| r3.o.lencr.org/ |  23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashd2e72d45afe3d391c204b5391599607c 149d68b9d00a720b6f380fa2324779dca9dbe26d f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19133
Expires: Tue, 31 Jan 2023 20:31:56 GMT
Date: Tue, 31 Jan 2023 15:13:03 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash0c35c3ec659d3a26ea97e68d787bb043 d97e3672244efec5b7814f2d8a734cd1a9387854 4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6620
Expires: Tue, 31 Jan 2023 17:03:23 GMT
Date: Tue, 31 Jan 2023 15:13:03 GMT
Connection: keep-alive
|
|
| portal.criticalimpact.com/go/1/dbef2b1361dd0891e68eb99aa640ecc6/29891/7f2b11fe8c59ead93947229f28c3afba/750846fef97643b4a6473c7b9fa19141/29891 |  199.167.225.41 | 302 302 | 0 B |
URL HTTP/1.1portal.criticalimpact.com/go/1/dbef2b1361dd0891e68eb99aa640ecc6/29891/7f2b11fe8c59ead93947229f28c3afba/750846fef97643b4a6473c7b9fa19141/29891 IP199.167.225.41:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /go/1/dbef2b1361dd0891e68eb99aa640ecc6/29891/7f2b11fe8c59ead93947229f28c3afba/750846fef97643b4a6473c7b9fa19141/29891 HTTP/1.1
Host: portal.criticalimpact.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: cfid=6890e7c0-a338-48cf-9d41-b2e67466f4c3; cftoken=0; CF_CLIENT_TPORTALCRITICALIMPACTCOM_LV=1675177551179; CF_CLIENT_TPORTALCRITICALIMPACTCOM_TC=1675177551179; CF_CLIENT_TPORTALCRITICALIMPACTCOM_HC=2
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 302
Date: Tue, 31 Jan 2023 15:13:03 GMT
Server: Apache/2.4.54 (codeit)
location: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email#videoPanel
Set-Cookie: JSESSIONIDTC1=640178995471972BA180EFF1E41521EE; Path=/; HttpOnly; httpOnly
CF_CLIENT_TPORTALCRITICALIMPACTCOM_LV=1675177983445;Path=/;Expires=Mon, 01-May-2023 15:13:03 UTC;HttpOnly; httpOnly
CF_CLIENT_TPORTALCRITICALIMPACTCOM_TC=1675177983445;Path=/;Expires=Mon, 01-May-2023 15:13:03 UTC;HttpOnly; httpOnly
CF_CLIENT_TPORTALCRITICALIMPACTCOM_HC=2;Path=/;Expires=Mon, 01-May-2023 15:13:03 UTC;HttpOnly; httpOnly
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Connection: close
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashdcd75ca6daca51c5e39d431468511793 07f76d3bf23d65c9110d810fa71a994e39e085d3 73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 14:43:17 GMT
content-type: application/json
age: 1786
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hasha8d45deaa7ebfcd996c2055dae592ab8 55befe074589fe7b39757c145968058162a8fc6b 50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5396
Expires: Tue, 31 Jan 2023 16:42:59 GMT
Date: Tue, 31 Jan 2023 15:13:03 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: o2WilYbj2CCF0OHtlQsFvbU2KGo7KNGvQzdRjAEOdfSQxk7U9YuNaeyL3vUJJS6IR6W9Cg5mFh0=
x-amz-request-id: YDMG3YX88B07HWXG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 14:22:15 GMT
age: 3048
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 15:13:03 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 14:41:42 GMT
age: 1881
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash22b9916fc1fafc9bdc9bb37f9eac8a9a 86f640e134a741a0f906a8e3a0f5c6659dd0e394 a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16611
Expires: Tue, 31 Jan 2023 19:49:55 GMT
Date: Tue, 31 Jan 2023 15:13:04 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashf7c7bb7225c10524e8a4c4865da5a6f1 a7d13d671a7896602b3978b3cf95b36e6717a0e0 46603c49f6db6002e629cbe237183c257b80bba17e0841b76c103048a7f51909
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4635
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:04 GMT
Last-Modified: Tue, 31 Jan 2023 13:55:49 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hashdc17f23e7d082d02310beae779cd457d 8c9887a3e0b380deb023e723a4c8503cb14a7412 489cff3a42703470e159689da28cc132f8b39c288554a7a3be36161fb5e2f3c8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5689
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:04 GMT
Last-Modified: Tue, 31 Jan 2023 13:38:15 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash40bac282ee9730b7a7fde839fcf58736 be00063ec5c760560f34663d0a6a9cad87cfebe4 45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hasha5ff07b9b81cdf319f4a57d8d6dbbd6d 736ae15d0ed2068580d35a7cff8b33c0ec87af52 24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| code.jquery.com/jquery-3.4.1.min.js | 69.16.175.42 | 200 OK | 31 kB |
URL HTTP/2code.jquery.com/jquery-3.4.1.min.js IP69.16.175.42:0
File typeASCII text, with very long lines (65451) Hash9abb42735168ac9e960b770179b642aa 11475bf8c7244af7a820108b7762e7a3f95aa52c df53c09a6546b3d23dc0b2d0d92c39808c5663a75f4bf1f8d035fd11b7c81243
GET /jquery-3.4.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:13:04 GMT
content-encoding: gzip
content-length: 30638
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15851"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675177984.dop021.sk1.t,1675177984.cds069.sk1.hn,1675177984.cds201.sk1.c
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashc004ef398fc2138876eac9e202e6e7c9 9b695108fe043113ee8dc3369be58234f1a73323 ab71d4c6d64f3c7a0114070414615b26843c22de34b0f04c9ad932ca112031c7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| kingdominsurancegroup.com/assets/js/lazysizes.min.js | 184.175.105.14 | 200 OK | 3.5 kB |
URL HTTP/2kingdominsurancegroup.com/assets/js/lazysizes.min.js IP184.175.105.14:0
File typeASCII text, with very long lines (7862), with CRLF line terminators Hash218b7e41add38213a7f7d3495bc14d05 4842105667803eb6618a8e94a082e42722708799 0c5f9a91dcc59d0adc6f83e2027d73bdc2bbdd3a098a94e2020c4d22913c6340
GET /assets/js/lazysizes.min.js HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 15 Mar 2022 13:19:05 GMT
accept-ranges: bytes
etag: "806a963e6f38d81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 3505
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtag/js?id=UA-162955120-1 | 142.250.74.40 | 200 OK | 44 kB |
URL HTTP/2www.googletagmanager.com/gtag/js?id=UA-162955120-1 IP142.250.74.40:0
File typeASCII text, with very long lines (1759) Hash81c2f30213402a6e5818d83bc66707ff aedc92f45794df64646235af0f53241e05baa334 324d79554a8418b1ecb45c83882faca65430daeb4538dcf54d186dc4861e56ac
GET /gtag/js?id=UA-162955120-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 31 Jan 2023 15:13:04 GMT
expires: Tue, 31 Jan 2023 15:13:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44095
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hashdc17f23e7d082d02310beae779cd457d 8c9887a3e0b380deb023e723a4c8503cb14a7412 489cff3a42703470e159689da28cc132f8b39c288554a7a3be36161fb5e2f3c8
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5689
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:04 GMT
