vk.sv/7r90qE
104.21.29.24301 Moved Permanently 0 B IP 104.21.29.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /7r90qE HTTP/1.1
Host: vk.sv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Wed, 02 Nov 2022 13:44:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Wed, 02 Nov 2022 14:44:44 GMT
Location: https://vk.sv/7r90qE
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BtB9SUowuX4N4NIiJum%2BEqlVPVUZe41jhWaMXd93fKnegsj9KI6s6QQqmZkYqngK0imKQgRUx9NyOckYQ7wmeFp8P%2BVXNgr0oVYLOgaXqoOLJXI9h8kYOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 763d4e7fbfeab521-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 33c3dea45eaabae3557235f002dda989
38a1903e09bff723af30fe5080f79646247b9254
b00022c599d7a74bd264b90a1ca9f935eb8a7bc6e63a9751dddc8acfbafe58da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B00022C599D7A74BD264B90A1CA9F935EB8A7BC6E63A9751DDDC8ACFBAFE58DA"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5792
Expires: Wed, 02 Nov 2022 15:21:16 GMT
Date: Wed, 02 Nov 2022 13:44:44 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f57d2cc1ab8bbee50dff2b2be18b9db
2c8acd2018995b9bbed8f4dbfa33c8044b293080
a25e2337dad42018caefae70e0e596a4006aa9c1fe6af7f29c93a21fda1554b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3182
Cache-Control: max-age=160763
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:44 GMT
Etag: "636238d9-1d7"
Expires: Fri, 04 Nov 2022 10:24:07 GMT
Last-Modified: Wed, 02 Nov 2022 09:31:05 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5f57d2cc1ab8bbee50dff2b2be18b9db
2c8acd2018995b9bbed8f4dbfa33c8044b293080
a25e2337dad42018caefae70e0e596a4006aa9c1fe6af7f29c93a21fda1554b9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3183
Cache-Control: max-age=160763
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:45 GMT
Etag: "636238d9-1d7"
Expires: Fri, 04 Nov 2022 10:24:08 GMT
Last-Modified: Wed, 02 Nov 2022 09:31:05 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 44ee7bbc64b0396b20a28944ea4ec4d2
dbb18d4238fa3a980e5c254ff25d3b39590b0159
2cc72ff87dcdabcb0a67d8dda7a7c440f8650ffe77f71602954a3076762be50a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2CC72FF87DCDABCB0A67D8DDA7A7C440F8650FFE77F71602954A3076762BE50A"
Last-Modified: Tue, 01 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3440
Expires: Wed, 02 Nov 2022 14:42:05 GMT
Date: Wed, 02 Nov 2022 13:44:45 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 3zKSWLvCPoCaIbeCqzs23cVXklDLzXGqO4VLkIq0gTbadSLZQkp0kgwKji0R35L0PBhCwx55BM8=
x-amz-request-id: BNS56H3EZQD4H95T
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 02 Nov 2022 12:45:52 GMT
age: 3533
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:45 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash fd70e0717bf027215eb39813200cf74c
918e4461fb561ef3a9c3fa48a2f77693e63f35fd
1961c0dda4e07212369c380d5b4908a46cb880a6f6cb767954f0678583447c25
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=135236
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:45 GMT
Etag: "6361e191-117"
Expires: Fri, 04 Nov 2022 03:18:41 GMT
Last-Modified: Wed, 02 Nov 2022 03:18:41 GMT
Server: nginx
Content-Length: 279
vk.sv/7r90qE
172.67.171.70302 Found 0 B IP 172.67.171.70:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /7r90qE HTTP/1.1
Host: vk.sv
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
date: Wed, 02 Nov 2022 13:44:45 GMT
content-length: 0
location: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RNbVzaQqpHlkAK0CT%2FeZ%2FunMN%2BxnAk0g66RGGtQHHgTxa9BP7gWZbRqV7b9hQd4aURsjUEMXzV%2F%2FfJzUYWrOxoIPQAgorL9MDCLsDmfqmU7TiG0rS3Jizg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 763d4e82dd710b39-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash fd70e0717bf027215eb39813200cf74c
918e4461fb561ef3a9c3fa48a2f77693e63f35fd
1961c0dda4e07212369c380d5b4908a46cb880a6f6cb767954f0678583447c25
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: max-age=135236
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:45 GMT
Etag: "6361e191-117"
Expires: Fri, 04 Nov 2022 03:18:41 GMT
Last-Modified: Wed, 02 Nov 2022 03:18:41 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd65439b27a0101cd831309f178fbb45
4daa9343dda0f37ba734e2b5500caf2728cf89db
37e6d155f598b5154e3ce96105c39798716b5d35e12a98b9aec172c160de5f6a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3591
Cache-Control: max-age=156114
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:45 GMT
Etag: "63622518-1d7"
Expires: Fri, 04 Nov 2022 09:06:39 GMT
Last-Modified: Wed, 02 Nov 2022 08:06:48 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b4a4099bd3878477cfdabe15c48120af
1f168805573ef85764be80f966c7d3b2b052c26c
4db04706f9bad7cbe4ad5a7eccbbd04a565ad96ebe245693a8332cd8eb0f53e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4DB04706F9BAD7CBE4AD5A7ECCBBD04A565AD96EBE245693A8332CD8EB0F53E7"
Last-Modified: Tue, 01 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 02 Nov 2022 19:44:45 GMT
Date: Wed, 02 Nov 2022 13:44:45 GMT
Connection: keep-alive
push.services.mozilla.com/
52.38.146.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.146.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: u7Sn6Kh3++xbxG1J1ka76w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: TxtltltO5zA0LyCPbG7r/fd4bWM=
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash abae2de07c673b4a8f7eb0b8b0e182e5
e17d882cd933b135c27b4d7619d227a5728e00ec
0f5d11356a96362cc0622658e85af39bb3e5b98a4707d4915d23210209138738
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=DC-9852050&l=dataLayer&cx=c
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=DC-9852050&l=dataLayer&cx=c
IP 142.250.74.168:0
File type ASCII text, with very long lines (1343)
Hash b63a58795d4b3321fd0609aaef8493c7
a3f33dd14838e8ad788ec3abca195e0daa76525f
eeeffad017a8f31192cbc7837790c97356549daaf263bd0b8094f7c571ee0044
GET /gtag/js?id=DC-9852050&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 02 Nov 2022 13:44:46 GMT
expires: Wed, 02 Nov 2022 13:44:46 GMT
cache-control: private, max-age=900
last-modified: Wed, 02 Nov 2022 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44095
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 8fcb8c8bfc18b00470f0bc43683c9709
a322f84088d14cb7de1e104171fc998a591291b6
4084b5ccaf95ff4f5da421cb5b101d20f4f2f87959698a5d1cc19d4e2afe7016
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/satelliteLib-f2fc6f00da802a0747b6ffed3c12e3931bfca496.js
109.206.243.195404 Not Found 842 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/satelliteLib-f2fc6f00da802a0747b6ffed3c12e3931bfca496.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 8a283108cdba217b30982fd0970a1c78
def455c001f847e0f5517445505482d2fc2d6486
a8df21fa1efbd392e3137a6990981ad6a75058fa222b364641ce1609d1a5496f
GET /th3vb/index_files/satelliteLib-f2fc6f00da802a0747b6ffed3c12e3931bfca496.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/remove_screen_capture.png
109.206.243.195200 OK 857 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/remove_screen_capture.png
IP 109.206.243.195:0
File type PNG image data, 128 x 128, 8-bit gray+alpha, non-interlaced\012- data
Hash e4387ea5cc65d51d08a60765f46cbbcb
f8314def36b28e99c28cda0f4369e4786bf18ca4
37f7e4cae3c3a409193078169c5731a142552e04ca3bbb19c85e87432ce58afb
GET /th3vb/index_files/remove_screen_capture.png HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: image/png
content-length: 857
x-accel-version: 0.01
last-modified: Thu, 08 Apr 2021 11:06:16 GMT
etag: "359-5bf7409423a00"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/search_autocomplete.js
109.206.243.195404 Not Found 841 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/search_autocomplete.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0d5c82842ceba67d6c06e1cec8795596
268a95be117916fc06c8bc8c3910f9da564a4d16
85844b7924d5c8fb924c3aca13912db8bd9b5997146eea33a793622451368905
GET /th3vb/index_files/search_autocomplete.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/search.svg
109.206.243.195200 OK 320 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/search.svg
IP 109.206.243.195:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (320), with no line terminators
Hash 251094ec25cfdd8a820ffd758d2a281a
fa37e27aae09872b1b719eeec3313b09e711453e
3228f4cd6fd28ef733c3d98079f3478b1c4cb3338dcd7b95658ba731b817e113
GET /th3vb/index_files/search.svg HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: image/svg+xml
content-length: 320
x-accel-version: 0.01
last-modified: Thu, 08 Apr 2021 11:06:14 GMT
etag: "140-5bf740923b580"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/img/CVV_icon.png
109.206.243.195200 OK 4.6 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/img/CVV_icon.png
IP 109.206.243.195:0
File type PNG image data, 125 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 6c1a7798f28815cbb8c4c8918e36080a
c475698985de9dbd65b56f389dce8eac58b4b000
107c0d3bba74e80c13517241c8c0dc093459f0c56a7f998eb53feaa0aa811200
GET /th3vb/img/CVV_icon.png HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: image/png
content-length: 4637
last-modified: Sat, 10 Apr 2021 11:49:54 GMT
etag: "607190e2-121d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/gov-canada-logo.svg
109.206.243.195200 OK 14 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/gov-canada-logo.svg
IP 109.206.243.195:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2441)
Hash 629fbca11397080efcc19aae5dc90f80
fa32a7429c248ae0156705a960509f8a14b46a1a
6a50626ef34e5da6014662089f0775c6187d23e5c22379da71203848eac50ee3
GET /th3vb/index_files/gov-canada-logo.svg HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: image/svg+xml
content-length: 14259
last-modified: Thu, 08 Apr 2021 11:06:14 GMT
etag: "606ee3a6-37b3"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/cpc-main-logo.svg
109.206.243.195200 OK 12 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/cpc-main-logo.svg
IP 109.206.243.195:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (730)
Hash 54d184ae43730a823c8e6c896a882d78
95e39617a22a4e9e70443159830fb56170853ac1
e467e89a41e68909313eef448847f3446650158fb5d046295fea70fd7d776b87
GET /th3vb/index_files/cpc-main-logo.svg HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: image/svg+xml
content-length: 12343
last-modified: Thu, 08 Apr 2021 11:06:14 GMT
etag: "606ee3a6-3037"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/img/VISA.png
109.206.243.195200 OK 2.6 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/img/VISA.png
IP 109.206.243.195:0
File type PNG image data, 76 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 725caa991a29101f5da78da2fc1e1e63
cf4f10dfd71289c43273496120b79ef01a437d19
ef844111dee838dc5c8d388a96108379b2c97ced776fc95b2fa32b28f7ef6bde
GET /th3vb/img/VISA.png HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: image/png
content-length: 2600
last-modified: Sat, 10 Apr 2021 11:41:34 GMT
etag: "60718eee-a28"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/cpc-logo.svg
109.206.243.195200 OK 938 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/cpc-logo.svg
IP 109.206.243.195:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 0d6b41ceb6991cee0ca3ef95f2f635a6
71cd27d488d3e7df18ac6deff872282187fbe61d
d1f9fbf33db045a86af8a16f01659de9e5fbcce3199edb10a3ac4dc76155c4f9
GET /th3vb/index_files/cpc-logo.svg HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: image/svg+xml
content-length: 938
x-accel-version: 0.01
last-modified: Thu, 08 Apr 2021 11:06:14 GMT
etag: "3aa-5bf740923b580"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/img/MasterCard.png
109.206.243.195200 OK 2.1 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/img/MasterCard.png
IP 109.206.243.195:0
File type PNG image data, 76 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash b2702b4b6944f05e00e7a9065c9d071b
a40d684e4e7e4cb085c37bd942874a3d60f719b5
8c4f22dc313ee84b9c84d4295b3593584159ab23c8a1f095b366aff8ca05f196
GET /th3vb/img/MasterCard.png HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: image/png
content-length: 2077
last-modified: Sat, 10 Apr 2021 11:41:40 GMT
etag: "60718ef4-81d"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/img/AmEx.png
109.206.243.195200 OK 1.3 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/img/AmEx.png
IP 109.206.243.195:0
File type PNG image data, 76 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 801b445314b9ff68a391c117d99619ed
7fa0bdd998a1edae990a6797cc023a304f05088d
be9293395bb536020f4052e431a51639c3c9256ddb3e16f2820f0ad90d43fb9e
GET /th3vb/img/AmEx.png HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: image/png
content-length: 1261
last-modified: Sat, 10 Apr 2021 11:41:46 GMT
etag: "60718efa-4ed"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/saved_resource
109.206.243.195200 OK 62 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/saved_resource
IP 109.206.243.195:0
File type ASCII text, with very long lines (61038)
