttf
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 16 tables, 1st "GDEF", 12 names, Microsoft, language 0x409, Copyright 2016 The Oswald Project Authors (https://github.com/googlefonts/OswaldFont)Oswald Semi\012- data
Size
20 kB (20279 bytes)
Hash
90a8c7bd27c926b0ea2eb5ffe47caab0
0e88d517472d12429ff2b9fbcad0b521d219b1e8
37127e9d67dbac14fae488ebe370933431d3172af259b7536e0cd471121101f7

HTTP Headers

GET /s/oswald/v49/TK3_WkUHHAIjg75cFRf3bXL8LICs1y9osUhiYA.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20279
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 15:04:41 GMT
expires: Wed, 29 Nov 2023 15:04:41 GMT
cache-control: public, max-age=31536000
age: 209638
last-modified: Mon, 18 Jul 2022 19:13:48 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w3aX8.ttf

142.250.74.35

200 OK

26 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w3aX8.ttf
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 16 tables, 1st "GDEF", 14 names, Microsoft, language 0x409, Copyright 2011 The Montserrat Project Authors (https://github.com/JulietaUla/Montserrat)Montserr\012- data
Size
26 kB (25761 bytes)
Hash
30e8f9393ec45f22f9a210eb0c39073b
48e27b529c7b28623f761c020ffb11bea2377f3b
3690986d982596045f4d5736a07aa0f8dbd7c3f235d64c4ab48503209eeed164

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCu173w3aX8.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25761
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 19:05:02 GMT
expires: Wed, 29 Nov 2023 19:05:02 GMT
cache-control: public, max-age=31536000
age: 195217
last-modified: Mon, 11 Jul 2022 18:54:05 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w3aX8.ttf

142.250.74.35

200 OK

26 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w3aX8.ttf
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
TrueType Font data, 16 tables, 1st "GDEF", 12 names, Microsoft, language 0x409, Copyright 2011 The Montserrat Project Authors (https://github.com/JulietaUla/Montserrat)Montserr\012- data
Size
26 kB (26098 bytes)
Hash
7078dc02bbcf29da5885289fdb80fc33
2a9883687ea8ce5558c65bd16c54344dd90e6e1d
3843604aa65f17cfd0d4c3dc631bba231dbd1cbf7e3f3c98016a63d6caa9bd81

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCuM73w3aX8.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 26098
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 18:56:47 GMT
expires: Wed, 29 Nov 2023 18:56:47 GMT
cache-control: public, max-age=31536000
age: 195712
last-modified: Mon, 11 Jul 2022 18:55:40 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
980f31229421fd11df958496bea34502
648e03f048e6741beb1d4e10099b1429b79e4f00
887d1a1020b73fa3221c168713525f99474ac02fa10e251b5b23f6c0c519afce

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:18:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:18:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-7344442-3

142.250.74.168

200 OK

45 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-7344442-3
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1921)
Size
45 kB (44690 bytes)
Hash
bc8fd309be42859cc31b316f6f2eee1d
d4767f9c3dd05308e48550228e57940140933dbf
6b86fdc29f01c783be7075f7dadcc6b231c6fad7ac0a6a599ecb4bb5f0a3b478

