www.govloanoptions.com/src/v1/images/logo-main.png
172.66.40.169 5.9 kB URL www.govloanoptions.com/src/v1/images/logo-main.png
IP 172.66.40.169:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 8192f4928dcc59e8d43ca9a952c0b2b7
69f9d99d845f3ed21fcf26489060ce13e4b62be6
373a2d631d59359d12d908a13c13436f3fe485d733684cfa39d51fead4d27aae
GET /src/v1/images/logo-main.png HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:47 GMT
content-type: image/webp
content-length: 5918
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=13731
content-disposition: inline; filename="logo-main.webp"
etag: "35a3-60a98fd2d0c7d"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept
cache-control: max-age=14400
cf-cache-status: HIT
age: 1772
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LxblWBWKO%2BajoDeVZQQcC61w5972Gk%2BDhbkJD6fU1W1twFXsBwnZGYPsKuVa2HDnSnAVizmRk9v6OjQEJhaKhA%2FAXORwqfhyrc8AJskW5uMR1EEY7ROq%2F1H6J%2Bk012ItAnbjKGBIhko%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0aec86ab521-OSL
X-Firefox-Spdy: h2
www.govloanoptions.com/src/v1/images/icon-1.png
172.66.40.169 6.9 kB URL www.govloanoptions.com/src/v1/images/icon-1.png
IP 172.66.40.169:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash a012a64b59c7e48d0d7e8a1c72a6c9ea
654575c69686abe3b2af70a6ab44fe4dff9b88ef
525472eb974007b1740bad9c50681234415a8e72f72a3cf2ad69424b7d9b937c
GET /src/v1/images/icon-1.png HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:47 GMT
content-type: image/webp
content-length: 6928
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=25260
content-disposition: inline; filename="icon-1.webp"
etag: "62ac-60a98fd2d0c7d"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept
cache-control: max-age=14400
cf-cache-status: HIT
age: 1772
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=R6RLITkecfnRvv93aO4CaEjmzyhjYVoZEuFIPKPp%2BrPLAExW4MV0%2Fd0i3oANWPRz7wx%2Biys9aDI4%2B0Jtv3Uu9chhzpjEjFDhLxO7Ne6tUTeD8NgdKwCYKyix32GE2z69eSs5TEeea0c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0aed86bb521-OSL
X-Firefox-Spdy: h2
www.govloanoptions.com/src/v1/images/icon-2.png
172.66.40.169 5.8 kB URL www.govloanoptions.com/src/v1/images/icon-2.png
IP 172.66.40.169:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash d9c22a9c7453b6ff3b21dc16275b853e
85a0311fcacf52dc9cc776097dce3d7e31cf9c1d
f8d3a55e3cce704288bba2b0189fbc92139f61f5b6d466a305cb696fc8e6c14e
GET /src/v1/images/icon-2.png HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:47 GMT
content-type: image/webp
content-length: 5806
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=24467
content-disposition: inline; filename="icon-2.webp"
etag: "5f93-60a98fd2d1c1d"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept
cache-control: max-age=14400
cf-cache-status: HIT
age: 1771
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YeRlLTtCXFPaJNFRuhSM3euoFaMaOItHcuCrjqTUrVLCLBmXeu1RhI5rHDXay9Y5DJ4qm6TRPmTlqxqkfMbilX%2BKX%2Bi2QvkqlwcPycepq0jhLd%2FHiw6NNlCU2lAuDrnJt920osA6B7A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0aed870b521-OSL
X-Firefox-Spdy: h2
www.govloanoptions.com/src/v1/images/icon-4.png
172.66.40.169 7.0 kB URL www.govloanoptions.com/src/v1/images/icon-4.png
IP 172.66.40.169:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 66e4e5d2d9866cd6ba52b03183da941c
3b049c678c0932291b656542d697fadc2de3988d
209a0c42270ce2907d4d19d67b65e0aa3dd7f9c995c65c6d545ca3deef7df6af
GET /src/v1/images/icon-4.png HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:47 GMT
content-type: image/webp
content-length: 7028
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=26375
content-disposition: inline; filename="icon-4.webp"
etag: "6707-60a98fd2d0c7d"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept
cache-control: max-age=14400
cf-cache-status: HIT
age: 1771
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z7JydalVMHkXrnNzBzdwDI9rhJAs91ZhHTHx%2F%2Fnw%2FWZsANTfnTiD6RWQYHbKUrJYdARIUVNgaRmnUa%2FFBTCtanGAoLSz97v2l7YvZc3gtiziVV5XaICyzgdXSStU9pRZ8TNqUg2ZS%2Fg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0aed87ab521-OSL
X-Firefox-Spdy: h2
www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
172.66.40.169200 OK 14 kB URL User Request GET HTTP/2 www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
IP 172.66.40.169:443
Certificate IssuerGoogle Trust Services LLC
Subjectgovloanoptions.com
Fingerprint75:C9:B7:BB:36:61:A4:77:3F:24:CE:B0:5D:D3:1C:66:E4:F7:7C:8A
ValiditySat, 21 Oct 2023 14:16:07 GMT - Fri, 19 Jan 2024 14:16:06 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (18936)
Hash 8621a39b3118e2aa0eebcdc24c9b8ea3
c4845f51637cf11d1a3a301ea0c3a2566e908a18
436d565aee2aa9a0c09904aaf9784d4826368f3f30d85288f7c18422d15741e7
GET /v1/?publisher_id=962&subid=mgm3s HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:46 GMT
content-type: text/html
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qz5IFujrGSqqdB2OfMGOEbXyR2WKVWXO%2FfR11hw7e4%2BvdO%2Bmb3TpOPJJZ%2BLGGBTJaaIF00hbJv5%2B2w1jJWtiFwOIVY4BXKPPtwVkYbm1%2FUyw5HgbckU4k5EdVDRWlSVlPzHQ0%2FLEYXY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0aa7c73b521-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.govloanoptions.com/src/v1/images/logo-popup.png
172.66.40.169200 OK 6.1 kB URL GET HTTP/2 www.govloanoptions.com/src/v1/images/logo-popup.png
IP 172.66.40.169:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subjectgovloanoptions.com
Fingerprint75:C9:B7:BB:36:61:A4:77:3F:24:CE:B0:5D:D3:1C:66:E4:F7:7C:8A
ValiditySat, 21 Oct 2023 14:16:07 GMT - Fri, 19 Jan 2024 14:16:06 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0031fe59f938d2666c9eabe4f7a66104
ce4cc297459d1bd193ee880327d033cdce19be4b
167ec9dad9aa890eff10c73f0db1de712752d35b159c99188f9eb53fb8b92033
GET /src/v1/images/logo-popup.png HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:47 GMT
content-type: image/webp
content-length: 6136
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=14010
content-disposition: inline; filename="logo-popup.webp"
etag: "36ba-60a98fd2d0c7d"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept
cache-control: max-age=14400
cf-cache-status: HIT
age: 1771
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0UYtf9nEr%2Bl2hNA3fzp79hoHyEpzMaElPU7aHMKRJROIVXQlMpfb6GN0%2FrnAlJv9yCUrIFDdpGPR1td7C18fCnOkYjpyxQCvGwb2K%2Fl%2FrmrEe%2FiEFhK9jn9ORJF%2FPMHm2LGmStPxeUI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0aed880b521-OSL
X-Firefox-Spdy: h2
www.govloanoptions.com/src/v1/images/icon-locked.png
172.66.40.169200 OK 426 B URL GET HTTP/2 www.govloanoptions.com/src/v1/images/icon-locked.png
IP 172.66.40.169:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subjectgovloanoptions.com
Fingerprint75:C9:B7:BB:36:61:A4:77:3F:24:CE:B0:5D:D3:1C:66:E4:F7:7C:8A
ValiditySat, 21 Oct 2023 14:16:07 GMT - Fri, 19 Jan 2024 14:16:06 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 72ef86b5ad5d6c763ef2f2e85c60e84b
bd00348d3e055f14ef0cad05b7a795f989c56977
8e1f537976f516fb6c870647915227be159737292f6dc3e43ff59494c8d37cc2
GET /src/v1/images/icon-locked.png HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:47 GMT
content-type: image/webp
content-length: 426