Hash c113dd0d5e80ed67d5a62a54b7cf86dd
064306dcf59a114df2265e2caf298a113ffc86db
03fc69968cf2c297f3006f23bd13c7c3344af5a73a64ea16b37a21512b962a6b
GET /th3vb/index_files/saved_resource HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: application/octet-stream
content-length: 61477
last-modified: Thu, 08 Apr 2021 11:06:14 GMT
etag: "606ee3a6-f025"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/saved_resource(1)
109.206.243.195200 OK 62 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/saved_resource(1)
IP 109.206.243.195:0
File type ASCII text, with very long lines (61038)
Hash c113dd0d5e80ed67d5a62a54b7cf86dd
064306dcf59a114df2265e2caf298a113ffc86db
03fc69968cf2c297f3006f23bd13c7c3344af5a73a64ea16b37a21512b962a6b
GET /th3vb/index_files/saved_resource(1) HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: application/octet-stream
content-length: 61477
last-modified: Thu, 08 Apr 2021 11:06:14 GMT
etag: "606ee3a6-f025"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/building_preview.gif
109.206.243.195200 OK 12 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/building_preview.gif
IP 109.206.243.195:0
File type GIF image data, version 89a, 113 x 108\012- data
Hash 3c3ba37130de5fe15faf97c18908283e
c15b49cb09745a9939315132e18f2e40fa2ccf22
9096646da2177d5db92f79352509450582a376913bb5387557c1efd28d0c377b
GET /th3vb/index_files/building_preview.gif HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: image/gif
content-length: 12336
last-modified: Thu, 08 Apr 2021 11:06:16 GMT
etag: "606ee3a8-3030"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jCarousel.min.js
109.206.243.195404 Not Found 873 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jCarousel.min.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 68ca392868772911f36e3b145916d93f
757568d7c5b9bb480cb711e30db47e842a208914
6691e4a828df6de18166d30aec7ced66324587705f58305975bdaa6b00cd8f1c
GET /th3vb/index_files/jCarousel.min.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/f(1).txt
109.206.243.195200 OK 1.5 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/f(1).txt
IP 109.206.243.195:0
File type ASCII text, with very long lines (2584), with no line terminators
Hash 8a33197ae67a04ec0e8c4af2f250704a
940eb4f7da7fd334f5395b3b15bb086a7abc9654
42eb8bf119a67bf0a414e83ac18f627b2f7701351c522f0059d440316d66835f
GET /th3vb/index_files/f(1).txt HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/plain
last-modified: Thu, 08 Apr 2021 11:06:12 GMT
etag: W/"606ee3a4-a18"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/google-dfp.js
109.206.243.195404 Not Found 873 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/google-dfp.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 68ca392868772911f36e3b145916d93f
757568d7c5b9bb480cb711e30db47e842a208914
6691e4a828df6de18166d30aec7ced66324587705f58305975bdaa6b00cd8f1c
GET /th3vb/index_files/google-dfp.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/app.js
109.206.243.195404 Not Found 873 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/app.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 68ca392868772911f36e3b145916d93f
757568d7c5b9bb480cb711e30db47e842a208914
6691e4a828df6de18166d30aec7ced66324587705f58305975bdaa6b00cd8f1c
GET /th3vb/index_files/app.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2e6d78844aa60ad0bd62fc70779a63e8
80dbe6518bd99eb7cab1ba0ff9b5c53d0cc85949
ac1ee1c30bee586a5edd9605a514548e1e91e6ef39c55cc866cf026b8ed3df82
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48bbdd9c-6fd8-4186-9826-5b75daa3f949.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10496
x-amzn-requestid: 4b3864a5-5e0b-42f3-83b3-c997f66eeb55
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OG_H3oIAMFalA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619092-6e450a0c6393d47f4d72ce35;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:33:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V8KvfFEQSkb7CkT0DUL3D6JtMUkhRJaKIuHhPnbDLCOIINyEt-1a-A==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:12:59 GMT
age: 55908
etag: "80dbe6518bd99eb7cab1ba0ff9b5c53d0cc85949"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cd26640-fa64-4fc1-b8c0-5ef6aaa8b2db.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cd26640-fa64-4fc1-b8c0-5ef6aaa8b2db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13ef41807ff6c1430d0f53674274e1e5
9af1c9bf800c46497754c2e35e04cbd8b277d9bc
63996c5ea515898cc3c31c738f10a90e693b3c4d980229f5cbb25836f71c94fc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3cd26640-fa64-4fc1-b8c0-5ef6aaa8b2db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5514
x-amzn-requestid: 08c00121-f4c5-41a3-aeb1-caa62028c091
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OeJFeHIAMFVlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619127-7069ac091b65263c5e5998a4;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:35:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: mSY46sahMUeL1eeiIXsLWK2UHxJqbxrieVDCZ4nYt-uH4EsDHrROXg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 22:05:21 GMT
age: 56366
etag: "9af1c9bf800c46497754c2e35e04cbd8b277d9bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d889392defc575d85e26321730c2722
28177e0094cb108a96751ba23830134e1d4b8e15
758b77490f2f67d8d4297e0060b0a310be6f03dcda4808969147e1610879e836
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec2e029c-fc0b-49fc-86fd-a0353e4bf400.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12840
x-amzn-requestid: c6424625-a000-41be-8043-4ac408d25086
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a8OHAG5QIAMFodA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63619093-2d8d7616088723ab392f74ff;Sampled=0
x-amzn-remapped-date: Tue, 01 Nov 2022 21:33:07 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _nhbB7wn_tje5pEJa66ub53DJMk6pvkjSfpKsruWEuzYPDoUlm_icg==
via: 1.1 583992e175976bd59a21b4416890271e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 01 Nov 2022 21:51:55 GMT
age: 57172
etag: "28177e0094cb108a96751ba23830134e1d4b8e15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bd006407a4ea0fbeec2f1351a71f30bc
d1625420cdc79643e759247b0e9ac89dadfbe956
fd461665ee463fad26300630684a11e3c520485e3b001c2f08439d50589ddbb7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4f483454-b074-4576-b487-76a14ccb2059.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10527
x-amzn-requestid: 1b709c25-8424-49d8-bc0e-dac3fbc154ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: apNEzH5ZoAMFWdA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6359f551-3fb0703f27b571cf7f85e59e;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 03:04:49 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9A2gds6rdrlTJCrN3m05Yl3azoOYGCEaCd2OBH8qq21wHR8WgqI3CA==
via: 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Wed, 02 Nov 2022 00:45:08 GMT
age: 46779
etag: "d1625420cdc79643e759247b0e9ac89dadfbe956"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/CoreModule.js
109.206.243.195404 Not Found 14 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/CoreModule.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a2d1e378edf7784f9c65108183840730
396594dd639f7df8df6b93f15769e8289a0cff22
8a10ca174231a1046a7de14106643fc2a85173e5491d32c7b5c6d3b239ae8683
GET /th3vb/index_files/CoreModule.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/txt-crypt.js
109.206.243.195404 Not Found 7.8 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/txt-crypt.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a8f07d9a7c542058b5bd164c14883e5a
e8b458599d9047a858b6ab9edfe873426e3b769b
fda8e4437ddc1dfea3954b5468944636b4704a8dea5a08df0f027a58b8734355
GET /th3vb/lib/js/txt-crypt.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7b4037f614b6784bb6b750dd410c6e43
20a140462d827888c8e7922861f641e7a66551bf
5a1b87f9143203a881ac4482cb6d6a013468a99c575f5268ad2122ae8a2bd455
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery.smartbanner.js
109.206.243.195404 Not Found 1.2 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery.smartbanner.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c6dd876ef57058b1b11163ab6e58855c
2196a377d6e9eb80bdddea0f88aa386598f4da6f
6a5c120ef33029c2a41a737eabcdf9b4acceae9922c5eafa197810b5c4ee4c01
GET /th3vb/index_files/jquery.smartbanner.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/cpo.js
109.206.243.195404 Not Found 16 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/cpo.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2f6e4fcf3f8b811c452b594e7eeb9126
a037ab75c608da25327b3bce1b90e5cc46a290dc
d716889d7dbf77bd3a6fbb60db68059459f8c084372df61202fbd60d586c0d85
GET /th3vb/index_files/cpo.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://determined-antonelli.109-206-243-195.plesk.page
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 19:34:21 GMT
expires: Thu, 26 Oct 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 583826
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://determined-antonelli.109-206-243-195.plesk.page
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 19:34:08 GMT
expires: Thu, 26 Oct 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 583839
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/pubads_impl_2021040101.js
109.206.243.195404 Not Found 842 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/pubads_impl_2021040101.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 44bd7a1ff11d42d7b95dac13323a6585
c49315a3da828f781a469e68b8fbfdea74feabaf
aa401a78b490f3fa939a506a8808dcfa8bc6470ea7382edcf640d4e6fa13c7f1
GET /th3vb/index_files/pubads_impl_2021040101.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery.smartbanner.js
109.206.243.195404 Not Found 1.1 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery.smartbanner.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 497a98939d05d114e592fb08110b663c
d4b876b0f2e16a5b684c199bdd70b774284d7f93
5cf80c6750b6f47c2f2a1cd113420e1cac177a67c4110155f0b925a448c6509a
GET /th3vb/index_files/jquery.smartbanner.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/14.8f875927fce05bedfe11.chunk.js
109.206.243.195404 Not Found 740 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/14.8f875927fce05bedfe11.chunk.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ad27cc19248902d9cbbfa093aece90c9
4b5d66e5bd288cf968d5f09eced1dcb6f6890815
00fdf9b24f96c5de05b0deac9276984597ed03af15273386a777e85c934c0377
GET /th3vb/index_files/14.8f875927fce05bedfe11.chunk.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/f(2).txt
109.206.243.195200 OK 1.4 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/f(2).txt
IP 109.206.243.195:0
File type ASCII text, with very long lines (2858), with no line terminators
Hash 8f2923fe3a90aeccb0fde3fc87c9a8cd
796900442969eaf13bc41a08f6337eba267c4c0a
c2546a2741311ea3fecb56b2887cd6607eff50745791425dc778d78d82607ab3
GET /th3vb/index_files/f(2).txt HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/plain
last-modified: Thu, 08 Apr 2021 11:06:12 GMT
etag: W/"606ee3a4-b2a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/14.8f875927fce05bedfe11.chunk.js
109.206.243.195404 Not Found 370 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/14.8f875927fce05bedfe11.chunk.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5710ebe5474c1caf7df70c82051e4d4f
d0eafde5f6d43bd42aa20c17ac660710f2e4a524
ccf1580400f4ef832fa3887447ed29d77d37977efdfb8128591622e5bd3b74ba
GET /th3vb/index_files/14.8f875927fce05bedfe11.chunk.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/14.8f875927fce05bedfe11.chunk.js
109.206.243.195404 Not Found 370 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/14.8f875927fce05bedfe11.chunk.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5710ebe5474c1caf7df70c82051e4d4f
d0eafde5f6d43bd42aa20c17ac660710f2e4a524
ccf1580400f4ef832fa3887447ed29d77d37977efdfb8128591622e5bd3b74ba
GET /th3vb/index_files/14.8f875927fce05bedfe11.chunk.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
www.canadapost.ca/cpc/assets/cpc/img/icons/toolbar-cg/feedback.svg
23.61.214.200301 Moved Permanently 0 B URL HTTP/1.1 www.canadapost.ca/cpc/assets/cpc/img/icons/toolbar-cg/feedback.svg
IP 23.61.214.200:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cpc/assets/cpc/img/icons/toolbar-cg/feedback.svg HTTP/1.1
Host: www.canadapost.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 301 Moved Permanently
Server: AkamaiGHost
Content-Length: 0
Location: https://www.canadapost-postescanada.ca/cpc/assets/cpc/img/icons/toolbar-cg/feedback.svg
Date: Wed, 02 Nov 2022 13:44:47 GMT
Connection: keep-alive
strict-transport-security: max-age=31536000; includeSubdomains; preload
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jsf.js
109.206.243.195404 Not Found 841 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jsf.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1ab538c21015fc0a399b1fb89b05e4e7
e064d5d9f055ea5c29d4e1510b175d8f1de1a85e