Last-Modified: Tue, 31 Jan 2023 13:38:15 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash0dea93a9adb1e26a6ebfaf2e12c22cd5 e286810b718e374858f11adf0aae18dc65f27d66 73dafa5cd629cdf850ca05894932507c209713024ef27ce7597cb25365f2150e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| kingdominsurancegroup.com/assets/fonts/Antonio/Antonio-Bold.woff | 184.175.105.14 | 200 OK | 27 kB |
URL HTTP/2kingdominsurancegroup.com/assets/fonts/Antonio/Antonio-Bold.woff IP184.175.105.14:0
File typeWeb Open Font Format, TrueType, length 27132, version 0.0\012- data Hash4e2c22dbb310737631c3d4825672dfa8 ba25253644eccd196658d17f1374506fc79914a0 1c556b2e24824ead215d94ac621a5d4e4bc99cb4d3541946451e3ce209ee4bff
GET /assets/fonts/Antonio/Antonio-Bold.woff HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/x-woff
last-modified: Tue, 15 Mar 2022 13:06:51 GMT
accept-ranges: bytes
etag: "8af0a0896d38d81:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 27132
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hasha5ff07b9b81cdf319f4a57d8d6dbbd6d 736ae15d0ed2068580d35a7cff8b33c0ec87af52 24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashd81f874741beb45c89de8bb5c6de438e a251ab903e654953631d84721479bbae55aa5cdf ec28dafa2a54818028d4dfe99218d9e4b507f3bd7efaabfba630d85f24d4d75d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 54.149.224.76 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.149.224.76:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: sNOLETPRxQtfJII1P+O4LA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZvC0CizPUhe36Hc1w+Ip17Ge+AQ=
|
|
| kingdominsurancegroup.com/assets/css/site-styles.css?v2 | 184.175.105.14 | 200 OK | 44 kB |
URL HTTP/2kingdominsurancegroup.com/assets/css/site-styles.css?v2 IP184.175.105.14:0
File typeUnicode text, UTF-8 text, with very long lines (692) Hashed2d6c43298145d27b41839cf433c150 21d19276cdd4bec8806c4fca9385b0cd76a1c46e 1e81edd933fe8f96b57df2940802a2e2836ba3adbae9ff86e4bf0aec33d526fd
GET /assets/css/site-styles.css?v2 HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: gzip
last-modified: Tue, 03 Jan 2023 20:27:22 GMT
accept-ranges: bytes
etag: "0f1a3c8b11fd91:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 43482
X-Firefox-Spdy: h2
|
|
| kingdominsurancegroup.com/assets/img/americas-number-one-fmo.jpg | 184.175.105.14 | 200 OK | 6.1 kB |
URL HTTP/2kingdominsurancegroup.com/assets/img/americas-number-one-fmo.jpg IP184.175.105.14:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 123x100, components 3\012- data Hash0199f28dfbc5c244e0d73254da74d3a6 2e816d4cb5ba5a787b8ef959021dcf2ce8673bb8 3b83918ef3b3c219833c2b6809cbaa6d38556427c80cb9028c1692cd4e3f78eb
GET /assets/img/americas-number-one-fmo.jpg HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Wed, 30 Mar 2022 15:05:05 GMT
accept-ranges: bytes
etag: "7f97bc894744d81:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 6070
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v6.2.1/css/pro.min.css?token=e1de1690e6 |  104.18.23.52 | 200 OK | 176 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v6.2.1/css/pro.min.css?token=e1de1690e6 IP104.18.23.52:0
File typeASCII text, with very long lines (65364) Size176 kB (176162 bytes) Hashd976fabd8013758faa48ccc3193aec5b afaabc798eeb541a6238a02f0c72948442f14a3c 77d8857a6b4ae9a5be3b7638d0748120fa698580f246473dff854ea02da631f4
GET /releases/v6.2.1/css/pro.min.css?token=e1de1690e6 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kingdominsurancegroup.com/
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:13:04 GMT
content-type: text/css
content-length: 176162
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "63725960-2b022"
last-modified: Mon, 14 Nov 2022 15:06:08 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1399
accept-ranges: bytes
server: cloudflare
cf-ray: 792363a35ddefabc-OSL
X-Firefox-Spdy: h2
|
|
| kingdominsurancegroup.com/assets/img/kingdom-insurance-logo.png | 184.175.105.14 | 200 OK | 12 kB |
URL HTTP/2kingdominsurancegroup.com/assets/img/kingdom-insurance-logo.png IP184.175.105.14:0
File typePNG image data, 386 x 115, 8-bit colormap, non-interlaced\012- data Hashdcc49bf5b04162530ed7596a9cec33df 5756b6c4faccc81665cdf1d6ec6230907dda0bdb 408db6153446efb8d7bc830600e62b89d038c96f33f5a1122aa7bb19a2660b34
GET /assets/img/kingdom-insurance-logo.png HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:05:06 GMT
accept-ranges: bytes
etag: "23cc528a4744d81:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 12451
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v6.2.1/css/pro-v4-font-face.min.css?token=e1de1690e6 | 104.18.23.52 | 200 OK | 2.3 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v6.2.1/css/pro-v4-font-face.min.css?token=e1de1690e6 IP104.18.23.52:0
File typeASCII text, with very long lines (11885) Hasha71b6267edf1e8c11e5b2b830621ebae 25b4aa4b54794ede499c605b87e9c9b5a9d83869 ebcb18e05bed7138656bb14ed325d9fe892eacab801800053c7552406711f082
GET /releases/v6.2.1/css/pro-v4-font-face.min.css?token=e1de1690e6 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kingdominsurancegroup.com/
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:13:04 GMT
content-type: text/css
content-length: 2312
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "6372595f-908"
last-modified: Mon, 14 Nov 2022 15:06:07 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1399
accept-ranges: bytes
server: cloudflare
cf-ray: 792363a36de5fabc-OSL
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v6.2.1/css/pro-v4-shims.min.css?token=e1de1690e6 | 104.18.23.52 | 200 OK | 4.3 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v6.2.1/css/pro-v4-shims.min.css?token=e1de1690e6 IP104.18.23.52:0
File typeASCII text, with very long lines (27250) Hash40a2574019832e669fc17010a084848f 1559678f9171150984b05050f868f2d030185486 2d9ffcd1ee43a5241feb430123305abf9155573fe9155ba07e072688622dc38b
GET /releases/v6.2.1/css/pro-v4-shims.min.css?token=e1de1690e6 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kingdominsurancegroup.com/
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:13:04 GMT
content-type: text/css
content-length: 4327
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "63725960-10e7"
last-modified: Mon, 14 Nov 2022 15:06:08 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1399
accept-ranges: bytes
server: cloudflare
cf-ray: 792363a36deafabc-OSL
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v6.2.1/css/pro-v5-font-face.min.css?token=e1de1690e6 | 104.18.23.52 | 200 OK | 12 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v6.2.1/css/pro-v5-font-face.min.css?token=e1de1690e6 IP104.18.23.52:0