HTTP Headers

GET /gtag/js?id=UA-7344442-3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 01:18:39 GMT
expires: Fri, 02 Dec 2022 01:18:39 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44690
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22d9f10dce03282bda5211bffbb0718f
8672bc5cfa232281213e35a7d56c1c1477a9350b
d5659727a3e2a6e5f37b1d495dd37487a52a3e5bd847facd533f46f5cb7d88dd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5659727A3E2A6E5F37B1D495DD37487A52A3E5BD847FACD533F46F5CB7D88DD"
Last-Modified: Thu, 01 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21566
Expires: Fri, 02 Dec 2022 07:18:05 GMT
Date: Fri, 02 Dec 2022 01:18:39 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
188c50963e7939b1f26a31dbcb8c8200
859416e6148ea6618584e53604efcf072bb989cc
3a313cd3c1693a886bfbf6ffc6fbac78f87e6ded2b9a7749553444ada65ce36e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:18:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22d9f10dce03282bda5211bffbb0718f
8672bc5cfa232281213e35a7d56c1c1477a9350b
d5659727a3e2a6e5f37b1d495dd37487a52a3e5bd847facd533f46f5cb7d88dd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5659727A3E2A6E5F37B1D495DD37487A52A3E5BD847FACD533F46F5CB7D88DD"
Last-Modified: Thu, 01 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21543
Expires: Fri, 02 Dec 2022 07:17:42 GMT
Date: Fri, 02 Dec 2022 01:18:39 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22d9f10dce03282bda5211bffbb0718f
8672bc5cfa232281213e35a7d56c1c1477a9350b
d5659727a3e2a6e5f37b1d495dd37487a52a3e5bd847facd533f46f5cb7d88dd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5659727A3E2A6E5F37B1D495DD37487A52A3E5BD847FACD533F46F5CB7D88DD"
Last-Modified: Thu, 01 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21548
Expires: Fri, 02 Dec 2022 07:17:47 GMT
Date: Fri, 02 Dec 2022 01:18:39 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22d9f10dce03282bda5211bffbb0718f
8672bc5cfa232281213e35a7d56c1c1477a9350b
d5659727a3e2a6e5f37b1d495dd37487a52a3e5bd847facd533f46f5cb7d88dd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5659727A3E2A6E5F37B1D495DD37487A52A3E5BD847FACD533F46F5CB7D88DD"
Last-Modified: Thu, 01 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21550
Expires: Fri, 02 Dec 2022 07:17:49 GMT
Date: Fri, 02 Dec 2022 01:18:39 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
22d9f10dce03282bda5211bffbb0718f
8672bc5cfa232281213e35a7d56c1c1477a9350b
d5659727a3e2a6e5f37b1d495dd37487a52a3e5bd847facd533f46f5cb7d88dd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D5659727A3E2A6E5F37B1D495DD37487A52A3E5BD847FACD533F46F5CB7D88DD"
Last-Modified: Thu, 01 Dec 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 02 Dec 2022 07:18:39 GMT
Date: Fri, 02 Dec 2022 01:18:39 GMT
Connection: keep-alive

cdn.v3media.ca/wp-content/plugins/divi-booster/core/icons/socicon/fonts/Socicon.woff2?87visu

138.199.40.58

200 OK

64 kB

URL HTTP/2
cdn.v3media.ca/wp-content/plugins/divi-booster/core/icons/socicon/fonts/Socicon.woff2?87visu
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type
Web Open Font Format (Version 2), TrueType, length 64512, version 3.-26214\012- data
Size
64 kB (64512 bytes)
Hash
0d3d8b23e678fa28287d44a01e10553b
5a5daf8519110f538391dabd1de828493ba60959
c254279147099e0b696b281d62b436b8aed42fb0f3abf1ba17abc398ca6c90e2

HTTP Headers

GET /wp-content/plugins/divi-booster/core/icons/socicon/fonts/Socicon.woff2?87visu HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: font/woff2
content-length: 64512
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31536000
expires: Sat, 04 Mar 2023 21:09:52 GMT
last-modified: Fri, 04 Nov 2022 19:05:39 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 21:09:52
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 2a572ad67bd20258ed86122e7f4e2b6b
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20435
Expires: Fri, 02 Dec 2022 06:59:14 GMT
Date: Fri, 02 Dec 2022 01:18:39 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8686
Expires: Fri, 02 Dec 2022 03:43:25 GMT
Date: Fri, 02 Dec 2022 01:18:39 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8686
Expires: Fri, 02 Dec 2022 03:43:25 GMT
Date: Fri, 02 Dec 2022 01:18:39 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8686
Expires: Fri, 02 Dec 2022 03:43:25 GMT
Date: Fri, 02 Dec 2022 01:18:39 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7732 bytes)
Hash
379a4a1b95d3aa3c5a4f8e7f9abb030f
d45dceb3dc58a07197aa5077582b5b1cd2ff791a
1b92dec5bf90beffbcd9060052b8788f08645dd4ba34219f7ddb2d40bbd2d151