a989589e4f23f6495001effa758341c55d65d4939c50903642651cc83a1f4477
GET /th3vb/index_files/jsf.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
www.canadapost-postescanada.ca/cpc/assets/cpc/img/icons/toolbar-cg/feedback.svg
23.61.214.200200 OK 382 B URL HTTP/1.1 www.canadapost-postescanada.ca/cpc/assets/cpc/img/icons/toolbar-cg/feedback.svg
IP 23.61.214.200:0
File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (724), with no line terminators
Hash b86b3f712d7d1224f22ce80ab788d8bc
1015427d965943c5acfda2a2b96174c96a30e715
827930f77d0aee840f92563e8da302b30e9f0b196f923edd0f6305faf4ae7df0
GET /cpc/assets/cpc/img/icons/toolbar-cg/feedback.svg HTTP/1.1
Host: www.canadapost-postescanada.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/svg+xml
ETag: "5a78a638-2d4"
Last-Modified: Mon, 05 Feb 2018 18:45:12 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
content-security-policy-report-only: object-src 'none'; connect-src 'self' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.cpggpc.ca https://www.google-analytics.com https://siteintercept.qualtrics.com https://www.facebook.com https://sslstats.canadapost.ca https://*.wistia.com https://dpm.demdex.net https://csi.gstatic.com https://adservice.google.com https://*.googlesyndication.com https://*.g.doubleclick.net https://maps.googleapis.com https://vmss.boldchat.com https://www.linkedin.com https://canadapost.tt.omtrdc.net https://services.postcodeanywhere.co.uk https://embedwistia-a.akamaihd.net https://cdn.cookielaw.org https://geolocation.onetrust.com; font-src 'self' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://fonts.gstatic.com https://*.arcgis.com; form-action 'self' https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.canadapost.ca https://*.epost.ca https://www.facebook.com https://google.com; frame-ancestors 'self' https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.canadapost.ca; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.epost.ca https://*.cpggpc.ca https://www.adobetag.com https://assets.adobedtm.com https://siteintercept.qualtrics.com https://zn0xleir6swszany9-canadapostdigital.siteintercept.qualtrics.com https://connect.facebook.net https://snap.licdn.com https://z.moatads.com https://static.ads-twitter.com https://www.googletagmanager.com https://www.google.com https://www.googletagservices.com https://*.google-analytics.com https://*.googleadservices.com https://www.gstatic.com https://*.googlesyndication.com https://adservice.google.com https://adservice.google.ca https://maps.googleapis.com https://cdn.ampproject.org https://*.doubleclick.net https://*.twitter.com https://cdn.syndication.twimg.com https://dpm.demdex.net https://*.wistia.com https://*.frontlinesvc.com https://*.arcgis.com https://www.linkedin.com https://vmss.boldchat.com https://sb.scorecardresearch.com https://www.rnengage.com https://sjs.bizographics.com https://www.instagram.com https://secure.adnxs.com https://app.five9.com https://cdn.cookielaw.org; style-src 'self' 'unsafe-inline' https://*.frontlinesvc.com https://fonts.googleapis.com https://translate.googleapis.com https://*.twitter.com https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.epost.ca https://*.arcgis.com https://*.arcgisonline.com https://app.five9.com; report-uri https://www.canadapost-postescanada.ca/cwc/components/rs/csp-reports;
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
Cache-Control: max-age=86400, private
Expires: Mon, 03 Oct 2022 07:02:38 GMT
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: master-only
Content-Security-Policy: frame-ancestors 'self'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000; includeSubdomains; preload
Content-Encoding: gzip
Content-Length: 382
Date: Wed, 02 Nov 2022 13:44:47 GMT
Connection: keep-alive
Vary: Accept-Encoding
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/pixel(1).html
109.206.243.195200 OK 775 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/pixel(1).html
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 2e0b91a6db4a2113b53ef9c4536bed66
ce8c59bda1f0eb913b1c6933544108b240567cb4
bead79d4e959b34ae72f0ccb7ac6f2f83a0775bb0e451a41031a7db885faaf0f
GET /th3vb/index_files/pixel(1).html HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Thu, 08 Apr 2021 11:06:18 GMT
etag: W/"606ee3aa-5f9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.canadapost-postescanada.ca/cpc/assets/cpc/img/icons/global-alert/cancel.svg
23.61.214.200200 OK 377 B URL HTTP/1.1 www.canadapost-postescanada.ca/cpc/assets/cpc/img/icons/global-alert/cancel.svg
IP 23.61.214.200:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text
Hash 3e69d3df64d1d2900137d925afc81ef4
27113030bc0a70e40c1ec28523c53118feb97454
2aaceded66a94f94d5bb275b056d4310327b9eb50004d6e985417cf7d792d251
GET /cpc/assets/cpc/img/icons/global-alert/cancel.svg HTTP/1.1
Host: www.canadapost-postescanada.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/svg+xml
ETag: "5a6b5666-331"
Last-Modified: Fri, 26 Jan 2018 16:25:10 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
content-security-policy-report-only: object-src 'none'; connect-src 'self' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.cpggpc.ca https://www.google-analytics.com https://siteintercept.qualtrics.com https://www.facebook.com https://sslstats.canadapost.ca https://*.wistia.com https://dpm.demdex.net https://csi.gstatic.com https://adservice.google.com https://*.googlesyndication.com https://*.g.doubleclick.net https://maps.googleapis.com https://vmss.boldchat.com https://www.linkedin.com https://canadapost.tt.omtrdc.net https://services.postcodeanywhere.co.uk https://embedwistia-a.akamaihd.net https://cdn.cookielaw.org https://geolocation.onetrust.com; font-src 'self' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://fonts.gstatic.com https://*.arcgis.com; form-action 'self' https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.canadapost.ca https://*.epost.ca https://www.facebook.com https://google.com; frame-ancestors 'self' https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.canadapost.ca; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.epost.ca https://*.cpggpc.ca https://www.adobetag.com https://assets.adobedtm.com https://siteintercept.qualtrics.com https://zn0xleir6swszany9-canadapostdigital.siteintercept.qualtrics.com https://connect.facebook.net https://snap.licdn.com https://z.moatads.com https://static.ads-twitter.com https://www.googletagmanager.com https://www.google.com https://www.googletagservices.com https://*.google-analytics.com https://*.googleadservices.com https://www.gstatic.com https://*.googlesyndication.com https://adservice.google.com https://adservice.google.ca https://maps.googleapis.com https://cdn.ampproject.org https://*.doubleclick.net https://*.twitter.com https://cdn.syndication.twimg.com https://dpm.demdex.net https://*.wistia.com https://*.frontlinesvc.com https://*.arcgis.com https://www.linkedin.com https://vmss.boldchat.com https://sb.scorecardresearch.com https://www.rnengage.com https://sjs.bizographics.com https://www.instagram.com https://secure.adnxs.com https://app.five9.com https://cdn.cookielaw.org; style-src 'self' 'unsafe-inline' https://*.frontlinesvc.com https://fonts.googleapis.com https://translate.googleapis.com https://*.twitter.com https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.epost.ca https://*.arcgis.com https://*.arcgisonline.com https://app.five9.com; report-uri https://www.canadapost-postescanada.ca/cwc/components/rs/csp-reports;
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
Cache-Control: max-age=86400, private
Expires: Mon, 25 Jul 2022 13:51:51 GMT
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: master-only
Content-Security-Policy: frame-ancestors 'self'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000; includeSubdomains; preload
Content-Encoding: gzip
Content-Length: 377
Date: Wed, 02 Nov 2022 13:44:48 GMT
Connection: keep-alive
Vary: Accept-Encoding
www.canadapost-postescanada.ca/cpc/assets/cpc/img/icons/search.svg
23.61.214.200200 OK 218 B URL HTTP/1.1 www.canadapost-postescanada.ca/cpc/assets/cpc/img/icons/search.svg
IP 23.61.214.200:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (320), with no line terminators
Hash d3a621feba2c9afadc8e74c4f71021e1
5364a043f80e5dcbc81b81e86d406eedfc1b69a4
9616a4bbe31bf59f3ec6fd4a9f237bfb89d3424a45238b625b7f1620377d5401
GET /cpc/assets/cpc/img/icons/search.svg HTTP/1.1
Host: www.canadapost-postescanada.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/svg+xml
ETag: "5a78a621-140"
Last-Modified: Mon, 05 Feb 2018 18:44:49 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
content-security-policy-report-only: object-src 'none'; connect-src 'self' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.cpggpc.ca https://www.google-analytics.com https://siteintercept.qualtrics.com https://www.facebook.com https://sslstats.canadapost.ca https://*.wistia.com https://dpm.demdex.net https://csi.gstatic.com https://adservice.google.com https://*.googlesyndication.com https://*.g.doubleclick.net https://maps.googleapis.com https://vmss.boldchat.com https://www.linkedin.com https://canadapost.tt.omtrdc.net https://services.postcodeanywhere.co.uk https://embedwistia-a.akamaihd.net https://cdn.cookielaw.org https://geolocation.onetrust.com; font-src 'self' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://fonts.gstatic.com https://*.arcgis.com; form-action 'self' https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.canadapost.ca https://*.epost.ca https://www.facebook.com https://google.com; frame-ancestors 'self' https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.canadapost.ca; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.epost.ca https://*.cpggpc.ca https://www.adobetag.com https://assets.adobedtm.com https://siteintercept.qualtrics.com https://zn0xleir6swszany9-canadapostdigital.siteintercept.qualtrics.com https://connect.facebook.net https://snap.licdn.com https://z.moatads.com https://static.ads-twitter.com https://www.googletagmanager.com https://www.google.com https://www.googletagservices.com https://*.google-analytics.com https://*.googleadservices.com https://www.gstatic.com https://*.googlesyndication.com https://adservice.google.com https://adservice.google.ca https://maps.googleapis.com https://cdn.ampproject.org https://*.doubleclick.net https://*.twitter.com https://cdn.syndication.twimg.com https://dpm.demdex.net https://*.wistia.com https://*.frontlinesvc.com https://*.arcgis.com https://www.linkedin.com https://vmss.boldchat.com https://sb.scorecardresearch.com https://www.rnengage.com https://sjs.bizographics.com https://www.instagram.com https://secure.adnxs.com https://app.five9.com https://cdn.cookielaw.org; style-src 'self' 'unsafe-inline' https://*.frontlinesvc.com https://fonts.googleapis.com https://translate.googleapis.com https://*.twitter.com https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.epost.ca https://*.arcgis.com https://*.arcgisonline.com https://app.five9.com; report-uri https://www.canadapost-postescanada.ca/cwc/components/rs/csp-reports;
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
Cache-Control: max-age=86400, private
Expires: Thu, 15 Sep 2022 16:23:11 GMT
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: master-only
Content-Security-Policy: frame-ancestors 'self'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000; includeSubdomains; preload
Content-Encoding: gzip
Content-Length: 218
Date: Wed, 02 Nov 2022 13:44:48 GMT
Connection: keep-alive
Vary: Accept-Encoding
www.canadapost-postescanada.ca/cpc/assets/cpc/img/icons/icon-lock.svg
23.61.214.200200 OK 432 B URL HTTP/1.1 www.canadapost-postescanada.ca/cpc/assets/cpc/img/icons/icon-lock.svg
IP 23.61.214.200:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (907), with no line terminators
Hash 2ad110b6a820845cf1b4b1d8e0585d48
6871d97125e77d9e676518742276710ec39279d9
e170143cc77d854d7bd7110f42251e13ae38c16b6f99a101b546c56d0b0ca23e
GET /cpc/assets/cpc/img/icons/icon-lock.svg HTTP/1.1
Host: www.canadapost-postescanada.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/svg+xml
ETag: "5a78a622-38b"
Last-Modified: Mon, 05 Feb 2018 18:44:50 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