File typeASCII text, with very long lines (65364) Hash5abb7b5b7d6f9b3cc7daf986485d5906 ff76fd7cb956676d742f79b35875a3ca14b28178 97b441e8f1d4533e127b534a7efbbdf563a3a3566fd59d325716227d14d94924
GET /releases/v6.2.1/css/pro-v5-font-face.min.css?token=e1de1690e6 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://kingdominsurancegroup.com/
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:13:04 GMT
content-type: text/css
content-length: 12460
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "63725960-30ac"
last-modified: Mon, 14 Nov 2022 15:06:08 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1399
accept-ranges: bytes
server: cloudflare
cf-ray: 792363a36de9fabc-OSL
X-Firefox-Spdy: h2
|
|
| kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%201).jpg | 184.175.105.14 | 200 OK | 98 kB |
URL HTTP/2kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%201).jpg IP184.175.105.14:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1100x658, components 3\012- data Hashea0bcf23dd06bdc94162bf004be750ae 1113757ea910af2d0b74dc0ee305a6062d0f5ecf b609feac94a109c8e3f6ecde323a781d3a198ed3e7d11e0aa8c13c5dd661d295
GET /assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%201).jpg HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Mon, 09 Jan 2023 21:21:44 GMT
accept-ranges: bytes
etag: "9f6cff5f7024d91:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 97833
X-Firefox-Spdy: h2
|
|
| kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%202).jpg | 184.175.105.14 | 200 OK | 118 kB |
URL HTTP/2kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%202).jpg IP184.175.105.14:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1100x745, components 3\012- data Size118 kB (118048 bytes) Hashaaaf0e654521fcfa6f6f7ce73cf96990 fd14e92de03d710a1e7f8fcb048f341cc2b10a3e 5f3a70aefae39fd21390dbaae97c4cf2f788adf3252a55dace3bd51f05575a67
GET /assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%202).jpg HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Mon, 09 Jan 2023 21:21:48 GMT
accept-ranges: bytes
etag: "ca2864627024d91:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 118048
X-Firefox-Spdy: h2
|
|
| kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%203).jpg | 184.175.105.14 | 200 OK | 128 kB |
URL HTTP/2kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%203).jpg IP184.175.105.14:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1100x371, components 3\012- data Size128 kB (127962 bytes) Hash5047acaaaec020c2f848cc7f11af3f95 bcaa6b3ebf93e566c0a88323ebc6ca69feb7817c cd5d15a2672fae11bdb20f2e860dc3e6f5dca71cc968056a23662ecab9ad2b98
GET /assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%203).jpg HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Mon, 09 Jan 2023 21:21:53 GMT
accept-ranges: bytes
etag: "2a49ea647024d91:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 127962
X-Firefox-Spdy: h2
|
|
| kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%204).jpg | 184.175.105.14 | 200 OK | 115 kB |
URL HTTP/2kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%204).jpg IP184.175.105.14:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1100x368, components 3\012- data Size115 kB (115192 bytes) Hash21518dcb94327f598578555338ffb60a 8ef964ea4be7d8298dc8e8ae9927a1b976c9dab6 cf88d7ed777888edf6f8fe87ea7e9d0394867f9fb9f888ae65e221e1ff368b87
GET /assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%204).jpg HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Mon, 09 Jan 2023 21:21:57 GMT
accept-ranges: bytes
etag: "55a44c677024d91:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 115192
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashf075625a67cefc01c034a3c732ec8023 c3ef563fbf1cf30f75fc931f82426a0f859ccb6d 75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%205).jpg | 184.175.105.14 | 200 OK | 110 kB |
URL HTTP/2kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%205).jpg IP184.175.105.14:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1100x363, components 3\012- data Size110 kB (109536 bytes) Hash8351b771bf5acc60f6e7ba1586751fac a9a59d934b558a4c1a01b43069877ead14e2b39e 9d454bcdcf3a1ad8970ef51c7597de12051e391e34fc20264dc7ac002a81b1b6
GET /assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%205).jpg HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Mon, 09 Jan 2023 21:22:00 GMT
accept-ranges: bytes
etag: "113f6c697024d91:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 109536
X-Firefox-Spdy: h2
|
|
| kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%206).jpg | 184.175.105.14 | 200 OK | 64 kB |
URL HTTP/2kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%206).jpg IP184.175.105.14:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1100x191, components 3\012- data Hashfbe14ec81b36a7f4f8eba5e09ac3fdc3 124e3273dfdf591c1022c97be72f9f869628cbbf 56255fd27808716adaa204a1909a269e96195987b0fbe68d5a22ed2bbb49083e
GET /assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%206).jpg HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Mon, 09 Jan 2023 21:22:03 GMT
accept-ranges: bytes
etag: "73172a6b7024d91:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 64394
X-Firefox-Spdy: h2
|
|
| kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%207).jpg | 184.175.105.14 | 200 OK | 52 kB |
URL HTTP/2kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%207).jpg IP184.175.105.14:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1100x503, components 3\012- data Hash1f36eb75360506b62a3aa2175da6c716 b26691f7441d593598113cd1120047a23991519d e2780b40c411372dddff16164b86c2dc5c57e7bd75737460401244aae234aada
GET /assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%207).jpg HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Mon, 09 Jan 2023 21:22:06 GMT
accept-ranges: bytes
etag: "c259ac6c7024d91:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 52385
X-Firefox-Spdy: h2
|
|
| kingdominsurancegroup.com/assets/img/kingdom-insurance-logo-white.png | 184.175.105.14 | 200 OK | 13 kB |
URL HTTP/2kingdominsurancegroup.com/assets/img/kingdom-insurance-logo-white.png IP184.175.105.14:0
File typePNG image data, 800 x 147, 8-bit colormap, non-interlaced\012- data Hash2a730d04e6b526757409d69546d58c1a d776e0da8557dfd90fce5732848ae0ed642ef343 4fc3a166d04c7bb05c27c1ab62419878b9bce9eb7481c1cb5ee87346808bcfab
GET /assets/img/kingdom-insurance-logo-white.png HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Wed, 30 Mar 2022 15:05:07 GMT
accept-ranges: bytes
etag: "d5ad378b4744d81:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 13396
X-Firefox-Spdy: h2
|
|
| kingdominsurancegroup.com/assets/js/main.js?v6 | 184.175.105.14 | 200 OK | 3.0 kB |