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7732
x-amzn-requestid: 3781c2b7-082a-468a-a186-f7483494e749
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoEq3IAMFnKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-679fe9f905e07abf4e6a812c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: V4Z3TZtTDMjnyxZx7VdJrKtZ-PbZkWnsQ0-1eFDem4TVyRGvk0dc7A==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:47:56 GMT
age: 12643
etag: "d45dceb3dc58a07197aa5077582b5b1cd2ff791a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11402 bytes)
Hash
1c80b8025242ddfcc816ec612456b99e
aa944d10fe4a44b790b01ef62edc0f85a6d558e3
a9f060bc15738a3fe257e0c81a29e4611a89c273bcbb2765ce856d4e854a5f1f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6edb00ee-3888-4974-ae1a-52ef18e62d0d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11402
x-amzn-requestid: 20c2c359-1e43-40c0-885d-1c90e76ea12b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGzJHu-IAMFbYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e7a-1d89722e767daa014b174a39;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:58 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: OJBnbjJB_kvPuJcePGnno3zI0CTWAzV-Osb2L1hPZZhlNYhFHWmLsA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:51:33 GMT
etag: "aa944d10fe4a44b790b01ef62edc0f85a6d558e3"
content-type: image/jpeg
age: 12426
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

2.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.9 kB (2942 bytes)
Hash
b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:34:47 GMT
age: 13432
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8863 bytes)
Hash
156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cgj3fw3lpngosMNOK7cZUZO94T__4RTy_p7wa6rI62OOvhI5E9wMSw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:19:21 GMT
age: 64758
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4834 bytes)
Hash
cd8ad22c2eb1eb91c76970fa449f1bc4
0de97f3a4964038222bd751e043e413113e6db9d
668f805815aede3bc04f8564bd6aefd56029362bb0aa8a794673eb78ab2d4643

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc5183c67-4568-43c8-a2e7-7b41f5ca064b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4834
x-amzn-requestid: 63a0b8b5-5cb3-4a1f-aa46-47c84abe726f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZQrjEeAIAMF3sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6386c7e3-0032799009f893ba79f314db;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 03:02:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 5jKfLFWhSvvsiO5WxWbizQhKZdCj1IKR4ijCCZKjUCtni5qQcK5-Zw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 04:13:23 GMT
age: 75916
etag: "0de97f3a4964038222bd751e043e413113e6db9d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6174 bytes)
Hash
b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:15:42 GMT
age: 64977
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/uploads/2022/05/V3-Home-Page-bg.jpg

138.199.40.58

200 OK

126 kB

URL HTTP/2
cdn.v3media.ca/wp-content/uploads/2022/05/V3-Home-Page-bg.jpg
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2000x836, components 3\012- data
Size
126 kB (126505 bytes)
Hash
ce05c13b58f4ea53f077e0f250bf2f05
0dd4624aa9c598fac4e2fb2a3889e64621899b68
0a6b082c89bc3f61e883ba106357947b2f93d36c663b75dbc5766fdfa66cb63d

HTTP Headers

GET /wp-content/uploads/2022/05/V3-Home-Page-bg.jpg HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:40 GMT
content-type: image/jpeg
content-length: 126505
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
cache-control: public, max-age=10368000
expires: Sat, 04 Mar 2023 22:43:25 GMT
last-modified: Wed, 11 May 2022 18:43:08 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 22:43:25
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: df470259f0e18cf1028da5315eb1f456
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/uploads/2018/03/May-We-Help-You-bg-light.jpg

138.199.40.58

200 OK

83 kB

URL HTTP/2
cdn.v3media.ca/wp-content/uploads/2018/03/May-We-Help-You-bg-light.jpg
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 2000x1333, components 3\012- data
Size
83 kB (83111 bytes)
Hash
c012349fe7c6114ac6bbdfb1bd1f12e7
a137e9a3983b3a9c788367abf14f147bb8bf2104
77f2e2f5b2eb75161c0abfd580488c5b244977185657ac90177f0971bb03b8af

HTTP Headers

GET /wp-content/uploads/2018/03/May-We-Help-You-bg-light.jpg HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:40 GMT
content-type: image/jpeg
content-length: 83111
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
cache-control: public, max-age=10368000
expires: Sat, 04 Mar 2023 22:43:25 GMT
last-modified: Tue, 12 May 2020 16:10:28 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 22:43:25
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: f34c30d12ea23b44c6d2449bae88dad7
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

e1.o.lencr.org/

95.101.11.115

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
2cb946e275df6a2f01a6cc7e3ea2110e
3e38a11b4cd3dfcf7f382acd6d79e350d18a3ffe
60f856ef7038774ae23e8cba52e1cb0bac6451cb9210b83e7d21c97cea9cf54c