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=835
content-disposition: inline; filename="icon-locked.webp"
etag: "343-60a98fd2d0c7d"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept
cache-control: max-age=14400
cf-cache-status: HIT
age: 1771
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=459WQX8s5BDYZFYg78E2M0ZaMto4MMsnaBJ9AOzlcrodJ1qmtcD3CuRFwiZNcgZmUHgy2jusDwh8YV2761f131%2BvB5zZYOqDeY2mVUJegOwzXaMbhx3Mb9dcOzQIsCQNA8zbQGFeh%2Bk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0aed887b521-OSL
X-Firefox-Spdy: h2
www.govloanoptions.com/src/v1/images/tooltip.png
172.66.40.169200 OK 560 B URL GET HTTP/2 www.govloanoptions.com/src/v1/images/tooltip.png
IP 172.66.40.169:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subjectgovloanoptions.com
Fingerprint75:C9:B7:BB:36:61:A4:77:3F:24:CE:B0:5D:D3:1C:66:E4:F7:7C:8A
ValiditySat, 21 Oct 2023 14:16:07 GMT - Fri, 19 Jan 2024 14:16:06 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 574670eacb782376b17aa04ce7f9940b
47d076622b78b0f0fecf38c9b457c81aad1c9909
6c672d61684f53b98b8f76275d55c307c7dd3c851b6f4377229adf5779ff77ad
GET /src/v1/images/tooltip.png HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:47 GMT
content-type: image/webp
content-length: 560
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=1711
content-disposition: inline; filename="tooltip.webp"
etag: "6af-60a98fd2d1c1d"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept
cache-control: max-age=14400
cf-cache-status: HIT
age: 1770
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KsZwpjcq7b3ASUSZHfh%2FruBceF%2F6TXbxxzsVVH4%2BLI4an3jqv5j7L7iSgvenst9DtGrSGUlVst7C4e2r9NNqAK%2Fdu5swfVBglQxUYvkKJ5%2FnMzR6%2B5JXIIVEL6frYU47pBWoMveQ%2Fpw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0aed889b521-OSL
X-Firefox-Spdy: h2
www.govloanoptions.com/v1/bundle.css
172.66.40.169 11 kB URL www.govloanoptions.com/v1/bundle.css
IP 172.66.40.169:0
File type ASCII text, with very long lines (38323)
Hash da0af8211b4ca33078b3445a55d31f60
fe95fe54a55d7f93f01a551ce96570e13491c067
7a1773ca855470880bc8c4cd0302ecfd0df2a813856ec45e90bff1cd2e6c73c7
GET /v1/bundle.css HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:47 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=64043
etag: W/"fa2b-60a98fd2ccdfc-gzip"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 1775
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2%2F7K38kBgntsErXY4wUw83I2ejkF6%2FxHBjLDGGI3iK4FRaijPcIOb0DRrjaXbyIhCHgwu91C5Z0VP5c5yxfVZKjMGUmqXA0uaZMFnGl5J1m%2F8tOX2gk7Sh%2BaK2iLrmuM4AXrl1hWx80%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0aec869b521-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.govloanoptions.com/src/images/hero.jpg
172.66.40.169 288 kB URL www.govloanoptions.com/src/images/hero.jpg
IP 172.66.40.169:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 2880x1466, components 3\012- data
Size 288 kB (287687 bytes)
Hash 0704adfe49f0677c0374ab7a2f58182d
4f6c72a43b5c2971366674bd0ea883895e90ebf1
da67ff6a32c88565becaaedfa96bb7fa3b58be9dffdf420ff34e67d5bb0cfe0a
GET /src/images/hero.jpg HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/bundle.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:47 GMT
content-type: image/jpeg
content-length: 287687
cf-bgj: imgq:85,h2pri
cf-polished: origSize=287695, status=webp_bigger
etag: "463cf-60a98fd2d4afe"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 1773
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BhxzGb2gSMjlQTu9dmN369s7BTXllgL%2FY7OP3rU41Xf%2F0GQIxV9SdyPVesIYLtoglcNPEoftS7Yrmg849%2FCXMwulxSiBhuMpEeOzQ75cfJgdL%2F%2BYOLEN3pM4S1rxWFMRp0wzZr9s8m8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8317d0b18bb5b521-OSL
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
142.250.74.106200 OK 30 kB URL GET HTTP/3 ajax.googleapis.com/ajax/libs/jquery/2.1.3/jquery.min.js
IP 142.250.74.106:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (32180)
Hash 32015dd42e9582a80a84736f5d9a44d7
41b4bfbaa96be6d1440db6e78004ade1c134e276
8af93bd675e1cfd9ecc850e862819fdac6e3ad1f5d761f970e409c7d9c63bdc3
GET /ajax/libs/jquery/2.1.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29707
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 13:43:11 GMT
expires: Wed, 04 Dec 2024 13:43:11 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 116377
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.useproof.com/proof.js?acc=TWoRTkvsVLQNe3zCfcg3pETq91r1
172.67.169.176200 OK 498 kB URL GET HTTP/2 cdn.useproof.com/proof.js?acc=TWoRTkvsVLQNe3zCfcg3pETq91r1
IP 172.67.169.176:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subjectuseproof.com
Fingerprint6B:26:8D:A6:3E:D7:13:78:BE:EE:14:2E:FF:7E:CB:41:18:6D:B0:10
ValidityThu, 12 Oct 2023 11:35:36 GMT - Wed, 10 Jan 2024 11:35:35 GMT
File type Unicode text, UTF-8 text, with very long lines (60034), with no line terminators
Size 498 kB (497733 bytes)
Hash 0426397a9b31146729ac86c5be8595d3
953342b7defc23d1c552eba63f42bb915aae90f3
418614329e831c01f8232ddf31feefe6f63c6b52b9c6cbdd5bd5ac314540cfaf
GET /proof.js?acc=TWoRTkvsVLQNe3zCfcg3pETq91r1 HTTP/1.1
Host: cdn.useproof.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:48 GMT
content-type: application/javascript
content-length: 497733
x-amz-id-2: guBi02fv/Lr5+dhlyXjmIFWLgJl/aa98/8+jm/5Gg2gM3uG2Xl2lZopAv2YMJ4FNPyiPxVqKiBHK3qcdjvDE0Ff0i0pVRUxf
x-amz-request-id: V4C62S8WA11X1590
last-modified: Mon, 29 Jun 2020 14:15:25 GMT
etag: "0426397a9b31146729ac86c5be8595d3"
cache-control: public, max-age=315360000, no-transform
x-amz-version-id: F0WxJo6k6ZqSk5t4_qZ.mqlg1RkwiqAq
cf-cache-status: HIT
age: 1192710
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DBfEXoXMCkNwhbyyJCh2PhZ8vl%2F6jQNbh1PkQdEXtWETF%2BesqJ7N8lmMWVMMzzVaVM%2Bnxg23UmZ7yp6gcKZFk20hAW8J%2FA7gw%2FJvRpFnUj0Y8WuSUAO3AIR63jkvQHkPRRIX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8317d0b24bb956a8-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto:400,500,700
142.250.74.106200 OK 99 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:400,500,700
IP 142.250.74.106:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type gzip compressed data, max compression\012- data
Hash 97c878424fe72ee185a5e139ecd144da
19a2c09926c00e13bae237d995d1f218e84b8e97
c810ad0f398d18da6905d25198628552a79077bf2fd8ef3347060c962ecf62cf
GET /css?family=Roboto:400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 06 Dec 2023 22:02:47 GMT
date: Wed, 06 Dec 2023 22:02:47 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.99 16 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.99:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 06 Dec 2023 21:52:12 GMT
expires: Thu, 05 Dec 2024 21:52:12 GMT
cache-control: public, max-age=31536000
age: 636
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.govloanoptions.com/v1/js/1.a1dd40bc.chunk.js
172.66.40.169200 OK 108 kB URL GET HTTP/2 www.govloanoptions.com/v1/js/1.a1dd40bc.chunk.js
IP 172.66.40.169:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subjectgovloanoptions.com
Fingerprint75:C9:B7:BB:36:61:A4:77:3F:24:CE:B0:5D:D3:1C:66:E4:F7:7C:8A
ValiditySat, 21 Oct 2023 14:16:07 GMT - Fri, 19 Jan 2024 14:16:06 GMT
File type Unicode text, UTF-8 text, with very long lines (61349)