URL HTTP/2kingdominsurancegroup.com/assets/js/main.js?v6 IP184.175.105.14:0
File typeASCII text, with CRLF line terminators Hashe3097c08758129ef2511e3ef4dcbac88 d1ea45a407e7586063f93346b89400c0353b40be 8ab0dfffe6251b01bb1c81e925eb283d1318d19674a7fc4d7e7b8bfb93c1d77f
GET /assets/js/main.js?v6 HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Mon, 10 Oct 2022 15:27:57 GMT
accept-ranges: bytes
etag: "80bc8ddfbcdcd81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 3042
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v6.2.1/webfonts/pro-fa-solid-900-06a6e9.woff2 | 104.18.23.52 | 200 OK | 2.6 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v6.2.1/webfonts/pro-fa-solid-900-06a6e9.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 2552, version 770.768\012- data Hash292ed771aa39a17fd9b1e05b3682472e a0046d179b41a737560d8466449844b9c8d3157a f0fc94579c6d518a23f53319a8dea0cac18c7ea12ac4fa48e49eb5fbae12b390
GET /releases/v6.2.1/webfonts/pro-fa-solid-900-06a6e9.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:13:05 GMT
content-type: font/woff2
content-length: 2552
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "63725b8f-9f8"
last-modified: Mon, 14 Nov 2022 15:15:27 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1400
accept-ranges: bytes
server: cloudflare
cf-ray: 792363a6e88dfabc-OSL
X-Firefox-Spdy: h2
|
|
| kingdominsurancegroup.com/assets/js/carousel-multi-slide.js | 184.175.105.14 | 200 OK | 502 B |
URL HTTP/2kingdominsurancegroup.com/assets/js/carousel-multi-slide.js IP184.175.105.14:0
File typeASCII text, with CRLF line terminators Hasha78c84bc7238eeb8c8eb3748a806c05e 971c4be071f318111785348903be3a4c6a73d859 23bba787192e36c169bb7c5c1543caeacd12dbcb61bd4930e8465c6efd5b9c88
GET /assets/js/carousel-multi-slide.js HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 24 May 2022 20:48:46 GMT
accept-ranges: bytes
etag: "4274bea9af6fd81:0"
vary: Accept-Encoding
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 502
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v6.2.1/webfonts/pro-fa-brands-400-2a5ebc.woff2 | 104.18.23.52 | 200 OK | 1.2 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v6.2.1/webfonts/pro-fa-brands-400-2a5ebc.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 1216, version 770.768\012- data Hasha9372307e17bfb2bc495c06bc5f9481c 64b5295ca9f35c8a20e4340cd21f0944ba7a7f3f cf7aa7dd89440b84805ebedde91316495fd34a7260d00be1bb4c25c816eda8a2
GET /releases/v6.2.1/webfonts/pro-fa-brands-400-2a5ebc.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:13:05 GMT
content-type: font/woff2
content-length: 1216
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "63725b8a-4c0"
last-modified: Mon, 14 Nov 2022 15:15:22 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1400
accept-ranges: bytes
server: cloudflare
cf-ray: 792363a6e88ffabc-OSL
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashf075625a67cefc01c034a3c732ec8023 c3ef563fbf1cf30f75fc931f82426a0f859ccb6d 75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%208).jpg | 184.175.105.14 | 200 OK | 71 kB |
URL HTTP/2kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%208).jpg IP184.175.105.14:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1100x386, components 3\012- data Hash4efceb59982cf5a3a810863dd11a47e2 8fe115e1a9295fabe03fb1dc63ac55efa0e44380 40bf7068a355d566cba072113f0ca8c59abb8018cbc4cd3fc3ae8f27d7fc815e
GET /assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%208).jpg HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Mon, 09 Jan 2023 21:22:09 GMT
accept-ranges: bytes
etag: "1fedd76e7024d91:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 70796
X-Firefox-Spdy: h2
|
|
| kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%2010).jpg | 184.175.105.14 | 200 OK | 102 kB |
URL HTTP/2kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%2010).jpg IP184.175.105.14:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1100x572, components 3\012- data Size102 kB (102418 bytes) Hash6cf85ce84a4d0ff04fdfc1db59eb43fb fb2e7d37274b365ddffe0e069aff1dde118beb75 b6f94ff30725c3e65816db1494bee7884c101935dc2af249002f4889d382c5a6
GET /assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%2010).jpg HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Mon, 09 Jan 2023 21:21:39 GMT
accept-ranges: bytes
etag: "9519a55c7024d91:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 102418
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v6.2.1/webfonts/pro-fa-brands-400-9a7529.woff2 | 104.18.23.52 | 200 OK | 46 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v6.2.1/webfonts/pro-fa-brands-400-9a7529.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 46080, version 770.768\012- data Hash8206bf2a4a00e79bb0d504527aa15146 80ccad6c882888747b27b8eba8ec5de1e87bf054 8af72523d3be5cd871bd15fe2058298c96cd9e034820cb4cbddd2b5fbc9c1ddc
GET /releases/v6.2.1/webfonts/pro-fa-brands-400-9a7529.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:13:05 GMT
content-type: font/woff2
content-length: 46080
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "63725b8c-b400"
last-modified: Mon, 14 Nov 2022 15:15:24 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1400
accept-ranges: bytes
server: cloudflare
cf-ray: 792363a6e892fabc-OSL
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v6.2.1/webfonts/pro-fa-brands-400-f6b769.woff2 | 104.18.23.52 | 200 OK | 18 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v6.2.1/webfonts/pro-fa-brands-400-f6b769.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 18444, version 770.768\012- data Hash7712fcf350c139ef88fcf2c1b25a1826 c2c2686899e7d7cf59a0dd42006a0cddc75f07da 2306dff2ad40394ccbab07a0ef3124e8a68cdfc4a5fc762a3ef6be86141e406b
GET /releases/v6.2.1/webfonts/pro-fa-brands-400-f6b769.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:13:05 GMT
content-type: font/woff2
content-length: 18444
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "63725b8c-480c"
last-modified: Mon, 14 Nov 2022 15:15:24 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1400
accept-ranges: bytes
server: cloudflare
cf-ray: 792363a6f89cfabc-OSL
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v6.2.1/webfonts/pro-fa-solid-900-d5bbe9.woff2 | 104.18.23.52 | 200 OK | 24 kB |
URL HTTP/2ka-p.fontawesome.com/releases/v6.2.1/webfonts/pro-fa-solid-900-d5bbe9.woff2 IP104.18.23.52:0
File typeWeb Open Font Format (Version 2), TrueType, length 24068, version 770.768\012- data Hash2db806efcfe1a93aa5b4c2ee08748c4b 3c7c360f9dbab86fe748497c43b458c312980250 9a87caa378662a0579007c576ad8141197ce16499633f355abdf530a5377b1c7