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "60F856EF7038774AE23E8CBA52E1CB0BAC6451CB9210B83E7D21C97CEA9CF54C"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7212
Expires: Fri, 02 Dec 2022 03:18:52 GMT
Date: Fri, 02 Dec 2022 01:18:40 GMT
Connection: keep-alive

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
664589f43820402a7079c0d68e83b460
96197b66ba4cdda234b505828add417623e76def
fa8fbfff978b48a75e07e5e156b03cff7b356866df75d5f6dfd40256108cdbd4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=158417
Date: Fri, 02 Dec 2022 01:18:40 GMT
Etag: "63890543-1d7"
Expires: Sat, 03 Dec 2022 21:18:57 GMT
Last-Modified: Thu, 01 Dec 2022 19:49:23 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 5de23153ac267c206221751e1cccb6e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zXK_VSRDhFYt8rZ819uL8FTWxjG-WGgG6eiUZJaomkMgy_V2VLXWgA==
Age: 5374

cdn-cookieyes.com/client_data/8b64c9e0b2e796da1eda3c36/banner.js

104.26.0.70

200 OK

140 kB

URL HTTP/2
cdn-cookieyes.com/client_data/8b64c9e0b2e796da1eda3c36/banner.js
IP
104.26.0.70:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Size
140 kB (139730 bytes)
Hash
0e1453cb439295a001543c357d05c2c0
1574428be88cdfa9b20da2b16a55d6ccdb7e2135
78c18dcff3de9509979de2fcb4cc1d6b539725d1b4c36978fd74718c4912ada9

HTTP Headers

GET /client_data/8b64c9e0b2e796da1eda3c36/banner.js HTTP/1.1
Host: cdn-cookieyes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:40 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 14:24:23 GMT
etag: W/"16a88-5eb63f720e05c-gzip"
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: max-age=0, must-revalidate, s-maxage=604800, proxy-revalidate
cf-cache-status: HIT
age: 84989
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0iAYZuyQZdpFVJO1IIMva9WWrYEPufDWpL6d4kZ1cgyQs2bfV452cvhjYe1EUgo%2BPk1nsKaoj3AaLyRxCweuPiE8LAaqvr%2B88QXVidHn1A9Jq2Tl5sPVgF71lyJWjdANA3o2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77303addde22b517-OSL
content-encoding: br
X-Firefox-Spdy: h2

log.cookieyes.com/api/v1/log

34.247.143.101

200 OK

2 B

URL HTTP/2
log.cookieyes.com/api/v1/log
IP
34.247.143.101:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /api/v1/log HTTP/1.1
Host: log.cookieyes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------315894526342174608632239206782
Content-Length: 651
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:40 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1325)
Size
20 kB (20039 bytes)
Hash
47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 02 Dec 2022 00:41:08 GMT
expires: Fri, 02 Dec 2022 02:41:08 GMT
cache-control: public, max-age=7200
age: 2252
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=1669413364

138.199.40.58

200 OK

3.5 kB

URL HTTP/2
cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=1669413364
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type
ASCII text, with very long lines (6309)
Size
3.5 kB (3458 bytes)
Hash
e5531553d87ae6588a84f023fcb47e8e
d450599c5ab26ab961ebdb50df40277a050636a6
8248c90107c76cd25161f9a6aa040dbb881ae3d0d60aaed3f6606249d3fd89d1

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=1669413364 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 20:28:22 GMT
last-modified: Fri, 04 Nov 2022 19:21:57 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 20:28:22
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 49b04193016c1e95a2a45cbaadf4af80
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/uploads/2016/02/v3-favicon.png

138.199.40.58

200 OK

5.2 kB

URL HTTP/2
cdn.v3media.ca/wp-content/uploads/2016/02/v3-favicon.png
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type
PNG image data, 512 x 512, 8-bit colormap, non-interlaced\012- data
Size
5.2 kB (5213 bytes)
Hash
c8b275628bad12f96080e7f89689c8b5
547315bf2c7c4fcb6c5ed9195186769eb21fc425
c80250a20044b7f82cf7169bbf9d1f88d6944df40f5062a92a20302f7e5a9605