content-security-policy-report-only: object-src 'none'; connect-src 'self' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.cpggpc.ca https://www.google-analytics.com https://siteintercept.qualtrics.com https://www.facebook.com https://sslstats.canadapost.ca https://*.wistia.com https://dpm.demdex.net https://csi.gstatic.com https://adservice.google.com https://*.googlesyndication.com https://*.g.doubleclick.net https://maps.googleapis.com https://vmss.boldchat.com https://www.linkedin.com https://canadapost.tt.omtrdc.net https://services.postcodeanywhere.co.uk https://embedwistia-a.akamaihd.net https://cdn.cookielaw.org https://geolocation.onetrust.com; font-src 'self' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://fonts.gstatic.com https://*.arcgis.com; form-action 'self' https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.canadapost.ca https://*.epost.ca https://www.facebook.com https://google.com; frame-ancestors 'self' https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.canadapost.ca; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.epost.ca https://*.cpggpc.ca https://www.adobetag.com https://assets.adobedtm.com https://siteintercept.qualtrics.com https://zn0xleir6swszany9-canadapostdigital.siteintercept.qualtrics.com https://connect.facebook.net https://snap.licdn.com https://z.moatads.com https://static.ads-twitter.com https://www.googletagmanager.com https://www.google.com https://www.googletagservices.com https://*.google-analytics.com https://*.googleadservices.com https://www.gstatic.com https://*.googlesyndication.com https://adservice.google.com https://adservice.google.ca https://maps.googleapis.com https://cdn.ampproject.org https://*.doubleclick.net https://*.twitter.com https://cdn.syndication.twimg.com https://dpm.demdex.net https://*.wistia.com https://*.frontlinesvc.com https://*.arcgis.com https://www.linkedin.com https://vmss.boldchat.com https://sb.scorecardresearch.com https://www.rnengage.com https://sjs.bizographics.com https://www.instagram.com https://secure.adnxs.com https://app.five9.com https://cdn.cookielaw.org; style-src 'self' 'unsafe-inline' https://*.frontlinesvc.com https://fonts.googleapis.com https://translate.googleapis.com https://*.twitter.com https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.epost.ca https://*.arcgis.com https://*.arcgisonline.com https://app.five9.com; report-uri https://www.canadapost-postescanada.ca/cwc/components/rs/csp-reports;
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
Cache-Control: max-age=86400, private
Expires: Tue, 27 Sep 2022 21:14:30 GMT
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: master-only
Content-Security-Policy: frame-ancestors 'self'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000; includeSubdomains; preload
Content-Encoding: gzip
Content-Length: 432
Date: Wed, 02 Nov 2022 13:44:48 GMT
Connection: keep-alive
Vary: Accept-Encoding
www.canadapost-postescanada.ca/cpc/assets/cpc/img/icons/arrow-down.svg
23.61.214.200200 OK 167 B URL HTTP/1.1 www.canadapost-postescanada.ca/cpc/assets/cpc/img/icons/arrow-down.svg
IP 23.61.214.200:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 4ed5c36b7d9f92ed672bb1d5114b1b72
82b2a08c925663c452eb17d71d1c81dced90d334
2f598f2c792e57f0ad56a71362d58aef0b155d8eeaa139d3fd3e7c6cfdfb845e
GET /cpc/assets/cpc/img/icons/arrow-down.svg HTTP/1.1
Host: www.canadapost-postescanada.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/svg+xml
ETag: "5a78a622-b9"
Last-Modified: Mon, 05 Feb 2018 18:44:50 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
content-security-policy-report-only: object-src 'none'; connect-src 'self' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.cpggpc.ca https://www.google-analytics.com https://siteintercept.qualtrics.com https://www.facebook.com https://sslstats.canadapost.ca https://*.wistia.com https://dpm.demdex.net https://csi.gstatic.com https://adservice.google.com https://*.googlesyndication.com https://*.g.doubleclick.net https://maps.googleapis.com https://vmss.boldchat.com https://www.linkedin.com https://canadapost.tt.omtrdc.net https://services.postcodeanywhere.co.uk https://embedwistia-a.akamaihd.net https://cdn.cookielaw.org https://geolocation.onetrust.com; font-src 'self' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://fonts.gstatic.com https://*.arcgis.com; form-action 'self' https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.canadapost.ca https://*.epost.ca https://www.facebook.com https://google.com; frame-ancestors 'self' https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.canadapost.ca; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.epost.ca https://*.cpggpc.ca https://www.adobetag.com https://assets.adobedtm.com https://siteintercept.qualtrics.com https://zn0xleir6swszany9-canadapostdigital.siteintercept.qualtrics.com https://connect.facebook.net https://snap.licdn.com https://z.moatads.com https://static.ads-twitter.com https://www.googletagmanager.com https://www.google.com https://www.googletagservices.com https://*.google-analytics.com https://*.googleadservices.com https://www.gstatic.com https://*.googlesyndication.com https://adservice.google.com https://adservice.google.ca https://maps.googleapis.com https://cdn.ampproject.org https://*.doubleclick.net https://*.twitter.com https://cdn.syndication.twimg.com https://dpm.demdex.net https://*.wistia.com https://*.frontlinesvc.com https://*.arcgis.com https://www.linkedin.com https://vmss.boldchat.com https://sb.scorecardresearch.com https://www.rnengage.com https://sjs.bizographics.com https://www.instagram.com https://secure.adnxs.com https://app.five9.com https://cdn.cookielaw.org; style-src 'self' 'unsafe-inline' https://*.frontlinesvc.com https://fonts.googleapis.com https://translate.googleapis.com https://*.twitter.com https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.epost.ca https://*.arcgis.com https://*.arcgisonline.com https://app.five9.com; report-uri https://www.canadapost-postescanada.ca/cwc/components/rs/csp-reports;
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
Cache-Control: max-age=86400, private
Expires: Mon, 25 Jul 2022 13:51:51 GMT
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: master-only
Content-Security-Policy: frame-ancestors 'self'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000; includeSubdomains; preload
Content-Encoding: gzip
Content-Length: 167
Date: Wed, 02 Nov 2022 13:44:48 GMT
Connection: keep-alive
Vary: Accept-Encoding
www.canadapost-postescanada.ca/cpc/assets/cpc/img/icons/global-alert/alert.svg
23.61.214.200200 OK 455 B URL HTTP/1.1 www.canadapost-postescanada.ca/cpc/assets/cpc/img/icons/global-alert/alert.svg
IP 23.61.214.200:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text
Hash ff8ab0bd64b81f01e5245fdcc5f86256
cb16cfd030e7f5758ff0320d3c467cc53b858d50
f36fd8c683ecf6ae26d06c171f584b955e5603ac12435b1fe0560a6e0a90d6dd
GET /cpc/assets/cpc/img/icons/global-alert/alert.svg HTTP/1.1
Host: www.canadapost-postescanada.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: image/svg+xml
ETag: "5a6b5666-3ef"
Last-Modified: Fri, 26 Jan 2018 16:25:10 GMT
p3p: CP="NON CUR OTPi OUR NOR UNI"
content-security-policy-report-only: object-src 'none'; connect-src 'self' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.cpggpc.ca https://www.google-analytics.com https://siteintercept.qualtrics.com https://www.facebook.com https://sslstats.canadapost.ca https://*.wistia.com https://dpm.demdex.net https://csi.gstatic.com https://adservice.google.com https://*.googlesyndication.com https://*.g.doubleclick.net https://maps.googleapis.com https://vmss.boldchat.com https://www.linkedin.com https://canadapost.tt.omtrdc.net https://services.postcodeanywhere.co.uk https://embedwistia-a.akamaihd.net https://cdn.cookielaw.org https://geolocation.onetrust.com; font-src 'self' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://fonts.gstatic.com https://*.arcgis.com; form-action 'self' https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.canadapost.ca https://*.epost.ca https://www.facebook.com https://google.com; frame-ancestors 'self' https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.canadapost.ca; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.epost.ca https://*.cpggpc.ca https://www.adobetag.com https://assets.adobedtm.com https://siteintercept.qualtrics.com https://zn0xleir6swszany9-canadapostdigital.siteintercept.qualtrics.com https://connect.facebook.net https://snap.licdn.com https://z.moatads.com https://static.ads-twitter.com https://www.googletagmanager.com https://www.google.com https://www.googletagservices.com https://*.google-analytics.com https://*.googleadservices.com https://www.gstatic.com https://*.googlesyndication.com https://adservice.google.com https://adservice.google.ca https://maps.googleapis.com https://cdn.ampproject.org https://*.doubleclick.net https://*.twitter.com https://cdn.syndication.twimg.com https://dpm.demdex.net https://*.wistia.com https://*.frontlinesvc.com https://*.arcgis.com https://www.linkedin.com https://vmss.boldchat.com https://sb.scorecardresearch.com https://www.rnengage.com https://sjs.bizographics.com https://www.instagram.com https://secure.adnxs.com https://app.five9.com https://cdn.cookielaw.org; style-src 'self' 'unsafe-inline' https://*.frontlinesvc.com https://fonts.googleapis.com https://translate.googleapis.com https://*.twitter.com https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.epost.ca https://*.arcgis.com https://*.arcgisonline.com https://app.five9.com; report-uri https://www.canadapost-postescanada.ca/cwc/components/rs/csp-reports;
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
Cache-Control: max-age=86400, private
Expires: Sun, 14 Aug 2022 17:54:20 GMT
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: master-only
Content-Security-Policy: frame-ancestors 'self'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000; includeSubdomains; preload
Content-Encoding: gzip
Content-Length: 455
Date: Wed, 02 Nov 2022 13:44:48 GMT
Connection: keep-alive
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 471 B IP 142.250.74.35:0
Hash 9e22dfe51ab9c940bb579430ed3b78a4
ccae561eb9b63619ffe425b9f869cbbbc3ee7c0b
0a2184c28a4c739add7ff59ff6e4a124d93505fc75b185199f60d0348b881e6e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/db.21026c4133e1c59eaf45.js.download
109.206.243.195200 OK 1.1 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/db.21026c4133e1c59eaf45.js.download
IP 109.206.243.195:0
File type HTML document, ASCII text, with very long lines (2653), with no line terminators
Hash 4f3fb114fc72ed6908705cf8460b02e3
93049c5fa1e56b0b5444a5c7449b42a68837dd9b
dd4c2e42357f26971b23b275195ce945853f656f1ecd09020adb0f8e30d69019
GET /th3vb/index_files/db.21026c4133e1c59eaf45.js.download HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/SV_71iOFlig0vNugpn.html
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: application/javascript
last-modified: Thu, 08 Apr 2021 11:06:16 GMT
etag: W/"606ee3a8-a5d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/dxjsmodule/1.5159a7a0ba1fcaed8917.chunk.js?Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web
104.17.208.240200 OK 22 kB URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/1.5159a7a0ba1fcaed8917.chunk.js?Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web
IP 104.17.208.240:0
File type ASCII text, with very long lines (26421), with no line terminators
Hash cbcfdd4c3f279e06aee6d6bbf2138fdb
6e02f039b20b8545af69bf4d896d9fe3eb95fc99
6fae7629be40dd71e45edc2df5600d609414f17783a6e3df50301f7de76e1723
GET /dxjsmodule/1.5159a7a0ba1fcaed8917.chunk.js?Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 13:44:48 GMT
content-type: application/javascript
cf-ray: 763d4e94bfbcb500-OSL
access-control-allow-origin: *
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"6a47-17865545d38"
last-modified: Wed, 24 Mar 2021 17:42:11 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=27207
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/chat-common.js
109.206.243.195404 Not Found 1.2 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/chat-common.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 84f59885c4982507b2d1aea9700ef0a0
f6cb4f44a293b5e166e0e16da3271b3c0414010d
79cee547af6255ddecfce3b74dd3007c0e8c9257b5769975c7b52da39e1b956f
GET /th3vb/index_files/chat-common.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery.smartbanner.css
109.206.243.195200 OK 1.8 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery.smartbanner.css
IP 109.206.243.195:0
File type ASCII text, with very long lines (496)
Hash 36f33fdfddeb09c1c07e273411970dc3
663d7f260b9d97c919219d67db30fcd59b7ada41
d6e7188f72fba5607a3eed871793ad46216c53ea342621c7565b17fbec82e16a
GET /th3vb/index_files/jquery.smartbanner.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:12 GMT
etag: W/"606ee3a4-16c6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c4b09375af7e4fd33103f02ca532363e
a35829c580ed402fcb2a36c973addc8b742c1e36
d89f86cdd600c9c84d73139116934221d4add52255ae1b81a55c3f2ba2986ed7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/conversion_async.js
142.250.74.164200 OK 15 kB URL HTTP/2 www.google.com/pagead/conversion_async.js
IP 142.250.74.164:0
File type ASCII text, with very long lines (1654)
Hash 34b6d5b94de5aa9a11745592f84aad0d
85c2890e443bcb8bc4443bf2d57fc0462b797617