GET /releases/v6.2.1/webfonts/pro-fa-solid-900-d5bbe9.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:13:05 GMT
content-type: font/woff2
content-length: 24068
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "63725b8f-5e04"
last-modified: Mon, 14 Nov 2022 15:15:27 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1400
accept-ranges: bytes
server: cloudflare
cf-ray: 792363a6f89efabc-OSL
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/librebaskerville/v14/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQDA.woff2 | 142.250.74.35 | 200 OK | 31 kB |
URL HTTP/2fonts.gstatic.com/s/librebaskerville/v14/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQDA.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 30696, version 1.0\012- data Hash459f6ec5f7a3d471017b70571cd93b33 c0049988a0fec891b59a5f8941b5f74093197e68 d809e5e194d9762855a81f8e4002da916b66a81ddc4b3fbdaf770ce4aa0fb560
GET /s/librebaskerville/v14/kmKhZrc3Hgbbcjq75U4uslyuy4kn0qNcWxEQDA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30696
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 18:54:38 GMT
expires: Wed, 24 Jan 2024 18:54:38 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 16:09:35 GMT
content-type: font/woff2
age: 591507
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/librebaskerville/v14/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxM.woff2 | 142.250.74.35 | 200 OK | 27 kB |
URL HTTP/2fonts.gstatic.com/s/librebaskerville/v14/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxM.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 27120, version 1.0\012- data Hash43e7d3f1dec74478587a2b3cfa272631 c065f24ac428353854ebd6715c49966fc4f4c762 6c6c9c3fad669c3d32227f5cc3467735c8211ddcf4f8c184c2e62e7f3ef7af44
GET /s/librebaskerville/v14/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 02:06:29 GMT
expires: Sat, 27 Jan 2024 02:06:29 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 26 Apr 2022 16:42:07 GMT
content-type: font/woff2
age: 392796
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hashf075625a67cefc01c034a3c732ec8023 c3ef563fbf1cf30f75fc931f82426a0f859ccb6d 75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| kingdominsurancegroup.com/assets/img/favicons/apple-touch-icon.png | 184.175.105.14 | 200 OK | 2.9 kB |
URL HTTP/2kingdominsurancegroup.com/assets/img/favicons/apple-touch-icon.png IP184.175.105.14:0
File typePNG image data, 76 x 76, 8-bit colormap, non-interlaced\012- data Hash7921ee0f9324cee4dffb668e371a1a6a 734e20662d836243088a31ec74e7ab64d10a9daa a980b8968969e8891c708aabd5364ccddaf8d9d29f6a4b7a99ff2f4e79784529
GET /assets/img/favicons/apple-touch-icon.png HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B; _gcl_au=1.1.928832450.1675178002
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 15 Mar 2022 13:11:27 GMT
accept-ranges: bytes
etag: "ccb01e2e6e38d81:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:04 GMT
content-length: 2870
X-Firefox-Spdy: h2
|
|
| kingdominsurancegroup.com/assets/img/favicons/favicon-16x16.png | 184.175.105.14 | 200 OK | 951 B |
URL HTTP/2kingdominsurancegroup.com/assets/img/favicons/favicon-16x16.png IP184.175.105.14:0
File typePNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data Hash7bb353a864ed6d356e59525d3589d058 0305ecfd1218f76153b2277e1b88c3e69b0498bb 39135736e76c61ddfce220a51725121b20a953da43fcf1f028b6a3c69b38bcdf
GET /assets/img/favicons/favicon-16x16.png HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B; _gcl_au=1.1.928832450.1675178002
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Tue, 15 Mar 2022 13:11:30 GMT
accept-ranges: bytes
etag: "7ef0812f6e38d81:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:04 GMT
content-length: 951
X-Firefox-Spdy: h2
|
|
| www.google-analytics.com/analytics.js | 216.239.32.178 | 200 OK | 20 kB |
URL HTTP/2www.google-analytics.com/analytics.js IP216.239.32.178:0
File typeASCII text, with very long lines (1490) Hashca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 31 Jan 2023 13:45:20 GMT
expires: Tue, 31 Jan 2023 15:45:20 GMT
cache-control: public, max-age=7200
age: 5265
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash33e403367d183257be0f03f28da923d2 a586e4052008741f8f535e7bd12a94bde81b264e 82ce104749546e6a6f76a8ddf19b67795784c06256581c13f499e80e4f713131
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 172.217.21.170 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP172.217.21.170:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 31 Jan 2023 15:13:06 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| static.doubleclick.net/instream/ad_status.js | 142.250.74.134 | 200 OK | 29 B |
URL HTTP/2static.doubleclick.net/instream/ad_status.js IP142.250.74.134:0
Hash1fa71744db23d0f8df9cce6719defcb7 e4be9b7136697942a036f97cf26ebaf703ad2067 eed0dc1fdb5d97ed188ae16fd5e1024a5bb744af47340346be2146300a6c54b9
GET /instream/ad_status.js HTTP/1.1
Host: static.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-doubleclick-media"
report-to: {"group":"ads-doubleclick-media","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-doubleclick-media"}]}
timing-allow-origin: *
content-length: 29
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 15:12:52 GMT
expires: Tue, 31 Jan 2023 15:27:52 GMT
cache-control: public, max-age=900
age: 14
last-modified: Thu, 12 Dec 2013 23:40:16 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash46e2bec06a11406d5cdcec9c0e76911d edc777878dca7029c70577edae741264a22ab010 21f7443ebf888a28fb0f0010d1c83ca833b42c06f7d2c755f83a4b418de96854
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash69ffc0a3f7ca2b025a6b99f9c38889be 1b436bda66cd246a1024f8c3d8e91e3aeef31eaa 9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash2ac1bcdceabf1fc4e07017906aa8a815 ba00b737325fc50b35af8d851ced0fe13d1cba22 c6c54f5dbbfc40b454b9c67a7972827f500d83b10a1594f7cb56c69158278c08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 172.217.21.170 | 200 OK | 31 kB |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP172.217.21.170:0
File typeJSON data\012- , ASCII text, with very long lines (65536), with no line terminators Hash678766d7ddf2a926722ba3324b2da3be 1f8601ba164778c58fbe5799262bef6c4e5a9ad9 664cd795d3f8fcaf1eb17678ac366ec9df1b4c46d4db37f34d8f359a2d52f845
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 31 Jan 2023 15:13:06 GMT
server: ESF
cache-control: private
content-length: 31035
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| googleads.g.doubleclick.net/pagead/id | 216.58.207.194 | 302 Found | 0 B |
URL HTTP/2googleads.g.doubleclick.net/pagead/id IP216.58.207.194:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pagead/id HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
