r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9741
Expires: Mon, 27 Mar 2023 09:12:02 GMT
Date: Mon, 27 Mar 2023 06:29:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11480
Expires: Mon, 27 Mar 2023 09:41:01 GMT
Date: Mon, 27 Mar 2023 06:29:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9bb70197d53617b5e6889b890dd2ae26
f3e9b8a743de494529baf2d078a622539f965307
a094a13905b7f1cd89475f9c83f9245580d4c3c7228d51d5c16622aec3c6aa45
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A094A13905B7F1CD89475F9C83F9245580D4C3C7228D51D5C16622AEC3C6AA45"
Last-Modified: Sat, 25 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10996
Expires: Mon, 27 Mar 2023 09:32:57 GMT
Date: Mon, 27 Mar 2023 06:29:41 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bc86ef2a0cee04915bc360f5821adc8f
3658f9028cce204d38f7f48fcfaa2a8e4f54383a
aeecd718d03811322457de4f20828bdba86b277e7e0e328cae9c0a8075638454
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Backoff, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 27 Mar 2023 06:15:41 GMT
content-type: application/json
age: 840
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: kJv15OnCfGi5MqaTp7ZhkQHFRHA85v1oYdPIKGz5r9gIZogZAKosYxm4v8j6V9SjHB7purb8Hi4=
x-amz-request-id: 9P481AVANCP8CWH3
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 27 Mar 2023 06:01:32 GMT
age: 1689
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 27 Mar 2023 06:29:42 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Content-Type, Cache-Control, Pragma, Alert, Last-Modified, Retry-After, Backoff, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 27 Mar 2023 06:17:24 GMT
age: 738
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
prntgraphicdesign.com/FidelityLife/c65220hRlId6FGHee88d6e341ee0000021/ef3a0bcc2hDId68ccee88d6e31/eeb22f496ce9a21ecbhSDb/WNraW5bhbdffgrdr76yry98494bb8abca
92.63.174.63302 Found 0 B URL HTTP/1.1 prntgraphicdesign.com/FidelityLife/c65220hRlId6FGHee88d6e341ee0000021/ef3a0bcc2hDId68ccee88d6e31/eeb22f496ce9a21ecbhSDb/WNraW5bhbdffgrdr76yry98494bb8abca
IP 92.63.174.63:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /FidelityLife/c65220hRlId6FGHee88d6e341ee0000021/ef3a0bcc2hDId68ccee88d6e31/eeb22f496ce9a21ecbhSDb/WNraW5bhbdffgrdr76yry98494bb8abca HTTP/1.1
Host: prntgraphicdesign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Mon, 27 Mar 2023 06:29:41 GMT
Server: Apache/2.4.6 (CentOS) PHP/5.4.16
X-Powered-By: PHP/5.4.16
Location: http://astrohyperbole.com/a364e55831d3be1b2b4692821e2479c75/?sid1=Uv_Fidelity_27Mar
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9736
Expires: Mon, 27 Mar 2023 09:11:58 GMT
Date: Mon, 27 Mar 2023 06:29:42 GMT
Connection: keep-alive
push.services.mozilla.com/
52.42.36.255101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.36.255:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: WCPjUGnkC+mmP0NiufLNzA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5nvRsI+3B5zE8aKyLtbpXl7gdNs=
astrohyperbole.com/a364e55831d3be1b2b4692821e2479c75/?sid1=Uv_Fidelity_27Mar
38.154.147.109200 OK 6.6 kB URL HTTP/1.1 astrohyperbole.com/a364e55831d3be1b2b4692821e2479c75/?sid1=Uv_Fidelity_27Mar
IP 38.154.147.109:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash df9886473f0e99d76c6f39d6cd3610c8
2fa1ddd825b0c04e0adad16432d4eeb4408f426c
51c0d903a8c7d187996af7200baac896bf0e19dcfae11486fdef4a18986eca70
GET /a364e55831d3be1b2b4692821e2479c75/?sid1=Uv_Fidelity_27Mar HTTP/1.1
Host: astrohyperbole.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 06:42:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.33
Set-Cookie: clkcheck28272=8c2571954f621214d5dc30d103a30a5c_200771; expires=Wed, 26-Apr-2023 06:42:22 GMT; Max-Age=2592000; path=/; SameSite=Lax
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1eebd93ef4ace8f93b306d6a46d47288
e968b59494a1ec170444176e4a45733e34289be0
ac364c1480c475154359adb0bd62380d9f51d59d0617c77977001a0eb184d77e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 06:29:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-MB79N3N
142.250.74.168200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-MB79N3N
IP 142.250.74.168:0
File type ASCII text, with very long lines (2206)
Hash a9527a125d6f0567c8c4d3639e7abfe7
9289d48ce9506740d1f28f4ba732da2482de7404
fd7ea0bf23d83468ef2e6483fd41965bcb8ee710ad6b5dddce395456f79cf491
GET /gtm.js?id=GTM-MB79N3N HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://astrohyperbole.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Mar 2023 06:29:43 GMT
expires: Mon, 27 Mar 2023 06:29:43 GMT
cache-control: private, max-age=900
last-modified: Mon, 27 Mar 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41502
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1eebd93ef4ace8f93b306d6a46d47288
e968b59494a1ec170444176e4a45733e34289be0
ac364c1480c475154359adb0bd62380d9f51d59d0617c77977001a0eb184d77e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 06:29:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
astrohyperbole.com/fp.php
38.154.147.109200 OK 0 B URL HTTP/1.1 astrohyperbole.com/fp.php
IP 38.154.147.109:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /fp.php HTTP/1.1
Host: astrohyperbole.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain;charset=UTF-8
Content-Length: 766
Origin: http://astrohyperbole.com
Connection: keep-alive
Referer: http://astrohyperbole.com/a364e55831d3be1b2b4692821e2479c75/?sid1=Uv_Fidelity_27Mar
Cookie: clkcheck28272=8c2571954f621214d5dc30d103a30a5c_200771
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 27 Mar 2023 06:42:22 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.33
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10019
Expires: Mon, 27 Mar 2023 09:16:43 GMT
Date: Mon, 27 Mar 2023 06:29:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10019
Expires: Mon, 27 Mar 2023 09:16:43 GMT
Date: Mon, 27 Mar 2023 06:29:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10019
Expires: Mon, 27 Mar 2023 09:16:43 GMT
Date: Mon, 27 Mar 2023 06:29:44 GMT
Connection: keep-alive
quotes.ecoverage.com/rates
104.22.8.151301 Moved Permanently 13 kB URL HTTP/2 quotes.ecoverage.com/rates
IP 104.22.8.151:0
Hash 6760429cfec16563042c1893f5b5be86
e515cbce7bbe5c617ebb065c5b5eabe74d05652b
450d742ff5b979a2cec76d45f990d995e0ae5d8a709d1f4671b3544ef2e37fe7
GET /rates HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://astrohyperbole.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
date: Mon, 27 Mar 2023 06:29:43 GMT
content-type: text/html; charset=UTF-8
location: https://quotes.ecoverage.com/rates/
x-redirect-by: WordPress
x-powered-by: WP Engine
x-cacheable: non200
cache-control: max-age=600, must-revalidate
x-cache: HIT: 1
x-cache-group: normal