39b175887782c7b0586123cc938fb5651c5edb230ae1d45be41de351ac42bff1
GET /pagead/conversion_async.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Wed, 02 Nov 2022 13:44:48 GMT
expires: Wed, 02 Nov 2022 13:44:48 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 16072662367159696676
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 15168
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/1011747518/?random=1617890658599&cv=9&fst=1617890400000&num=1&value=replace%20with%20value&bg=ffffff&guid=ON&eid=376635471%2C2505059651&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=7&u_tz=-240&u_java=false&u_nplug=3&u_nmime=4>m=2oa3v0&sendb=1&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&frm=0&url=https%3A%2F%2Fwww.canadapost-postescanada.ca%2Fshop%2Fpersonal%2Fcheckout.jsf%3Fexecution%3De3s1&ref=https%3A%2F%2Fwww.canadapost-postescanada.ca%2Fshop%2Fpersonal%2Fbasket.jsf%3Fexecution%3De2s1&tiba=Canada%20Post&async=1&fmt=3&is_vtc=1&random=956391167&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1011747518/?random=1617890658599&cv=9&fst=1617890400000&num=1&value=replace%20with%20value&bg=ffffff&guid=ON&eid=376635471%2C2505059651&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=7&u_tz=-240&u_java=false&u_nplug=3&u_nmime=4>m=2oa3v0&sendb=1&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&frm=0&url=https%3A%2F%2Fwww.canadapost-postescanada.ca%2Fshop%2Fpersonal%2Fcheckout.jsf%3Fexecution%3De3s1&ref=https%3A%2F%2Fwww.canadapost-postescanada.ca%2Fshop%2Fpersonal%2Fbasket.jsf%3Fexecution%3De2s1&tiba=Canada%20Post&async=1&fmt=3&is_vtc=1&random=956391167&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1011747518/?random=1617890658599&cv=9&fst=1617890400000&num=1&value=replace%20with%20value&bg=ffffff&guid=ON&eid=376635471%2C2505059651&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=7&u_tz=-240&u_java=false&u_nplug=3&u_nmime=4>m=2oa3v0&sendb=1&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&frm=0&url=https%3A%2F%2Fwww.canadapost-postescanada.ca%2Fshop%2Fpersonal%2Fcheckout.jsf%3Fexecution%3De3s1&ref=https%3A%2F%2Fwww.canadapost-postescanada.ca%2Fshop%2Fpersonal%2Fbasket.jsf%3Fexecution%3De2s1&tiba=Canada%20Post&async=1&fmt=3&is_vtc=1&random=956391167&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 13:44:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 854ad18b161a2f5c986989d41f840aa5
f0a0c70b4d89524133d42be0a3a7a887a4a46727
8f0fffe0487688f5918e1d740662761c5c88761129363a5270cfe43d9ace3206
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1438
Cache-Control: max-age=95650
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:48 GMT
Etag: "63614154-1d7"
Expires: Thu, 03 Nov 2022 16:18:58 GMT
Last-Modified: Tue, 01 Nov 2022 15:55:00 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
siteintercept.qualtrics.com/dxjsmodule/CoreModule.js?Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web
104.17.208.240200 OK 29 kB URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/CoreModule.js?Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web
IP 104.17.208.240:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 941ab7da948b1908cbf7f4a909520367
d7f13ac84b421335d86d31bb1dfc21c99cc804cf
3b0964e4f1bd807fa4bb8712d3c6741d70b12a073596ddb5d7259dabd6772f16
GET /dxjsmodule/CoreModule.js?Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: application/javascript
cf-ray: 763d4e935e36b500-OSL
access-control-allow-origin: *
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"176a0-17865545d38"
last-modified: Wed, 24 Mar 2021 17:42:11 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=95904
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
www.google.com/pagead/1p-user-list/1011747518/?random=1617890658582&cv=9&fst=1617890400000&num=1&bg=ffffff&guid=ON&eid=376635471%2C2505059651&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=7&u_tz=-240&u_java=false&u_nplug=3&u_nmime=4>m=2oa3v0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.canadapost-postescanada.ca%2Fshop%2Fpersonal%2Fcheckout.jsf%3Fexecution%3De3s1&ref=https%3A%2F%2Fwww.canadapost-postescanada.ca%2Fshop%2Fpersonal%2Fbasket.jsf%3Fexecution%3De2s1&tiba=Canada%20Post&async=1&fmt=3&is_vtc=1&random=4004207731&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/1011747518/?random=1617890658582&cv=9&fst=1617890400000&num=1&bg=ffffff&guid=ON&eid=376635471%2C2505059651&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=7&u_tz=-240&u_java=false&u_nplug=3&u_nmime=4>m=2oa3v0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.canadapost-postescanada.ca%2Fshop%2Fpersonal%2Fcheckout.jsf%3Fexecution%3De3s1&ref=https%3A%2F%2Fwww.canadapost-postescanada.ca%2Fshop%2Fpersonal%2Fbasket.jsf%3Fexecution%3De2s1&tiba=Canada%20Post&async=1&fmt=3&is_vtc=1&random=4004207731&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1011747518/?random=1617890658582&cv=9&fst=1617890400000&num=1&bg=ffffff&guid=ON&eid=376635471%2C2505059651&u_h=768&u_w=1366&u_ah=728&u_aw=1366&u_cd=24&u_his=7&u_tz=-240&u_java=false&u_nplug=3&u_nmime=4>m=2oa3v0&sendb=1&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fwww.canadapost-postescanada.ca%2Fshop%2Fpersonal%2Fcheckout.jsf%3Fexecution%3De3s1&ref=https%3A%2F%2Fwww.canadapost-postescanada.ca%2Fshop%2Fpersonal%2Fbasket.jsf%3Fexecution%3De2s1&tiba=Canada%20Post&async=1&fmt=3&is_vtc=1&random=4004207731&resp=GooglemKTybQhCsO&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 13:44:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/dxjsmodule/14.8f875927fce05bedfe11.chunk.js?Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web
104.17.208.240200 OK 844 B URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/14.8f875927fce05bedfe11.chunk.js?Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web
IP 104.17.208.240:0
File type ASCII text, with very long lines (1755), with no line terminators
Hash 96e9793ae26a76ba388ae5e9a2ef6b3f
71d94c4b8e4967044b664708383959ccd0924c25
bf488c1397e3bf7694109c2b67909ceadb35e7709dcd6b69d536d211028d1db3
GET /dxjsmodule/14.8f875927fce05bedfe11.chunk.js?Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 13:44:48 GMT
content-type: application/javascript
cf-ray: 763d4e94bfb4b500-OSL
access-control-allow-origin: *
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"9ed-17865545d38"
last-modified: Wed, 24 Mar 2021 17:42:11 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=2541
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_0xleIR6sWSZaNY9&Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web
104.17.208.240200 OK 2.7 kB URL HTTP/2 siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_0xleIR6sWSZaNY9&Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web
IP 104.17.208.240:0
File type JSON data\012- , ASCII text, with very long lines (19967), with no line terminators
Hash f4db9f9cf764544817a84747ba7aa094
171bc1c290c90f20c146e34f5492c871bee5ae16
fd07a36fcf944b53c58153b0f4e2cff6de570c1b47f470c4b0f88a06d8d00c3b
POST /WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_0xleIR6sWSZaNY9&Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 87
Origin: https://determined-antonelli.109-206-243-195.plesk.page
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: application/json
cf-ray: 763d4e929d28b500-OSL
access-control-allow-origin: https://determined-antonelli.109-206-243-195.plesk.page
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
trace-id: 4185c1d02c6eb106
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c1af38ec0609b645477f3a9fe1054f30
590be080fbdea4626418c10472ffaada28f2d50a
6802d3acb54cf6d879d8eb65435dd9748ac2dcfda9eacc430df1b6fdd0bb7c67
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash c4b09375af7e4fd33103f02ca532363e
a35829c580ed402fcb2a36c973addc8b742c1e36
d89f86cdd600c9c84d73139116934221d4add52255ae1b81a55c3f2ba2986ed7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.facebook.net/en_US/fbevents.js
157.240.240.1200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.240.1:0
File type ASCII text, with very long lines (64348)
Hash 0ac10debd3a9ea8147a26d045bb93e6e
ff45f3442508e8695f2303701682ebdb6e016464
5dee7b453b2c72c07ff1d62432493a044507835a8031ea62edf2fa7cc26219b9
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: EXALn3/EVXOIuXTSvy6RfZabSf6vOGZg0alZo2tSOiP6S+N0Hmd1/6C1NDUxpVONvfeMHtTOS8N4HvtuRzKI9Q==
content-length: 27337
x-fb-trip-id: 1679558926
date: Wed, 02 Nov 2022 13:44:48 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 312 B IP 93.184.220.29:0
Hash 7a5cc4e92004aeefe8955f725d432d78
0ff269e207dc7ae68d0eb6fbd0f5fc2fdd36ab20
67a981e880b307efd49d75fb40ec1c774cea9441b274557d17832f9d7eadf3bb
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6070
Cache-Control: max-age=168659
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:48 GMT
Etag: "63624c6d-138"
Expires: Fri, 04 Nov 2022 12:35:47 GMT
Last-Modified: Wed, 02 Nov 2022 10:54:37 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 312
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 854ad18b161a2f5c986989d41f840aa5
f0a0c70b4d89524133d42be0a3a7a887a4a46727
8f0fffe0487688f5918e1d740662761c5c88761129363a5270cfe43d9ace3206
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5585
Cache-Control: max-age=99797
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:48 GMT
Etag: "63614154-1d7"
Expires: Thu, 03 Nov 2022 17:28:05 GMT
Last-Modified: Tue, 01 Nov 2022 15:55:00 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
t.co/i/adsct?bci=3&eci=2&event_id=39e69ab2-1801-4b8c-8f4c-358de1f8953a&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2528b5c8-3769-4800-992a-725a9dd9c807&tw_document_href=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=ny0qm&type=javascript&version=2.3.29
104.244.42.69200 OK 43 B URL HTTP/2 t.co/i/adsct?bci=3&eci=2&event_id=39e69ab2-1801-4b8c-8f4c-358de1f8953a&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2528b5c8-3769-4800-992a-725a9dd9c807&tw_document_href=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=ny0qm&type=javascript&version=2.3.29
IP 104.244.42.69:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=39e69ab2-1801-4b8c-8f4c-358de1f8953a&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2528b5c8-3769-4800-992a-725a9dd9c807&tw_document_href=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=ny0qm&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 13:44:47 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=cebb3dd9-b9ab-4392-965e-039a1e6126a5; Max-Age=63072000; Expires=Fri, 01 Nov 2024 13:44:48 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: ba6b20f3c697ec3a
strict-transport-security: max-age=0
x-response-time: 105
x-connection-hash: b21a6c954227adbecefb928184ebd85a5e3eab7082cdcde60cb0b8561fad49ab
X-Firefox-Spdy: h2
sb.scorecardresearch.com/b?c1=2&c2=6035946&cs_it=b3&cv=3.8.0.210223&ns__t=1667396688220&ns_c=UTF-8&c7=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&c8=Canada%20Post&c9=
18.165.201.5204 No Content 0 B URL HTTP/2 sb.scorecardresearch.com/b?c1=2&c2=6035946&cs_it=b3&cv=3.8.0.210223&ns__t=1667396688220&ns_c=UTF-8&c7=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&c8=Canada%20Post&c9=
IP 18.165.201.5:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b?c1=2&c2=6035946&cs_it=b3&cv=3.8.0.210223&ns__t=1667396688220&ns_c=UTF-8&c7=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&c8=Canada%20Post&c9= HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 02 Nov 2022 13:44:48 GMT
set-cookie: UID=1E8618fff4472dc9df4b2171667396688; domain=.scorecardresearch.com; path=/; max-age=62208000
x-cache: Miss from cloudfront
via: 1.1 5059e7bd12388ef6673ed156d17eb756.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P3
x-amz-cf-id: M1-rff4wNYdo9TVKbYHjHTfymVa5ywEq6yPTJhoHnSfi4u7XNYBEqA==
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d1a90c0cbeaa4e8379f5f77b916013b
fbbe002d592a8c20646066c57d8c2bcfaa8af96c
44b11c299f37ddbfde89f6d8c86d7d50db0f861d216b80ae839b698abc08d098
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d1a90c0cbeaa4e8379f5f77b916013b
fbbe002d592a8c20646066c57d8c2bcfaa8af96c
44b11c299f37ddbfde89f6d8c86d7d50db0f861d216b80ae839b698abc08d098
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash 6082fdef035471704a73a286e2b5b7cc
823e1ba2ef265fd0f5fa056faad29bbd26403ef2
d1aebbe0264ef3699c7d98d428f472184b11ef30d328b6eecb76387a4d07dd68
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6462
Cache-Control: max-age=123687
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:48 GMT
Etag: "63619b39-13a"
Expires: Fri, 04 Nov 2022 00:06:15 GMT
Last-Modified: Tue, 01 Nov 2022 22:18:33 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 314
googleads.g.doubleclick.net/pagead/viewthroughconversion/1011747518/?random=1667396688230&cv=9&fst=1667396688230&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa3v0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tiba=Canada%20Post&hn=www.google.com&async=1&rfmt=3&fmt=4