location: https://googleads.g.doubleclick.net/pagead/id?slf_rd=1
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
date: Tue, 31 Jan 2023 15:13:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
server: cafe
content-length: 0
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/js/th/wBNXk7Q6V2dkHawik5TUb6id0fydDqlxfrWFyJdQ6Xw.js | 142.250.74.164 | 200 OK | 14 kB |
URL HTTP/2www.google.com/js/th/wBNXk7Q6V2dkHawik5TUb6id0fydDqlxfrWFyJdQ6Xw.js IP142.250.74.164:0
File typeASCII text, with very long lines (36000) Hashb40bdd235c7883921e2b18743b3aea21 9aaa96e2ec231327ba976911513989568c56c7c1 8b00f3a7d9b7acabf6b991926d7543944771ce1431efd342dea743192ec667e3
GET /js/th/wBNXk7Q6V2dkHawik5TUb6id0fydDqlxfrWFyJdQ6Xw.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 14173
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 21:20:34 GMT
expires: Sat, 27 Jan 2024 21:20:34 GMT
cache-control: public, max-age=31536000
age: 323552
last-modified: Tue, 03 Jan 2023 15:00:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| googleads.g.doubleclick.net/pagead/viewthroughconversion/635894011/?random=1675178002946&cv=11&fst=1675178002946&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkingdominsurancegroup.com%2Fdigital-leads-generation%26videoModal%3Dfo0EC2EMWzQ%3Futm_campaign%3DLeadGeneration01312023%26utm_source%3DLead-Generation-01-31-2023-%26utm_medium%3Demail&tiba=Kingdom%20Insurance%3A%20Digital%20Leads%20Generation&auid=928832450.1675178002&data=event%3Dgtag.config&rfmt=3&fmt=4 | 216.58.207.194 | 200 OK | 983 B |
URL HTTP/2googleads.g.doubleclick.net/pagead/viewthroughconversion/635894011/?random=1675178002946&cv=11&fst=1675178002946&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkingdominsurancegroup.com%2Fdigital-leads-generation%26videoModal%3Dfo0EC2EMWzQ%3Futm_campaign%3DLeadGeneration01312023%26utm_source%3DLead-Generation-01-31-2023-%26utm_medium%3Demail&tiba=Kingdom%20Insurance%3A%20Digital%20Leads%20Generation&auid=928832450.1675178002&data=event%3Dgtag.config&rfmt=3&fmt=4 IP216.58.207.194:0
File typeASCII text, with very long lines (2235), with no line terminators Hash31475ddb828fee6b1001b0b8cb57329f 6c14e7f07eb2bc18ed4fc342fd9cea41f6aefb3a 6e603d1513f47286e6a20d3fbc44dd23fd6c8f7420d733c074b4271c0cb02ee6
GET /pagead/viewthroughconversion/635894011/?random=1675178002946&cv=11&fst=1675178002946&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fkingdominsurancegroup.com%2Fdigital-leads-generation%26videoModal%3Dfo0EC2EMWzQ%3Futm_campaign%3DLeadGeneration01312023%26utm_source%3DLead-Generation-01-31-2023-%26utm_medium%3Demail&tiba=Kingdom%20Insurance%3A%20Digital%20Leads%20Generation&auid=928832450.1675178002&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 15:13:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 983
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Tue, 31-Jan-2023 15:28:06 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash33e403367d183257be0f03f28da923d2 a586e4052008741f8f535e7bd12a94bde81b264e 82ce104749546e6a6f76a8ddf19b67795784c06256581c13f499e80e4f713131
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hash69ffc0a3f7ca2b025a6b99f9c38889be 1b436bda66cd246a1024f8c3d8e91e3aeef31eaa 9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| googleads.g.doubleclick.net/pagead/id?slf_rd=1 | 216.58.207.194 | 200 OK | 120 B |
URL HTTP/2googleads.g.doubleclick.net/pagead/id?slf_rd=1 IP216.58.207.194:0
Hasha8e9d4fcab1e6bc1a329a245dbaa40ae 48456a854abc4998b45de99601b6506b5b7bdc33 c63ac6bad4057f495360dacc02a583c617a173dccdeb71178c0afb3d35e2dfb0
GET /pagead/id?slf_rd=1 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.youtube.com
Referer: https://www.youtube.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-origin: https://www.youtube.com
content-type: application/json; charset=UTF-8
date: Tue, 31 Jan 2023 15:13:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 120
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash73d6f94eec5f7bf78dc11951011af215 2d7941713a82a83c174bf782b618a6f86a8ab2d7 9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12287
Expires: Tue, 31 Jan 2023 18:37:53 GMT
Date: Tue, 31 Jan 2023 15:13:06 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12287
Expires: Tue, 31 Jan 2023 18:37:53 GMT
Date: Tue, 31 Jan 2023 15:13:06 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12287
Expires: Tue, 31 Jan 2023 18:37:53 GMT
Date: Tue, 31 Jan 2023 15:13:06 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12287
Expires: Tue, 31 Jan 2023 18:37:53 GMT
Date: Tue, 31 Jan 2023 15:13:06 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash43bc5afe1d7330aa521e0efc78185a92 f53e9daa0a32e0acf7a10d9494fb383c1d039305 429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12287
Expires: Tue, 31 Jan 2023 18:37:53 GMT
Date: Tue, 31 Jan 2023 15:13:06 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2797bfd35b7ec24888de84be14f7f2ec 8e315ac5856967286eaa8769e081d827fb4ca39e b99f3bd73eb4395194bc7bb6a1b801750182239e5b70f3207f99e494b60b72ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11129
x-amzn-requestid: 74f2a4dd-7d5d-4839-90a8-d2e74f6d785d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffDBZGRPoAMFedg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e53b-3de444596550bb41188ada5b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:17:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9Fga247EZZqiGmdMJ72resdBZR2KLgflGDBPESmuw9cFVs4hSzMzTw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:40:17 GMT
age: 41569
etag: "8e315ac5856967286eaa8769e081d827fb4ca39e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.google.no/pagead/1p-user-list/635894011/?random=1675178002946&cv=11&fst=1675177200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkingdominsurancegroup.com%2Fdigital-leads-generation%26videoModal%3Dfo0EC2EMWzQ%3Futm_campaign%3DLeadGeneration01312023%26utm_source%3DLead-Generation-01-31-2023-%26utm_medium%3Demail&tiba=Kingdom%20Insurance%3A%20Digital%20Leads%20Generation&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1927505961&rmt_tld=1&ipr=y | 142.250.74.163 | 200 OK | 42 B |