Size 108 kB (108518 bytes)
Hash e12ad6add71788e2e71c139e4b41d7c2
ae479f768a92d437c259c8db1de932ab8d6671e1
3f8617a5a0d8bb84464841bb540e44f6f94bdab1654b700c6b194899d71e8343
GET /v1/js/1.a1dd40bc.chunk.js HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:47 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=270891
etag: W/"4222b-60a98fd2ccdfc-gzip"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 1773
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UJ8zMxvqz7XCxg1tkK4XzYbdWSFSDIQNYfRK04XBL0L%2FOn9YexGbErQwk31DTFb1TxOceB9NrWvNHycW%2FeKY1BTNqhCdRB0Mk2TcdQQrzz7wX4i6qwLpQgU3NCAnoGu6H7KmC5DCz9E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0b1ec1eb521-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.99200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.99:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 23:43:03 GMT
expires: Tue, 03 Dec 2024 23:43:03 GMT
cache-control: public, max-age=31536000
age: 166785
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-N493R64
142.250.74.168200 OK 74 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-N493R64
IP 142.250.74.168:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (10867)
Hash f0354ddc1554ed7df8b643d24bdb4b62
90fbd3e76be876c6c4b9e3cd579a2e00ce3d47e1
046187770f6f0d684c98bcc7d9cd20d1a05b9608629de8a4bf4278bfcaf677d3
GET /gtm.js?id=GTM-N493R64 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 06 Dec 2023 22:02:48 GMT
expires: Wed, 06 Dec 2023 22:02:48 GMT
cache-control: private, max-age=900
last-modified: Wed, 06 Dec 2023 21:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73889
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.fcmrktplace.com/scripts/clicksnet.js
44.224.167.161 2.8 kB URL cdn.fcmrktplace.com/scripts/clicksnet.js
IP 44.224.167.161:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (554)
Hash 19665df8e523238482df2f1facc0a911
83fd2df974aeb79542d210e434321b5dd00ce714
876835d154bd860e6d0bb07497000b52e4963602b6115b499e7763cbf0f029c1
GET /scripts/clicksnet.js HTTP/1.1
Host: cdn.fcmrktplace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:48 GMT
content-type: application/javascript
content-length: 2845
content-encoding: gzip
last-modified: Wed, 10 May 2023 20:32:33 GMT
accept-ranges: bytes
etag: "806798c7e83d91:0"
vary: Accept-Encoding
server: Microsoft-IIS/8.5
access-control-allow-origin: *
x-powered-by: ASP.NET
p3p: Policyref="/w3c/p3p.xml", CP="ALL DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
X-Firefox-Spdy: h2
cdn.fcmrktplace.com/scripts/clicksnet_mortgage.js
44.224.167.161200 OK 1.5 kB URL GET HTTP/2 cdn.fcmrktplace.com/scripts/clicksnet_mortgage.js
IP 44.224.167.161:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerAmazon
Subject*.fcmrktplace.com
Fingerprint8A:C2:A2:40:49:45:BE:00:1A:61:DF:9A:E0:03:49:66:C4:0B:2E:DA
ValidityThu, 09 Feb 2023 00:00:00 GMT - Mon, 05 Feb 2024 23:59:59 GMT
File type HTML document, Unicode text, UTF-8 (with BOM) text
Hash d5f0bcdbaa4ca27aedfa335789958962
8a80b3e58fd2291212dbc284c6420ceb46a300bf
b1ea6cd63f2bb2277bd94f25948696157e48b24475ca6f90eaf25cdd79fc71be
GET /scripts/clicksnet_mortgage.js HTTP/1.1
Host: cdn.fcmrktplace.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:48 GMT
content-type: application/javascript
content-length: 1549
content-encoding: gzip
last-modified: Wed, 10 May 2023 20:32:33 GMT
accept-ranges: bytes
etag: "806798c7e83d91:0"
vary: Accept-Encoding
server: Microsoft-IIS/8.5
access-control-allow-origin: *
x-powered-by: ASP.NET
p3p: Policyref="/w3c/p3p.xml", CP="ALL DSP COR CURa ADMa DEVa TAIa OUR BUS IND UNI COM NAV INT"
X-Firefox-Spdy: h2
rgrassets.s3-us-west-2.amazonaws.com/pixel.min.js
52.92.210.194 6.1 kB URL rgrassets.s3-us-west-2.amazonaws.com/pixel.min.js
IP 52.92.210.194:0
File type ASCII text, with very long lines (6065), with no line terminators
Hash f953ea772cefd2eb9d63972a17357053
fe0ee852d05b858555702e264739cc23cd321638
439a62706891e1d3726121a56316cdc8b545114ec209a7dab5abc374c7059a6f
GET /pixel.min.js HTTP/1.1
Host: rgrassets.s3-us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
x-amz-id-2: QiPWDlJdQrC2BSDekb9Wl1XP9Zr+Ui8qRaNY+eKYYlIc3hPaeCmvjMVggL/YZZHax9wlvTxoiOE=
x-amz-request-id: VVAJHDWAPS2CCH0V
Date: Wed, 06 Dec 2023 22:02:49 GMT
Last-Modified: Thu, 24 Jun 2021 21:27:48 GMT
ETag: "f953ea772cefd2eb9d63972a17357053"
Accept-Ranges: bytes
Content-Type: application/javascript
Server: AmazonS3
Content-Length: 6065
www.govloanoptions.com/src/v1/images/favicons/favicon-16x16.png
172.66.40.169200 OK 274 B URL GET HTTP/2 www.govloanoptions.com/src/v1/images/favicons/favicon-16x16.png
IP 172.66.40.169:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subjectgovloanoptions.com
Fingerprint75:C9:B7:BB:36:61:A4:77:3F:24:CE:B0:5D:D3:1C:66:E4:F7:7C:8A
ValiditySat, 21 Oct 2023 14:16:07 GMT - Fri, 19 Jan 2024 14:16:06 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash f7775f09505315503b48b17c1eb7adfe
e09cccc5acaefc5fe9133f0a1dd15107c5f09fcf
e29e718e651e47d578142d80a24c461c2ab7f525f82ee69c92cfc47b8ccad7fe
GET /src/v1/images/favicons/favicon-16x16.png HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:48 GMT
content-type: image/webp
content-length: 274
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=766
content-disposition: inline; filename="favicon-16x16.webp"
etag: "2fe-60a98fd2d0c7d"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept
cache-control: max-age=14400
cf-cache-status: HIT
age: 2
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LCDojdAaTKO%2BTM%2FFGrHhWWitPJG5kFhWFOql%2B4%2F9ZMl6mcx1H61cpyNyf9kGrw2ehG87ks9B7oxdtghesPM4ftY33CuRuD10JqIc5bIpqiox%2BCoMGUPhPtuzG6xWrXq4g8dH%2FAk1h1Y%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0b78ba0b521-OSL
X-Firefox-Spdy: h2
www.govloanoptions.com/src/v1/images/favicons/apple-touch-icon.png
172.66.40.169200 OK 5.2 kB URL GET HTTP/2 www.govloanoptions.com/src/v1/images/favicons/apple-touch-icon.png
IP 172.66.40.169:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subjectgovloanoptions.com
Fingerprint75:C9:B7:BB:36:61:A4:77:3F:24:CE:B0:5D:D3:1C:66:E4:F7:7C:8A
ValiditySat, 21 Oct 2023 14:16:07 GMT - Fri, 19 Jan 2024 14:16:06 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 11b9e46cbbf61bbbabc153a0ae16bca3
f84e4bb74525699fdd74b1665244bdc804dc6f22
4bb88b1b719bb862ff750e0a4ff8d714ff29bb98dc4d1f0399c9ad5b66bccdd9
GET /src/v1/images/favicons/apple-touch-icon.png HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:48 GMT
content-type: image/webp
content-length: 5194
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=12014
content-disposition: inline; filename="apple-touch-icon.webp"
etag: "2eee-60a98fd2d1c1d"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept
cache-control: max-age=14400
cf-cache-status: HIT
age: 2
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9FVMd%2FUIHBmwtRuCS8cDZ75p9r8rJ5%2FmW3wozGaS%2FC0zQT1TSv5z38RMsaWNhfbXnIQxthr6OcTYq5RtuztgJUXDalQhYi645Y63bl4kjtRQkPNWu3%2Fo%2FkiQ5c2%2Bl42KdyxGECknDVw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0b78b9db521-OSL
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.76.107 345 B IP 23.36.76.107:0
ASN #20940 Akamai International B.V.
