r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3624
Expires: Fri, 02 Dec 2022 08:29:30 GMT
Date: Fri, 02 Dec 2022 07:29:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8749
Expires: Fri, 02 Dec 2022 09:54:55 GMT
Date: Fri, 02 Dec 2022 07:29:06 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0c748388899e8a8d3680355da2ea5020
903c620cd137613daafb0da0508c37b2f4a67212
39eab80e022a9a1732872d9926b0ace80f818ec5c535e36a18b539ea63786fb2
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5861
Cache-Control: max-age=103187
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:06 GMT
Etag: "63888270-1d7"
Expires: Sat, 03 Dec 2022 12:08:53 GMT
Last-Modified: Thu, 01 Dec 2022 10:31:12 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: V+zIgpfLcb/B8GJHVoft4en10a2CQX2pUnXaQbuYGPg9l99TGnsP/VRZQvqPsZNcyDgUzOjWULWrIyraeNO+fg==
x-amz-request-id: 9G2R535HQS60R1M1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 06:46:00 GMT
age: 2586
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 07:19:53 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 553
alt-svc: clear
X-Firefox-Spdy: h2
licenseplatehelp.com/wp-content/themes/twentynineteen/single.php
207.246.101.164200 OK 512 B URL HTTP/1.1 licenseplatehelp.com/wp-content/themes/twentynineteen/single.php
IP 207.246.101.164:0
File type HTML document text\012- HTML document, ASCII text
Hash 867afdc2a4fea1ef2027305323c7910d
a0db68316671994e83ac059f5ee8081536e972e7
5718de5e3cf529e05e11cd7765db446977e93f819d844371211e6e88d34a7a20
GET /wp-content/themes/twentynineteen/single.php HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 07:29:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
licenseplatehelp.com/favicon.ico
207.246.101.164404 Not Found 146 B URL HTTP/1.1 licenseplatehelp.com/favicon.ico
IP 207.246.101.164:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 8eec510e57f5f732fd2cce73df7b73ef
3c0af39ecb3753c5fee3b53d063c7286019eac3b
55f7d9e99b8e2d4e0e193b2f0275501e6d9c1ebd29cadbea6a0da48a8587e3e0
GET /favicon.ico HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/wp-content/themes/twentynineteen/single.php
HTTP/1.1 404 Not Found
Server: nginx
Date: Fri, 02 Dec 2022 07:29:06 GMT
Content-Type: text/html
Content-Length: 146
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 07:11:15 GMT
cache-control: public,max-age=3600
age: 1071
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900%7COpen+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700&ver=8.8.2
142.250.74.106200 OK 1.3 kB URL HTTP/1.1 fonts.googleapis.com/css?family=Roboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900%7COpen+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700&ver=8.8.2
IP 142.250.74.106:0
Hash af495d4776810ba587c8130d9d60a106
540e75b1cd7fb672df4ae09407f8282e7d4a7279
257d0b96dacf33c439696c5e62144a5e39303daec555b50883c2ba5829bf15d8
GET /css?family=Roboto%3A300%2C400%2C400italic%2C500%2C500italic%2C700%2C900%7COpen+Sans%3A300italic%2C400%2C400italic%2C600%2C600italic%2C700&ver=8.8.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 02 Dec 2022 07:29:07 GMT
Date: Fri, 02 Dec 2022 07:29:07 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1f88399f3fdd89dbb9ca1229cb67143a
325c9dbfd932cf9a6fb9fab2dd8e27083f55a9a3
831ecd45dcd2d5ae2ae86cd63ea5e94ecd85281b7e51054af5df9a6386fb8d79
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5823
Cache-Control: max-age=98085
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:07 GMT
Etag: "63886ea9-1d7"
Expires: Sat, 03 Dec 2022 10:43:52 GMT
Last-Modified: Thu, 01 Dec 2022 09:06:49 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-225404957-2
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-225404957-2
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash dfe2a25784171f1a67b909e79c1fec00
e965ee79b94e2dca527222a670beee117ca9f2bc
5e58fc58b0607fb8aa96e95cf739ac9965a4fbf7cc2e177252d450fc62d405cd
GET /gtag/js?id=UA-225404957-2 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://licenseplatehelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 02 Dec 2022 07:29:07 GMT
expires: Fri, 02 Dec 2022 07:29:07 GMT
cache-control: private, max-age=900
last-modified: Fri, 02 Dec 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43579
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
licenseplatehelp.com/wp-includes/css/classic-themes.min.css?ver=1
207.246.101.164200 OK 217 B URL HTTP/1.1 licenseplatehelp.com/wp-includes/css/classic-themes.min.css?ver=1
IP 207.246.101.164:0
Hash 95e891f28e44a9b314c09545d86be2b7
f9b13a8bd47273b086a0a07df15f314e0af0bc3e
5a5f39391fbf5b06db84b8f9716d53de575ee97a627d2c5f12f79a991a671eb5
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:07 GMT
Content-Type: text/css
Content-Length: 217
Last-Modified: Wed, 02 Nov 2022 03:17:46 GMT
Connection: keep-alive
ETag: "6361e15a-d9"
Expires: Sun, 01 Jan 2023 07:29:07 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.4
207.246.101.164200 OK 2.7 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.4
IP 207.246.101.164:0
Hash e6fae855021a88a0067fcc58121c594f
6299ac3987b5e81725781799dad361d19ac3b99d
e50f9ccd2d6582a58ba1879fa578e60d25fea4c5eedc07deafd14482b2403181
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.5.4 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:07 GMT
Content-Type: text/css
Content-Length: 2731
Last-Modified: Fri, 11 Feb 2022 07:20:55 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "62060e57-aab"
Expires: Sun, 01 Jan 2023 07:29:07 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 8cd876589951719c94a6d49d1494bdbd
01600c8bb95fac543696e509b3e452b90d844572
e03942321526a2303220b1abd51f82f1d4cf80e0dd22a2582cf809b8bd729521
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/1.12.0/jquery.min.js
142.250.74.106200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.12.0/jquery.min.js
IP 142.250.74.106:0
File type ASCII text, with very long lines (32060)
Hash 68eae8ae528b3cf4965c780505e8274b
23eea22c5ced491f0933dbdc428503548ae48636
5c677af2d6e78de58c66b09577213d4b1c23cf0409822378053f1c457ff465aa
GET /ajax/libs/jquery/1.12.0/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://licenseplatehelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 34044
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 23:38:15 GMT
expires: Sat, 25 Nov 2023 23:38:15 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 546652
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
207.246.101.164200 OK 94 kB URL HTTP/1.1 licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
IP 207.246.101.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (9381), with CRLF, LF line terminators
Hash 0e7f3420e40f59fbc7fe54cbeee9f09b
b65abb93bdd25c5db056c288e695d80f87eae292
094d98a9c3241adf33abd217129c32e763c0c87b581b2b6e465f7de5e3d69f9f
GET /can-you-transfer-license-plates-to-another-car/ HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/wp-content/themes/twentynineteen/single.php
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Pingback: http://licenseplatehelp.com/xmlrpc.php
Link: <http://licenseplatehelp.com/wp-json/>; rel="https://api.w.org/", <http://licenseplatehelp.com/wp-json/wp/v2/posts/198>; rel="alternate"; type="application/json", <http://licenseplatehelp.com/?p=198>; rel=shortlink
push.services.mozilla.com/
52.38.139.17101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.139.17:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NHbfdGCV3y8zOWZsRQzuaw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: mFfH5B+UB3Aqj8CFIL/iXH/IC30=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
licenseplatehelp.com/wp-content/themes/Newspaper/includes/demos/blog_cars/demo_style.css?ver=8.8.2
207.246.101.164200 OK 3.6 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/themes/Newspaper/includes/demos/blog_cars/demo_style.css?ver=8.8.2
IP 207.246.101.164:0
Hash 60819019b68212677190b1961a9c5b37
8cdb82941df106f85df5c634485efae2d675f384
d8260601851bea17825eb2f8ddf47e0c83b438d8db47cbc4f43c3c3b46a45867
GET /wp-content/themes/Newspaper/includes/demos/blog_cars/demo_style.css?ver=8.8.2 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:07 GMT
Content-Type: text/css
Content-Length: 3587
Last-Modified: Wed, 09 Feb 2022 15:18:20 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "6203db3c-e03"
Expires: Sun, 01 Jan 2023 07:29:07 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
207.246.101.164200 OK 95 kB URL HTTP/1.1 licenseplatehelp.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 207.246.101.164:0
File type ASCII text, with very long lines (47826)
Hash 71d925864153f0edf91037f3d31048e8
cc16a0524ac63b5ce29f703a66412224f0dd771a
c324ef26b20264369e4568dc9ef1c5cb1f325f6bc4e8b7c01f7fe93fa353276a