HTTP Headers

GET /wp-content/uploads/2016/02/v3-favicon.png HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:40 GMT
content-type: image/png
content-length: 5213
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
cache-control: public, max-age=10368000
expires: Sun, 05 Mar 2023 12:32:30 GMT
last-modified: Tue, 12 May 2020 16:10:28 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/05/2022 12:32:30
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 86e9e5306c390d3ce398c04f80ca8083
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/uploads/2022/04/V3-Design-white.svg

138.199.40.58

200 OK

43 kB

URL HTTP/2
cdn.v3media.ca/wp-content/uploads/2022/04/V3-Design-white.svg
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (8786)
Size
43 kB (43270 bytes)
Hash
f56cdbef5f6e2c1bd831b2d0ec223ecd
2b00735cf7433fec7024200fac81e3cc5a703c2d
5ec0a92be0912d261d741e50db5b35f8035eb425439c37bf3d3df7afe54e0864

HTTP Headers

GET /wp-content/uploads/2022/04/V3-Design-white.svg HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:40 GMT
content-type: image/svg+xml
vary: Accept-Encoding
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
cache-control: public, max-age=10368000
expires: Sat, 04 Mar 2023 21:09:15 GMT
last-modified: Wed, 11 May 2022 21:49:56 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 21:09:15
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 04c646ec80da2ff3442f7021a7a54c25
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-includes/js/comment-reply.min.js?ver=6.1.1

138.199.40.58

200 OK

1.5 kB

URL HTTP/2
cdn.v3media.ca/wp-includes/js/comment-reply.min.js?ver=6.1.1
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type
ASCII text, with very long lines (2946)
Size
1.5 kB (1510 bytes)
Hash
fa12d4fb584ea8cbc303a87a92256dc1
f5db20e61d3edcda8343a3ec214436264ed6145f
412954036648eb3c2e6628db54d62df8d94c5a8915f5d4756472209b05acbd25

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 22:43:24 GMT
last-modified: Tue, 31 May 2022 20:04:18 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 22:43:24
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 34cc058d63a9371bf1b661a6eebf0744
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
8a48642d82eee3c432a3f38879f9541b
f53e46a8406bbad51319826db59b6c265622241f
33a0510300258746dda57d56cf6fec74147cd138f7bae2c609d0976841fc3adc

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6597
Cache-Control: max-age=87266
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 01:18:40 GMT
Etag: "6387ea8d-1d7"
Expires: Sat, 03 Dec 2022 01:33:06 GMT
Last-Modified: Wed, 30 Nov 2022 23:43:09 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

log.cookieyes.com/api/v1/log

34.247.143.101

200 OK

2 B

URL HTTP/2
log.cookieyes.com/api/v1/log
IP
34.247.143.101:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
2 B (2 bytes)
Hash
e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3

HTTP Headers

POST /api/v1/log HTTP/1.1
Host: log.cookieyes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------186324696530079760903370395939
Content-Length: 659
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:40 GMT
content-type: text/plain; charset=utf-8
content-length: 2
x-powered-by: Express
access-control-allow-origin: *
etag: W/"2-nOO9QiTIwXgNtWtBJezz8kv3SLc"
X-Firefox-Spdy: h2

v3media.ca/wp-content/plugins/official-facebook-pixel/js/openbridge_plugin.js

71.19.254.121

200 OK

58 kB

URL HTTP/1.1
v3media.ca/wp-content/plugins/official-facebook-pixel/js/openbridge_plugin.js
IP
71.19.254.121:0
ASN
#11831 ESECUREDATA

File type
ASCII text, with very long lines (65536), with no line terminators
Size
58 kB (57685 bytes)
Hash
1d9da36041fd39491ae7a853a5f03f61
bcc90acf8119943333f9bb5d8b33095285d573f2
9fdee69b3f0a3ae55f4f484b4a0e8f7b821d90e8578570041a6ac9bab0872480