Hash 68aa35e51733329399f214d77fd58bc9
66d87f343c4b5c93b59a475490fd197f62dce4d2
a01d3d4a30ce8ac559c54d6138b3bda931778a521e1acbec5228cfcf6f2e5f56
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "A01D3D4A30CE8AC559C54D6138B3BDA931778A521E1ACBEC5228CFCF6F2E5F56"
Last-Modified: Mon, 04 Dec 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9942
Expires: Thu, 07 Dec 2023 00:48:31 GMT
Date: Wed, 06 Dec 2023 22:02:49 GMT
Connection: keep-alive
reallygreatrate.com/api/anura/index.php?publisher_id=962
165.227.241.154 19 B URL reallygreatrate.com/api/anura/index.php?publisher_id=962
IP 165.227.241.154:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with no line terminators
Hash 5373c2f8937e5d90f76efa7bdb99c134
b13aee2d6c5475e82b0af3ab349da2a17d299105
d6f23ba3c46d07b36409c998a17ec046afff3f9676d08d2c7146fed04d6c1dcf
GET /api/anura/index.php?publisher_id=962 HTTP/1.1
Host: reallygreatrate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 06 Dec 2023 22:02:49 GMT
content-type: application/json
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0,private
pragma: no-cache
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS
set-cookie: xcSID=8uff9qgjatffjeaehcslcv0d10; path=/
DO-LB="Cg0xMC4xMjAuMC42OjgwEMfdmAE="; Max-Age=3600; Path=/; HttpOnly; SameSite=Lax
transfer-encoding: chunked
www.googletagmanager.com/gtag/js?id=G-TMD4H1F403&l=dataLayer&cx=c
142.250.74.168200 OK 79 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-TMD4H1F403&l=dataLayer&cx=c
IP 142.250.74.168:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT
File type ASCII text, with very long lines (4179)
Hash 6f916ae9c7a99b4a12181a8434419676
c8550299c85464c4ac7783be766fd40168ee0dba
f2997bc7a43cff70b89c7e425210e539e35630ae1fb5bdad59992d2a06cb360c
GET /gtag/js?id=G-TMD4H1F403&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 06 Dec 2023 22:02:49 GMT
expires: Wed, 06 Dec 2023 22:02:49 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 79437
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.useproof.com/proxy/index.html
172.67.169.176 325 B URL cdn.useproof.com/proxy/index.html
IP 172.67.169.176:0
Certificate IssuerGoogle Trust Services LLC
Subjectuseproof.com
Fingerprint6B:26:8D:A6:3E:D7:13:78:BE:EE:14:2E:FF:7E:CB:41:18:6D:B0:10
ValidityThu, 12 Oct 2023 11:35:36 GMT - Wed, 10 Jan 2024 11:35:35 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (325), with no line terminators
Hash f92252b1f21fd30ac52b59395971ecdb
ecb588481454091dcfea3c925c83577425497626
0adeedede6d3bdf7e7258108ead2ed80af83b9fec8ba560d29fce2f3a957a261
GET /proxy/index.html HTTP/1.1
Host: cdn.useproof.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:50 GMT
content-type: text/html
content-length: 325
x-amz-id-2: xpu1U4gPf7IeHzw8qis1c35EH0LxRVidGINGwsUz6Mv2xm2X+s2TInOFzE2y/U20iHOAOFElYdQ=
x-amz-request-id: BW0PZGYGQH52JZWG
last-modified: Mon, 29 Jun 2020 14:15:25 GMT
etag: "f92252b1f21fd30ac52b59395971ecdb"
cache-control: max-age=315360000, no-transform, public
x-amz-version-id: 6OysE9MvUGgGn.qn_BXpeYijOLHR8713
accept-ranges: bytes
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=174l9FDeAxLQOAqJFXkIjkrqDr5HRmNLE9kNZ0%2FLzTsr3tYfhEtKE98up8MldGd%2FoRaucZ8dVe4mXARIbHpMUxtqBKp8rx7uzCwLpDhPU9FKUDrawjx0U1I56WGDtW4%2FIRGq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0be48db56a8-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
reallygreatrate.com/api/hdi/?upload_type=GLOv1&publisher_id=962
165.227.241.154 16 B URL reallygreatrate.com/api/hdi/?upload_type=GLOv1&publisher_id=962
IP 165.227.241.154:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with no line terminators
Hash ede17a1448618400f0be7c076cc0a196
48493d5cab5a5e50d801c864e50482ae39441dc5
4adec7b7859f0905d75ebfb10f5336cf6d2fe3b885b79fbcbf43daebe23890f2
GET /api/hdi/?upload_type=GLOv1&publisher_id=962 HTTP/1.1
Host: reallygreatrate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 06 Dec 2023 22:02:50 GMT
content-type: application/json
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0,private
pragma: no-cache
access-control-allow-origin: *
set-cookie: xcSID=02eppj7sh399ts3irn7ua22402; path=/
PHPSESSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
xcSID=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
DO-LB="Cg0xMC4xMjAuMC4yOjgwEMjdmAE="; Max-Age=3600; Path=/; HttpOnly; SameSite=Lax
transfer-encoding: chunked
cdn.useproof.com/proxy/proxy.js
172.67.169.176 114 kB URL cdn.useproof.com/proxy/proxy.js
IP 172.67.169.176:0
Certificate IssuerGoogle Trust Services LLC
Subjectuseproof.com
Fingerprint6B:26:8D:A6:3E:D7:13:78:BE:EE:14:2E:FF:7E:CB:41:18:6D:B0:10
ValidityThu, 12 Oct 2023 11:35:36 GMT - Wed, 10 Jan 2024 11:35:35 GMT
File type Unicode text, UTF-8 text, with very long lines (65514), with no line terminators
Size 114 kB (114404 bytes)
Hash 9f4d60f4f2b143cadacb2b8b3a901401
8c25b07f5122f9875920498c20ede6045320f479
f4d712c5a2901b92d4baa6e18554c3db8e5ce1d8f4d3189054e39489b37c982c
GET /proxy/proxy.js HTTP/1.1
Host: cdn.useproof.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.useproof.com/proxy/index.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:50 GMT
content-type: application/javascript
content-length: 114404
x-amz-id-2: jsFD4osti2IPu2tsk/0B8yPS1aq0YibKYcul+0E46JhYOjmhV9EKBZYLb1PqFzPbtmF9IYFRM0iKcbjuPVFfYQ==
x-amz-request-id: RPYVYCHBVAQHDAV4
last-modified: Mon, 29 Jun 2020 14:15:25 GMT
etag: "9f4d60f4f2b143cadacb2b8b3a901401"
cache-control: public, max-age=315360000, no-transform
x-amz-version-id: FhtEkyvjyNE68BTwRHm.pMLrP83vtI4K
cf-cache-status: HIT
age: 180616
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PgvyZ4UyTghgj5jtFPzE%2FGYXtUH%2Fm0a1UtjM33F7LAWEOilkWlop7U6HdCQ38%2FQBwxjrT3x6iPRiWgvF6W07mcBMe3a1vnwLXjlWIoTS3l3HhLAQKwRNaKuoYepSXukMGSTn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8317d0c18c4e56a8-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.gstatic.com/firebasejs/4.5.0/firebase.js
142.250.74.67200 OK 116 kB URL GET HTTP/2 www.gstatic.com/firebasejs/4.5.0/firebase.js
IP 142.250.74.67:443
Requested by https://cdn.useproof.com/proxy/index.html
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type ASCII text, with very long lines (16738)
Size 116 kB (116073 bytes)
Hash cd45e8c7c79595e8e3fd085312739a70
509f1d711b3d1eea7fdf47ea7fc29e5a49b1041a
6a45658988e9ccf8d151c181ca1ce06731abd20a469ea9b6210b31cfcaffa91e
GET /firebasejs/4.5.0/firebase.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.useproof.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 116073
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 23:28:46 GMT
expires: Fri, 29 Nov 2024 23:28:46 GMT
cache-control: public, max-age=31536000
age: 513244
last-modified: Tue, 03 Oct 2017 14:56:39 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m03.amazontrust.com/
143.204.53.97 471 B URL ocsp.r2m03.amazontrust.com/
IP 143.204.53.97:0
Hash bc5dec72e86208ee5ca021198868a952
4cfb9738bab8f63b18f375e76343e73709dc7d91
c980dbc8c0830297d15b4464e14761d153a850602f47826c728f205aadf379a3