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:07 GMT
Content-Type: text/css
Content-Length: 94889
Last-Modified: Wed, 16 Nov 2022 03:23:35 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "637457b7-172a9"
Expires: Sun, 01 Jan 2023 07:29:07 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
207.246.101.164200 OK 19 kB URL HTTP/1.1 licenseplatehelp.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 207.246.101.164:0
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:07 GMT
Content-Type: application/javascript
Content-Length: 18617
Last-Modified: Wed, 25 May 2022 03:21:50 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "628da0ce-48b9"
Expires: Sun, 01 Jan 2023 07:29:07 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=3593e6198288cd1f8b28dc83dd3b8ada
207.246.101.164200 OK 70 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=3593e6198288cd1f8b28dc83dd3b8ada
IP 207.246.101.164:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4893d90365f1c5ff7eb4ae14138ff29a
031efd5a1d8c9bd21b44770f9a4d7a28f9cd8493
a401dd1f8f3b5bff72001acbea5a05514a850f6fa18cd569dc53efdc5fc70194
GET /wp-content/plugins/td-composer/td-multi-purpose/style.css?ver=3593e6198288cd1f8b28dc83dd3b8ada HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:07 GMT
Content-Type: text/css
Content-Length: 69621
Last-Modified: Wed, 09 Feb 2022 15:19:24 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "6203db7c-10ff5"
Expires: Sun, 01 Jan 2023 07:29:07 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
207.246.101.164200 OK 11 kB URL HTTP/1.1 licenseplatehelp.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 207.246.101.164:0
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:07 GMT
Content-Type: application/javascript
Content-Length: 11224
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "5fb4e3fe-2bd8"
Expires: Sun, 01 Jan 2023 07:29:07 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
207.246.101.164200 OK 90 kB URL HTTP/1.1 licenseplatehelp.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 207.246.101.164:0
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:07 GMT
Content-Type: application/javascript
Content-Length: 89684
Last-Modified: Wed, 02 Nov 2022 03:17:47 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "6361e15b-15e54"
Expires: Sun, 01 Jan 2023 07:29:07 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-content/plugins/cfmonitor/js/check_min.js?ver=6.1.1
207.246.101.164200 OK 36 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/plugins/cfmonitor/js/check_min.js?ver=6.1.1
IP 207.246.101.164:0
File type ASCII text, with CRLF line terminators
Hash 57b87465073eceb0d2186cfecd2fbfc7
9cc58b4fc10d7cc1997711e57939f0dc23d83219
39278e2d365520de7008d16cecaf5f270f82236c3023373a660ba76d5127f64d
GET /wp-content/plugins/cfmonitor/js/check_min.js?ver=6.1.1 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:07 GMT
Content-Type: application/javascript
Content-Length: 36516
Last-Modified: Wed, 11 May 2022 03:26:10 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "627b2cd2-8ea4"
Expires: Sun, 01 Jan 2023 07:29:07 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
207.246.101.164200 OK 6.5 kB URL HTTP/1.1 licenseplatehelp.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 207.246.101.164:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 61449413a42d2daaa79dbe7298b40e21
d86c474164c603084397bdc50fb0e469d28b5772
f30769ea0b80a5d900c5f0de30b1aad1ab461195e69223d5ef63c2c5de8b6c1a
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:07 GMT
Content-Type: application/javascript
Content-Length: 6475
Last-Modified: Wed, 25 May 2022 03:21:50 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "628da0ce-194b"
Expires: Sun, 01 Jan 2023 07:29:07 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
207.246.101.164200 OK 18 kB URL HTTP/1.1 licenseplatehelp.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 207.246.101.164:0
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash e495a4709e3eae31c67f8263f25d2d39
d43ba6a092e4823a71f3bff75d5ed279a481636b
1c1fef6e6b4f9832603850b9b6562e74d9a6a3700ba836efe88facc577121e8b
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:07 GMT
Content-Type: application/javascript
Content-Length: 17823
Last-Modified: Wed, 02 Nov 2022 03:17:47 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "6361e15b-459f"
Expires: Sun, 01 Jan 2023 07:29:07 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.4
207.246.101.164200 OK 9.7 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.4
IP 207.246.101.164:0
File type HTML document, ASCII text, with very long lines (9720), with no line terminators
Hash cfb428c02811f0cbe515d5f3dca61de6
e95f8696fbe29a706e66ccf582b36d9bd650ab9f
679e44f9b4bbbc2ad0c4000c1413fd3a88627d83f1cba8ebdac26f81bc7edb78
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.5.4 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:08 GMT
Content-Type: application/javascript
Content-Length: 9720
Last-Modified: Fri, 11 Feb 2022 07:20:55 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "62060e57-25f8"
Expires: Sun, 01 Jan 2023 07:29:08 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-content/plugins/thrive-visual-editor/editor/css/thrive_flat.css?ver=2.0.20
207.246.101.164200 OK 252 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/plugins/thrive-visual-editor/editor/css/thrive_flat.css?ver=2.0.20
IP 207.246.101.164:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 252 kB (252093 bytes)
Hash 15fee4a631b0461c0ff9b99250fa4201
81d8c35eed029955bd1d7d0834eaf7609a12276f
9892205f75c539fde1b6b32f666d936ce84aad58877f516968d40e46e01d1610
GET /wp-content/plugins/thrive-visual-editor/editor/css/thrive_flat.css?ver=2.0.20 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:07 GMT
Content-Type: text/css
Content-Length: 252093
Last-Modified: Wed, 11 May 2022 03:28:26 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "627b2d5a-3d8bd"
Expires: Sun, 01 Jan 2023 07:29:07 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-includes/js/comment-reply.min.js?ver=6.1.1
207.246.101.164200 OK 3.0 kB URL HTTP/1.1 licenseplatehelp.com/wp-includes/js/comment-reply.min.js?ver=6.1.1
IP 207.246.101.164:0
File type ASCII text, with very long lines (2946)
Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2
db36a77f6aaa2063bfbec02c2c0e967438c5a245
e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789
GET /wp-includes/js/comment-reply.min.js?ver=6.1.1 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:08 GMT
Content-Type: application/javascript
Content-Length: 2981
Last-Modified: Wed, 25 May 2022 03:21:50 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "628da0ce-ba5"
Expires: Sun, 01 Jan 2023 07:29:08 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-content/plugins/thrive-visual-editor/editor/js/dist/frontend.min.js?ver=2.0.20
207.246.101.164200 OK 48 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/plugins/thrive-visual-editor/editor/js/dist/frontend.min.js?ver=2.0.20
IP 207.246.101.164:0
File type ASCII text, with very long lines (31959)
Hash 263042ef28a30acf947ab876a705daae
fe1dc55566ff48dc2b5b4dd8baf81158b6074368
73a3cceb43aaccd14b23ca81fd7655ba36fefc38f5adc35621df0fa81d4f7b13
GET /wp-content/plugins/thrive-visual-editor/editor/js/dist/frontend.min.js?ver=2.0.20 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:08 GMT
Content-Type: application/javascript
Content-Length: 47510
Last-Modified: Wed, 11 May 2022 03:28:27 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "627b2d5b-b996"
Expires: Sun, 01 Jan 2023 07:29:08 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-content/plugins/thrive-visual-editor/thrive-dashboard/js/dist/frontend.min.js?ver=2.0.21
207.246.101.164200 OK 1.7 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/plugins/thrive-visual-editor/thrive-dashboard/js/dist/frontend.min.js?ver=2.0.21
IP 207.246.101.164:0
File type HTML document, ASCII text, with very long lines (1607)
Hash 45921c54bec88fc84d47bb95d69a4648
924ed515ac980bec166b108559d24c014cfaf73b
6fc6f28eb5e576e1d7546faa309d8ddd4f3e76e1ced85fbfb56882a5b97fec6e
GET /wp-content/plugins/thrive-visual-editor/thrive-dashboard/js/dist/frontend.min.js?ver=2.0.21 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:08 GMT
Content-Type: application/javascript
Content-Length: 1711
Last-Modified: Wed, 11 May 2022 03:28:26 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "627b2d5a-6af"
Expires: Sun, 01 Jan 2023 07:29:08 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-content/themes/Newspaper/js/tagdiv_theme.min.js?ver=8.8.2
207.246.101.164200 OK 209 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/themes/Newspaper/js/tagdiv_theme.min.js?ver=8.8.2