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=; path=/; expires=Mon, 27-Mar-23 06:59:43 GMT; domain=.ecoverage.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7ae594a388ccb509-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash be1cd1cf8e462ca6f6acb2f132e614d5
037f3bc7ab850fa2c69f2584bb24340b25bb6f3c
e212abd38fd1ccc428a4c480913938f8ea6e9da873ebe73df55cdbee7fff2efa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E212ABD38FD1CCC428A4C480913938F8EA6E9DA873EBE73DF55CDBEE7FFF2EFA"
Last-Modified: Sun, 26 Mar 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10019
Expires: Mon, 27 Mar 2023 09:16:43 GMT
Date: Mon, 27 Mar 2023 06:29:44 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34000367-9577-4c81-bbc7-d968f62c4ef2.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34000367-9577-4c81-bbc7-d968f62c4ef2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b0f3e3c4584dcf7b158236bf4dce164c
1a6063b2bad22f23ef33c123a16ab035515e95db
e0fe6112bdc39de23384f4a8782fc72df9577448555d1634fcd5fe34e6cf492f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34000367-9577-4c81-bbc7-d968f62c4ef2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8438
x-amzn-requestid: db3a5404-7161-4c9f-952a-4109ffd62491
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CaINiHCdoAMFn0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6420ba56-05338fff3f562aad31c7c027;Sampled=0
x-amzn-remapped-date: Sun, 26 Mar 2023 21:34:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: mNjK5YwJbwmAwA6WszDkyUgiHY3Bd9FJQdkybyo9aEO_JKV9FwRpkg==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 22:28:02 GMT
age: 28902
etag: "1a6063b2bad22f23ef33c123a16ab035515e95db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: _g9kT_E1XbUL7UICSL8g0AR0ZYciqALNSNMyJyhFClAh_zMe8CwiRA==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 google
date: Mon, 27 Mar 2023 06:28:03 GMT
age: 101
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 22905e8a7c8b1741dd51842c114a6517
c5900fe2396e0ca371c4847af4e96149850c3577
1525f9f39c09370fcb1f58f079f2d741a4c6d13fba26e6dd5b79466153d7685e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d7ce900-ce9b-481b-9205-9748eeded2e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10405
x-amzn-requestid: 0b8dad7a-2ec1-4eed-9a2c-06079ed46662
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CRi69E9xoAMFiJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641d4b79-2f606ac041c5db24583c8d51;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 07:04:25 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: qbbEi0tXZLKo6qjrbJMtTHdhWziYrLrgzY1hzt_LrQJoeDDBbJnZBA==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 09:04:24 GMT
age: 77120
etag: "c5900fe2396e0ca371c4847af4e96149850c3577"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4b00868-d4e4-49ee-b488-491632971243.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4b00868-d4e4-49ee-b488-491632971243.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 675f061936669e9de498cd16bfc96379
00235db033dbeb738db9633e50c8666add66dadb
7c26736fcd1bf736aba7d16534720e03e0527ef30f6efb98403ad17e8c11a7e2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4b00868-d4e4-49ee-b488-491632971243.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10282
x-amzn-requestid: 29110a42-55db-45a2-8abf-0270f02b3017
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CRi4YH3SIAMF31g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641d4b68-459f32fe475dc8d439aa8343;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 07:04:08 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: UAmlbyOBTJfvQoqELaYaoNa5jvnygpynfibmhlFA5ZPHcSFnVhnuhg==
via: 1.1 8591441a35c0af61913aec9af012bc38.cloudfront.net (CloudFront), 1.1 0cf6c59c77f0fff670ae085179adc458.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 22:59:42 GMT
age: 27002
etag: "00235db033dbeb738db9633e50c8666add66dadb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5805638-2902-4f40-8b73-ba33d9ca0491.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5805638-2902-4f40-8b73-ba33d9ca0491.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0096dd7b1fa0020a7af8933c7520a42e
cdaab50fa72af06cb6d5ab1b3fd2e86e39f0d995
5a32929dd8fc2ad509b0d95e39531951f51a639dae4e744e25e6404af019802e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe5805638-2902-4f40-8b73-ba33d9ca0491.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7014
x-amzn-requestid: f959a37e-f462-4177-a994-649f35dcc580
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CU1_JGXXIAMFtTA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e9d2d-592e798168fdfc33048e38f9;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 07:05:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: e_iUQfMy7Z1hxfYMLWxO2gCj25Cyd-zwMFF3ewn3hfIeHWUnPHqukQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 09:19:41 GMT
age: 76203
etag: "cdaab50fa72af06cb6d5ab1b3fd2e86e39f0d995"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48af090e-bcf0-48ef-945a-a7c43705ebec.gif
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48af090e-bcf0-48ef-945a-a7c43705ebec.gif
IP 34.120.237.76:0
File type GIF image data, version 89a, 296 x 148\012- data
Hash 4f22df3b9748df65eb07542a76cda717
ff09f8dddd82a1137e92170fedb37b61c167e47a
f1fa4e623c3193688b4c45b3c910aabac044ee324539cffdfaadd6e484d6fb22
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48af090e-bcf0-48ef-945a-a7c43705ebec.gif HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9490
x-amzn-requestid: ece83816-1754-47e5-9dcb-2a313c2c95a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CU19zG5qIAMFevQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e9d24-2ffc6d6220f774793c81f84c;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 07:05:08 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: fRKNKH0APoL4MY5pRbFqA3kyTtk9UBG1grMrdaI2W5HBgJCfMqi0Yw==
via: 1.1 8591441a35c0af61913aec9af012bc38.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Sun, 26 Mar 2023 07:27:15 GMT
age: 82949
etag: "ff09f8dddd82a1137e92170fedb37b61c167e47a"
content-type: image/gif
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery.sumoselect/3.0.2/sumoselect.min.css
104.17.24.14200 OK 1.7 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.sumoselect/3.0.2/sumoselect.min.css
IP 104.17.24.14:0
File type ASCII text, with very long lines (6926), with no line terminators
Hash fbba41bbe760b8e7cb16d53dcaa0443f
e12cdca86ef9ddbec1ee73ca06d2d88f1353b200
c387484c41af5eaeee03a068d5a8d2aa67e82cc5461967f646f4d751a89e8f0a
GET /ajax/libs/jquery.sumoselect/3.0.2/sumoselect.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:44 GMT
content-type: text/css; charset=utf-8
content-length: 1742
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-1b0e"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 5742926
expires: Sat, 16 Mar 2024 06:29:44 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MKZ37%2FfrSDbJ9XmUXttkYUzPceNARUMG12eSP2m0E5tq2g4ehbjHCIViuVbyYkAXG1juOYZqtsZwre%2FRrJz68J1Da97S1sr2Ujj8XLIGxy7y%2BKxbYjNAhwOaE2CDU%2BhcUzsJHrhN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7ae594a7bd16fabc-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-content/uploads/2020/06/group-7@2x.png
104.22.8.151200 OK 6.7 kB URL HTTP/2 quotes.ecoverage.com/wp-content/uploads/2020/06/group-7@2x.png
IP 104.22.8.151:0
File type PNG image data, 546 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash 9e98bf9ff00a927116ab210002f1019c
b80fac5e9f3469f33242fb83ad1819ee2c5cb4e2
b03a01d6c6a1f8e18afebcd3de37a6f204729a074638a806f3aaf5fb28b44e93
GET /wp-content/uploads/2020/06/group-7@2x.png HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:44 GMT
content-type: image/png
content-length: 6698
last-modified: Thu, 08 Oct 2020 19:32:28 GMT
etag: "5f7f694c-1a2a"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7ae594a79e58b509-OSL
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-content/uploads/2020/06/Logo.png
104.22.8.151200 OK 7.3 kB URL HTTP/2 quotes.ecoverage.com/wp-content/uploads/2020/06/Logo.png
IP 104.22.8.151:0
File type PNG image data, 190 x 45, 8-bit/color RGBA, interlaced\012- data
Hash be6a29cbf12fb055032f7e129a80af18
c72cfa72a0b3739b6558801891a42b4b95f9e250
9c84ba2385e0af50528bd108c8abb1d359abbd12609f7303229228272a02742f
GET /wp-content/uploads/2020/06/Logo.png HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:44 GMT
content-type: image/png
content-length: 7340
last-modified: Thu, 08 Oct 2020 19:32:28 GMT
etag: "5f7f694c-1cac"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7ae594a7ae60b509-OSL
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 816df92eda30d9e670aa39abcb1d44d0
1080e805499ef45937105058d032987b0f6ae343
1e848e1259cc5780945525c780d8d10818039ba8947fe8e7450c5249fae61d3c
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 27 Mar 2023 06:29:44 GMT
Etag: "641fc915-1d7"
Last-Modified: Mon, 27 Mar 2023 04:59:45 GMT
Server: ECAcc (dcb/7EDB)
X-Cache: Miss from cloudfront
Via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Iemy3ms5TRiZ_6ObQrz6h16AhuNlyYHzFQlSsf-ozv93HbYZfpFt8g==
Age: 5399
insurance.mediaalpha.com/js/serve.js
18.215.45.106200 OK 5.5 kB URL HTTP/2 insurance.mediaalpha.com/js/serve.js
IP 18.215.45.106:0
File type ASCII text, with very long lines (556)
Hash 43b9ba9ca6829079ab8523eab5d17b6e
714c52b73d5c13551c8f8111319be81462bd9d3e
eea7bf4c5ec72820fcb9b17508a097783f67a499759f25da5b22a0748635405b
GET /js/serve.js HTTP/1.1
Host: insurance.mediaalpha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:44 GMT
content-type: application/javascript; charset=UTF-8
content-length: 5516
server: Apache
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 1eebd93ef4ace8f93b306d6a46d47288
e968b59494a1ec170444176e4a45733e34289be0
ac364c1480c475154359adb0bd62380d9f51d59d0617c77977001a0eb184d77e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 06:29:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-NLX7M9
142.250.74.168200 OK 60 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NLX7M9
IP 142.250.74.168:0
File type ASCII text, with very long lines (21476)
Hash 0b5b2bb5b127c3fbb021592c10f77c29
0a811e01d736759d4fb29e723e7ece98b6ca001f
13fd3186db09342e58c07f850f086418a8bb529ef9c812247f6fdae1a867fdc6
GET /gtm.js?id=GTM-NLX7M9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 27 Mar 2023 06:29:44 GMT
expires: Mon, 27 Mar 2023 06:29:44 GMT
cache-control: private, max-age=900
last-modified: Mon, 27 Mar 2023 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 59902
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
insurance.mediaalpha.com/js/serve_.js?z=N{QH}I~9NjK_LOs9Z76qdflv2MfFcK7Ma3S3g~K~null_null_null~L0M~null_null_null~BDJ17zl6~ua_language~~en-US~&d=mediaalpha_placeholder&_=662377337
18.215.45.106200 OK 14 kB URL HTTP/2 insurance.mediaalpha.com/js/serve_.js?z=N{QH}I~9NjK_LOs9Z76qdflv2MfFcK7Ma3S3g~K~null_null_null~L0M~null_null_null~BDJ17zl6~ua_language~~en-US~&d=mediaalpha_placeholder&_=662377337
IP 18.215.45.106:0
File type HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (19290), with LF, NEL line terminators
Hash a371099fdb5107fc959834fe9067910f
67a35d46c29e8eb2ec3bfe2667ef046cb6b6b893
1790c14bd9692ee39639e9556874b0f6d037839c6c640d301763a92fab44b73d
GET /js/serve_.js?z=N{QH}I~9NjK_LOs9Z76qdflv2MfFcK7Ma3S3g~K~null_null_null~L0M~null_null_null~BDJ17zl6~ua_language~~en-US~&d=mediaalpha_placeholder&_=662377337 HTTP/1.1
Host: insurance.mediaalpha.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:45 GMT
content-type: text/javascript
content-length: 13879
server: Apache
set-cookie: r2=0AiUtIPRmPeQbrMzW9lejORZmz7OlA; domain=insurance.mediaalpha.com; path=/; expires=Thu, 24-Mar-2033 06:29:45 GMT; HttpOnly
~u=OOI0H5JcwVGQYdn2FQ9AYGmsT2mNImt-V3A2qxrnHBiPzCEQSu0; domain=insurance.mediaalpha.com; path=/; expires=Fri, 12-Aug-2050 06:29:45 GMT; HttpOnly
~=NqAgD5MJEdR_XRd2YL_B8WQjAKbg2QzPl8lSc4vrBRIeV4rgq0u0ZfjXdlpbHc4kKVIbuYxQtl3mKym8cPldUpe-kUJT-eMeU5-jdN8UVR8fQUfZkykk3bQFvhKwVmPgj0OHflF_58MkGCpOHS2MNMkz5oEOAQ; domain=insurance.mediaalpha.com; path=/; expires=Fri, 26-May-2023 06:29:45 GMT; HttpOnly
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
104.22.8.151200 OK 21 kB URL HTTP/2 quotes.ecoverage.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 104.22.8.151:0
File type ASCII text, with very long lines (47826)
Hash 838eacd56dd0ac80bd9a9a0e003d938b
1b86fb1d854c21c3b1143cd31d0ddff46060f376
fcbb121505cfad20692f448f60d3ba46022c00dd4235722b6b91fb2f8e4dadfe
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:44 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 11 Nov 2022 14:56:45 GMT
etag: W/"636e62ad-172a9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 7ae594a78e3db509-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/24251304-3d3e-43bd-bc99-e50d72329f4a/24251304-3d3e-43bd-bc99-e50d72329f4a.json
104.19.187.97200 OK 1.5 kB URL HTTP/2 cdn.cookielaw.org/consent/24251304-3d3e-43bd-bc99-e50d72329f4a/24251304-3d3e-43bd-bc99-e50d72329f4a.json
IP 104.19.187.97:0
File type JSON data\012- , ASCII text, with very long lines (3689), with no line terminators
Hash 042623f7dc6127cfda8d047be42f1b05
a1689cd9e4751752bc813757a1441f1176a49d87
c9e76fd5bd51555bf002887174ef13caf8f284c285a7df8fbf285f75cf7b9cfe
GET /consent/24251304-3d3e-43bd-bc99-e50d72329f4a/24251304-3d3e-43bd-bc99-e50d72329f4a.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:45 GMT
content-type: application/x-javascript
content-length: 1488
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: BCYj99xhJ8/ajQR75C8bBQ==
last-modified: Thu, 05 Jan 2023 16:10:32 GMT
etag: 0x8DAEF375F19861E
x-ms-request-id: 0a7221cb-b01e-010f-51e1-5a7345000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Tue, 28 Mar 2023 06:29:45 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ae594b06a97b4ff-OSL
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
172.64.144.98200 OK 94 kB URL HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 172.64.144.98:0
File type JSON data\012- , ASCII text, with very long lines (65379)
Hash 5a92c5ae1737672ebef31d0a6c801fec
6ede11c613f21199ea9e148aaf8490883e68b95b
0846efcaf19a0fdef1dd32026cc5e57f9ae852c5db4934bb927b1dee9892cd5c
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:45 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7ae594b16b53fabc-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-content/themes/rise-ecoverage/style.css?ver=6.1.1
104.22.8.151200 OK 22 kB URL HTTP/2 quotes.ecoverage.com/wp-content/themes/rise-ecoverage/style.css?ver=6.1.1
IP 104.22.8.151:0
File type ASCII text, with CRLF line terminators
Hash ac78284101dc60e8d1b95d18637715b9
5faaa236277d116ea745cc6a9bcd8a096257b35f
224d8386c4e57791fdc3e6142b37a7551761881b0b683017dcd94845c5416ad9
GET /wp-content/themes/rise-ecoverage/style.css?ver=6.1.1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:44 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 04 Nov 2021 15:15:29 GMT
etag: W/"6183f911-4abc"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 7ae594a79e49b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/24251304-3d3e-43bd-bc99-e50d72329f4a/c7a2bb97-ca3d-402d-8a7e-c143e3cf44f9/en.json
104.19.187.97200 OK 8.4 kB URL HTTP/2 cdn.cookielaw.org/consent/24251304-3d3e-43bd-bc99-e50d72329f4a/c7a2bb97-ca3d-402d-8a7e-c143e3cf44f9/en.json
IP 104.19.187.97:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (31876), with no line terminators
Hash 779ce7ea469d8f6edd3fcc6b1479d24d
89817fcd228bf729c035d18fbdfd010351bdf407
76a9ca9eb11017494861842add5efc44d9784bf4aff9ffa1f80d9a8aaaadb868
GET /consent/24251304-3d3e-43bd-bc99-e50d72329f4a/c7a2bb97-ca3d-402d-8a7e-c143e3cf44f9/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:46 GMT
content-type: application/x-javascript
content-length: 8449
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: d5zn6kadj27dP8xrFHnSTQ==
last-modified: Thu, 05 Jan 2023 16:10:34 GMT
etag: 0x8DAEF376036B4B1
x-ms-request-id: a4656c58-d01e-0179-64e1-5af7f9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
expires: Tue, 28 Mar 2023 06:29:46 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ae594b26d0bb4ff-OSL
X-Firefox-Spdy: h2
ocsp.r2m01.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash 8b9e5f20bdb5a9b2ae2d88567c8f6cda
2c5db375f69b4aa015f8571069aa753513d64152
edfe074b007472ff1a6772a4c11400fe3e697d3d65694cc397e45f0b366ac4fe
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=123615
Date: Mon, 27 Mar 2023 06:29:46 GMT
Etag: "64206519-1d7"
Expires: Tue, 28 Mar 2023 16:50:01 GMT
Last-Modified: Sun, 26 Mar 2023 15:30:33 GMT
Server: ECAcc (bsa/EACA)
X-Cache: Miss from cloudfront
Via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MgHgg5c8jfHdTtCpKP6wLo8Qw4pWW1Rqsk78-Gcz3zMaqESoaPIk0g==
Age: 4768
cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otFloatingFlat.json
104.19.187.97200 OK 2.7 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otFloatingFlat.json
IP 104.19.187.97:0
File type JSON data\012- , ASCII text, with very long lines (8048)
Hash e206cf9cf427f385d8b407da9a3590da
0853fa7ed69069b5971be64e50220b7023bf11c2
476aad46e35c28a27bb5f12dba3127c50a18b5ef2b5167420328c65518ac0693
GET /scripttemplates/202211.2.0/assets/otFloatingFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:46 GMT
content-type: application/json
content-length: 2702
content-encoding: gzip
content-md5: 4gbPnPQn84XYtAfamjWQ2g==
last-modified: Mon, 12 Dec 2022 17:31:35 GMT
etag: 0x8DADC66B81B30E6
x-ms-request-id: 6858968e-b01e-00ee-3ce1-5ad265000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ae594b34e1fb4ff-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202211.2.0/assets/v2/otPcCenter.json
104.19.187.97200 OK 12 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/assets/v2/otPcCenter.json
IP 104.19.187.97:0
File type JSON data\012- , ASCII text, with very long lines (50353)
Hash 9811a793b217b745126d89976508663b
d6dea1e8161a876f58da90838ed3fc2e65c4a29c
3cafd8fb67f27641cb7e2164da324b00fef2b68dbec02aaefcba72820b659edf
GET /scripttemplates/202211.2.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:46 GMT
content-type: application/json
content-length: 12540
content-encoding: gzip
content-md5: mBGnk7IXt0USbYmXZQhmOw==
last-modified: Mon, 12 Dec 2022 17:31:37 GMT
etag: 0x8DADC66B90C98A8
x-ms-request-id: 391b9025-201e-014e-46e1-5a5b56000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ae594b34e25b4ff-OSL
X-Firefox-Spdy: h2
collect.analyze.ly/
52.73.164.196204 No Content 0 B IP 52.73.164.196:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: collect.analyze.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------1408189105795120342910714718
Content-Length: 529
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: *
Cache-Control: private
Date: Mon, 27 Mar 2023 06:29:46 GMT
Server: Apache
Connection: keep-alive
quotes.ecoverage.com/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1679889600
104.22.8.151200 OK 95 kB URL HTTP/2 quotes.ecoverage.com/cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1679889600
IP 104.22.8.151:0
File type ASCII text, with very long lines (36083), with no line terminators
Hash 6e2eb4ca6ec2ba8bfc87bc23f5cce18a
1d5b459df43aa1bddc1cb191e1164c1f0548bc07
67a075a03bf6e734616174c12ec727340ec83af95a674837452285c9d9d653d6
GET /cdn-cgi/challenge-platform/h/b/scripts/alpha/invisible.js?ts=1679889600 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:45 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
vary: accept-encoding
x-control-type-options: nosniff
server: cloudflare
cf-ray: 7ae594aee92fb509-OSL
content-encoding: br
X-Firefox-Spdy: h2
create.lidstatic.com/campaign/fa53bd1b-c563-e4b2-5f47-565fea8ae7a8.js?snippet_version=2
104.22.38.182200 OK 40 kB URL HTTP/2 create.lidstatic.com/campaign/fa53bd1b-c563-e4b2-5f47-565fea8ae7a8.js?snippet_version=2
IP 104.22.38.182:0
Hash 80957b14a30afaef75546056205fe36b
03bd6ce56b91001c274771b2b0145dc2556ab0f7
ebfcb21023aabe49e5e2daf9835a1c1783b2b873505d02c6623e19cd33c1ba41
GET /campaign/fa53bd1b-c563-e4b2-5f47-565fea8ae7a8.js?snippet_version=2 HTTP/1.1
Host: create.lidstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:46 GMT
content-type: text/javascript
x-amz-id-2: Vsoj3rDoP7gVsZoMsOG3kjrSOz2QPjzEwB1fDLkCEB8xjEYM8G07C7aNxKt1L2aF9E1jc5+lll4=
x-amz-request-id: ZRRCEPRZJMXTRYD8
x-amz-replication-status: COMPLETED
last-modified: Fri, 12 Nov 2021 01:21:45 GMT
etag: W/"0199fc371e67ca5c8d7c94ba0901dfa6"
cache-control: max-age=1800
x-amz-version-id: 4jA9Wyf03YpnT9..zP0RVdyn9Z4JpcyG
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ae594aef98915f4-ARN
content-encoding: gzip
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-content/uploads/2020/07/getty-images-860036016@2x-scaled.jpg
104.22.8.151200 OK 249 kB URL HTTP/2 quotes.ecoverage.com/wp-content/uploads/2020/07/getty-images-860036016@2x-scaled.jpg
IP 104.22.8.151:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=1], baseline, precision 8, 2560x1904, components 3\012- data
Size 249 kB (249294 bytes)
Hash cef41966bdde0ce290ce1ab6add1972b
37f928d2aecb9589846abbee0ec40f6f6f84ebbe
808c08e28f32a22139fc42b07aad2848cd3885513cc6d65b0387b826b035fcd2
GET /wp-content/uploads/2020/07/getty-images-860036016@2x-scaled.jpg HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:46 GMT
content-type: image/jpeg
content-length: 249294
last-modified: Thu, 08 Oct 2020 19:32:28 GMT
etag: "5f7f694c-3cdce"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 7ae594ae98b4b509-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otCommonStyles.css
104.19.187.97200 OK 4.1 kB URL HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otCommonStyles.css
IP 104.19.187.97:0
Hash 1276a69ce3df29ad5d3f75aa5a00560c
e504a47ba262242c6cfdcb440f00cf719d632acb
3a9d48c8e548208216b8ed3a5d66a1c7bddb5c4606e4aa424eb8c04addc62bc3
GET /scripttemplates/202211.2.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:46 GMT
content-type: text/css
content-md5: XcxlleAcPGO2n5kTZrHH2Q==
last-modified: Mon, 12 Dec 2022 17:31:50 GMT
x-ms-request-id: 6651b97b-201e-0005-1fe1-5a2c99000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ae594b34e29b4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
munchkin.marketo.net/munchkin.js
88.221.99.189200 OK 729 B URL HTTP/1.1 munchkin.marketo.net/munchkin.js
IP 88.221.99.189:0
File type ASCII text, with very long lines (521)
Hash 18240fc6ef657b9852872c8b44adbdc0
da8e98f7a27ef410848bd315d9072eaf574e137f
9253df10170ad87289467ed6373d203f123968c7b4010bbe4c2437f18b35db40
GET /munchkin.js HTTP/1.1
Host: munchkin.marketo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: application/x-javascript
ETag: "cb731cc5c2bd9f31d6bfeb19f3c8b1ff:1679016288.730763"
Last-Modified: Fri, 17 Mar 2023 01:24:48 GMT
Server: AkamaiNetStorage
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Mon, 27 Mar 2023 06:29:46 GMT
Content-Length: 729
Connection: keep-alive
P3P: policyref="http://www.marketo.com/w3c/p3p.xml", CP="NOI DSP COR NID CURi OUR NOR"
cdn.cookielaw.org/logos/static/ot_guard_logo.svg
104.19.187.97200 OK 20 kB URL HTTP/2 cdn.cookielaw.org/logos/static/ot_guard_logo.svg
IP 104.19.187.97:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1490)
Hash a789a7fb7a7fd3ba9dd131a3cdcced9e
c0b47b21f649169d96d47990e18be310e6e4d843
0ccf79b1bf5798fe3d3555e089c6e930c91c21f6019bf9807fb0e643ad0bc689
GET /logos/static/ot_guard_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:46 GMT
content-type: image/svg+xml
content-md5: tXyZydHjxQshFMbbBT1/8A==
last-modified: Mon, 27 Mar 2023 02:34:04 GMT
x-ms-request-id: 3e068691-101e-016f-4d70-603667000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ae594b4b853b4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/GenerateToken?msn=1&pid=d9a38121-a783-441b-a073-b5e402d0d03a&_=406569406
18.235.171.113200 OK 4.8 kB URL HTTP/2 create.leadid.com/2.11.9/GenerateToken?msn=1&pid=d9a38121-a783-441b-a073-b5e402d0d03a&_=406569406
IP 18.235.171.113:0
File type ASCII text, with very long lines (606)
Hash 5d56e05e42434fa10efef8f76a24c8a7
99ece7654e5a7806c335461cfaf4184df39e991d
b5286aa2341c258980ffbaf6d079bdbe534929c90f467486f1c1c19a098d4c1e
POST /2.11.9/GenerateToken?msn=1&pid=d9a38121-a783-441b-a073-b5e402d0d03a&_=406569406 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 210
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:46 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Wed, 26-Apr-2023 06:29:46 GMT; Max-Age=2592000; path=/
rguserid=038e5bcc-db97-45ab-8175-31c233f0dddb; expires=Wed, 26-Apr-2023 06:29:46 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Wed, 26-Apr-2023 06:29:46 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Wed, 26-Apr-2023 06:29:46 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.starfieldtech.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 96701281d6d3d239c0e20146d45c2bec
476698955e3c25c8f96ef7686fd1f1ab13e48ef0
34ab9e1e8fb1d0e0174844f3c51a4606957dd84d796cdbaed3a584d6b9fd80c9
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 27 Mar 2023 06:29:46 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 26 Mar 2023 21:57:05 GMT
Expires: Mon, 27 Mar 2023 21:57:05 GMT
ETag: "476698955e3c25c8f96ef7686fd1f1ab13e48ef0"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b50726fcf63dc2a413d062eecac1e7c6
a5d32e8ed0099d8502141ce1696e61ccf3a0bff5
e0ac38764545d1dade860bb61c891b8c601ed05f241128c9463f11af0396e0f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 06:29:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-43809065-1&cid=1560648204.1679898604&jid=456786110&gjid=1006896144&_gid=1177858340.1679898604&_u=YCDAgEABAAAAAGgAI~&z=1129779960
173.194.221.154200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-43809065-1&cid=1560648204.1679898604&jid=456786110&gjid=1006896144&_gid=1177858340.1679898604&_u=YCDAgEABAAAAAGgAI~&z=1129779960
IP 173.194.221.154:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-43809065-1&cid=1560648204.1679898604&jid=456786110&gjid=1006896144&_gid=1177858340.1679898604&_u=YCDAgEABAAAAAGgAI~&z=1129779960 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://quotes.ecoverage.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Mon, 27 Mar 2023 06:29:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
d2m2wsoho8qq12.cloudfront.net/iframe.html?token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&lac=43E84C4A-8A70-11E1-B18C-22000A1C5064
54.230.245.201200 OK 1.4 kB URL HTTP/1.1 d2m2wsoho8qq12.cloudfront.net/iframe.html?token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&lac=43E84C4A-8A70-11E1-B18C-22000A1C5064
IP 54.230.245.201:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ef825b8a88a51cd76a51d08dfc1d4f99
5bf247bd91a4be0c3b76a70ec8e5e462de0e9f3b
2ac453ec379c3e7b0fa69b810ecf2d6771de3e7611a2599a20f8e8ce9a240af1
GET /iframe.html?token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&lac=43E84C4A-8A70-11E1-B18C-22000A1C5064 HTTP/1.1
Host: d2m2wsoho8qq12.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Date: Sun, 26 Mar 2023 23:14:30 GMT
Server: nginx
Last-Modified: Wed, 22 Mar 2023 16:44:07 GMT
ETag: W/"641b3057-dbb"
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Encoding: gzip
X-Cache: Hit from cloudfront
Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 6zTvUs6FyfAn8TC_zs29qBgvqEFWsFhye7R642H2dtRs0H6Z8a6IUw==
Age: 26116
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash b50726fcf63dc2a413d062eecac1e7c6
a5d32e8ed0099d8502141ce1696e61ccf3a0bff5
e0ac38764545d1dade860bb61c891b8c601ed05f241128c9463f11af0396e0f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 06:29:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.starfieldtech.com/
192.124.249.22200 OK 1.8 kB IP 192.124.249.22:0
Hash 96701281d6d3d239c0e20146d45c2bec
476698955e3c25c8f96ef7686fd1f1ab13e48ef0
34ab9e1e8fb1d0e0174844f3c51a4606957dd84d796cdbaed3a584d6b9fd80c9
POST / HTTP/1.1
Host: ocsp.starfieldtech.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 75
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Mon, 27 Mar 2023 06:29:46 GMT
Content-Type: application/ocsp-response
Content-Length: 1845
Connection: keep-alive
X-Sucuri-ID: 19022
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sun, 26 Mar 2023 21:57:05 GMT
Expires: Mon, 27 Mar 2023 21:57:05 GMT
ETag: "476698955e3c25c8f96ef7686fd1f1ab13e48ef0"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
region1.google-analytics.com/g/collect?v=2&tid=G-D0M3W1QDWH>m=45je33m0&_p=1015867406&cid=1560648204.1679898604&ul=en-us&sr=1280x1024&_s=1&sid=1679898603&sct=1&seg=0&dl=https%3A%2F%2Fquotes.ecoverage.com%2Frates%2F&dr=http%3A%2F%2Fastrohyperbole.com%2F&dt=Life%20Insurance%20Quotes%20%7C%20eCoverage&en=pageview&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-D0M3W1QDWH>m=45je33m0&_p=1015867406&cid=1560648204.1679898604&ul=en-us&sr=1280x1024&_s=1&sid=1679898603&sct=1&seg=0&dl=https%3A%2F%2Fquotes.ecoverage.com%2Frates%2F&dr=http%3A%2F%2Fastrohyperbole.com%2F&dt=Life%20Insurance%20Quotes%20%7C%20eCoverage&en=pageview&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-D0M3W1QDWH>m=45je33m0&_p=1015867406&cid=1560648204.1679898604&ul=en-us&sr=1280x1024&_s=1&sid=1679898603&sct=1&seg=0&dl=https%3A%2F%2Fquotes.ecoverage.com%2Frates%2F&dr=http%3A%2F%2Fastrohyperbole.com%2F&dt=Life%20Insurance%20Quotes%20%7C%20eCoverage&en=pageview&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://quotes.ecoverage.com
date: Mon, 27 Mar 2023 06:29:46 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
collect.analyze.ly/
52.73.164.196204 No Content 0 B IP 52.73.164.196:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: collect.analyze.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Content-Type: multipart/form-data; boundary=----18721c26e65
Origin: https://quotes.ecoverage.com
Content-Length: 2451
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: *
Cache-Control: private
Date: Mon, 27 Mar 2023 06:29:47 GMT
Server: Apache
Connection: keep-alive
collect.analyze.ly/
52.73.164.196204 No Content 0 B IP 52.73.164.196:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: collect.analyze.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Content-Type: multipart/form-data; boundary=----18721c27257
Origin: https://quotes.ecoverage.com
Content-Length: 4787
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: *
Cache-Control: private
Date: Mon, 27 Mar 2023 06:29:47 GMT
Server: Apache
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash aacadb94b44e557195c202f9eac3d422
ae45e0a668927354b659a0050ec4f37421acfc12
e3efec2ec99be9c753808134094e95ea88d59e2898a180327a5a0818050a3859
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 06:29:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 46deddb8b844851da2d68cdb99372c7d
f52730dfe273dff574d1421d8c7178c2d296aaa2
6dfc153b2d0e0b53820d77a059a342f07bf691771ae91c31bc4d45cdbcebf2a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 06:29:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ipapi.co/json/?key=qlZPEJ0BL5x8Kit2UeDgFTsaqFAXC0ZfGjRhkoZlKCEc94FOTz
172.67.69.226200 OK 399 B URL HTTP/2 ipapi.co/json/?key=qlZPEJ0BL5x8Kit2UeDgFTsaqFAXC0ZfGjRhkoZlKCEc94FOTz
IP 172.67.69.226:0
File type JSON data\012- , ASCII text
Hash 7f9590595290a819b5bfeae17ae7841a
1abc75a3f12bd90c1a1b62b908fe0a597a460cff
52453777e8dfc59dfc0deb9e465c0f11803ecac032f79831d548dad4230bb649
POST /json/?key=qlZPEJ0BL5x8Kit2UeDgFTsaqFAXC0ZfGjRhkoZlKCEc94FOTz HTTP/1.1
Host: ipapi.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:45 GMT
content-type: application/json
allow: HEAD, GET, OPTIONS, OPTIONS, POST
x-frame-options: DENY
vary: Host, Origin
access-control-allow-origin: https://quotes.ecoverage.com
x-content-type-options: nosniff
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G1V%2BImX7Y0Z1wpw4PfVQ5L0INQg0%2Fq%2BZSNxdxi0YGC5BVwnYwpsN0obOcM8koSL00UheEugDNdGWE8awwbGJqb7LFOklCxhRwyFZUK9Aoxra%2B0IeqbgyjBd4"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7ae594b0be1d0b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/InitFormData?msn=3&pid=d9a38121-a783-441b-a073-b5e402d0d03a&token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&_=406569408
18.235.171.113200 OK 55 B URL HTTP/2 create.leadid.com/2.11.9/InitFormData?msn=3&pid=d9a38121-a783-441b-a073-b5e402d0d03a&token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&_=406569408
IP 18.235.171.113:0
Hash d42c651f2ff43af69c61f8df9664a83b
5395c3e1d48b8488a4cc247642f35fc5009c6b95
d69cde96270280ef46e1a6fb22b4bed88bb90f183c4f144c95a96eaa53d8c00b
POST /2.11.9/InitFormData?msn=3&pid=d9a38121-a783-441b-a073-b5e402d0d03a&token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&_=406569408 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 25199
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:47 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Wed, 26-Apr-2023 06:29:47 GMT; Max-Age=2592000; path=/
rguserid=9afe1de7-d7f5-45b0-a0e2-55cdae225938; expires=Wed, 26-Apr-2023 06:29:47 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Wed, 26-Apr-2023 06:29:47 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Wed, 26-Apr-2023 06:29:47 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/SaveDom?msn=2&pid=d9a38121-a783-441b-a073-b5e402d0d03a&token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&_=406569407
18.235.171.113200 OK 62 B URL HTTP/2 create.leadid.com/2.11.9/SaveDom?msn=2&pid=d9a38121-a783-441b-a073-b5e402d0d03a&token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&_=406569407
IP 18.235.171.113:0
Hash 14264ec4f085176d5e5f07235b33195f
087df384002dd5567f7360b90f6422c3a67bc5e8
3120804c6cc0530b0c8ab510bc9a8378ac61100aa04594e9cfa80dc356db6dfa
POST /2.11.9/SaveDom?msn=2&pid=d9a38121-a783-441b-a073-b5e402d0d03a&token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&_=406569407 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 512
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:46 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Wed, 26-Apr-2023 06:29:46 GMT; Max-Age=2592000; path=/
rguserid=8a4acaee-6f1f-4bb0-89e6-6d856edd0afb; expires=Wed, 26-Apr-2023 06:29:46 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Wed, 26-Apr-2023 06:29:46 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Wed, 26-Apr-2023 06:29:46 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash aee967595d5b11fc508d102c6c93dd93
1b51ae5b5f9a4b7e3c51bb4307c9eacd4ea2a85e
3cbc3af47f5b1e142bb6cb5fed8154476b773f1b9a95623b5bb5ba94957ff309
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 06:29:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 46deddb8b844851da2d68cdb99372c7d
f52730dfe273dff574d1421d8c7178c2d296aaa2
6dfc153b2d0e0b53820d77a059a342f07bf691771ae91c31bc4d45cdbcebf2a8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 27 Mar 2023 06:29:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m02.amazontrust.com/
54.230.80.227200 OK 471 B URL HTTP/1.1 ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash bb22dad5bbd57a4618e431c4935309a3
85c33cd816eb60ebebb47c3946113fdc0c976f88
6de0ebb5bba40e95bcc6027c6a2e826052e4c78bea931bfde4f42b3b884cf6c3
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 27 Mar 2023 06:29:47 GMT
Last-Modified: Mon, 27 Mar 2023 05:28:54 GMT
Server: ECAcc (nya/79EB)
X-Cache: Miss from cloudfront
Via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: TGXCADSuP-TmuS5-kHz9tFvHXVoct481w1hnoWXUVaUM9R0xQLs0Tg==
Age: 3653
collect.analyze.ly/
52.73.164.196204 No Content 2.6 kB IP 52.73.164.196:0
File type gzip compressed data, from Unix\012- data
Hash 84d13d9a9a1160167ffcb387f00c109b
167db56e0e5eb04e9831158d7132fcba6f49ce95
1062d1eae63e6ab2e64d5767cbc1bbcdcb0a7fc7069ef063ee89f2c8aa6c3792
POST / HTTP/1.1
Host: collect.analyze.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Content-Type: multipart/form-data; boundary=----18721c27648
Origin: https://quotes.ecoverage.com
Content-Length: 6129
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: *
Cache-Control: private
Date: Mon, 27 Mar 2023 06:29:47 GMT
Server: Apache
Connection: keep-alive
collect.analyze.ly/
52.73.164.196204 No Content 0 B IP 52.73.164.196:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: collect.analyze.ly
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Content-Type: multipart/form-data; boundary=----18721c2764a
Origin: https://quotes.ecoverage.com
Content-Length: 5729
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: *
Cache-Control: private
Date: Mon, 27 Mar 2023 06:29:47 GMT
Server: Apache
Connection: keep-alive
r2.visualwebsiteoptimizer.com/analyze?_a=497348&_u=https%3A%2F%2Fquotes.ecoverage.com%2Frates%2F
35.221.11.9200 OK 20 B URL HTTP/2 r2.visualwebsiteoptimizer.com/analyze?_a=497348&_u=https%3A%2F%2Fquotes.ecoverage.com%2Frates%2F
IP 35.221.11.9:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
POST /analyze?_a=497348&_u=https%3A%2F%2Fquotes.ecoverage.com%2Frates%2F HTTP/1.1
Host: r2.visualwebsiteoptimizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: multipart/form-data; boundary=---------------------------250076118827577842771390325270
Content-Length: 55250
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:48 GMT
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
server: r2
content-encoding: gzip
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/Snap?msn=4&pid=d9a38121-a783-441b-a073-b5e402d0d03a&token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&_=406569409
18.235.171.113200 OK 20 B URL HTTP/2 create.leadid.com/2.11.9/Snap?msn=4&pid=d9a38121-a783-441b-a073-b5e402d0d03a&token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&_=406569409
IP 18.235.171.113:0
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
POST /2.11.9/Snap?msn=4&pid=d9a38121-a783-441b-a073-b5e402d0d03a&token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&_=406569409 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 270932
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:50 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Wed, 26-Apr-2023 06:29:50 GMT; Max-Age=2592000; path=/
rguserid=a8678f13-a9ab-49e4-ae06-82645e0eaede; expires=Wed, 26-Apr-2023 06:29:50 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Wed, 26-Apr-2023 06:29:50 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Wed, 26-Apr-2023 06:29:50 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
104.22.8.151200 OK 0 B URL HTTP/2 quotes.ecoverage.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 104.22.8.151:0
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:44 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: W/"5fb4e3fe-2bd8"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 7ae594a79e52b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
quotes.ecoverage.com/favicon.ico
104.22.8.151200 OK 0 B URL HTTP/2 quotes.ecoverage.com/favicon.ico
IP 104.22.8.151:0
GET /favicon.ico HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=; OptanonConsent=isGpcEnabled=0&datestamp=Mon+Mar+27+2023+06%3A30%3A03+GMT%2B0000+(Coordinated+Universal+Time)&version=202211.2.0&isIABGlobal=false&hosts=&landingPath=https%3A%2F%2Fquotes.ecoverage.com%2Frates%2F&groups=C0001%3A1%2CC0002%3A1%2CBG54%3A1%2CC0003%3A1%2CC0005%3A1%2CC0004%3A1; _ga_D0M3W1QDWH=GS1.1.1679898603.1.0.1679898603.0.0.0; _ga=GA1.1.1560648204.1679898604
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:47 GMT
content-type: image/x-icon
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 24 Jan 2023 17:20:05 GMT
etag: W/"63d01345-47e"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 7ae594b69b7db509-OSL
content-encoding: br
X-Firefox-Spdy: h2
deviceid.trueleadid.com/iframe.html?token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&lac=43E84C4A-8A70-11E1-B18C-22000A1C5064
35.169.79.47200 OK 0 B URL HTTP/2 deviceid.trueleadid.com/iframe.html?token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&lac=43E84C4A-8A70-11E1-B18C-22000A1C5064
IP 35.169.79.47:0
GET /iframe.html?token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&lac=43E84C4A-8A70-11E1-B18C-22000A1C5064 HTTP/1.1
Host: deviceid.trueleadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://d2m2wsoho8qq12.cloudfront.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:47 GMT
content-type: text/html
server: nginx
last-modified: Wed, 08 Mar 2023 19:45:51 GMT
etag: W/"6408e5ef-1049"
expires: Tue, 28 Mar 2023 06:29:47 GMT
p3p: CP="NOI DSP COR NID CUR ADM DEV OUR BUS"
cache-control: max-age=86400, public
content-encoding: gzip
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/SaveDeviceId.js?lac=43E84C4A-8A70-11E1-B18C-22000A1C5064&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&methods=48&token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&uuid=91d604bb3e464f598ff80eb07099d54a
18.235.171.113200 OK 0 B URL HTTP/2 create.leadid.com/2.11.9/SaveDeviceId.js?lac=43E84C4A-8A70-11E1-B18C-22000A1C5064&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&methods=48&token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&uuid=91d604bb3e464f598ff80eb07099d54a
IP 18.235.171.113:0
GET /2.11.9/SaveDeviceId.js?lac=43E84C4A-8A70-11E1-B18C-22000A1C5064&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&methods=48&token=F660B018-5D91-2B20-6AC4-5E71A8AB48FB&uuid=91d604bb3e464f598ff80eb07099d54a HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://deviceid.trueleadid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:47 GMT
content-type: text/javascript;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Wed, 26-Apr-2023 06:29:47 GMT; Max-Age=2592000; path=/
rguserid=c577432f-d774-44a0-b0bb-7d2c83ce0647; expires=Wed, 26-Apr-2023 06:29:47 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Wed, 26-Apr-2023 06:29:47 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Wed, 26-Apr-2023 06:29:47 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css
104.18.11.207200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css
IP 104.18.11.207:0
GET /bootstrap/4.3.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quotes.ecoverage.com
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:44 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"a15c2ac3234aa8f6064ef9c1f7383c37"
last-modified: Mon, 25 Jan 2021 22:04:08 GMT
cdn-cachedat: 01/04/2023 11:35:40
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 8d0e4f816df928b0ebf4e96f25728661
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7ae594a7cac5b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-includes/css/classic-themes.min.css?ver=1
104.22.8.151200 OK 0 B URL HTTP/2 quotes.ecoverage.com/wp-includes/css/classic-themes.min.css?ver=1
IP 104.22.8.151:0
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:44 GMT
content-type: text/css
last-modified: Tue, 25 Oct 2022 13:45:16 GMT
etag: W/"6357e86c-d9"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 7ae594a79e46b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
dev.visualwebsiteoptimizer.com/j.php?a=497348&u=https%3A%2F%2Fquotes.ecoverage.com%2Frates%2F&f=1&r=0.618252106961271
34.96.102.137200 OK 0 B URL HTTP/2 dev.visualwebsiteoptimizer.com/j.php?a=497348&u=https%3A%2F%2Fquotes.ecoverage.com%2Frates%2F&f=1&r=0.618252106961271
IP 34.96.102.137:0
GET /j.php?a=497348&u=https%3A%2F%2Fquotes.ecoverage.com%2Frates%2F&f=1&r=0.618252106961271 HTTP/1.1
Host: dev.visualwebsiteoptimizer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:46 GMT
content-type: application/javascript; charset=UTF-8
vary: Accept-Encoding
cache-control: public, max-age=0, no-cache, must-revalidate
etag: W/"1679569725"
server: gams1
timing-allow-origin: *
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
d22xmn10vbouk4.cloudfront.net/c0648764b65b11eab3db0abec2e02be9.js
54.230.245.153200 OK 0 B URL HTTP/2 d22xmn10vbouk4.cloudfront.net/c0648764b65b11eab3db0abec2e02be9.js
IP 54.230.245.153:0
GET /c0648764b65b11eab3db0abec2e02be9.js HTTP/1.1
Host: d22xmn10vbouk4.cloudfront.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
date: Mon, 27 Mar 2023 06:14:14 GMT
last-modified: Thu, 23 Mar 2023 18:03:59 GMT
etag: W/"c8ec7550dea6e088b8f80316e7f628b2"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=601
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Zj8KPDlu1PoJA5Rfdkp5C_XpnFdFWIAFMr8_7p3zvdWnfj_15R-s5Q==
age: 932
X-Firefox-Spdy: h2
quotes.ecoverage.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
104.22.8.151200 OK 0 B URL HTTP/2 quotes.ecoverage.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 104.22.8.151:0
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:44 GMT
content-type: application/javascript
last-modified: Tue, 21 Mar 2023 12:31:17 GMT
etag: W/"6419a395-4d7"
vary: Accept-Encoding
server: cloudflare
cf-ray: 7ae594a7ae64b509-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Wed, 29 Mar 2023 06:29:44 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/style.min.css?ver=1
104.22.8.151200 OK 0 B URL HTTP/2 quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/style.min.css?ver=1
IP 104.22.8.151:0
GET /wp-content/themes/rise-ecoverage/public/style.min.css?ver=1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:44 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 04 Nov 2021 15:15:35 GMT
etag: W/"6183f917-253b"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 7ae594a79e4db509-OSL
content-encoding: br
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/scripts-lpb.min.js?ver=1
104.22.8.151200 OK 0 B URL HTTP/2 quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/scripts-lpb.min.js?ver=1
IP 104.22.8.151:0
GET /wp-content/themes/rise-ecoverage/public/scripts-lpb.min.js?ver=1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:44 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 04 Nov 2021 15:15:35 GMT
etag: W/"6183f917-a82c"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 7ae594a79e56b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/lpb.min.css?ver=1
104.22.8.151200 OK 0 B URL HTTP/2 quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/lpb.min.css?ver=1
IP 104.22.8.151:0
GET /wp-content/themes/rise-ecoverage/public/lpb.min.css?ver=1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:44 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 04 Nov 2021 15:15:34 GMT
etag: W/"6183f916-13b43"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 7ae594a79e4eb509-OSL
content-encoding: br
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
104.22.8.151200 OK 0 B URL HTTP/2 quotes.ecoverage.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 104.22.8.151:0
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:44 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 19 Sep 2022 14:16:24 GMT
etag: W/"632879b8-15e54"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 7ae594a79e50b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/vendor.min.js?ver=1
104.22.8.151200 OK 0 B URL HTTP/2 quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/vendor.min.js?ver=1
IP 104.22.8.151:0
GET /wp-content/themes/rise-ecoverage/public/vendor.min.js?ver=1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=wT5_JuxHVgfpYh9rmw0lO6YxgOomrmhw1v72TwLhVY4-1679898583-0-AaBsKeABisY3Dd1d7uW2x3pZ/Izzcn36R44acMcvtMwDkPwi5x6K4PEfpRWPNqJcC3qnN/ULVcsgvXbdhdGyZh4=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:45 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 04 Nov 2021 15:15:35 GMT
etag: W/"6183f917-e194e"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: MISS
server: cloudflare
cf-ray: 7ae594a79e53b509-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/powered_by_logo.svg
104.19.187.97200 OK 0 B URL HTTP/2 cdn.cookielaw.org/logos/static/powered_by_logo.svg
IP 104.19.187.97:0
GET /logos/static/powered_by_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 27 Mar 2023 06:29:46 GMT
content-type: image/svg+xml
content-md5: Y+c301RBZNK39PvKQWrIBw==
last-modified: Thu, 23 Mar 2023 02:37:02 GMT
x-ms-request-id: eebf20c6-101e-000d-7c3d-5d37ea000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 45773
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7ae594b4acf90b4d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2