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 06 Dec 2023 22:02:50 GMT
Last-Modified: Wed, 06 Dec 2023 20:41:13 GMT
Server: ECAcc (amb/6AEA)
X-Cache: Miss from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: b0QN3P61lJLQa0gdH_p5F0Z5imG5TBEtWGIw3_hH1RZO4g7HLuge8Q==
Age: 4897
script.anura.io/request.js?instance=3171636640&campaign=mgm3s&source=962&callback=optionalCallbackFunction&631843477917
3.10.186.13200 OK 20 kB URL GET HTTP/2 script.anura.io/request.js?instance=3171636640&campaign=mgm3s&source=962&callback=optionalCallbackFunction&631843477917
IP 3.10.186.13:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerAmazon
Subjectscript.anura.io
Fingerprint83:CF:23:67:0B:B9:DB:BB:65:3F:31:44:AD:06:8B:B2:7E:B4:E1:20
ValidityMon, 16 Oct 2023 00:00:00 GMT - Wed, 13 Nov 2024 23:59:59 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 0f1e3beb636d890e46e42fe20d99df8c
6d8b9ec37a7af1b5a77d43f71b14b3487bca1c97
274192f20a223e004b453b1c9941b8fba0701af07db5fd11cbea65c86a89e524
GET /request.js?instance=3171636640&campaign=mgm3s&source=962&callback=optionalCallbackFunction&631843477917 HTTP/1.1
Host: script.anura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:49 GMT
content-type: application/javascript; charset=utf-8
server: nginx
vary: Accept-Encoding
expires: Sun, 28 Dec 1980 18:57:00 EST
cache-control: private, no-cache, no-store, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2
www.reallygreatrate.com/api/user/ip_address/
165.227.241.154 29 B URL www.reallygreatrate.com/api/user/ip_address/
IP 165.227.241.154:0
ASN #14061 DIGITALOCEAN-ASN
File type JSON data\012- , ASCII text, with no line terminators
Hash 23b934b0240473a80dfa35b41fbd7d97
a29140b3a30490564a3c23c3ff8687f2273c83bc
3b0bdb019ad7f0be40fc99de45645c1c9457d6542a737e190399026607bf9eca
GET /api/user/ip_address/ HTTP/1.1
Host: www.reallygreatrate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
server: nginx/1.10.3 (Ubuntu)
date: Wed, 06 Dec 2023 22:02:50 GMT
content-type: application/json
access-control-allow-origin: *
set-cookie: DO-LB="Cg0xMC4xMjAuMC42OjgwEJnzWA=="; Max-Age=3600; Path=/; HttpOnly; SameSite=Lax
cache-control: private
transfer-encoding: chunked
api.trustedform.com/trustedform.js?provide_referrer=false&field=TrustedFormToken&l=17019001770070.9257722350245842
44.193.117.21 134 B URL api.trustedform.com/trustedform.js?provide_referrer=false&field=TrustedFormToken&l=17019001770070.9257722350245842
IP 44.193.117.21:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4aa7a432bb447f094408f1bd6229c605
1965c4952cc8c082a6307ed67061a57aab6632fa
34ccdc351dc93dbf30a8630521968421091e3ed19c31a16e32c2eabb55c6a73a
GET /trustedform.js?provide_referrer=false&field=TrustedFormToken&l=17019001770070.9257722350245842 HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
server: awselb/2.0
date: Wed, 06 Dec 2023 22:02:50 GMT
content-type: text/html
content-length: 134
location: https://cdn.trustedform.com:443/bootstrap.js?provide_referrer=false&field=TrustedFormToken&l=17019001770070.9257722350245842
X-Firefox-Spdy: h2
ads.anura.io/showads.js?437456585978
54.230.111.27 40 B URL ads.anura.io/showads.js?437456585978
IP 54.230.111.27:0
File type gzip compressed data, max speed, from Unix\012- data
Hash 71c9e4807bff1f28e14f239afac35f23
20b6de414c2f8710cbb7c5739d7782d368ff6a20
0d5e3e2d8dfd6c08aff29b9de2ae10aab574b9bc10c6d4a98726a93ad408bf75
GET /showads.js?437456585978 HTTP/1.1
Host: ads.anura.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Wed, 06 Dec 2023 19:40:27 GMT
server: nginx
access-control-allow-origin: *
access-control-allow-methods: GET
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VW0cJsBFiz3gscezCLOZJKnP32pYg4-YqkAIX-2iJcCOkU51guN7aw==
age: 8543
X-Firefox-Spdy: h2
api.trustedform.com/certs
44.193.117.21 475 B URL api.trustedform.com/certs
IP 44.193.117.21:0
File type JSON data\012- , ASCII text, with very long lines (475), with no line terminators
Hash 6b1433a91e4e27d8a3d4ae9e38ac7736
03a701bf4a868b69d2f209acccc95002af868c59
3e0d54eb8386f16f63d2f5a262a5d5f804ee3a246ec588dad6ecdf2610df48d7
POST /certs HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 617
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 201 Created
date: Wed, 06 Dec 2023 22:02:51 GMT
content-type: application/json; charset=utf-8
content-length: 475
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2
cdn.trustedform.com/trustedform-1.9.4.js
54.230.111.91 34 kB URL cdn.trustedform.com/trustedform-1.9.4.js
IP 54.230.111.91:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash e81820f32227e0d862ccecda5f0ba520
f0a9fb8b5b4d07cd9f92e2b3578c7e6a8af3fb5b
f58b9664502e7ebaeddb0110e192842a594be9b00613148f24523a32567443e4
GET /trustedform-1.9.4.js HTTP/1.1
Host: cdn.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 19:52:40 GMT
x-amz-version-id: gtnb1Uxu8qLJRc.iYT4wVelhc0u4qkAi
server: AmazonS3
content-encoding: gzip
date: Wed, 06 Dec 2023 22:02:48 GMT
etag: W/"f46641519eee44fe450f02ae72e64a74"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dOz8TD8F2C9w2ItMEu5jMVLLNPABtuUhBuDc1Rjlgi9P_V2XzdHYmw==
age: 21
X-Firefox-Spdy: h2
cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=17019001765310.39808331186374146
54.230.111.91 3.2 kB URL cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=17019001765310.39808331186374146
IP 54.230.111.91:0
File type ASCII text, with very long lines (8136)
Hash e11406d1e7ba652ddbe0623e1207c210
e2e391f46667fb8c43868dee0918c3a0024bb8f8
35cbf6a6e5e7ff72ebb142669e1727de048df4fc13fc9fb5d9bd2d8334de7a71
GET /bootstrap.js?provide_referrer=false&field=xxTrustedFormCertUrl&l=17019001765310.39808331186374146 HTTP/1.1
Host: cdn.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.govloanoptions.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 06 Dec 2023 22:02:52 GMT
last-modified: Wed, 08 Nov 2023 19:52:40 GMT
x-amz-version-id: D_l7Wi1wOYgTC52uzRMI5HnwJykAKtLr
etag: W/"e11406d1e7ba652ddbe0623e1207c210"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 3lJw6T1ms9pCkKwtJgV0wmxo98EjgXueBgHMRUlkmYAB5eBvA03M9g==
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/GenerateToken?msn=1&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&_=392895050
3.215.203.12 75 B URL create.leadid.com/2.11.9/GenerateToken?msn=1&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&_=392895050
IP 3.215.203.12:0
File type ASCII text, with no line terminators
Hash 42d518db4e0f8576b4b63e0dfd4da407
85f53e0f1f0a526cdf039c669da7307355880eba
bd89a76c64d6418c307c6d3b7f2592158f22487ed5ff7634d39fe77e19541022
POST /2.11.9/GenerateToken?msn=1&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&_=392895050 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 212
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:51 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Fri, 05-Jan-2024 22:02:51 GMT; Max-Age=2592000; path=/