IP 207.246.101.164:0
File type ASCII text, with very long lines (670)
Size 209 kB (208772 bytes)
Hash f186d230e9f5cca384a029649de3e6bf
f3eb4561f381512b5811bc0617d71f9e48e147bb
74da6d1fd517c41c5588ddb9fe8eafe78eceff1d961f8fb22092062b335fbb92
GET /wp-content/themes/Newspaper/js/tagdiv_theme.min.js?ver=8.8.2 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:08 GMT
Content-Type: application/javascript
Content-Length: 208772
Last-Modified: Wed, 09 Feb 2022 15:18:20 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "6203db3c-32f84"
Expires: Sun, 01 Jan 2023 07:29:08 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-content/themes/Newspaper/style.css?ver=8.8.2
207.246.101.164200 OK 1.2 MB URL HTTP/1.1 licenseplatehelp.com/wp-content/themes/Newspaper/style.css?ver=8.8.2
IP 207.246.101.164:0
Size 1.2 MB (1154452 bytes)
Hash 080820fce9a6015fccb3813e9d58952b
3ef35013ca8a27a3e75a1b544eaab252d6c2a88b
d027a4473a652d92475214ba103121514c288e76ccb01e122a6c2989d67f76e9
GET /wp-content/themes/Newspaper/style.css?ver=8.8.2 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:07 GMT
Content-Type: text/css
Content-Length: 1154452
Last-Modified: Wed, 09 Feb 2022 15:18:20 GMT
Connection: keep-alive
Vary: Accept-Encoding
ETag: "6203db3c-119d94"
Expires: Sun, 01 Jan 2023 07:29:07 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5866
Expires: Fri, 02 Dec 2022 09:06:54 GMT
Date: Fri, 02 Dec 2022 07:29:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5866
Expires: Fri, 02 Dec 2022 09:06:54 GMT
Date: Fri, 02 Dec 2022 07:29:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5866
Expires: Fri, 02 Dec 2022 09:06:54 GMT
Date: Fri, 02 Dec 2022 07:29:08 GMT
Connection: keep-alive
licenseplatehelp.com/wp-content/uploads/2022/02/changing-number-plate-696x464.jpg
207.246.101.164200 OK 79 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/uploads/2022/02/changing-number-plate-696x464.jpg
IP 207.246.101.164:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=16, height=4480, bps=206, PhotometricIntepretation=RGB, description=Photo taken in Sukhothai, Thailand, manufacturer=Canon, model=Canon EOS 5D Mark IV, orientation=upper-left, width=6720], baseline, precision 8, 696x464, components 3\012- data
Hash ecaab6cbaa9f9c2d1e8d3ac55a47807f
9253ab93efc81f83c9946b07358edf8259bf61da
29a981da02407015d5573454ad0c45d254b6f74d3dc7b987ba87e13aa8d62436
GET /wp-content/uploads/2022/02/changing-number-plate-696x464.jpg HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:08 GMT
Content-Type: image/jpeg
Content-Length: 79030
Last-Modified: Wed, 09 Feb 2022 15:38:14 GMT
Connection: keep-alive
ETag: "6203dfe6-134b6"
Expires: Sun, 01 Jan 2023 07:29:08 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 06:00:48 GMT
age: 5300
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
licenseplatehelp.com/wp-content/uploads/2022/02/can-you-bring-license-palte-on-a-plane-218x150.jpg
207.246.101.164200 OK 4.7 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/uploads/2022/02/can-you-bring-license-palte-on-a-plane-218x150.jpg
IP 207.246.101.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, copyright=Bigstock], baseline, precision 8, 218x150, components 3\012- data
Hash d83a1859c9d71939518ec8357d40e821
eff1c58cf42ff512d48ef374bfebd86c502b8502
95f58ac91e262389cdbbd4cab771cedb83b53f9ba8f98be589988e6b10752ccf
GET /wp-content/uploads/2022/02/can-you-bring-license-palte-on-a-plane-218x150.jpg HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:08 GMT
Content-Type: image/jpeg
Content-Length: 4669
Last-Modified: Fri, 11 Feb 2022 06:57:40 GMT
Connection: keep-alive
ETag: "620608e4-123d"
Expires: Sun, 01 Jan 2023 07:29:08 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-content/uploads/2022/02/lciense-plate-help-logo-3.png
207.246.101.164200 OK 5.4 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/uploads/2022/02/lciense-plate-help-logo-3.png
IP 207.246.101.164:0
File type PNG image data, 428 x 106, 8-bit/color RGBA, non-interlaced\012- data
Hash e2497bad27dcaea70d218e062e277680
bb7b62828a61e099caab3d500ac2f377083addf4
c91535090b42c306c13cf1992a0014492ffee884cda3ffc11650651dec9efa73
GET /wp-content/uploads/2022/02/lciense-plate-help-logo-3.png HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:08 GMT
Content-Type: image/png
Content-Length: 5371
Last-Modified: Thu, 10 Feb 2022 11:55:22 GMT
Connection: keep-alive
ETag: "6204fd2a-14fb"
Expires: Sun, 01 Jan 2023 07:29:08 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-content/uploads/2022/02/finding-license-plate-number-with-vin-218x150.jpg
207.246.101.164200 OK 11 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/uploads/2022/02/finding-license-plate-number-with-vin-218x150.jpg
IP 207.246.101.164:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1, datetime=2018:11:19 11:29:39], baseline, precision 8, 218x150, components 3\012- data
Hash ce18a36624a21a9665de373e90826b4b
e6fda79109b68c750d36543ee2c7107dd5406d0d
39328043cc7e7c2f58004dae681c9ddab28857d75d853beca954b5033d2e2a52
GET /wp-content/uploads/2022/02/finding-license-plate-number-with-vin-218x150.jpg HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:08 GMT
Content-Type: image/jpeg
Content-Length: 11030
Last-Modified: Thu, 10 Feb 2022 09:46:33 GMT
Connection: keep-alive
ETag: "6204def9-2b16"
Expires: Sun, 01 Jan 2023 07:29:08 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
licenseplatehelp.com/wp-content/uploads/2022/02/how-to-keep-front-license-platre-from-bending-218x150.jpg
207.246.101.164200 OK 6.9 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/uploads/2022/02/how-to-keep-front-license-platre-from-bending-218x150.jpg
IP 207.246.101.164:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 75", baseline, precision 8, 218x150, components 3\012- data
Hash 3eb718be79758d9683d80247868de14e
9e7bacb3086ec66f56bc2bae730520d8ba12b5b4
8140c8d9cb5ef46846a7c87cf257aea8dadf85344edc05005d1dcab0538e4fd3
GET /wp-content/uploads/2022/02/how-to-keep-front-license-platre-from-bending-218x150.jpg HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:08 GMT
Content-Type: image/jpeg
Content-Length: 6862
Last-Modified: Fri, 11 Feb 2022 06:16:34 GMT
Connection: keep-alive
ETag: "6205ff42-1ace"
Expires: Sun, 01 Jan 2023 07:29:08 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fw6nrporwF27NW0-vXpaolW79nDXLF2RyS-lqhhp1osHt7q98VpI3g==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:49:56 GMT
age: 34752
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb543a0f6-0efe-4518-9420-4eff88edf8e6.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb543a0f6-0efe-4518-9420-4eff88edf8e6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60ccdde4ce64b4a3fe6fc2a059b3bde1
5ce119089f4a4cd139b523889b6cd84cd79191f4
2089225a6dc13845ab8e031416920d16952ae1461ca10d72c408ad001ed8f27b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb543a0f6-0efe-4518-9420-4eff88edf8e6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4840
x-amzn-requestid: 6bc8fa91-5696-4bc6-b1e7-3c36b2c01801
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGxTFxyoAMFRzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e6e-3e85b78905aaa73726eef85a;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UraCGe--VISONXzaUBpA7vuLuD5l7zihtQIph7LVn1QsS8MjLBbvKw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 34817
etag: "5ce119089f4a4cd139b523889b6cd84cd79191f4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: r_0F64VpyutAOJ9IcTWrs3Sv--fhKiwKsV1FW0fOMSRt1QLLPxvJzg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 07:43:11 GMT
age: 85557
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d147ccb10bda82b153a596c3c967cd6a
ffd0763f997e71a8c1458523fc17cafe8849dfdf
1cfeb90a4ba027195f903d938d4a0aac418a1c2f0b52215ec023263f15905971
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcca8556b-b044-489f-bc74-086aad62b062.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7591
x-amzn-requestid: e179862e-f840-4e50-a9dc-09f325479b9a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGgMFRZIAMFl7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e01-676a1571459f2d83488f2765;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: oB5K_ZCWWwCltMx8FQSjDdXRMzSTSyRLSYSLAooQXuCrUxadLUiWkA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:48:51 GMT
age: 34817
etag: "ffd0763f997e71a8c1458523fc17cafe8849dfdf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.facebook.com/plugins/like.php?href=http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/&layout=button_count&show_faces=false&width=105&action=like&colorscheme=light&height=21