142.250.74.98200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1011747518/?random=1667396688230&cv=9&fst=1667396688230&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa3v0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tiba=Canada%20Post&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2322), with no line terminators
Hash 244cce8e00ba885818a5fec86a80b773
3c76714abe6063557f37d7a1a196cfe68985604d
980ce1507d391ba21b6186c2aee2dfaac11c1532eabf8793ea7058442261e36d
GET /pagead/viewthroughconversion/1011747518/?random=1667396688230&cv=9&fst=1667396688230&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa3v0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tiba=Canada%20Post&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 13:44:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1064
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 02-Nov-2022 13:59:48 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/viewthroughconversion/1011747518/?random=1667396688233&cv=9&fst=1667396688233&num=1&value=replace%20with%20value&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa3v0&sendb=1&ig=0&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&frm=0&url=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tiba=Canada%20Post&hn=www.google.com&async=1&rfmt=3&fmt=4
142.250.74.98200 OK 1.1 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/1011747518/?random=1667396688233&cv=9&fst=1667396688233&num=1&value=replace%20with%20value&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa3v0&sendb=1&ig=0&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&frm=0&url=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tiba=Canada%20Post&hn=www.google.com&async=1&rfmt=3&fmt=4
IP 142.250.74.98:0
File type ASCII text, with very long lines (2598), with no line terminators
Hash 61a871b8d78c2e398944d2a22c2a5549
b27e207691fa8a8938a1944c6863835033142864
afa3395d0b95e1d28b9db9e7e2af45941269519570f0dde6fa4a50b65ec24d12
GET /pagead/viewthroughconversion/1011747518/?random=1667396688233&cv=9&fst=1667396688233&num=1&value=replace%20with%20value&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa3v0&sendb=1&ig=0&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&frm=0&url=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tiba=Canada%20Post&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 13:44:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 1123
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Wed, 02-Nov-2022 13:59:48 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 7d1a90c0cbeaa4e8379f5f77b916013b
fbbe002d592a8c20646066c57d8c2bcfaa8af96c
44b11c299f37ddbfde89f6d8c86d7d50db0f861d216b80ae839b698abc08d098
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/UserDefinedHTMLModule.js
109.206.243.195404 Not Found 412 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/UserDefinedHTMLModule.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d2293b463a987cfb635411b479b614d2
c19fe779052b52b0d2d8a61e3b1d66ba82d92db0
f27a05aaa4a5074778853c99a8bea7fd5fa7d69d38ed0d8445a5cadcd2c3dc9b
GET /th3vb/index_files/UserDefinedHTMLModule.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/CoreModule.js
109.206.243.195404 Not Found 412 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/CoreModule.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash d2293b463a987cfb635411b479b614d2
c19fe779052b52b0d2d8a61e3b1d66ba82d92db0
f27a05aaa4a5074778853c99a8bea7fd5fa7d69d38ed0d8445a5cadcd2c3dc9b
GET /th3vb/index_files/CoreModule.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/CoreModule.js
109.206.243.195404 Not Found 2.4 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/CoreModule.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0d9f3df872d295e29dc582a460b2eb30
ca6380168d922596e7754624d1a665b9b27edade
0339d6c29a733b442a02bfa8c82b01921d4eae5d02a62faa2be68906f0eead02
GET /th3vb/index_files/CoreModule.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
www.canadapost-postescanada.ca/store-boutique/en
23.61.214.200307 Temporary Redirect 136 B URL HTTP/1.1 www.canadapost-postescanada.ca/store-boutique/en
IP 23.61.214.200:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash ed10607782c0c178ac891c97e9aa1470
5ce456cdbdcbdaab83e380dd5dc4d7a4033eaa90
8fc58eab6a6eb86985c8b65a22e5816abedaf9e82470bc3ff93bffd2dd7e8a41
GET /store-boutique/en HTTP/1.1
Host: www.canadapost-postescanada.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 307 Temporary Redirect
Content-Length: 136
Content-Type: text/html
Location: https://store.canadapost-postescanada.ca/store-boutique/en
p3p: CP="NON CUR OTPi OUR NOR UNI"
content-security-policy-report-only: object-src 'none'; connect-src 'self' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.cpggpc.ca https://www.google-analytics.com https://siteintercept.qualtrics.com https://www.facebook.com https://sslstats.canadapost.ca https://*.wistia.com https://dpm.demdex.net https://csi.gstatic.com https://adservice.google.com https://*.googlesyndication.com https://*.g.doubleclick.net https://maps.googleapis.com https://vmss.boldchat.com https://www.linkedin.com https://canadapost.tt.omtrdc.net https://services.postcodeanywhere.co.uk https://embedwistia-a.akamaihd.net https://cdn.cookielaw.org https://geolocation.onetrust.com; font-src 'self' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://fonts.gstatic.com https://*.arcgis.com; form-action 'self' https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.canadapost.ca https://*.epost.ca https://www.facebook.com https://google.com; frame-ancestors 'self' https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.canadapost.ca; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.epost.ca https://*.cpggpc.ca https://www.adobetag.com https://assets.adobedtm.com https://siteintercept.qualtrics.com https://zn0xleir6swszany9-canadapostdigital.siteintercept.qualtrics.com https://connect.facebook.net https://snap.licdn.com https://z.moatads.com https://static.ads-twitter.com https://www.googletagmanager.com https://www.google.com https://www.googletagservices.com https://*.google-analytics.com https://*.googleadservices.com https://www.gstatic.com https://*.googlesyndication.com https://adservice.google.com https://adservice.google.ca https://maps.googleapis.com https://cdn.ampproject.org https://*.doubleclick.net https://*.twitter.com https://cdn.syndication.twimg.com https://dpm.demdex.net https://*.wistia.com https://*.frontlinesvc.com https://*.arcgis.com https://www.linkedin.com https://vmss.boldchat.com https://sb.scorecardresearch.com https://www.rnengage.com https://sjs.bizographics.com https://www.instagram.com https://secure.adnxs.com https://app.five9.com https://cdn.cookielaw.org; style-src 'self' 'unsafe-inline' https://*.frontlinesvc.com https://fonts.googleapis.com https://translate.googleapis.com https://*.twitter.com https://*.canadapost.ca https://*.canadapost-postescanada.ca https://*.postescanada-canadapost.ca https://*.epost.ca https://*.arcgis.com https://*.arcgisonline.com https://app.five9.com; report-uri https://www.canadapost-postescanada.ca/cwc/components/rs/csp-reports;
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-permitted-cross-domain-policies: master-only
Content-Security-Policy: frame-ancestors 'self'
referrer-policy: no-referrer-when-downgrade
strict-transport-security: max-age=31536000; includeSubdomains; preload
Date: Wed, 02 Nov 2022 13:44:48 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4d26604d5bad5609f13349fd3c33906d
2e520385b866cdd0e646cfe81d7eaa019ed42fab
dd67edcee5d3b6b315f4c062fcd3c8eaed3d093e835f28a90ee2b540a38f10c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/mc.3b7764525d9f2c925e16.js.download
109.206.243.195200 OK 5.4 kB URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/mc.3b7764525d9f2c925e16.js.download
IP 109.206.243.195:0
File type ASCII text, with very long lines (39237), with no line terminators
Hash 49808300d1b499801eb95ebe636cb200
ee6676e20f42182c86c296292d5b46cc4d779b0b
2fa959ffa716f2090e9dd68d6e235857fd39aa6be02a81f716f6eb33806471c5
GET /th3vb/index_files/mc.3b7764525d9f2c925e16.js.download HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/SV_71iOFlig0vNugpn.html
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: application/javascript
last-modified: Thu, 08 Apr 2021 11:06:16 GMT
etag: W/"606ee3a8-9945"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/1011747518/?random=1667396688233&cv=9&fst=1667394000000&num=1&value=replace%20with%20value&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa3v0&sendb=1&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&frm=0&url=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tiba=Canada%20Post&async=1&fmt=3&is_vtc=1&random=2012855488&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/1011747518/?random=1667396688233&cv=9&fst=1667394000000&num=1&value=replace%20with%20value&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa3v0&sendb=1&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&frm=0&url=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tiba=Canada%20Post&async=1&fmt=3&is_vtc=1&random=2012855488&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/1011747518/?random=1667396688233&cv=9&fst=1667394000000&num=1&value=replace%20with%20value&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0>m=2oa3v0&sendb=1&data=event%3Dpage_view%3Bgoogle_business_vertical%3Dcustom%3Bid%3Dreplace%20with%20value%3Blocation_id%3Dreplace%20with%20value&frm=0&url=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tiba=Canada%20Post&async=1&fmt=3&is_vtc=1&random=2012855488&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Wed, 02 Nov 2022 13:44:48 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=39e69ab2-1801-4b8c-8f4c-358de1f8953a&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2528b5c8-3769-4800-992a-725a9dd9c807&tw_document_href=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=ny0qm&type=javascript&version=2.3.29
104.244.42.67200 OK 43 B URL HTTP/2 analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=39e69ab2-1801-4b8c-8f4c-358de1f8953a&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2528b5c8-3769-4800-992a-725a9dd9c807&tw_document_href=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=ny0qm&type=javascript&version=2.3.29
IP 104.244.42.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/adsct?bci=3&eci=2&event_id=39e69ab2-1801-4b8c-8f4c-358de1f8953a&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=2528b5c8-3769-4800-992a-725a9dd9c807&tw_document_href=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=ny0qm&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 13:44:47 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_P38SJieUlpqO532Sq83r8Q=="; Max-Age=63072000; Expires=Fri, 01 Nov 2024 13:44:48 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 8f83e6ef942dbf15
strict-transport-security: max-age=631138519
x-response-time: 102
x-connection-hash: e1818968ee558c51db74c42b1dac3a62e3403bc7121c7c0af21796a371a0b084
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.35200 OK 472 B IP 142.250.74.35:0
Hash 4d26604d5bad5609f13349fd3c33906d
2e520385b866cdd0e646cfe81d7eaa019ed42fab
dd67edcee5d3b6b315f4c062fcd3c8eaed3d093e835f28a90ee2b540a38f10c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 02 Nov 2022 13:44:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/ScreenCaptureModule.js
109.206.243.195404 Not Found 370 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/ScreenCaptureModule.js
IP 109.206.243.195:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5710ebe5474c1caf7df70c82051e4d4f
d0eafde5f6d43bd42aa20c17ac660710f2e4a524
ccf1580400f4ef832fa3887447ed29d77d37977efdfb8128591622e5bd3b74ba
GET /th3vb/index_files/ScreenCaptureModule.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=614267586032718&ev=PageView&dl=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&rl=&if=false&ts=1667396689023&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.2.1667396689022.339449468&it=1667396688328&coo=false&rqm=GET
157.240.240.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=614267586032718&ev=PageView&dl=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&rl=&if=false&ts=1667396689023&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.2.1667396689022.339449468&it=1667396688328&coo=false&rqm=GET
IP 157.240.240.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=614267586032718&ev=PageView&dl=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&rl=&if=false&ts=1667396689023&sw=1280&sh=1024&v=2.9.89&r=stable&ec=0&o=30&fbp=fb.2.1667396689022.339449468&it=1667396688328&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400
date: Wed, 02 Nov 2022 13:44:49 GMT
X-Firefox-Spdy: h2
store.canadapost-postescanada.ca/home
23.36.79.8200 OK 8.7 kB URL HTTP/2 store.canadapost-postescanada.ca/home
IP 23.36.79.8:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12830), with CRLF, LF line terminators