rguserid=c610bfed-93b3-46ba-b96c-2870b98fde04; expires=Fri, 05-Jan-2024 22:02:51 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Fri, 05-Jan-2024 22:02:51 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Fri, 05-Jan-2024 22:02:51 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
api.trustedform.com/certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events
44.193.117.21204 No Content 0 B URL POST HTTP/2 api.trustedform.com/certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events
IP 44.193.117.21:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerAmazon
Subject*.trustedform.com
Fingerprint7B:FF:D3:7A:7E:7A:64:8E:2F:D4:D7:B8:FE:F4:D3:8E:F0:CA:C1:D8
ValidityFri, 11 Aug 2023 00:00:00 GMT - Sat, 07 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 902
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Wed, 06 Dec 2023 22:02:51 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2
api.useproof.com/reporting/captures/TWoRTkvsVLQNe3zCfcg3pETq91r1?pixelId=TWoRTkvsVLQNe3zCfcg3pETq91r1&integrationId=-LcWwTO6U_79pIDK1S7q&limit=5&hideAnon=true
104.21.47.12200 OK 966 B URL GET HTTP/2 api.useproof.com/reporting/captures/TWoRTkvsVLQNe3zCfcg3pETq91r1?pixelId=TWoRTkvsVLQNe3zCfcg3pETq91r1&integrationId=-LcWwTO6U_79pIDK1S7q&limit=5&hideAnon=true
IP 104.21.47.12:443
Requested by https://cdn.useproof.com/proxy/index.html
Certificate IssuerGoogle Trust Services LLC
Subjectuseproof.com
Fingerprint6B:26:8D:A6:3E:D7:13:78:BE:EE:14:2E:FF:7E:CB:41:18:6D:B0:10
ValidityThu, 12 Oct 2023 11:35:36 GMT - Wed, 10 Jan 2024 11:35:35 GMT
File type JSON data\012- , ASCII text, with very long lines (1333), with no line terminators
Hash 4b7a39093e76c8166b2da6576ceea6bb
fb6a8820db1827ba85b3b3283bb221517fdfc119
2d9ed2a7da6b117a419187fb831ca40e313ebd141d187fc4e049774cf91c2247
GET /reporting/captures/TWoRTkvsVLQNe3zCfcg3pETq91r1?pixelId=TWoRTkvsVLQNe3zCfcg3pETq91r1&integrationId=-LcWwTO6U_79pIDK1S7q&limit=5&hideAnon=true HTTP/1.1
Host: api.useproof.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://cdn.useproof.com
DNT: 1
Connection: keep-alive
Referer: https://cdn.useproof.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:51 GMT
content-type: application/json; charset=utf-8
x-amzn-requestid: 480be5e9-9798-4727-88d6-d2e3cf315931
access-control-allow-origin: *
surrogate-control: no-store
x-amzn-remapped-content-length: 1333
x-amzn-remapped-connection: keep-alive
x-amz-apigw-id: Pipd6GL-IAMEEIQ=
cache-control: no-store, no-cache, must-revalidate, proxy-revalidate
expires: 0
etag: W/"535-+2qIINsYJ7qFs7MoO7IhUX/fwRk"
pragma: no-cache
x-amzn-remapped-date: Wed, 06 Dec 2023 22:02:51 GMT
x-cache: Miss from cloudfront
via: 1.1 58899c559ea4c71daeb5333a74914042.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: DozHQqKGoI7eqJIEpvfRB-_-uYQDqMwe1NpVyaunQe1wV8QHtM7Law==
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ym2CozkrDRKQSKajeOtYKG8ODEtA9mjtm%2F7RwrBtDYPU%2Bc6Esmdp2Dq6Pciwy%2BRPx6TPN8JMVIIAD5EbfdrsMMy7tSjAsYvYeQUCooBnsn%2FLWb6vdQMP%2FJA4WuMtJ%2BR%2F1Yfy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0c9fa2fb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.govloanoptions.com/src/v1/images/favicons/apple-touch-icon.png
172.66.40.169200 OK 5.2 kB URL GET HTTP/2 www.govloanoptions.com/src/v1/images/favicons/apple-touch-icon.png
IP 172.66.40.169:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subjectgovloanoptions.com
Fingerprint75:C9:B7:BB:36:61:A4:77:3F:24:CE:B0:5D:D3:1C:66:E4:F7:7C:8A
ValiditySat, 21 Oct 2023 14:16:07 GMT - Fri, 19 Jan 2024 14:16:06 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 11b9e46cbbf61bbbabc153a0ae16bca3
f84e4bb74525699fdd74b1665244bdc804dc6f22
4bb88b1b719bb862ff750e0a4ff8d714ff29bb98dc4d1f0399c9ad5b66bccdd9
GET /src/v1/images/favicons/apple-touch-icon.png HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Cookie: _ga_TMD4H1F403=GS1.1.1701900176.1.0.1701900176.0.0.0; _ga=GA1.1.1745037973.1701900177; leadid_token-29705C9D-232A-8A19-97CA-C832491B96A7-DA82CFD2-1008-39EE-AD9D-3880AEAC5275=46DD3813-50D4-E355-4252-9364DECCE568
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:52 GMT
content-type: image/webp
content-length: 5194
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=12014
content-disposition: inline; filename="apple-touch-icon.webp"
etag: "2eee-60a98fd2d1c1d"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept
cache-control: max-age=14400
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tbmALjdVzly%2FqN3TsTeqT7viBsz9L6QI7L1trpfvMzC4S%2BK0y9%2B1D5evakpY%2BgTOAvbr9HxULr14zVlV2X9iWmDzHya2LJBdwEYx3E0b8SjNdTDloDTNMZrz8RWb0HWEpNvlppaI5%2F4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0cbd8d7b521-OSL
X-Firefox-Spdy: h2
www.govloanoptions.com/src/v1/images/favicons/favicon-16x16.png
172.66.40.169200 OK 274 B URL GET HTTP/2 www.govloanoptions.com/src/v1/images/favicons/favicon-16x16.png
IP 172.66.40.169:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subjectgovloanoptions.com
Fingerprint75:C9:B7:BB:36:61:A4:77:3F:24:CE:B0:5D:D3:1C:66:E4:F7:7C:8A
ValiditySat, 21 Oct 2023 14:16:07 GMT - Fri, 19 Jan 2024 14:16:06 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash f7775f09505315503b48b17c1eb7adfe
e09cccc5acaefc5fe9133f0a1dd15107c5f09fcf
e29e718e651e47d578142d80a24c461c2ab7f525f82ee69c92cfc47b8ccad7fe
GET /src/v1/images/favicons/favicon-16x16.png HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Cookie: _ga_TMD4H1F403=GS1.1.1701900176.1.0.1701900176.0.0.0; _ga=GA1.1.1745037973.1701900177; leadid_token-29705C9D-232A-8A19-97CA-C832491B96A7-DA82CFD2-1008-39EE-AD9D-3880AEAC5275=46DD3813-50D4-E355-4252-9364DECCE568
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:52 GMT
content-type: image/webp
content-length: 274
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=766
content-disposition: inline; filename="favicon-16x16.webp"
etag: "2fe-60a98fd2d0c7d"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept
cache-control: max-age=14400
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gORHkTComqP0%2F5qjpAJzdVe0K2P9oVlTzuaI7jxlm7yVfsvInNMX8O06DX%2BhDr1ylHAqK3ENQLHlShnMBHJmIKG0iVUq3Ww8SXHAHE97XrobXe8wTnYWHq8kO1tSs7OViDQJksciDSw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0cbd8dab521-OSL
X-Firefox-Spdy: h2
proof-3.firebaseio.com/.ws?v=5
34.120.206.254 0 B URL proof-3.firebaseio.com/.ws?v=5
IP 34.120.206.254:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /.ws?v=5 HTTP/1.1
Host: proof-3.firebaseio.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://cdn.useproof.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QXVQTxHjCNMP2/zu9IGbHA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Wed, 06 Dec 2023 22:02:52 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: z+b1iwc7sBPznXCgv4egMWtsVug=
Strict-Transport-Security: max-age=31556926; includeSubDomains; preload
api.trustedform.com/certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events
44.193.117.21204 No Content 0 B URL POST HTTP/2 api.trustedform.com/certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events
IP 44.193.117.21:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerAmazon
Subject*.trustedform.com
Fingerprint7B:FF:D3:7A:7E:7A:64:8E:2F:D4:D7:B8:FE:F4:D3:8E:F0:CA:C1:D8
ValidityFri, 11 Aug 2023 00:00:00 GMT - Sat, 07 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 986
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 06 Dec 2023 22:02:53 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2
api.trustedform.com/certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events
44.193.117.21204 No Content 0 B URL POST HTTP/2 api.trustedform.com/certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events
IP 44.193.117.21:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerAmazon
Subject*.trustedform.com
Fingerprint7B:FF:D3:7A:7E:7A:64:8E:2F:D4:D7:B8:FE:F4:D3:8E:F0:CA:C1:D8
ValidityFri, 11 Aug 2023 00:00:00 GMT - Sat, 07 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 298
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 06 Dec 2023 22:02:54 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2
api.trustedform.com/certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events
44.193.117.21204 No Content 0 B URL POST HTTP/2 api.trustedform.com/certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events
IP 44.193.117.21:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerAmazon
Subject*.trustedform.com
Fingerprint7B:FF:D3:7A:7E:7A:64:8E:2F:D4:D7:B8:FE:F4:D3:8E:F0:CA:C1:D8
ValidityFri, 11 Aug 2023 00:00:00 GMT - Sat, 07 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 474
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 06 Dec 2023 22:02:57 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2
api.trustedform.com/certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events
44.193.117.21204 No Content 0 B URL POST HTTP/2 api.trustedform.com/certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events
IP 44.193.117.21:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerAmazon
Subject*.trustedform.com
Fingerprint7B:FF:D3:7A:7E:7A:64:8E:2F:D4:D7:B8:FE:F4:D3:8E:F0:CA:C1:D8
ValidityFri, 11 Aug 2023 00:00:00 GMT - Sat, 07 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /certs/ab6de544b0ac22383aae72d64f72f383111a6b69/events HTTP/1.1
Host: api.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 334
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
date: Wed, 06 Dec 2023 22:03:01 GMT
access-control-allow-credentials: true
access-control-allow-origin: *
access-control-expose-headers:
cache-control: max-age=0, private, must-revalidate
server: Cowboy
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/Snap?msn=5&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&token=46DD3813-50D4-E355-4252-9364DECCE568&_=392895054
3.215.203.12200 OK 60 B URL POST HTTP/2 create.leadid.com/2.11.9/Snap?msn=5&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&token=46DD3813-50D4-E355-4252-9364DECCE568&_=392895054
IP 3.215.203.12:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint46:54:4A:B9:70:8B:37:98:4E:C9:BF:96:0A:86:0B:9A:ED:A7:07:49
ValidityMon, 21 Aug 2023 00:00:00 GMT - Tue, 17 Sep 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash add8fa6094ad5a9c8ee3b3ac50e3fd4e
ab9852682e8c595844cba7d0304267ecaab3899f
c828af685812a5d7f84a51b34643007318853ec14667998d51514fc9beaae4e5
POST /2.11.9/Snap?msn=5&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&token=46DD3813-50D4-E355-4252-9364DECCE568&_=392895054 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 204260
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:55 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Fri, 05-Jan-2024 22:02:55 GMT; Max-Age=2592000; path=/
rguserid=c9b512d4-53f5-49de-8fab-fece765b78b0; expires=Fri, 05-Jan-2024 22:02:55 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Fri, 05-Jan-2024 22:02:55 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Fri, 05-Jan-2024 22:02:55 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
www.govloanoptions.com/src/v1/images/icon-3.png
172.66.40.169200 OK 5.9 kB URL GET HTTP/2 www.govloanoptions.com/src/v1/images/icon-3.png
IP 172.66.40.169:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subjectgovloanoptions.com
Fingerprint75:C9:B7:BB:36:61:A4:77:3F:24:CE:B0:5D:D3:1C:66:E4:F7:7C:8A
ValiditySat, 21 Oct 2023 14:16:07 GMT - Fri, 19 Jan 2024 14:16:06 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash c7224cef941625fca94824e4de9d3f0b
f62c97ed57751c6916cbcf36686f144782aff5c0
40be4e0d948023c3f1d0fcd7f0f3fdf1c76ccba0184e3fef8b4cff87dfc7c997
GET /src/v1/images/icon-3.png HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:47 GMT
content-type: image/webp
content-length: 5916
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=23252
content-disposition: inline; filename="icon-3.webp"
etag: "5ad4-60a98fd2d0c7d"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept
cache-control: max-age=14400
cf-cache-status: HIT
age: 1771
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TLiYVsj1yP3TvTX2rcWCUhOSYJgwTrzWrQfEf0Bdu9OwXQaUDfL4b%2BnscrOmFD%2FAwXgObPJ2%2FCIHyZIRx%2BxIMFq9OLmM3x%2BNxSsqb%2Fq6ILIkhvVu2AlyPvbC8nr81XA4kY1T4TrpcZM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0aed877b521-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.99200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.99:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 04:53:07 GMT
expires: Fri, 29 Nov 2024 04:53:07 GMT
cache-control: public, max-age=31536000
age: 580181
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/InitFormData?msn=3&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&token=46DD3813-50D4-E355-4252-9364DECCE568&_=392895052
3.215.203.12200 OK 0 B URL POST HTTP/2 create.leadid.com/2.11.9/InitFormData?msn=3&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&token=46DD3813-50D4-E355-4252-9364DECCE568&_=392895052
IP 3.215.203.12:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint46:54:4A:B9:70:8B:37:98:4E:C9:BF:96:0A:86:0B:9A:ED:A7:07:49
ValidityMon, 21 Aug 2023 00:00:00 GMT - Tue, 17 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /2.11.9/InitFormData?msn=3&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&token=46DD3813-50D4-E355-4252-9364DECCE568&_=392895052 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 25906
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:51 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Fri, 05-Jan-2024 22:02:51 GMT; Max-Age=2592000; path=/
rguserid=e93c9414-7c6a-4865-951e-4cf0d0cf0537; expires=Fri, 05-Jan-2024 22:02:51 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Fri, 05-Jan-2024 22:02:51 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Fri, 05-Jan-2024 22:02:51 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
create.lidstatic.com/campaign/da82cfd2-1008-39ee-ad9d-3880aeac5275.js?snippet_version=2
172.67.41.229200 OK 126 kB URL GET HTTP/2 create.lidstatic.com/campaign/da82cfd2-1008-39ee-ad9d-3880aeac5275.js?snippet_version=2
IP 172.67.41.229:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerCloudflare, Inc.