URL HTTP/2www.google.no/pagead/1p-user-list/635894011/?random=1675178002946&cv=11&fst=1675177200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkingdominsurancegroup.com%2Fdigital-leads-generation%26videoModal%3Dfo0EC2EMWzQ%3Futm_campaign%3DLeadGeneration01312023%26utm_source%3DLead-Generation-01-31-2023-%26utm_medium%3Demail&tiba=Kingdom%20Insurance%3A%20Digital%20Leads%20Generation&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1927505961&rmt_tld=1&ipr=y IP142.250.74.163:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashd89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/635894011/?random=1675178002946&cv=11&fst=1675177200000&bg=ffffff&guid=ON&async=1>m=2oa1p0&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fkingdominsurancegroup.com%2Fdigital-leads-generation%26videoModal%3Dfo0EC2EMWzQ%3Futm_campaign%3DLeadGeneration01312023%26utm_source%3DLead-Generation-01-31-2023-%26utm_medium%3Demail&tiba=Kingdom%20Insurance%3A%20Digital%20Leads%20Generation&data=event%3Dgtag.config&fmt=3&is_vtc=1&random=1927505961&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 31 Jan 2023 15:13:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg | 34.120.237.76 | 200 OK | 14 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd957012d3e2b8c3bc0eefe11d66e8554 1959fdd94846fa3791c4890578dd15336b909dcc a97e81ec5eb2eda6a603bf4bfd4fa4ef4fab762747479489e99e6c713258a736
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13853
x-amzn-requestid: ca6ea6e7-3e13-4194-87f5-20a07b813e21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zzF4hIAMFwWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-772487cb1b7495c52c552d36;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T5CaUojMEG8x8vki59UdIhI8IbbBRY_7w3xgiW3RCZlHTyeHPLIy2Q==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:47:13 GMT
age: 62753
etag: "1959fdd94846fa3791c4890578dd15336b909dcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4a2d26da68a313cc65958fc2692351c2 798c3538f3147ca77d317676ddd1bf040bd0f93b 76ce30224803d680c0115e987a712ce5552b2760beadf796a96b17439fb20797
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10898
x-amzn-requestid: e29f8dfc-07d4-4136-afaf-e1e067eea2ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zxGshIAMFw5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-5e87d2a44722af9e4e86c3d4;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: djoQmYTv7Rlq9tKKkJ5U1J3YeVSIs5yzSts_xRN3bdi27Ra8UfM6OQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:44:45 GMT
age: 62901
etag: "798c3538f3147ca77d317676ddd1bf040bd0f93b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg | 34.120.237.76 | 200 OK | 6.8 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash976dda397f9292a498ca9db5599c0378 dad9e9c3462907a2475046aee36d57f8309cd44e 7ed9ccf2ff75ca53f5ba56a1d2127e0f09b0ae941cad8b042e8df01ad01e614b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6844
x-amzn-requestid: 0542cf46-5045-459f-a35f-f6c0d3f5f7b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flZsxH0YIAMF9ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86feb-692d50f710a131df2ee49aa8;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6bbFjAsd03GN8zzBnAFBm7xA8igZ_xHJsOHzw7nwNgRxiWUDLPGjpQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:53:29 GMT
age: 47977
etag: "dad9e9c3462907a2475046aee36d57f8309cd44e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 172.217.21.170 | 200 OK | 0 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP172.217.21.170:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 31 Jan 2023 15:13:06 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg | 34.120.237.76 | 200 OK | 10 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2c4934be94898028e2ab696561b51462 6cf734e2d29938688913daacfb75506d8e004a94 239adcbb538b7a6d1483c65c7694d4a9f9fa9cadf456ab5681c4b764185e3596
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 67109f87-6073-4991-b540-cdeedc2d7b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flYlPF9uIAMFXMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86e21-60ac2c7b37c72e6e54a5c69d;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:25:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hDjKAMYoVwHdCqS8t08PrWyfQQLiWaosXbi3FOJY8BeV0yAFCGziGw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:58:16 GMT
age: 47690
etag: "6cf734e2d29938688913daacfb75506d8e004a94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg | 34.120.237.76 | 200 OK | 8.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe6f9ffb8f9e99229b45ca5fdb84ce7d5 04577ad69ee9749b14382254eb5bbf0e1edcd7fa 6111acf3f363123b39d13cd3d23ab39b8c8d00379874f19231d1cd3da17c52c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8558
x-amzn-requestid: 2841cd36-22e6-4ecb-b56a-bfadce3197c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffB_BFA8IAMFyvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e393-3fd03bd14de762b0738a3b0a;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZP2Mar8l3QoPH733_vv3hUuQjWvaN4_TgfYwme2-6WIxGi55BoSchg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 04:26:31 GMT
age: 38795
etag: "04577ad69ee9749b14382254eb5bbf0e1edcd7fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 172.217.21.170 | 200 OK | 110 B |
URL HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP172.217.21.170:0
File typeJSON data\012- , ASCII text, with no line terminators Hash222027eb98420ca4d18d94d4424b3e21 5fcc93668912732f09d35c076b5aa36500d2f175 3bfbafdfc586bdb2c1c8f6fffe60796a4f37c426260b6238f173784f83903002
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1231
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 31 Jan 2023 15:13:06 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash73d6f94eec5f7bf78dc11951011af215 2d7941713a82a83c174bf782b618a6f86a8ab2d7 9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 142.250.74.35 | 200 OK | 16 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:40:43 GMT
expires: Fri, 26 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 426744
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.35 | 200 OK | 15 kB |
URL HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.35:0
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 408304
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-162955120-1&cid=1033142815.1675178003&jid=146777305&gjid=1033730199&_gid=1212757393.1675178003&_u=YEBAAUAAAAAAACAAI~&z=1224598908 | 173.194.73.157 | 200 OK | 1 B |
URL HTTP/2stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-162955120-1&cid=1033142815.1675178003&jid=146777305&gjid=1033730199&_gid=1212757393.1675178003&_u=YEBAAUAAAAAAACAAI~&z=1224598908 IP173.194.73.157:0
File typevery short file (no magic) Hashc4ca4238a0b923820dcc509a6f75849b 356a192b7913b04c54574d18c28d46e6395428ab 6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-162955120-1&cid=1033142815.1675178003&jid=146777305&gjid=1033730199&_gid=1212757393.1675178003&_u=YEBAAUAAAAAAACAAI~&z=1224598908 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://kingdominsurancegroup.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Tue, 31 Jan 2023 15:13:07 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashc3a242e6132fe39e40953523bb8d3175 c9914952910c863f533f0c7bf6451b77b12d10b7 423bd4744c6b389c23fccdfab4dc8731bf553232a6bf14782c946183e8119a04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 472 B |
IP142.250.74.131:0
Hashc3a242e6132fe39e40953523bb8d3175 c9914952910c863f533f0c7bf6451b77b12d10b7 423bd4744c6b389c23fccdfab4dc8731bf553232a6bf14782c946183e8119a04
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| i.ytimg.com/vi_webp/fo0EC2EMWzQ/maxresdefault.webp | 172.217.21.182 | 200 OK | 135 kB |
URL HTTP/2i.ytimg.com/vi_webp/fo0EC2EMWzQ/maxresdefault.webp IP172.217.21.182:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1280x720, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size135 kB (135316 bytes) Hash18a43da9070f56f439ddab1a83d85734 a66a168a1226ca9052181016dc918b95909b7b4b 52d43bd840ac3faddccc86dfdf5a2df812a648a1bbab7fdd9f1e2e6f4d7a1f47
GET /vi_webp/fo0EC2EMWzQ/maxresdefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 135316
date: Tue, 31 Jan 2023 15:13:07 GMT
expires: Tue, 31 Jan 2023 17:13:07 GMT
cache-control: public, max-age=7200
etag: "1611248767"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi_webp/fo0EC2EMWzQ/default.webp | 172.217.21.182 | 200 OK | 3.6 kB |
URL HTTP/2i.ytimg.com/vi_webp/fo0EC2EMWzQ/default.webp IP172.217.21.182:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 120x90, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hashd011efe9aeade3d06c003da3fd60cdd4 e35627d3a7cb295f2ea32806c79c0ad7667d1628 3ac2e75d54156ce36aee9e8230f03edfa8e48809686fe7d4599492cbaff257e2
GET /vi_webp/fo0EC2EMWzQ/default.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 3580
date: Tue, 31 Jan 2023 15:13:08 GMT
expires: Tue, 31 Jan 2023 17:13:08 GMT
cache-control: public, max-age=7200
etag: "1611248767"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 28 kB |
IP142.250.74.131:0
Hashecff5dc6f0c31e6056ee50c67b562103 d52209fb66069ba28399f01c2e3bed8993fa631a 59d4c725d98603583f1f11020eb594bfd84a90f4ebee2269147052e8e3d54b58
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 15:13:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email | 184.175.105.14 | 200 OK | 0 B |
URL HTTP/2kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email IP184.175.105.14:0
GET /digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
cache-control: no-cache
content-type: text/html;charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
server: Microsoft-IIS/10.0
set-cookie: CFID=25167549; Expires=Thu, 23-Jan-2053 15:13:03 GMT; Path=/; HttpOnly
CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B; Expires=Thu, 23-Jan-2053 15:13:03 GMT; Path=/; HttpOnly
date: Tue, 31 Jan 2023 15:13:03 GMT
X-Firefox-Spdy: h2
|
|
| ka-p.fontawesome.com/releases/v6.2.1/webfonts/pro-fa-solid-900-e3907a.woff2 | 104.18.23.52 | 200 OK | 0 B |
URL HTTP/2ka-p.fontawesome.com/releases/v6.2.1/webfonts/pro-fa-solid-900-e3907a.woff2 IP104.18.23.52:0
GET /releases/v6.2.1/webfonts/pro-fa-solid-900-e3907a.woff2 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:13:05 GMT
content-type: font/woff2
content-length: 28084
access-control-allow-origin: *
cache-control: max-age=31556926
etag: "63725b8f-6db4"
last-modified: Mon, 14 Nov 2022 15:15:27 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 1400
accept-ranges: bytes
server: cloudflare
cf-ray: 792363a6e88efabc-OSL
X-Firefox-Spdy: h2
|
|
| www.youtube.com/iframe_api | 142.250.74.174 | 200 OK | 0 B |
URL HTTP/2www.youtube.com/iframe_api IP142.250.74.174:0
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Tue, 31 Jan 2023 15:13:04 GMT
date: Tue, 31 Jan 2023 15:13:04 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=HC-MxJLc5VY; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TkRnek5EWTFPREV3T0RBMk1EY3lPUT09EIDg5J4GGIDg5J4G; Domain=.youtube.com; Expires=Sun, 30-Jul-2023 15:13:04 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=g1Ju1civRpQ; Domain=.youtube.com; Expires=Sun, 30-Jul-2023 15:13:04 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+344; expires=Thu, 30-Jan-2025 15:13:04 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js | 104.16.89.20 | 200 OK | 0 B |
URL HTTP/2cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js IP104.16.89.20:0
GET /npm/bootstrap@5.1.3/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://kingdominsurancegroup.com
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:13:04 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 5.1.3
x-jsd-version-type: version
etag: W/"13131-qF5oFiTJGhBqUUwx6s+A3oF7LMM"
x-served-by: cache-fra19150-FRA, cache-bma1666-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
cf-cache-status: HIT
age: 20627459
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zD4IQVdcxxieUvgB0qAHw%2FyNauOxKvyuAEEGE15%2FFMsNcg4DEoke6Dzlm0VwZ%2FsuRGACmFET4%2Fe7QQZlhEHlHKnFBBLopp2eqsMcXL0N91vAb3ryN8Npz1TKu99gxhvI69Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792363a1c8701bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Libre+Baskerville:400,400i,700&display=swap | 142.250.74.106 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Libre+Baskerville:400,400i,700&display=swap IP142.250.74.106:0
GET /css?family=Libre+Baskerville:400,400i,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 31 Jan 2023 15:13:04 GMT
date: Tue, 31 Jan 2023 15:13:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| kit.fontawesome.com/e1de1690e6.js | 104.18.23.52 | 200 OK | 0 B |
URL HTTP/2kit.fontawesome.com/e1de1690e6.js IP104.18.23.52:0
GET /e1de1690e6.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 15:13:04 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fys58Zs3ccNthiZOtcAB
cf-cache-status: HIT
age: 10
server: cloudflare
cf-ray: 792363a1c908fab8-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%209).jpg | 184.175.105.14 | 200 OK | 0 B |
URL HTTP/2kingdominsurancegroup.com/assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%209).jpg IP184.175.105.14:0
GET /assets/img/how-it-works/digital-leads-generation/Kingdom%20-%20Landing%20Page%202023%20-%2002%20-%20New%20Website%20Lead%20Generation%20(PART%209).jpg HTTP/1.1
Host: kingdominsurancegroup.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://kingdominsurancegroup.com/digital-leads-generation&videoModal=fo0EC2EMWzQ?utm_campaign=LeadGeneration01312023&utm_source=Lead-Generation-01-31-2023-&utm_medium=email
Cookie: CFID=25167549; CFTOKEN=be2193834d583590-53E1B252-BDFF-EE27-0EBF829B55031D2B
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/jpeg
last-modified: Mon, 09 Jan 2023 21:22:12 GMT
accept-ranges: bytes
etag: "6666a6707024d91:0"
server: Microsoft-IIS/10.0
date: Tue, 31 Jan 2023 15:13:03 GMT
content-length: 83643
X-Firefox-Spdy: h2
|
|