Hash 01e7ff00084e21eff5169c6303cde8a6
40cb8c836d7b69fceafafa69a4aef6fa4cff998e
0169084c24cde0ba01d2cdd4c3962306a5d0feab50bb6fdd21998479f0ceabe2
GET /home HTTP/1.1
Host: store.canadapost-postescanada.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-encoding: br
access-control-allow-origin: https://store.canadapost-postescanada.ca
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-vol-correlation: 88a86f9f805948eeb0d7f732f93787a0
content-length: 8724
expires: Wed, 02 Nov 2022 13:44:49 GMT
cache-control: max-age=0, no-cache
pragma: no-cache
date: Wed, 02 Nov 2022 13:44:49 GMT
set-cookie: sb-sf-at-prod-s=at=jhJDDIgsOE4ZYYa4NE0Fz9cybncMabvl5mg17wj5Q%2BkKeStydVXmGpt5CyTA1HuYBGWGnYePvDrbvR%2BPqZcmyl8owlfhWhVCvPOSDqmrLkHCp9oCOt%2FDebXuAbrXbdqNCCOdHNkpm1D3SqQ9TH0AGrsfgwJMGCSiQAvPeOHuYQQsx2b%2B8EEE2BO1KfEN0IzZuUa0JHpnjILuH5o0Czw1CH6Q4hOJh%2B4cdR0wGMA1opMgqZ3IiWrOBnQUUbiwxXdOiY3BytQIOvb07xJXDdMQ6aXHMB8iDPZC1QAc3mJPb73r0fXot3KYDlt8xuHlBUpzg6HtvoTso4gpcEleB8Aiiw%3D%3D&dt=2022-11-02T13%3A44%3A49.1956508Z; path=/; httponly
sb-sf-at-prod=at=jhJDDIgsOE4ZYYa4NE0Fz9cybncMabvl5mg17wj5Q%2BkKeStydVXmGpt5CyTA1HuYBGWGnYePvDrbvR%2BPqZcmyl8owlfhWhVCvPOSDqmrLkHCp9oCOt%2FDebXuAbrXbdqNCCOdHNkpm1D3SqQ9TH0AGrsfgwJMGCSiQAvPeOHuYQQsx2b%2B8EEE2BO1KfEN0IzZuUa0JHpnjILuH5o0Czw1CH6Q4hOJh%2B4cdR0wGMA1opMgqZ3IiWrOBnQUUbiwxXdOiY3BytQIOvb07xJXDdMQ6aXHMB8iDPZC1QAc3mJPb73r0fXot3KYDlt8xuHlBUpzg6HtvoTso4gpcEleB8Aiiw%3D%3D; expires=Sun, 02 Nov 2042 13:44:49 GMT; path=/; httponly
_mzvr=biYtNYmFf0mjbmU6fHeOpA; expires=Thu, 02 Nov 2023 13:44:49 GMT; path=/; httponly
_mzvs=nn; path=/; httponly
_mzvt=Sq1vOwoM5kC9Mbf2bA3S_A; expires=Wed, 02 Nov 2022 14:14:49 GMT; path=/; httponly
_mzPc=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; path=/
ak_bmsc=92CF79672FBF9907A356997ACA6530CD~000000000000000000000000000000~YAAQBE8kFxNGMyaEAQAAFF6WOBE+9bAGLD+y5g0VOkcTZ+fchjatNLJsuOep2n1+ia7h21NqrdI+XRMNk0W3mN+miV1BRoEDJ7JV8xmZfCN2WxW4rwEorj9o5pPK81ufY9tWWmqJGtiRQ8kyA+VyZmfnIv8Fq50Im6gAZbfUwCQOIMuIQDlV91Zta/795uXOrUNcJ9M8qa00NXGmiJBKtZGfDzK6kbJ707dcEnQSRmu8KzIufRwH5RJcHj+xlrjEOwLPbjfzR3BSRvJMIFWcgL8cgfCLvBxnLRDs6xV0gY8zyOFXVrqZmK/UAAkAWm5sDkfU6gnYFc7eBPvPzS9g/ouqWX36+5jfITpl4xguVVRBIwctIZku21bUU5vlC2IVPnEc/I2xokq4bSGDP3oNTCuO3tw8j8NTFg==; Domain=.canadapost-postescanada.ca; Path=/; Expires=Wed, 02 Nov 2022 15:44:49 GMT; Max-Age=7200; HttpOnly
bm_mi=678303E11172840071B0289A08B1EAA0~YAAQBE8kFxRGMyaEAQAAFF6WOBHe0G5nbuA5Qu3+qOM0Ost0kiBsA44RT1F5051E/qMsgTEl2YY1WIm0bLLX/eW2XG3uCA5kHa/7JmsCk6qc2SuLRBXAgiCdNhxhDEgdEQiq9Hk9WloLmyyLsxZx4DY7c+nhFkb3zM2MRW3JMbFftl1T6D3pfN/ecLEKyyqe+CzaGeTfnwqycmKOzGrnZ6IyClJFlODYjtRa+w4k5/7Khn8tf017wFssP3gcXJnVMESVK/LUcqjNFDB/QS7RkfRmGRri9pZ1Jows/AtH29+FMwkMWVSl580YWjGlvp1hNq+eHAS023pEpys24WSDof4=~1; Domain=.canadapost-postescanada.ca; Path=/; Expires=Wed, 02 Nov 2022 13:44:49 GMT; Max-Age=0; Secure
strict-transport-security: max-age=31536000 ; includeSubDomains ; preload
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/dxjsmodule/11.ef6dd521fd8480c07042.chunk.js?Q_CLIENTVERSION=1.80.1&Q_CLIENTTYPE=web&Q_BRANDID=canadapostdigital
104.17.208.240200 OK 22 kB URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/11.ef6dd521fd8480c07042.chunk.js?Q_CLIENTVERSION=1.80.1&Q_CLIENTTYPE=web&Q_BRANDID=canadapostdigital
IP 104.17.208.240:0
File type ASCII text, with very long lines (62816), with no line terminators
Hash bd72801043de6e5c92ba3d5e3bb19ab3
7b317e50f537895d014dc67910a60083e0f87f2b
af2beeaf62e2f6f73a90312cb7c7fa09815e4bec49c1bffc01a8a3165c21d4f6
GET /dxjsmodule/11.ef6dd521fd8480c07042.chunk.js?Q_CLIENTVERSION=1.80.1&Q_CLIENTTYPE=web&Q_BRANDID=canadapostdigital HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 13:44:49 GMT
content-type: application/javascript
cf-ray: 763d4e9be9f4b500-OSL
access-control-allow-origin: *
age: 500074
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"f871-184113784d0"
last-modified: Tue, 25 Oct 2022 22:16:02 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=63601
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/michael.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/michael.css
IP 109.206.243.195:0
GET /th3vb/index_files/michael.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"606ee3a2-a1d7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/UserDefinedHTMLModule.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/UserDefinedHTMLModule.js
IP 109.206.243.195:0
GET /th3vb/index_files/UserDefinedHTMLModule.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/uwt.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/uwt.js
IP 109.206.243.195:0
GET /th3vb/index_files/uwt.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/Acc_Carding.js
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/Acc_Carding.js
IP 109.206.243.195:0
GET /th3vb/lib/js/Acc_Carding.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: application/javascript
last-modified: Sat, 10 Apr 2021 19:20:26 GMT
etag: W/"6071fa7a-5b8"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/aaron.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/aaron.css
IP 109.206.243.195:0
GET /th3vb/index_files/aaron.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"606ee3a2-91a1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/dob.js
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/dob.js
IP 109.206.243.195:0
GET /th3vb/lib/js/dob.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: application/javascript
last-modified: Sun, 14 Feb 2021 10:45:12 GMT
etag: W/"6028ff38-56c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/cwc.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/cwc.js
IP 109.206.243.195:0
GET /th3vb/index_files/cwc.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/UserDefinedHTMLModule.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/UserDefinedHTMLModule.js
IP 109.206.243.195:0
GET /th3vb/index_files/UserDefinedHTMLModule.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/ScreenCaptureModule.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/ScreenCaptureModule.js
IP 109.206.243.195:0
GET /th3vb/index_files/ScreenCaptureModule.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/zip.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/zip.js
IP 109.206.243.195:0
GET /th3vb/lib/js/zip.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery-ui.min.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery-ui.min.css
IP 109.206.243.195:0
GET /th3vb/index_files/jquery-ui.min.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"606ee3a2-7d4c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:300,400,500,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500,700
IP 142.250.74.10:0
GET /css?family=Roboto:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 02 Nov 2022 13:44:46 GMT
date: Wed, 02 Nov 2022 13:44:46 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/selector.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/selector.js
IP 109.206.243.195:0
GET /th3vb/index_files/selector.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/EX69ea3e2d8d9a41d99a46ba219e259885-libraryCode_source.min.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/EX69ea3e2d8d9a41d99a46ba219e259885-libraryCode_source.min.js
IP 109.206.243.195:0
GET /th3vb/index_files/EX69ea3e2d8d9a41d99a46ba219e259885-libraryCode_source.min.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
zn0xleir6swszany9-canadapostdigital.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_0xleIR6sWSZaNY9&Q_LOC=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&t=1667396689100
104.17.208.240200 OK 0 B URL HTTP/2 zn0xleir6swszany9-canadapostdigital.siteintercept.qualtrics.com/WRSiteInterceptEngine/?Q_ZID=ZN_0xleIR6sWSZaNY9&Q_LOC=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&t=1667396689100
IP 104.17.208.240:0
GET /WRSiteInterceptEngine/?Q_ZID=ZN_0xleIR6sWSZaNY9&Q_LOC=https%3A%2F%2Fdetermined-antonelli.109-206-243-195.plesk.page%2Fth3vb%2Findex.php&t=1667396689100 HTTP/1.1
Host: zn0xleir6swszany9-canadapostdigital.siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 13:44:49 GMT
content-type: application/javascript; charset=utf-8
cf-ray: 763d4e9ba98fb500-OSL
access-control-allow-origin: *
age: 156965
cache-control: public, max-age=3600, s-maxage=604800
etag: W/"2127-6UzjTFjmN5ONF8PgTvPcePA/ZQU"
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=8487
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jfe.c5d51c1772674a71d60c.js.download
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jfe.c5d51c1772674a71d60c.js.download
IP 109.206.243.195:0
GET /th3vb/index_files/jfe.c5d51c1772674a71d60c.js.download HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/SV_71iOFlig0vNugpn.html
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: application/javascript
last-modified: Thu, 08 Apr 2021 11:06:16 GMT
etag: W/"606ee3a8-3f457"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery-ui.min.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery-ui.min.js
IP 109.206.243.195:0
GET /th3vb/index_files/jquery-ui.min.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/vendor.866d3d2023e5a297a1b9.js.download
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/vendor.866d3d2023e5a297a1b9.js.download
IP 109.206.243.195:0
GET /th3vb/index_files/vendor.866d3d2023e5a297a1b9.js.download HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/SV_71iOFlig0vNugpn.html
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: application/javascript
last-modified: Thu, 08 Apr 2021 11:06:16 GMT
etag: W/"606ee3a8-412dd"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/js(1)
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/js(1)
IP 109.206.243.195:0
GET /th3vb/index_files/js(1) HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/plain
last-modified: Thu, 08 Apr 2021 11:06:08 GMT
etag: W/"606ee3a0-16088"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_0xleIR6sWSZaNY9&Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web
104.17.208.240200 OK 0 B URL HTTP/2 siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_0xleIR6sWSZaNY9&Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web
IP 104.17.208.240:0
POST /WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_0xleIR6sWSZaNY9&Q_CLIENTVERSION=1.47.0&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 87
Origin: https://determined-antonelli.109-206-243-195.plesk.page
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: application/json
cf-ray: 763d4e929d1bb500-OSL
access-control-allow-origin: https://determined-antonelli.109-206-243-195.plesk.page
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
trace-id: 9e6613c90050fd0a
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/modernizr.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/modernizr.js
IP 109.206.243.195:0
GET /th3vb/index_files/modernizr.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_0xleIR6sWSZaNY9&Q_CLIENTVERSION=1.80.1&Q_CLIENTTYPE=web
104.17.208.240200 OK 0 B URL HTTP/2 siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_0xleIR6sWSZaNY9&Q_CLIENTVERSION=1.80.1&Q_CLIENTTYPE=web
IP 104.17.208.240:0
POST /WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_0xleIR6sWSZaNY9&Q_CLIENTVERSION=1.80.1&Q_CLIENTTYPE=web HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 126
Origin: https://determined-antonelli.109-206-243-195.plesk.page
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 13:44:49 GMT
content-type: application/json
cf-ray: 763d4e9c2a43b500-OSL
access-control-allow-origin: https://determined-antonelli.109-206-243-195.plesk.page
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
trace-id: 79c3805b2d95a88f
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/foundation.min.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/foundation.min.css
IP 109.206.243.195:0
GET /th3vb/index_files/foundation.min.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:08 GMT
etag: W/"606ee3a0-25edf"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/modernizr.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/modernizr.js
IP 109.206.243.195:0
GET /th3vb/index_files/modernizr.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/1.5159a7a0ba1fcaed8917.chunk.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/1.5159a7a0ba1fcaed8917.chunk.js
IP 109.206.243.195:0
GET /th3vb/index_files/1.5159a7a0ba1fcaed8917.chunk.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jsApi.8da1775e8131fb08b25b.js.download
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jsApi.8da1775e8131fb08b25b.js.download
IP 109.206.243.195:0
GET /th3vb/index_files/jsApi.8da1775e8131fb08b25b.js.download HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/SV_71iOFlig0vNugpn.html
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: application/javascript
last-modified: Thu, 08 Apr 2021 11:06:16 GMT
etag: W/"606ee3a8-36f2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/foundation.min.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/foundation.min.js
IP 109.206.243.195:0
GET /th3vb/index_files/foundation.min.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/responsive.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/responsive.css
IP 109.206.243.195:0
GET /th3vb/index_files/responsive.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"606ee3a2-1a01b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/tony.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/tony.css
IP 109.206.243.195:0
GET /th3vb/index_files/tony.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"606ee3a2-9be9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/ScreenCaptureModule.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/ScreenCaptureModule.js
IP 109.206.243.195:0
GET /th3vb/index_files/ScreenCaptureModule.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/f.txt
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/f.txt
IP 109.206.243.195:0
GET /th3vb/index_files/f.txt HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/plain
last-modified: Thu, 08 Apr 2021 11:06:06 GMT
etag: W/"606ee39e-8dce"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/jquery.mask.min.js
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/jquery.mask.min.js
IP 109.206.243.195:0
GET /th3vb/lib/js/jquery.mask.min.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: application/javascript
last-modified: Thu, 24 May 2018 06:53:56 GMT
etag: W/"5b066184-1ff9"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/txt-crypt.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/txt-crypt.js
IP 109.206.243.195:0
GET /th3vb/lib/js/txt-crypt.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/phone.js
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/phone.js
IP 109.206.243.195:0
GET /th3vb/lib/js/phone.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: application/javascript
last-modified: Sat, 10 Apr 2021 19:20:04 GMT
etag: W/"6071fa64-574"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/storeEcommerce.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/storeEcommerce.css
IP 109.206.243.195:0
GET /th3vb/index_files/storeEcommerce.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"606ee3a2-208d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/function.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/function.js
IP 109.206.243.195:0
GET /th3vb/index_files/function.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/SV_71iOFlig0vNugpn.html
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/SV_71iOFlig0vNugpn.html
IP 109.206.243.195:0
GET /th3vb/index_files/SV_71iOFlig0vNugpn.html HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Thu, 08 Apr 2021 11:06:18 GMT
etag: W/"606ee3aa-1167f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/RightNow.Client.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/RightNow.Client.js
IP 109.206.243.195:0
GET /th3vb/index_files/RightNow.Client.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
sb.scorecardresearch.com/beacon.js
18.165.201.5200 OK 0 B URL HTTP/2 sb.scorecardresearch.com/beacon.js
IP 18.165.201.5:0
GET /beacon.js HTTP/1.1
Host: sb.scorecardresearch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Tue, 28 Jun 2022 13:19:23 GMT
x-amz-server-side-encryption: AES256
server: AmazonS3
content-encoding: gzip
date: Wed, 02 Nov 2022 04:07:11 GMT
cache-control: max-age=86400
etag: W/"eaf85c1c6758e84acfe134efd70e9373"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 5059e7bd12388ef6673ed156d17eb756.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P3
x-amz-cf-id: jy2XzKrzbo3GS09ckI-SRiy_mNZ8FIY52fiOwCkURtsbNnL0vQ-fvw==
age: 34658
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/2012_eCommerce.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/2012_eCommerce.css
IP 109.206.243.195:0
GET /th3vb/index_files/2012_eCommerce.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"606ee3a2-bce2"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jCarousel.min.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jCarousel.min.js
IP 109.206.243.195:0
GET /th3vb/index_files/jCarousel.min.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/RightNow.Client.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/RightNow.Client.js
IP 109.206.243.195:0
GET /th3vb/index_files/RightNow.Client.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
IP 109.206.243.195:0
GET /th3vb/index.php HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:45 GMT
content-type: text/html; charset=UTF-8
x-powered-by: PHP/8.0.25, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/insight.min.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/insight.min.js
IP 109.206.243.195:0
GET /th3vb/index_files/insight.min.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/jquery-latest.min.js
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/jquery-latest.min.js
IP 109.206.243.195:0
GET /th3vb/lib/js/jquery-latest.min.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: application/javascript
last-modified: Thu, 24 May 2018 06:53:20 GMT
etag: W/"5b066160-1762a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/normalize.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/normalize.css
IP 109.206.243.195:0
GET /th3vb/index_files/normalize.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:08 GMT
etag: W/"606ee3a0-1d9f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/vpo.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/vpo.css
IP 109.206.243.195:0
GET /th3vb/index_files/vpo.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"606ee3a2-a844"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/donald.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/donald.css
IP 109.206.243.195:0
GET /th3vb/index_files/donald.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"606ee3a2-28fa"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery-cookie.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery-cookie.js
IP 109.206.243.195:0
GET /th3vb/index_files/jquery-cookie.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/stylesheet.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/stylesheet.css
IP 109.206.243.195:0
GET /th3vb/index_files/stylesheet.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/SV_71iOFlig0vNugpn.html
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:16 GMT
etag: W/"606ee3a8-243b5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jsf.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jsf.js
IP 109.206.243.195:0
GET /th3vb/index_files/jsf.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/slick_slider.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/slick_slider.css
IP 109.206.243.195:0
GET /th3vb/index_files/slick_slider.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"606ee3a2-262f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery.autocomplete.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery.autocomplete.css
IP 109.206.243.195:0
GET /th3vb/index_files/jquery.autocomplete.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
x-accel-version: 0.01
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"355-5bf7408e6ac80"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/zip.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/lib/js/zip.js
IP 109.206.243.195:0
GET /th3vb/lib/js/zip.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/cpo.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/cpo.js
IP 109.206.243.195:0
GET /th3vb/index_files/cpo.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/meta.ff17afb25384dfc7e22f.js.download
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/meta.ff17afb25384dfc7e22f.js.download
IP 109.206.243.195:0
GET /th3vb/index_files/meta.ff17afb25384dfc7e22f.js.download HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/SV_71iOFlig0vNugpn.html
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: application/javascript
last-modified: Thu, 08 Apr 2021 11:06:16 GMT
etag: W/"606ee3a8-985"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/fbevents.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/fbevents.js
IP 109.206.243.195:0
GET /th3vb/index_files/fbevents.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/kirk.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/kirk.css
IP 109.206.243.195:0
GET /th3vb/index_files/kirk.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"606ee3a2-2e53"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/cwc.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/cwc.css
IP 109.206.243.195:0
GET /th3vb/index_files/cwc.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"606ee3a2-2fdaf"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/css
IP 109.206.243.195:0
GET /th3vb/index_files/css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/plain
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"606ee3a2-5e9a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/RCf1b64ddc47d04c2ba552708d0de25b3b-source.min.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/RCf1b64ddc47d04c2ba552708d0de25b3b-source.min.js
IP 109.206.243.195:0
GET /th3vb/index_files/RCf1b64ddc47d04c2ba552708d0de25b3b-source.min.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/js
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/js
IP 109.206.243.195:0
GET /th3vb/index_files/js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/plain
last-modified: Thu, 08 Apr 2021 11:06:06 GMT
etag: W/"606ee39e-160a6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/jquery.js
IP 109.206.243.195:0
GET /th3vb/index_files/jquery.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/shop/mc/assets/images/app/ecomm/structure/chevron-right.svg
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/shop/mc/assets/images/app/ecomm/structure/chevron-right.svg
IP 109.206.243.195:0
GET /shop/mc/assets/images/app/ecomm/structure/chevron-right.svg HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/2012_eCommerce.css
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
siteintercept.qualtrics.com/dxjsmodule/4.d66da9911972b1819cf8.chunk.js?Q_CLIENTVERSION=1.80.1&Q_CLIENTTYPE=web&Q_BRANDID=canadapostdigital
104.17.208.240200 OK 0 B URL HTTP/2 siteintercept.qualtrics.com/dxjsmodule/4.d66da9911972b1819cf8.chunk.js?Q_CLIENTVERSION=1.80.1&Q_CLIENTTYPE=web&Q_BRANDID=canadapostdigital
IP 104.17.208.240:0
GET /dxjsmodule/4.d66da9911972b1819cf8.chunk.js?Q_CLIENTVERSION=1.80.1&Q_CLIENTTYPE=web&Q_BRANDID=canadapostdigital HTTP/1.1
Host: siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 02 Nov 2022 13:44:49 GMT
content-type: application/javascript
cf-ray: 763d4e9d2b76b500-OSL
access-control-allow-origin: *
age: 500065
cache-control: public, max-age=604800, s-maxage=604800
etag: W/"9eb-184113784d0"
last-modified: Tue, 25 Oct 2022 22:16:02 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
cf-bgj: minify
cf-polished: origSize=2539
edge-control: max-age=604800
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/beacon.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/beacon.js
IP 109.206.243.195:0
GET /th3vb/index_files/beacon.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/gpt.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/gpt.js
IP 109.206.243.195:0
GET /th3vb/index_files/gpt.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/extendstyles.css
109.206.243.195200 OK 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/extendstyles.css
IP 109.206.243.195:0
GET /th3vb/index_files/extendstyles.css HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/css
last-modified: Thu, 08 Apr 2021 11:06:10 GMT
etag: W/"606ee3a2-17d9d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/foundation.equalizer.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/foundation.equalizer.js
IP 109.206.243.195:0
GET /th3vb/index_files/foundation.equalizer.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:46 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2
determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/RCf1b64ddc47d04c2ba552708d0de25b3b-source.min.js
109.206.243.195404 Not Found 0 B URL HTTP/2 determined-antonelli.109-206-243-195.plesk.page/th3vb/index_files/RCf1b64ddc47d04c2ba552708d0de25b3b-source.min.js
IP 109.206.243.195:0
GET /th3vb/index_files/RCf1b64ddc47d04c2ba552708d0de25b3b-source.min.js HTTP/1.1
Host: determined-antonelli.109-206-243-195.plesk.page
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://determined-antonelli.109-206-243-195.plesk.page/th3vb/index.php
Cookie: _gcl_au=1.1.544706787.1667396686
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 404 Not Found
server: nginx
date: Wed, 02 Nov 2022 13:44:47 GMT
content-type: text/html
last-modified: Tue, 01 Nov 2022 23:21:33 GMT
etag: W/"328-5ec70fc17b6d2"
content-encoding: br
X-Firefox-Spdy: h2