Subjectlidstatic.com
FingerprintF7:D5:3C:A9:3E:B6:D5:BF:11:CB:69:9F:0B:34:88:4F:18:79:BC:88
ValidityTue, 28 Feb 2023 00:00:00 GMT - Wed, 28 Feb 2024 23:59:59 GMT
Size 126 kB (126350 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /campaign/da82cfd2-1008-39ee-ad9d-3880aeac5275.js?snippet_version=2 HTTP/1.1
Host: create.lidstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:50 GMT
content-type: text/javascript
x-amz-id-2: FJsgaQXryG56bkA7M8MhhlBItq4+lfdjfWGhQyAY7uQPdt3YWeWs87IvxzD9kosdIJjfiPoiWfQ=
x-amz-request-id: BW0KZTFKY7M7D1HP
x-amz-replication-status: COMPLETED
last-modified: Fri, 12 Nov 2021 01:12:39 GMT
etag: W/"e38229527b0e73bb5dd335b08a6d5520"
cache-control: max-age=1800
x-amz-version-id: qVKbepXfP_6u_gI.heqptTjfNfEdu62A
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 8317d0bd9f0eb4f9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.govloanoptions.com/v1/js/v1.0d4bcd45.js
172.66.40.169200 OK 30 kB URL GET HTTP/2 www.govloanoptions.com/v1/js/v1.0d4bcd45.js
IP 172.66.40.169:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subjectgovloanoptions.com
Fingerprint75:C9:B7:BB:36:61:A4:77:3F:24:CE:B0:5D:D3:1C:66:E4:F7:7C:8A
ValiditySat, 21 Oct 2023 14:16:07 GMT - Fri, 19 Jan 2024 14:16:06 GMT
File type ASCII text, with very long lines (29649), with no line terminators
Hash 8c900311627527f9271f28c9c42353ff
b5ae165da6529eccc1647c42b6f6da9001dd9944
a86e686b8e386e218740a642b5f91b8a02ad71ac956a628c06f32fe2d1f71aa9
GET /v1/js/v1.0d4bcd45.js HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:47 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=29689
etag: W/"73f9-60a98fd2ced3c-gzip"
last-modified: Mon, 20 Nov 2023 17:40:59 GMT
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: HIT
age: 1773
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8QPxCJ1j%2BXwtcyHAEescH5UX%2F7Da4N5FRB%2B4T%2FVN72RD1eaRqvgW9Jtl3Dn%2BrxkO7GT85WRb1XblDdPsVwjQmZOd5q41IdvmNTCzith1EoW2lWjn7Vad36NK8yoejK8n1Z483JXcIig%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8317d0b1dc1ab521-OSL
content-encoding: br
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/InitFormData?msn=4&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&token=46DD3813-50D4-E355-4252-9364DECCE568&_=392895053
3.215.203.12200 OK 0 B URL POST HTTP/2 create.leadid.com/2.11.9/InitFormData?msn=4&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&token=46DD3813-50D4-E355-4252-9364DECCE568&_=392895053
IP 3.215.203.12:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint46:54:4A:B9:70:8B:37:98:4E:C9:BF:96:0A:86:0B:9A:ED:A7:07:49
ValidityMon, 21 Aug 2023 00:00:00 GMT - Tue, 17 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /2.11.9/InitFormData?msn=4&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&token=46DD3813-50D4-E355-4252-9364DECCE568&_=392895053 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 2854
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:52 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Fri, 05-Jan-2024 22:02:52 GMT; Max-Age=2592000; path=/
rguserid=2043df3d-ad77-4b89-b7d2-d87108abefa8; expires=Fri, 05-Jan-2024 22:02:52 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Fri, 05-Jan-2024 22:02:52 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Fri, 05-Jan-2024 22:02:52 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=TrustedFormToken&l=17019001770070.9257722350245842
54.230.111.91200 OK 8.1 kB URL GET HTTP/2 cdn.trustedform.com/bootstrap.js?provide_referrer=false&field=TrustedFormToken&l=17019001770070.9257722350245842
IP 54.230.111.91:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerAmazon
Subjectcdn.trustedform.com
Fingerprint03:8C:42:F7:8D:D4:F5:93:A1:2D:50:88:50:23:67:7B:A1:CD:4B:99
ValidityWed, 15 Mar 2023 00:00:00 GMT - Fri, 12 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (8375), with no line terminators
Hash 2063e1e804423960c4d2f3d32be5dc7b
dbc5e785cd85707b20d2f2bf2c179fa73bfd3971
7b1d3316481675277912a73130f706a0d48c879deedbda18d2d7365c6a95a23c
GET /bootstrap.js?provide_referrer=false&field=TrustedFormToken&l=17019001770070.9257722350245842 HTTP/1.1
Host: cdn.trustedform.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.govloanoptions.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Wed, 06 Dec 2023 22:02:52 GMT
last-modified: Wed, 08 Nov 2023 19:52:40 GMT
x-amz-version-id: D_l7Wi1wOYgTC52uzRMI5HnwJykAKtLr
etag: W/"e11406d1e7ba652ddbe0623e1207c210"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: w_wTCjEKUysYe6XI_aEDp7Fpdrw6xFG94svNulS25lkeSXVwLyX05g==
X-Firefox-Spdy: h2
www.govloanoptions.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
172.66.40.169200 OK 12 kB URL GET HTTP/2 www.govloanoptions.com/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP 172.66.40.169:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerGoogle Trust Services LLC
Subjectgovloanoptions.com
Fingerprint75:C9:B7:BB:36:61:A4:77:3F:24:CE:B0:5D:D3:1C:66:E4:F7:7C:8A
ValiditySat, 21 Oct 2023 14:16:07 GMT - Fri, 19 Jan 2024 14:16:06 GMT
File type ASCII text, with very long lines (12331)
Hash 88a769d2fe35899fd45a332a0a032cc0
514c6c1d8475d17e412849a4c90159517d0fa10a
ccf00d1923b0131a10e0c6d26f95e5dee6ebf8621a27e83c5a2f68a2e0093142
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.govloanoptions.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:47 GMT
content-type: application/javascript
last-modified: Fri, 01 Dec 2023 15:04:24 GMT
etag: W/"6569f5f8-302c"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1rpExbgqhcaccbsa5IEVCYAite1IZa5WNJ%2F1%2F%2FAyFw%2FH%2B63RTp9C%2F769pbbopAHnDKwAaQQlyvbqMoPoiUGV2cf57%2FvV%2BBhAAMVhMTKVKytyF%2BZAH0FE0sO0MzuJwdqLysZ6G%2Bww8gE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8317d0aed88bb521-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Fri, 08 Dec 2023 22:02:47 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
d2m2wsoho8qq12.cloudfront.net/iframe.html?token=46DD3813-50D4-E355-4252-9364DECCE568&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=DA82CFD2-1008-39EE-AD9D-3880AEAC5275&lac=29705C9D-232A-8A19-97CA-C832491B96A7
143.204.42.229200 OK 3.5 kB URL GET HTTP/1.1 d2m2wsoho8qq12.cloudfront.net/iframe.html?token=46DD3813-50D4-E355-4252-9364DECCE568&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=DA82CFD2-1008-39EE-AD9D-3880AEAC5275&lac=29705C9D-232A-8A19-97CA-C832491B96A7
IP 143.204.42.229:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52
ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3675), with no line terminators
Hash f296cf3fca2786c12a670712ef7f00bc
da1b0e716af4460dcf59ade38450cb62798954d1
eabbab0c6023ae05e66d758837fa85258b724f04781c69ce36225c586a0c8db7
GET /iframe.html?token=46DD3813-50D4-E355-4252-9364DECCE568&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=DA82CFD2-1008-39EE-AD9D-3880AEAC5275&lac=29705C9D-232A-8A19-97CA-C832491B96A7 HTTP/1.1
Host: d2m2wsoho8qq12.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Fri, 27 Oct 2023 21:28:23 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Encoding: gzip
Date: Wed, 06 Dec 2023 01:48:50 GMT
ETag: W/"653c2b77-dbb"
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3iwGhyEvUhtsoYS42jCCi2AXRvkXZA-Sp_17SICB534OL4pkpMUnsw==
Age: 73038
create.leadid.com/2.11.9/SaveDom?msn=2&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&token=46DD3813-50D4-E355-4252-9364DECCE568&_=392895051
3.215.203.12200 OK 0 B URL POST HTTP/2 create.leadid.com/2.11.9/SaveDom?msn=2&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&token=46DD3813-50D4-E355-4252-9364DECCE568&_=392895051
IP 3.215.203.12:443
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint46:54:4A:B9:70:8B:37:98:4E:C9:BF:96:0A:86:0B:9A:ED:A7:07:49
ValidityMon, 21 Aug 2023 00:00:00 GMT - Tue, 17 Sep 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /2.11.9/SaveDom?msn=2&pid=bb1445d1-bf7b-4efa-99d6-8dc96ede1bf5&token=46DD3813-50D4-E355-4252-9364DECCE568&_=392895051 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 512
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 06 Dec 2023 22:02:51 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Fri, 05-Jan-2024 22:02:51 GMT; Max-Age=2592000; path=/
rguserid=32cd8ccc-424b-46fe-b196-00d3d7573ab2; expires=Fri, 05-Jan-2024 22:02:51 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Fri, 05-Jan-2024 22:02:51 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Fri, 05-Jan-2024 22:02:51 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
cp.reallygreatrate.com/pixel/view/962/REFINANCE/GLOv1
104.248.186.70200 OK 0 B URL GET HTTP/1.1 cp.reallygreatrate.com/pixel/view/962/REFINANCE/GLOv1
IP 104.248.186.70:443
ASN #14061 DIGITALOCEAN-ASN
Requested by https://www.govloanoptions.com/v1/?publisher_id=962&subid=mgm3s
Certificate IssuerLet's Encrypt
Subjectcp.reallygreatrate.com
FingerprintD0:22:D8:16:FF:EA:88:6E:02:DB:81:76:A4:08:AC:94:4D:3E:AF:09
ValidityThu, 30 Nov 2023 14:31:17 GMT - Wed, 28 Feb 2024 14:31:16 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/view/962/REFINANCE/GLOv1 HTTP/1.1
Host: cp.reallygreatrate.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.govloanoptions.com
DNT: 1
Connection: keep-alive
Referer: https://www.govloanoptions.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Wed, 06 Dec 2023 22:02:50 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=b4eumq8jg56thdrb7vh97iofj9; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Access-Control-Allow-Origin: https://www.govloanoptions.com
Access-Control-Allow-Methods: GET,PUT,POST,DELETE,OPTIONS
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Range, Content-Disposition, Content-Type, Authorization
Access-Control-Allow-Credentials: 1
Content-Encoding: gzip