HTTP Headers

GET /wp-content/plugins/official-facebook-pixel/js/openbridge_plugin.js HTTP/1.1
Host: v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Cookie: cookieyes-consent=consentid:T1hBc0x0VWtPenNrVVRjeVptZTJFYUNvdUlieU5EZDU,consent:,action:,necessary:,functional:,analytics:,performance:,advertisement:,other:; _ga=GA1.2.1967890987.1669943919; _gid=GA1.2.1731615252.1669943919; _gat=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 01:18:40 GMT
Server: Apache
Vary: Accept-Encoding,User-Agent
Last-Modified: Fri, 04 Nov 2022 19:05:43 GMT
Accept-Ranges: bytes
Cache-Control: max-age=31536000, public
Expires: Sat, 02 Dec 2023 01:18:40 GMT
Content-Encoding: gzip
Content-Length: 57685
Keep-Alive: timeout=5, max=119
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8

cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=1669413364

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=1669413364
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=1669413364 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 20:28:06 GMT
last-modified: Fri, 04 Nov 2022 19:21:57 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 20:28:06
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 17d1ed61b3af8dc4ba8c8c08c2a63b8d
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 22:43:24 GMT
last-modified: Thu, 03 Nov 2022 20:19:45 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 22:43:24
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 93f7350a459932efbcae8709795d752d
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn-cookieyes.com/client_data/8b64c9e0b2e796da1eda3c36/RTaHndAD.json

104.26.0.70

200 OK

0 B

URL HTTP/2
cdn-cookieyes.com/client_data/8b64c9e0b2e796da1eda3c36/RTaHndAD.json
IP
104.26.0.70:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /client_data/8b64c9e0b2e796da1eda3c36/RTaHndAD.json HTTP/1.1
Host: cdn-cookieyes.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://v3media.ca/
Origin: https://v3media.ca
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:40 GMT
content-type: application/json
vary: Accept-Encoding
last-modified: Wed, 19 Oct 2022 14:24:23 GMT
etag: W/"2b-5eb63f720d0bc"
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
cache-control: max-age=0, must-revalidate, s-maxage=604800, proxy-revalidate
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VjZEAIylF0UdKlbJcOuU6KdTl3VLpYEkiX0TVukPbtvs%2BovueqqkTXr8Ugvihyxrb%2FFVETNj2ZjHiAntc7t9HkH8vVPjAmA58LgZhT3G3yJ%2B%2B%2F7YoeicJgWEAh2PSaccSBKF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77303ae00922b518-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/plugins/pojo-accessibility/assets/js/app.min.js?ver=1.0.0

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/plugins/pojo-accessibility/assets/js/app.min.js?ver=1.0.0
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/pojo-accessibility/assets/js/app.min.js?ver=1.0.0 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 22:43:24 GMT
last-modified: Wed, 11 May 2022 19:34:07 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 22:43:24
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 852cd476c7c5d1b048717d1993c9a1e3
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/cache/min/1/wp-content/uploads/wtfdivi/wp_footer.js?ver=1669413364

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/cache/min/1/wp-content/uploads/wtfdivi/wp_footer.js?ver=1669413364
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/min/1/wp-content/uploads/wtfdivi/wp_footer.js?ver=1669413364 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Tue, 07 Nov 2023 16:39:36 GMT
last-modified: Fri, 04 Nov 2022 19:21:57 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/07/2022 16:39:36
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: e0b6e35eb8ac82d704ebec2179ab84b2
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/uploads/2022/11/v3-custom-web-designs_darkbg.svg

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/uploads/2022/11/v3-custom-web-designs_darkbg.svg
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/2022/11/v3-custom-web-designs_darkbg.svg HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:40 GMT
content-type: image/svg+xml
vary: Accept-Encoding
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
cache-control: public, max-age=10368000
expires: Fri, 10 Mar 2023 22:47:01 GMT
last-modified: Thu, 10 Nov 2022 19:11:21 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/10/2022 22:47:02
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 40ede1e1fdec7475287eb4df72903fb8
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=1669413364

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=1669413364
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=1669413364 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 20:29:02 GMT
last-modified: Fri, 04 Nov 2022 19:21:57 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 20:29:02
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 8ea04f3b128cd736bf4e79874e4903ff
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/core/admin/js/common.js?ver=1669413364