157.240.240.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?href=http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/&layout=button_count&show_faces=false&width=105&action=like&colorscheme=light&height=21
IP 157.240.240.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/&layout=button_count&show_faces=false&width=105&action=like&colorscheme=light&height=21 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?href=http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/&layout=button_count&show_faces=false&width=105&action=like&colorscheme=light&height=21
Content-Type: text/plain
Server: proxygen-bolt
Date: Fri, 02 Dec 2022 07:29:08 GMT
Connection: keep-alive
Content-Length: 0
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://licenseplatehelp.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15860
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 20:16:49 GMT
Expires: Thu, 30 Nov 2023 20:16:49 GMT
Cache-Control: public, max-age=31536000
Age: 126739
Last-Modified: Wed, 11 May 2022 19:24:42 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://licenseplatehelp.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 15744
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 30 Nov 2022 20:16:50 GMT
Expires: Thu, 30 Nov 2023 20:16:50 GMT
Cache-Control: public, max-age=31536000
Age: 126738
Last-Modified: Wed, 11 May 2022 19:24:48 GMT
Content-Type: font/woff2
fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
142.250.74.163200 OK 17 kB URL HTTP/1.1 fonts.gstatic.com/s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 17368, version 1.0\012- data
Hash abe083d96b58eb02ada8b7c30d7b09f2
61447d66d13a8c8f4335696777a85c438c46f749
db0424fb67fb52e7e538490240cc7fb9c05aa076333a4968f3dee30b825dabf9
GET /s/roboto/v30/KFOkCnqEu92Fr1Mu51xIIzI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://licenseplatehelp.com
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 17368
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Thu, 01 Dec 2022 16:04:07 GMT
Expires: Fri, 01 Dec 2023 16:04:07 GMT
Cache-Control: public, max-age=31536000
Age: 55501
Last-Modified: Wed, 11 May 2022 19:24:42 GMT
Content-Type: font/woff2
licenseplatehelp.com/wp-content/uploads/2022/02/registering-number-plate-636795115129098938.jpg
207.246.101.164200 OK 77 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/uploads/2022/02/registering-number-plate-636795115129098938.jpg
IP 207.246.101.164:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, progressive, precision 8, 600x401, components 3\012- data
Hash cce3b108cf04d9c2ac9f59b8c51cf6d0
110d442633d31e2a29f2d6ae51896270340dfcfc
c795ffeefa070eb60e38364ae935008c0fc2a9d3aca454dc18e76cac77bae6ab
GET /wp-content/uploads/2022/02/registering-number-plate-636795115129098938.jpg HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:08 GMT
Content-Type: image/jpeg
Content-Length: 76848
Last-Modified: Wed, 09 Feb 2022 15:39:12 GMT
Connection: keep-alive
ETag: "6203e020-12c30"
Expires: Sun, 01 Jan 2023 07:29:08 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4479
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:08 GMT
Last-Modified: Fri, 02 Dec 2022 06:14:29 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
i.imgur.com/0e6Cq9j.gif
151.101.84.193200 OK 108 kB IP 151.101.84.193:0
File type GIF image data, version 87a, 728 x 442\012- data
Size 108 kB (108047 bytes)
Hash 8599779ff29e5991a2cd2e1bcb9e300c
2a89e69fc79c70b883ac4262362918548d60096a
807487ae02d052a60d7be97b69e35cdfba181c43f7616a5635d45f68dd89d541
GET /0e6Cq9j.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://licenseplatehelp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Wed, 16 Oct 2019 22:31:44 GMT
etag: "8599779ff29e5991a2cd2e1bcb9e300c"
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 02 Dec 2022 07:29:08 GMT
age: 1453544
x-served-by: cache-iad-kjyo7100111-IAD, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 760, 1
x-timer: S1669966149.735799,VS0,VE10
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 108047
X-Firefox-Spdy: h2
www.facebook.com/plugins/like.php?href=http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/&layout=button_count&show_faces=false&width=105&action=like&colorscheme=light&height=21
157.240.240.35200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?href=http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/&layout=button_count&show_faces=false&width=105&action=like&colorscheme=light&height=21
IP 157.240.240.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?href=http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/&layout=button_count&show_faces=false&width=105&action=like&colorscheme=light&height=21 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://licenseplatehelp.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: gv4D8MRGnzeM8cyV3PLzZcErcxno82hONO0CbJDoVjKAq/2W+tK3xRoGzhVYUhXq846FaCKgewbp+uK700UQMA==
content-length: 0
date: Fri, 02 Dec 2022 07:29:08 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
licenseplatehelp.com/wp-content/themes/Newspaper/images/icons/newspaper.woff?15
207.246.101.164200 OK 22 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/themes/Newspaper/images/icons/newspaper.woff?15
IP 207.246.101.164:0
File type Web Open Font Format, TrueType, length 22064, version 0.0\012- data
Hash 146a865dce63d141ebdbf2ee6d72ff89
b53ccefe41f86c33a9fd049ee3e1dc39d41d37d6
5b56f14bb63fc412aec1562ff5b4807919a486491f2e9a86054ef08922c634d1
GET /wp-content/themes/Newspaper/images/icons/newspaper.woff?15 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://licenseplatehelp.com/wp-content/themes/Newspaper/style.css?ver=8.8.2
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:08 GMT
Content-Type: font/woff
Content-Length: 22064
Last-Modified: Wed, 09 Feb 2022 15:18:20 GMT
Connection: keep-alive
ETag: "6203db3c-5630"
Accept-Ranges: bytes
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a11a991958dbd78dfb3392214590ef38
c5fb54ce1ad1c51598623b66827af482c565e0d5
01d67dc39941deea93712fa87453fd27679357916ab856358e0bda7a63b2624d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4479
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:08 GMT
Last-Modified: Fri, 02 Dec 2022 06:14:29 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
www.google-analytics.com/analytics.js
216.239.32.178200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 216.239.32.178:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://licenseplatehelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Fri, 02 Dec 2022 06:41:08 GMT
expires: Fri, 02 Dec 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 2881
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2760650148862881
142.250.74.162200 OK 49 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-2760650148862881
IP 142.250.74.162:0
File type ASCII text, with very long lines (4885)
Hash 970935115a56c22ed63099c1fea46e39
617cfc2bc411fa241cdafdc7eb27deabbd68aa68
6a3b597fa7a76da08e52814adf3bdf526fd0b2d4ce713cd1eadd031019284572
GET /pagead/js/adsbygoogle.js?client=ca-pub-2760650148862881 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://licenseplatehelp.com
Connection: keep-alive
Referer: http://licenseplatehelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Fri, 02 Dec 2022 07:29:09 GMT
expires: Fri, 02 Dec 2022 07:29:09 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 15651693276902018688
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49352
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 49a9684674e0f1b3974c6427c5354fe4
c201e61bcda9cc91369f0c57f8236fcdd3db26c6
27b8d50242836a45aca1fcd0cb58e7f685011c1f93b57d0e3ea9a02400f8d801
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
licenseplatehelp.com/wp-content/uploads/2022/02/license-plare-favicon.png
207.246.101.164200 OK 13 kB URL HTTP/1.1 licenseplatehelp.com/wp-content/uploads/2022/02/license-plare-favicon.png
IP 207.246.101.164:0
File type PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Hash 8d90336eb7fec7296a646ad5a09fa80e
23bcfce02af854da6b4320a880abc36e20a6ef12
dddd315c5a78e595c64cf1f8022784d2b0a05c660d1ee155d514dd6a2117336e
GET /wp-content/uploads/2022/02/license-plare-favicon.png HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:09 GMT
Content-Type: image/png
Content-Length: 13319
Last-Modified: Thu, 10 Feb 2022 09:48:51 GMT
Connection: keep-alive
ETag: "6204df83-3407"
Expires: Sun, 01 Jan 2023 07:29:09 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
142.250.74.34200 OK 4.2 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20221110/r20190131/zrt_lookup.html
IP 142.250.74.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2579)
Hash 2fb3574102373e2e076cfa2ff90cdf25
d06c985183def975546d6e47ab6369c11dcf7195
e61cbc207f7fc2f429deceff11e7a339a3d9a9574da6d035054eba02ee381345
GET /pagead/html/r20221110/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://licenseplatehelp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: br
server: cafe
content-length: 4242
x-xss-protection: 0
date: Thu, 01 Dec 2022 10:32:03 GMT
expires: Thu, 15 Dec 2022 10:32:03 GMT
cache-control: public, max-age=1209600
etag: 10353107486223812946
content-type: text/html; charset=UTF-8
age: 75426
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
licenseplatehelp.com/wp-admin/admin-ajax.php?action=ajax-checkclicks&nonce=db809c98c8
207.246.101.164200 OK 47 B URL HTTP/1.1 licenseplatehelp.com/wp-admin/admin-ajax.php?action=ajax-checkclicks&nonce=db809c98c8
IP 207.246.101.164:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 8b8ff84e512e7c654c878fbe3d47e33c
ce034be1ba5f4eed22509ef7cb6f47c323fb3a9d
ce5b23940b9630859d03551fbdf50408cf9e8e70c5e5cd7ac5c508b9a402e230
POST /wp-admin/admin-ajax.php?action=ajax-checkclicks&nonce=db809c98c8 HTTP/1.1
Host: licenseplatehelp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Origin: http://licenseplatehelp.com
Connection: keep-alive
Referer: http://licenseplatehelp.com/can-you-transfer-license-plates-to-another-car/
Content-Length: 0
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:09 GMT
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: http://licenseplatehelp.com
Access-Control-Allow-Credentials: true
X-Robots-Tag: noindex
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Referrer-Policy: strict-origin-when-cross-origin
X-Frame-Options: SAMEORIGIN
207.246.101.164/wp-content/uploads/2022/02/1.jpg
207.246.101.164200 OK 99 kB URL HTTP/1.1 207.246.101.164/wp-content/uploads/2022/02/1.jpg
IP 207.246.101.164:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=960, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1280], baseline, precision 8, 1068x801, components 3\012- data
Hash 4b359ad007ca321493ee6717465dfc5c
b9f0a86add93e9927f8d7afd6e0b9bbf19c30bfc
e8e976f6f2be04e4039c921e435ad7c1a5ab702c2f0d557f4512349da0091b47
Analyzer Verdict Alert quad9 Sinkholed
GET /wp-content/uploads/2022/02/1.jpg HTTP/1.1
Host: 207.246.101.164
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://licenseplatehelp.com/
HTTP/1.1 200 OK
Server: nginx
Date: Fri, 02 Dec 2022 07:29:08 GMT
Content-Type: image/jpeg
Content-Length: 99433
Last-Modified: Wed, 09 Feb 2022 15:20:37 GMT
Connection: keep-alive
ETag: "6203dbc5-18469"
Expires: Sun, 01 Jan 2023 07:29:08 GMT
Cache-Control: max-age=2592000
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=licenseplatehelp.com
142.250.74.2200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=licenseplatehelp.com
IP 142.250.74.2:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=licenseplatehelp.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://licenseplatehelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 02 Dec 2022 07:29:09 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.no/adsid/integrator.js?domain=licenseplatehelp.com
142.250.74.66200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=licenseplatehelp.com
IP 142.250.74.66:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=licenseplatehelp.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://licenseplatehelp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Fri, 02 Dec 2022 07:29:09 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a6ad57d839c4b452d7118cf2052f9d35
50afdbe46f04c7611c1a0111bce3a76775e50272
4c5c20573601bde0f5c3567e02d02d74ab22d4ffe12f632e1def1b87dc86ad3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a9bdfccd1df3e323e28d92aea1077409
4625fbbbbb614755a86dabddfaf40e99b3934ba6
8020fb77bd7e1b8cc3e2fed030e59d004e720c61162046fc93285c1ca07c0e66
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a9bdfccd1df3e323e28d92aea1077409
4625fbbbbb614755a86dabddfaf40e99b3934ba6
8020fb77bd7e1b8cc3e2fed030e59d004e720c61162046fc93285c1ca07c0e66
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 59ccaf5f1bf1101f3d43ae777be4f6a9
2740c2403e005eac512a829e64de6a03a65fcbb6
1c6da1c071531cd11b32e943b42798202de1a80882e067773ed4d6147094587f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f4b80b9fdd50e1a97c434f592efe9e5f
9f8ef6f699f6a349edf46c73ed4023d706027201
ed2e81c384d6b31b0e0ed2169df1bb332e92bb8c5885eedb13f7a4270b8abec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagservices.com/dcm/dcmads.js
142.250.74.130200 OK 11 kB URL HTTP/2 www.googletagservices.com/dcm/dcmads.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (1730)
Hash 8ee26fc3c34c03930ea316ff21cf77c1
9f8bb4b21e7f7c68dfb5fea8defc40ebf6751c59
1024c5f75b6a081fb08b0b607c0551d897636ba95689bed6ede7cc706904ed2a
GET /dcm/dcmads.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-dcm-tag
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-dcm-tag"
report-to: {"group":"ads-dcm-tag","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-dcm-tag"}]}
content-length: 10900
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 06:51:26 GMT
expires: Fri, 02 Dec 2022 07:51:26 GMT
cache-control: public, max-age=3600
age: 2264
last-modified: Wed, 09 Nov 2022 17:19:43 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f4b80b9fdd50e1a97c434f592efe9e5f
9f8ef6f699f6a349edf46c73ed4023d706027201
ed2e81c384d6b31b0e0ed2169df1bb332e92bb8c5885eedb13f7a4270b8abec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/m_js_controller_fy2021.js
142.250.74.97200 OK 14 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/m_js_controller_fy2021.js
IP 142.250.74.97:0
File type ASCII text, with very long lines (3730)
Hash dab5a4cafaa85ff1f8bf09bbb831547e
cdf5b9534537f02ef0c7b58547967caef31d7361
bc34f506e509ff44fe360e9351f748a37e4f8cbefc153657360eaeb2a45de913
GET /pagead/js/r20221110/r20110914/client/m_js_controller_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 14142
x-xss-protection: 0
date: Thu, 01 Dec 2022 18:03:11 GMT
expires: Thu, 15 Dec 2022 18:03:11 GMT
cache-control: public, max-age=1209600
age: 48359
etag: 14789286559671545279
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f4b80b9fdd50e1a97c434f592efe9e5f
9f8ef6f699f6a349edf46c73ed4023d706027201
ed2e81c384d6b31b0e0ed2169df1bb332e92bb8c5885eedb13f7a4270b8abec6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/abg_lite_fy2021.js
142.250.74.97200 OK 9.4 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/abg_lite_fy2021.js
IP 142.250.74.97:0
File type ASCII text, with very long lines (1596)
Hash 6b277303de172776fc303dfc195982ef
fe6c6af5791742485ae21c4dc02edbee2b426886
c536ada7aa8f4679e0e4f0b99703aab79f6fe32659d777f9c01a7785aa06a36d
GET /pagead/js/r20221110/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 9428
x-xss-protection: 0
date: Thu, 01 Dec 2022 13:29:36 GMT
expires: Thu, 15 Dec 2022 13:29:36 GMT
cache-control: public, max-age=1209600
age: 64774
etag: 246362764157784863
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js
142.250.74.97200 OK 7.5 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.97:0
File type ASCII text, with very long lines (1540)
Hash d22e40b1bc4f1b0f1727b96a0f32f7dd
57030c5040f0013120cca1e77fe38af35d4610e0
6f6d3797f9b19ffcd2f416a7566a58cf70fd4fb0ab17dec03fa5b690c6939494
GET /pagead/js/r20221110/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7458
x-xss-protection: 0
date: Thu, 01 Dec 2022 15:59:33 GMT
expires: Thu, 15 Dec 2022 15:59:33 GMT
cache-control: public, max-age=1209600
age: 55777
etag: 16870613375306414947
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.130200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.130:0
File type ASCII text, with very long lines (3505)
Hash ca57a2dee741fcb5c26204d54254d941
8c9ad16e50db0a268ecdd55a4bdcbb43d320a96b
0bd2d4c3f5c52381fa0a7ce37bc60fcc9f94e4ffbf643c94559f9ad2fa1c646a
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 48508
date: Fri, 02 Dec 2022 07:29:10 GMT
expires: Fri, 02 Dec 2022 07:29:10 GMT
cache-control: private, max-age=3000
etag: "1669811598765935"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/dcm/impl_v92.js
142.250.74.130200 OK 24 kB URL HTTP/2 www.googletagservices.com/dcm/impl_v92.js
IP 142.250.74.130:0
File type ASCII text, with very long lines (1717)
Hash 2656e0e7d0014d522722e87df6a94c08
177957cf2ec8aeefd3a45dcd635df8c06b00af26
2bc2428bc93dd4299557fa950fef32af105b44f7dcf3025ac3e24ae68ba04ffc
GET /dcm/impl_v92.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/ads-dcm-tag
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="ads-dcm-tag"
report-to: {"group":"ads-dcm-tag","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-dcm-tag"}]}
content-length: 23563
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 25 Nov 2022 23:32:16 GMT
expires: Sat, 25 Nov 2023 23:32:16 GMT
cache-control: public, max-age=31536000
age: 547014
last-modified: Mon, 07 Nov 2022 16:32:42 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da32e4b24f4f95e4e807cff2459f54c3
02db1c6d628b2f51fa0b46fcb79a71178780bc47
4d6ff368a64dc83f4a637fbf44b2256523ca7c43b824022f8f6428de6cfae368
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.doubleclick.net/ddm/adj/N4406.Google/B28855509.350540791;dc_ver=92.271;sz=728x90;u_sd=1;kw=%5Burl_encoded_publisher_data%5D;dc_adk=2539890512;ord=291qay;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%3Fsa%3Dl%26ai%3DCOPQDRamJY7bOLpa1ygWs8JjwDIWZs8BtnMjatqQQ6p_coNQBEAEg7OC3kQFgw4SAgJgYoAGnvJbFA8gBCagDAaoEggJP0LygyQo4Enba0L-Kq73S79RHw6mbwBLL1WwzKgbUB1svc0vcMQSVkIdP00i-UD8pQJutNzybm4-hH6eS2b8jwe3qpV6Ir7N7Gu8rjGfIWDmn06ymCbQT98gqgbqByJWBGb8UAZcQ5iOwXU4jiIpF8y9JZv1_XD25KYliL4soEB-dtdmxQqGI9UECgrxQA4PDvbQjYn9S_jLB6FRg3bPHBWH53OPOrF2GpcREEEEQj1HgkFYIr-xkdFExitEDtixMJNCTwnO5JpFiSxgY3CZJdn3pcfj7ewukJt9DTUr1X_9kI7IwTMuHcW0XmsIe-vWsr9IFgaUvDViX0STwlKN-KcXABLGr1LiHBKAGEYAHstvjuQKoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgfMgKqAjoCgECACgGYCwHICwGADAG4DAHYEwLQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSGwDq26N9z_7ng9wbCAGg-QzPPkld61zHfUtOLxgBIBM%26sig%3DAOD64_2-dTRAawmeculWaZxHwj6qVk0YfQ%26client%3Dca-pub-2760650148862881%26adurl%3D;dc_rfl=1,http%3A%2F%2Flicenseplatehelp.com%2F$0;xdt=1;crlt=41J)CF8PLn;stc=1;sttr=102;prcl=s
216.58.207.230200 OK 28 kB URL HTTP/2 ad.doubleclick.net/ddm/adj/N4406.Google/B28855509.350540791;dc_ver=92.271;sz=728x90;u_sd=1;kw=%5Burl_encoded_publisher_data%5D;dc_adk=2539890512;ord=291qay;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%3Fsa%3Dl%26ai%3DCOPQDRamJY7bOLpa1ygWs8JjwDIWZs8BtnMjatqQQ6p_coNQBEAEg7OC3kQFgw4SAgJgYoAGnvJbFA8gBCagDAaoEggJP0LygyQo4Enba0L-Kq73S79RHw6mbwBLL1WwzKgbUB1svc0vcMQSVkIdP00i-UD8pQJutNzybm4-hH6eS2b8jwe3qpV6Ir7N7Gu8rjGfIWDmn06ymCbQT98gqgbqByJWBGb8UAZcQ5iOwXU4jiIpF8y9JZv1_XD25KYliL4soEB-dtdmxQqGI9UECgrxQA4PDvbQjYn9S_jLB6FRg3bPHBWH53OPOrF2GpcREEEEQj1HgkFYIr-xkdFExitEDtixMJNCTwnO5JpFiSxgY3CZJdn3pcfj7ewukJt9DTUr1X_9kI7IwTMuHcW0XmsIe-vWsr9IFgaUvDViX0STwlKN-KcXABLGr1LiHBKAGEYAHstvjuQKoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgfMgKqAjoCgECACgGYCwHICwGADAG4DAHYEwLQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSGwDq26N9z_7ng9wbCAGg-QzPPkld61zHfUtOLxgBIBM%26sig%3DAOD64_2-dTRAawmeculWaZxHwj6qVk0YfQ%26client%3Dca-pub-2760650148862881%26adurl%3D;dc_rfl=1,http%3A%2F%2Flicenseplatehelp.com%2F$0;xdt=1;crlt=41J)CF8PLn;stc=1;sttr=102;prcl=s
IP 216.58.207.230:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 657f172276d2a3381042da4fd50d9d8d
a9a475ded7470f8a3a53f5c86eec84e489eb0f54
0a13272d3dc0c68caa6478684e7ce78555acac829ba6277012f414f87ff3ff61
GET /ddm/adj/N4406.Google/B28855509.350540791;dc_ver=92.271;sz=728x90;u_sd=1;kw=%5Burl_encoded_publisher_data%5D;dc_adk=2539890512;ord=291qay;click=https%3A%2F%2Fadclick.g.doubleclick.net%2Faclk%3Fsa%3Dl%26ai%3DCOPQDRamJY7bOLpa1ygWs8JjwDIWZs8BtnMjatqQQ6p_coNQBEAEg7OC3kQFgw4SAgJgYoAGnvJbFA8gBCagDAaoEggJP0LygyQo4Enba0L-Kq73S79RHw6mbwBLL1WwzKgbUB1svc0vcMQSVkIdP00i-UD8pQJutNzybm4-hH6eS2b8jwe3qpV6Ir7N7Gu8rjGfIWDmn06ymCbQT98gqgbqByJWBGb8UAZcQ5iOwXU4jiIpF8y9JZv1_XD25KYliL4soEB-dtdmxQqGI9UECgrxQA4PDvbQjYn9S_jLB6FRg3bPHBWH53OPOrF2GpcREEEEQj1HgkFYIr-xkdFExitEDtixMJNCTwnO5JpFiSxgY3CZJdn3pcfj7ewukJt9DTUr1X_9kI7IwTMuHcW0XmsIe-vWsr9IFgaUvDViX0STwlKN-KcXABLGr1LiHBKAGEYAHstvjuQKoB47OG6gHk9gbqAfulrECqAf-nrECqAeko7ECqAfVyRuoB6a-G6gHmgaoB_PRG6gHltgbqAeqm7ECqAf_nrECqAffn7EC2AcA0ggRCIDhgBAQARgfMgKqAjoCgECACgGYCwHICwGADAG4DAHYEwLQFQH4FgGAFwE%26ae%3D1%26num%3D1%26cid%3DCAQSGwDq26N9z_7ng9wbCAGg-QzPPkld61zHfUtOLxgBIBM%26sig%3DAOD64_2-dTRAawmeculWaZxHwj6qVk0YfQ%26client%3Dca-pub-2760650148862881%26adurl%3D;dc_rfl=1,http%3A%2F%2Flicenseplatehelp.com%2F$0;xdt=1;crlt=41J)CF8PLn;stc=1;sttr=102;prcl=s HTTP/1.1
Host: ad.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 02 Dec 2022 07:29:10 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 28105
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 07:44:10 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash da32e4b24f4f95e4e807cff2459f54c3
02db1c6d628b2f51fa0b46fcb79a71178780bc47
4d6ff368a64dc83f4a637fbf44b2256523ca7c43b824022f8f6428de6cfae368
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_276.js
216.58.211.6200 OK 38 kB URL HTTP/2 s0.2mdn.net/879366/express_html_inpage_rendering_lib_200_276.js
IP 216.58.211.6:0
File type ASCII text, with very long lines (3095)
Hash 4f9b890a6c4cfbbfd0fb7eff98bf4dde
2db204fb0ee448842b40f84463234ea496763130
8e0d4c67a688228e1ba10b1e1dc367c078edf7e9bc35be0bd4ae8c0ce980647c
GET /879366/express_html_inpage_rendering_lib_200_276.js HTTP/1.1
Host: s0.2mdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 37872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Dec 2022 05:12:01 GMT
expires: Sat, 03 Dec 2022 05:12:01 GMT
cache-control: public, max-age=86400
age: 8229
last-modified: Wed, 02 Mar 2022 23:07:26 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d41b1244812e9de7d7acd9f48f62e243
cb84909fb19ee476a5b61cce0dd6e9486aa5345f
904ab2ac88b8ad8ae1ca55227b6cef40e1dd5f26da663d4e3980d59db6312456
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6234
Cache-Control: max-age=106443
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:11 GMT
Etag: "63888db9-1d7"
Expires: Sat, 03 Dec 2022 13:03:14 GMT
Last-Modified: Thu, 01 Dec 2022 11:19:21 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 471
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjss-KzF1z4WReSnwfYDgQq1mgVuUKw3hrDrJeYmr7hhql3kEQ6cHzb94B9VmeWAXXKiy6GTSjBcY62o6HTMUhdl7FrZXRg4SIKRf-7rTxYjPmF1zKQSL_ZtMsphAXLAcYxFX84rV0bbddSAgolmKr8M&sai=AMfl-YR5tl4nDMFS5-4qJbXDe-1s3EtT113K-kZ0tlgH-29UwR8o8toYHS5Nq4oYQ8iw7gBDcwrnW5eHZdXprUbQIg&sig=Cg0ArKJSzGUpZ_T56suxEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=135&cbvp=1&cstd=132&cisv=r20221110.39797&arae=0&ftch=1&adurl=
142.250.74.130200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjss-KzF1z4WReSnwfYDgQq1mgVuUKw3hrDrJeYmr7hhql3kEQ6cHzb94B9VmeWAXXKiy6GTSjBcY62o6HTMUhdl7FrZXRg4SIKRf-7rTxYjPmF1zKQSL_ZtMsphAXLAcYxFX84rV0bbddSAgolmKr8M&sai=AMfl-YR5tl4nDMFS5-4qJbXDe-1s3EtT113K-kZ0tlgH-29UwR8o8toYHS5Nq4oYQ8iw7gBDcwrnW5eHZdXprUbQIg&sig=Cg0ArKJSzGUpZ_T56suxEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=135&cbvp=1&cstd=132&cisv=r20221110.39797&arae=0&ftch=1&adurl=
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjss-KzF1z4WReSnwfYDgQq1mgVuUKw3hrDrJeYmr7hhql3kEQ6cHzb94B9VmeWAXXKiy6GTSjBcY62o6HTMUhdl7FrZXRg4SIKRf-7rTxYjPmF1zKQSL_ZtMsphAXLAcYxFX84rV0bbddSAgolmKr8M&sai=AMfl-YR5tl4nDMFS5-4qJbXDe-1s3EtT113K-kZ0tlgH-29UwR8o8toYHS5Nq4oYQ8iw7gBDcwrnW5eHZdXprUbQIg&sig=Cg0ArKJSzGUpZ_T56suxEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=135&cbvp=1&cstd=132&cisv=r20221110.39797&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 07:29:11 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 07:44:11 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 02 Dec 2022 07:29:11 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ad.atdmt.com/i/img;adv=11217209655101;ec=11217209657759;adv.a=8650961;c.a=28855509;s.a=443002;p.a=350540791;a.a=541646964;cache=1011299425;
31.13.72.2400 Bad Request 743 B URL HTTP/2 ad.atdmt.com/i/img;adv=11217209655101;ec=11217209657759;adv.a=8650961;c.a=28855509;s.a=443002;p.a=350540791;a.a=541646964;cache=1011299425;
IP 31.13.72.2:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (587)
Hash 9f23487ba42b554873b174e03daf3b81
3f73ecd59258fe70cb812a2a7e38f108875e3c35
dd116b16659ff59855a9f1fa9dc65b66f744cc7d78cb0165372da84085a23155
GET /i/img;adv=11217209655101;ec=11217209657759;adv.a=8650961;c.a=28855509;s.a=443002;p.a=350540791;a.a=541646964;cache=1011299425; HTTP/1.1
Host: ad.atdmt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 400 Bad Request
vary: Accept-Encoding
content-encoding: br
content-type: text/html; charset="utf-8"
x-fb-debug: e3+Q9ndDdgcZ4DSh6jGDLnXISQSl9FY5ib26qR4YdYqcsW/gv6gkSmHe0B9XU44QJ3ql5f5FtEAbC7C8uaTv6g==
content-length: 743
date: Fri, 02 Dec 2022 07:29:11 GMT
X-Firefox-Spdy: h2
www.gstatic.com/mysidia/83de75e735dabeddf4e705de6f0a2f41.js?tag=mysidia_one_click_handler_one_afma_2019
142.250.74.35200 OK 14 kB URL HTTP/2 www.gstatic.com/mysidia/83de75e735dabeddf4e705de6f0a2f41.js?tag=mysidia_one_click_handler_one_afma_2019
IP 142.250.74.35:0
File type C++ source, ASCII text, with very long lines (1833)
Hash bf18e06fe996d8e32931955996f6f9f9
83b00b5650cf50deb2c305d4382f06a42b63fb32
a9b7ee4074a79df10d3f9eb1d4dffd8f08d1c46883cca461ef023c00b7c71f88
GET /mysidia/83de75e735dabeddf4e705de6f0a2f41.js?tag=mysidia_one_click_handler_one_afma_2019 HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/mysidia
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="mysidia"
report-to: {"group":"mysidia","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/mysidia"}]}
content-length: 14157
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 00:48:14 GMT
expires: Mon, 27 Feb 2023 00:48:14 GMT
cache-control: public, max-age=7776000
age: 283257
last-modified: Tue, 15 Nov 2022 00:08:59 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.doubleverify.com/dvtp_src.js?ctx=13361095&cmp=28855509&sid=443002&plc=350540791&num=&adid=&advid=8650961&adsrv=1&btreg=541646964&btadsrv=doubleclick&crt=182198418&crtname=&chnl=&unit=&pid=&uid=&tagtype=&dvtagver=6.1.src
95.101.11.115200 OK 3.3 kB URL HTTP/1.1 cdn.doubleverify.com/dvtp_src.js?ctx=13361095&cmp=28855509&sid=443002&plc=350540791&num=&adid=&advid=8650961&adsrv=1&btreg=541646964&btadsrv=doubleclick&crt=182198418&crtname=&chnl=&unit=&pid=&uid=&tagtype=&dvtagver=6.1.src
IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (7951)
Hash 1f1ed3424a717c947df74dc8d3806e05
131cc89b0cab34ee7f6c9c22be75bd57d00b01e4
b205062c55a70089fab2fd0a0f07946600b0ec5e1a0ed1bb0a21ca0b323fdde1
GET /dvtp_src.js?ctx=13361095&cmp=28855509&sid=443002&plc=350540791&num=&adid=&advid=8650961&adsrv=1&btreg=541646964&btadsrv=doubleclick&crt=182198418&crtname=&chnl=&unit=&pid=&uid=&tagtype=&dvtagver=6.1.src HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=900
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 01 Dec 2022 14:42:25 GMT
Accept-Ranges: bytes
ETag: "809ea220935d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Content-Length: 3314
Date: Fri, 02 Dec 2022 07:29:11 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:11 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.doubleverify.com/dv-measurements3296.js
95.101.11.115200 OK 108 kB URL HTTP/1.1 cdn.doubleverify.com/dv-measurements3296.js
IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
File type ASCII text, with very long lines (65536), with no line terminators
Size 108 kB (107946 bytes)
Hash b04336e17c75a24e6ec9f820249da368
fe1c6ddabe640dcecb5dad45c29790dad5cc2d72
d096c5424554b7b55917594b037f32b7d2fa5c147365e78dcb51c135676b419f
GET /dv-measurements3296.js HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Cache-Control: max-age=946080900
Content-Type: application/javascript
Content-Encoding: gzip
Last-Modified: Thu, 01 Dec 2022 12:05:05 GMT
Accept-Ranges: bytes
ETag: "80eef4257d5d91:0"
Vary: Accept-Encoding
Server: Microsoft-IIS/10.0
Content-Length: 107946
Date: Fri, 02 Dec 2022 07:29:11 GMT
Connection: keep-alive
googleads4.g.doubleclick.net/pcs/view?xai=AKAOjss-KzF1z4WReSnwfYDgQq1mgVuUKw3hrDrJeYmr7hhql3kEQ6cHzb94B9VmeWAXXKiy6GTSjBcY62o6HTMUhdl7FrZXRg4SIKRf-7rTxYjPmF1zKQSL_ZtMsphAXLAcYxFX84rV0bbddSAgolmKr8M&sai=AMfl-YR5tl4nDMFS5-4qJbXDe-1s3EtT113K-kZ0tlgH-29UwR8o8toYHS5Nq4oYQ8iw7gBDcwrnW5eHZdXprUbQIg&sig=Cg0ArKJSzGUpZ_T56suxEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=395&vt=11&dtpt=260&dett=3&cstd=132&cisv=r20221110.39797&arae=0&ftch=1&adurl=
142.250.74.130200 OK 0 B URL HTTP/2 googleads4.g.doubleclick.net/pcs/view?xai=AKAOjss-KzF1z4WReSnwfYDgQq1mgVuUKw3hrDrJeYmr7hhql3kEQ6cHzb94B9VmeWAXXKiy6GTSjBcY62o6HTMUhdl7FrZXRg4SIKRf-7rTxYjPmF1zKQSL_ZtMsphAXLAcYxFX84rV0bbddSAgolmKr8M&sai=AMfl-YR5tl4nDMFS5-4qJbXDe-1s3EtT113K-kZ0tlgH-29UwR8o8toYHS5Nq4oYQ8iw7gBDcwrnW5eHZdXprUbQIg&sig=Cg0ArKJSzGUpZ_T56suxEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=395&vt=11&dtpt=260&dett=3&cstd=132&cisv=r20221110.39797&arae=0&ftch=1&adurl=
IP 142.250.74.130:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pcs/view?xai=AKAOjss-KzF1z4WReSnwfYDgQq1mgVuUKw3hrDrJeYmr7hhql3kEQ6cHzb94B9VmeWAXXKiy6GTSjBcY62o6HTMUhdl7FrZXRg4SIKRf-7rTxYjPmF1zKQSL_ZtMsphAXLAcYxFX84rV0bbddSAgolmKr8M&sai=AMfl-YR5tl4nDMFS5-4qJbXDe-1s3EtT113K-kZ0tlgH-29UwR8o8toYHS5Nq4oYQ8iw7gBDcwrnW5eHZdXprUbQIg&sig=Cg0ArKJSzGUpZ_T56suxEAE&uach_m=[UACH]&cry=1&fbs_aeid=[gw_fbsaeid]&urlfix=1&omid=0&rm=1&ctpt=395&vt=11&dtpt=260&dett=3&cstd=132&cisv=r20221110.39797&arae=0&ftch=1&adurl= HTTP/1.1
Host: googleads4.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-WoW64
cache-control: private
access-control-allow-origin: *
content-type: image/gif
x-content-type-options: nosniff
date: Fri, 02 Dec 2022 07:29:11 GMT
server: cafe
content-length: 0
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 02-Dec-2022 07:44:11 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 02 Dec 2022 07:29:11 GMT
X-Firefox-Spdy: h2
ocsp.godaddy.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash bfcfbe8c5aa6271aa317a58bcbc6dcf4
5797f7c2592057c960c35c2feb2cb11f76bc236e
e75401db4156b8941ea0a616032225581ef4edbffc54815ce128e9251412367c
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 02 Dec 2022 07:29:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1777
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 01 Dec 2022 21:00:36 GMT
Expires: Fri, 02 Dec 2022 21:00:36 GMT
ETag: "5797f7c2592057c960c35c2feb2cb11f76bc236e"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
tps.doubleverify.com/visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=225&ttfrms=21&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEATbpTauTau%3D%3A46%3FD6A%3D2E696%3DA%5D4%40%3ETauU2%26C%3Dl9EEATbpTauTau%3D%3A46%3FD6A%3D2E696%3DA%5D4%40%3ETau42%3F%5CJ%40F%5CEC2%3FD76C%5C%3D%3A46%3FD6%5CA%3D2E6D%5CE%40%5C2%3F%40E96C%5C42CTau&srcurlD=0&aUrlD=-1&ssl=https:&dfs=1140&ddur=235&uid=1669966149677901&jsCallback=dvCallback_1669966149677650&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=90&winw=728&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3296&tgjsver=3296&lvvn=28&m1=13&refD=1&fcifrms=5&brh=1&sdf=2&dvp_epl=206&noc=16&nav_pltfrm=Linux%20x86_64&ctx=13361095&cmp=28855509&sid=443002&plc=350540791&crt=182198418&btreg=541646964&btadsrv=doubleclick&adsrv=1&advid=8650961&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=253234036028.70154&dvp_tukv=9532618125.32571&dvp_uuid=819083984.920465&dvp_strhd=2&dvpx_strhd=2&dvp_tuid=870413461933
34.149.12.213200 OK 837 B URL HTTP/1.1 tps.doubleverify.com/visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=225&ttfrms=21&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEATbpTauTau%3D%3A46%3FD6A%3D2E696%3DA%5D4%40%3ETauU2%26C%3Dl9EEATbpTauTau%3D%3A46%3FD6A%3D2E696%3DA%5D4%40%3ETau42%3F%5CJ%40F%5CEC2%3FD76C%5C%3D%3A46%3FD6%5CA%3D2E6D%5CE%40%5C2%3F%40E96C%5C42CTau&srcurlD=0&aUrlD=-1&ssl=https:&dfs=1140&ddur=235&uid=1669966149677901&jsCallback=dvCallback_1669966149677650&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=90&winw=728&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3296&tgjsver=3296&lvvn=28&m1=13&refD=1&fcifrms=5&brh=1&sdf=2&dvp_epl=206&noc=16&nav_pltfrm=Linux%20x86_64&ctx=13361095&cmp=28855509&sid=443002&plc=350540791&crt=182198418&btreg=541646964&btadsrv=doubleclick&adsrv=1&advid=8650961&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=253234036028.70154&dvp_tukv=9532618125.32571&dvp_uuid=819083984.920465&dvp_strhd=2&dvpx_strhd=2&dvp_tuid=870413461933
IP 34.149.12.213:0
File type ASCII text, with very long lines (1453), with no line terminators
Hash ceac14865e0fe6a1da0e504f9e6d06fa
f7897f82bde372f5f1b9bd9a0ce5f2fe2465d145
7bf60aeefb8a9644074965781ba2110287bdee08173527854b67bfacf6c2a5a3
GET /visit.js?gdpr=&gdpr_consent=&flvr=0&ttmms=225&ttfrms=21&bridua=2&tstype=128&eparams=DC4FC%3Dl9EEATbpTauTau%3D%3A46%3FD6A%3D2E696%3DA%5D4%40%3ETauU2%26C%3Dl9EEATbpTauTau%3D%3A46%3FD6A%3D2E696%3DA%5D4%40%3ETau42%3F%5CJ%40F%5CEC2%3FD76C%5C%3D%3A46%3FD6%5CA%3D2E6D%5CE%40%5C2%3F%40E96C%5C42CTau&srcurlD=0&aUrlD=-1&ssl=https:&dfs=1140&ddur=235&uid=1669966149677901&jsCallback=dvCallback_1669966149677650&dvtagver=6.1.src&navUa=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&htmlmsging=1&chro=0&hist=1&winh=90&winw=728&wouh=1024&wouw=1280&scah=1002&scaw=1280&jsver=3296&tgjsver=3296&lvvn=28&m1=13&refD=1&fcifrms=5&brh=1&sdf=2&dvp_epl=206&noc=16&nav_pltfrm=Linux%20x86_64&ctx=13361095&cmp=28855509&sid=443002&plc=350540791&crt=182198418&btreg=541646964&btadsrv=doubleclick&adsrv=1&advid=8650961&errorURL=https://tps.doubleverify.com/visit.jpg&mib=0&dvp_rcp=2&dvp_htec=2&dvp_seem=2&dvp_tuk=1&dvp_sukv=253234036028.70154&dvp_tukv=9532618125.32571&dvp_uuid=819083984.920465&dvp_strhd=2&dvpx_strhd=2&dvp_tuid=870413461933 HTTP/1.1
Host: tps.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 07:29:11 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: close
Cache-Control: max-age=0
Content-Encoding: br
Expires: 12/01/2022 07:29:11
Pragma: no-cache
Vary: Accept-Encoding
cdn.doubleverify.com/redirect/?host=tpsc-eu3¶m=akipv6&impid=6e0acc4e63f34ba9880c8f36ba02565b&dup=&cbust=1669966150335859
95.101.11.115302 Moved Temporarily 0 B URL HTTP/1.1 cdn.doubleverify.com/redirect/?host=tpsc-eu3¶m=akipv6&impid=6e0acc4e63f34ba9880c8f36ba02565b&dup=&cbust=1669966150335859
IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /redirect/?host=tpsc-eu3¶m=akipv6&impid=6e0acc4e63f34ba9880c8f36ba02565b&dup=&cbust=1669966150335859 HTTP/1.1
Host: cdn.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://tpsc-eu3.doubleverify.com/event.png?impid=6e0acc4e63f34ba9880c8f36ba02565b&akipv6=&dup=
Date: Fri, 02 Dec 2022 07:29:12 GMT
Connection: keep-alive
ocsp.starfieldtech.com/
192.124.249.23200 OK 1.8 kB IP 192.124.249.23:0
Hash 39b916b750bf9ebb528cead6ab95eb2b
a809c6db9a21059602eeefc3c8c9e88dca52e643
0f5a19c86257b30cebf2c9f4ba7d0e28361fb2d5045d9ca9e55ca25328d86efb
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Fri, 02 Dec 2022 07:29:11 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19023
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Thu, 01 Dec 2022 22:34:29 GMT
Expires: Fri, 02 Dec 2022 22:34:29 GMT
ETag: "a809c6db9a21059602eeefc3c8c9e88dca52e643"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
tpsc-eu3.doubleverify.com/event.png?impid=6e0acc4e63f34ba9880c8f36ba02565b&akipv6=&dup=
34.149.12.213204 No Content 0 B URL HTTP/1.1 tpsc-eu3.doubleverify.com/event.png?impid=6e0acc4e63f34ba9880c8f36ba02565b&akipv6=&dup=
IP 34.149.12.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /event.png?impid=6e0acc4e63f34ba9880c8f36ba02565b&akipv6=&dup= HTTP/1.1
Host: tpsc-eu3.doubleverify.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Date: Fri, 02 Dec 2022 07:29:12 GMT
Connection: close
Cache-Control: max-age=0
Expires: 12/01/2022 07:29:12
Pragma: no-cache
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvp9JNgh6rKwtanx4RTupOC_JM3CDEO-jv6VZYHX2IcVpuqbFdp-9cnMol5eGq3Hn30vKDL3H6YsGTXTU8w8TY&sig=Cg0ArKJSzBJt1LLIVcKUEAE&id=lidar2&mcvt=1002&p=0,0,90,728&mtos=1002,1002,1002,1002,1002&tos=1002,0,0,0,0&v=20221130&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=34&adk=2539890512&rs=6&la=0&cr=0&vs=4&r=v&rst=1669966148046&rpt=1407&met=mue&wmsd=0&pbe=0
142.250.74.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsvp9JNgh6rKwtanx4RTupOC_JM3CDEO-jv6VZYHX2IcVpuqbFdp-9cnMol5eGq3Hn30vKDL3H6YsGTXTU8w8TY&sig=Cg0ArKJSzBJt1LLIVcKUEAE&id=lidar2&mcvt=1002&p=0,0,90,728&mtos=1002,1002,1002,1002,1002&tos=1002,0,0,0,0&v=20221130&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=34&adk=2539890512&rs=6&la=0&cr=0&vs=4&r=v&rst=1669966148046&rpt=1407&met=mue&wmsd=0&pbe=0
IP 142.250.74.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsvp9JNgh6rKwtanx4RTupOC_JM3CDEO-jv6VZYHX2IcVpuqbFdp-9cnMol5eGq3Hn30vKDL3H6YsGTXTU8w8TY&sig=Cg0ArKJSzBJt1LLIVcKUEAE&id=lidar2&mcvt=1002&p=0,0,90,728&mtos=1002,1002,1002,1002,1002&tos=1002,0,0,0,0&v=20221130&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=34&adk=2539890512&rs=6&la=0&cr=0&vs=4&r=v&rst=1669966148046&rpt=1407&met=mue&wmsd=0&pbe=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Fri, 02 Dec 2022 07:29:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20221110&st=env
142.250.74.162200 OK 11 kB URL HTTP/2 pagead2.googlesyndication.com/getconfig/sodar?sv=200&tid=gda&tv=r20221110&st=env
IP 142.250.74.162:0
File type JSON data\012- , ASCII text, with very long lines (14422), with no line terminators
Hash b28286dabae71f236eb0fd167878429e
848d76308ffe759d71e8e07a0c484fa3c8f9defd
610bde7644e37c634ceef6f24063defc84fa9ed7642f2142141061dd4e754898
GET /getconfig/sodar?sv=200&tid=gda&tv=r20221110&st=env HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://licenseplatehelp.com
Connection: keep-alive
Referer: http://licenseplatehelp.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Fri, 02 Dec 2022 07:29:12 GMT
server: cafe
content-length: 10889
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 315873c315af2be891e63f8b421bae65
5277bb0c4fea2b036c6faf28d66395c96166ffd2
3f6657d352a42f8257409f2ed365a3fb928ac3eb74a34a2c74a433290182cc92
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 07:29:12 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.132200 OK 512 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.132:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash c5d6ef2d35657abea6db270d4d123daf
c0ab20989f03ee0f5b010701920a4632ac366107
3f5e5badbc5b868c581129993e9d1d09750d21ec5fe3cf0a608aab1bfd6f9b53
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://licenseplatehelp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Fri, 02 Dec 2022 07:29:12 GMT
date: Fri, 02 Dec 2022 07:29:12 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-ZSoca84FxiqAfGr0sYwp7g' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 512
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstmE_ISCC1unAe7M1HBdaLmWp1UY6ZrAc4A7DTxNZsqmzpaGBMR-fOij0kDCiefz3I63Xu-9Ps2I7gxlYZcbM5leHP7_h-re06u83_g79gJqTDtvgCsqnBe-mlguZ_WvuwaXmfZDw&sai=AMfl-YQtvO1wrMFkA32N7KKScR6rBFN30-_i9mfuboD7pyURcStzWjgncchmMj7yEVK866ly8gPpmDgrQw5HGVM&sig=Cg0ArKJSzKgbOgd3OibTEAE&cid=CAQSGwDq26N960CfJN8d54xVScd-UbhUgsEtnoEjqRgBIBM&id=lidar2&mcvt=1007&p=0,0,124,1005&mtos=0,837,1007,1175,1175&tos=0,837,170,168,0&v=20221130&bin=7&avms=nio&bs=0,0&mc=0.75&if=1&vu=1&app=0&itpl=22&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1669966148995&rpt=480&met=mue&wmsd=0&pbe=0
142.250.74.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjstmE_ISCC1unAe7M1HBdaLmWp1UY6ZrAc4A7DTxNZsqmzpaGBMR-fOij0kDCiefz3I63Xu-9Ps2I7gxlYZcbM5leHP7_h-re06u83_g79gJqTDtvgCsqnBe-mlguZ_WvuwaXmfZDw&sai=AMfl-YQtvO1wrMFkA32N7KKScR6rBFN30-_i9mfuboD7pyURcStzWjgncchmMj7yEVK866ly8gPpmDgrQw5HGVM&sig=Cg0ArKJSzKgbOgd3OibTEAE&cid=CAQSGwDq26N960CfJN8d54xVScd-UbhUgsEtnoEjqRgBIBM&id=lidar2&mcvt=1007&p=0,0,124,1005&mtos=0,837,1007,1175,1175&tos=0,837,170,168,0&v=20221130&bin=7&avms=nio&bs=0,0&mc=0.75&if=1&vu=1&app=0&itpl=22&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1669966148995&rpt=480&met=mue&wmsd=0&pbe=0
IP 142.250.74.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjstmE_ISCC1unAe7M1HBdaLmWp1UY6ZrAc4A7DTxNZsqmzpaGBMR-fOij0kDCiefz3I63Xu-9Ps2I7gxlYZcbM5leHP7_h-re06u83_g79gJqTDtvgCsqnBe-mlguZ_WvuwaXmfZDw&sai=AMfl-YQtvO1wrMFkA32N7KKScR6rBFN30-_i9mfuboD7pyURcStzWjgncchmMj7yEVK866ly8gPpmDgrQw5HGVM&sig=Cg0ArKJSzKgbOgd3OibTEAE&cid=CAQSGwDq26N960CfJN8d54xVScd-UbhUgsEtnoEjqRgBIBM&id=lidar2&mcvt=1007&p=0,0,124,1005&mtos=0,837,1007,1175,1175&tos=0,837,170,168,0&v=20221130&bin=7&avms=nio&bs=0,0&mc=0.75&if=1&vu=1&app=0&itpl=22&adk=1812271801&rs=2&la=0&cr=0&vs=4&r=v&rst=1669966148995&rpt=480&met=mue&wmsd=0&pbe=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Fri, 02 Dec 2022 07:29:12 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsv6Iyhes8tFFAjdZsYT1_xLjJiXY5aKPR_g3F_7bqQ8xEejwqSyb6erEOrp8yJkg_FDDKsANIzYDqstSiWUjAHyhGyGIF0OgmaXON0lD2Wj1C9NahZyfixi5YwvO3o6LQrmzygv2g&sai=AMfl-YRk39uf0y9DKXBeZ4PAeqU7YmOXk8w36S3S5b6FfOaZ_li89UKYCgNrwvXoIO5s9QLCGZFxdXukbIk535o&sig=Cg0ArKJSzKE1FcUoj_T-EAE&cid=CAQSGwDq26N9z_7ng9wbCAGg-QzPPkld61zHfUtOLxgBIBM&id=lidar2&mcvt=1002&p=0,0,90,728&mtos=1002,1002,1002,1002,1002&tos=1002,0,0,0,0&v=20221130&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=3833132865&rs=2&la=0&cr=0&vs=4&r=v&rst=1669966148046&rpt=2503&met=ie&wmsd=0&pbe=0
142.250.74.162200 OK 42 B URL HTTP/2 pagead2.googlesyndication.com/pcs/activeview?xai=AKAOjsv6Iyhes8tFFAjdZsYT1_xLjJiXY5aKPR_g3F_7bqQ8xEejwqSyb6erEOrp8yJkg_FDDKsANIzYDqstSiWUjAHyhGyGIF0OgmaXON0lD2Wj1C9NahZyfixi5YwvO3o6LQrmzygv2g&sai=AMfl-YRk39uf0y9DKXBeZ4PAeqU7YmOXk8w36S3S5b6FfOaZ_li89UKYCgNrwvXoIO5s9QLCGZFxdXukbIk535o&sig=Cg0ArKJSzKE1FcUoj_T-EAE&cid=CAQSGwDq26N9z_7ng9wbCAGg-QzPPkld61zHfUtOLxgBIBM&id=lidar2&mcvt=1002&p=0,0,90,728&mtos=1002,1002,1002,1002,1002&tos=1002,0,0,0,0&v=20221130&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=3833132865&rs=2&la=0&cr=0&vs=4&r=v&rst=1669966148046&rpt=2503&met=ie&wmsd=0&pbe=0
IP 142.250.74.162:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pcs/activeview?xai=AKAOjsv6Iyhes8tFFAjdZsYT1_xLjJiXY5aKPR_g3F_7bqQ8xEejwqSyb6erEOrp8yJkg_FDDKsANIzYDqstSiWUjAHyhGyGIF0OgmaXON0lD2Wj1C9NahZyfixi5YwvO3o6LQrmzygv2g&sai=AMfl-YRk39uf0y9DKXBeZ4PAeqU7YmOXk8w36S3S5b6FfOaZ_li89UKYCgNrwvXoIO5s9QLCGZFxdXukbIk535o&sig=Cg0ArKJSzKE1FcUoj_T-EAE&cid=CAQSGwDq26N9z_7ng9wbCAGg-QzPPkld61zHfUtOLxgBIBM&id=lidar2&mcvt=1002&p=0,0,90,728&mtos=1002,1002,1002,1002,1002&tos=1002,0,0,0,0&v=20221130&bin=7&avms=nio&bs=0,0&mc=1&if=1&vu=1&app=0&itpl=20&adk=3833132865&rs=2&la=0&cr=0&vs=4&r=v&rst=1669966148046&rpt=2503&met=ie&wmsd=0&pbe=0 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://googleads.g.doubleclick.net/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
content-type: image/gif
date: Fri, 02 Dec 2022 07:29:13 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2