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/core/admin/js/common.js?ver=1669413364
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/Divi/core/admin/js/common.js?ver=1669413364 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 20:28:55 GMT
last-modified: Fri, 04 Nov 2022 19:21:57 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 20:28:55
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: feb26160f8053348494f2dcfa2799650
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/magnific-popup.js?ver=1669413364

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/magnific-popup.js?ver=1669413364
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/magnific-popup.js?ver=1669413364 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 20:29:19 GMT
last-modified: Fri, 04 Nov 2022 19:21:57 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 20:29:19
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 53b103dab916491e89aae82f0559de0f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/sticky-elements.js?ver=1669413364

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/sticky-elements.js?ver=1669413364
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/sticky-elements.js?ver=1669413364 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 20:28:55 GMT
last-modified: Fri, 04 Nov 2022 19:21:57 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 20:28:55
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: d0a6b947b0c60f309367d1ac20c4ae79
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/themes/Divi/js/scripts.min.js?ver=4.19.2

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/themes/Divi/js/scripts.min.js?ver=4.19.2
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.19.2 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 20:28:39 GMT
last-modified: Fri, 04 Nov 2022 19:04:38 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 20:28:40
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 841d48353f90f978333f5113c35cd4fc
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=1669413364

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=1669413364
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.mobile.js?ver=1669413364 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 20:28:11 GMT
last-modified: Fri, 04 Nov 2022 19:21:57 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 20:28:11
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 93385e00df228150f21dd24ecd732323
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/plugins/image-carousel-divi/scripts/frontend-bundle.min.js?ver=1.0

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/plugins/image-carousel-divi/scripts/frontend-bundle.min.js?ver=1.0
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/image-carousel-divi/scripts/frontend-bundle.min.js?ver=1.0 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 22:43:24 GMT
last-modified: Wed, 11 May 2022 19:34:07 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 22:43:24
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 290ee58ea41c2022bd4708c9e35f4e14
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/motion-effects.js?ver=1669413364

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/motion-effects.js?ver=1669413364
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/min/1/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/motion-effects.js?ver=1669413364 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 20:28:47 GMT
last-modified: Fri, 04 Nov 2022 19:21:57 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 20:28:47
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 2a30235dac65834e3f5bcf6a21a78798
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 22:43:24 GMT
last-modified: Tue, 09 Feb 2021 19:37:32 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 22:43:24
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 3dddb795106fdf4799c030b97ec8dda7
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/cache/min/1/client_data/8b64c9e0b2e796da1eda3c36/script.js?ver=1669413364

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/cache/min/1/client_data/8b64c9e0b2e796da1eda3c36/script.js?ver=1669413364
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/cache/min/1/client_data/8b64c9e0b2e796da1eda3c36/script.js?ver=1669413364 HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 20:28:33 GMT
last-modified: Fri, 04 Nov 2022 19:21:57 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 20:28:33
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: 711e4e74c6f919b806a09f334fb84038
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/wp-rocket/assets/js/lazyload/17.5/lazyload.min.js HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: application/javascript; charset=utf-8
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=31536000
expires: Sat, 04 Nov 2023 22:43:24 GMT
last-modified: Fri, 04 Nov 2022 19:05:54 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 22:43:24
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: cbea092527e334d83cf86533098aa1da
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

cdn.v3media.ca/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf

138.199.40.58

200 OK

0 B

URL HTTP/2
cdn.v3media.ca/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf
IP
138.199.40.58:0
ASN
#60068 Datacamp Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.ttf HTTP/1.1
Host: cdn.v3media.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://v3media.ca
Connection: keep-alive
Referer: https://v3media.ca/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Fri, 02 Dec 2022 01:18:39 GMT
content-type: font/ttf
vary: Accept-Encoding
server: BunnyCDN-NY1-885
cdn-pullzone: 519144
cdn-uid: 2a0919cf-8256-4900-85d3-77933ff369bd
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=10368000
expires: Sat, 04 Mar 2023 22:43:25 GMT
last-modified: Fri, 04 Nov 2022 19:04:39 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 11/04/2022 22:43:25
cdn-edgestorageid: 885
cdn-status: 200
cdn-requestid: b827fa3e262c1b8b217e53e6343941e9
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (42)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations