ocsp.r2m02.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 1e91ebdd1b41b9551eb7da87b87cee7b
94743676cff5fe12be12dfd548f2ecbac73157ed
a1b8a89e6ddeaab57c96208ade417bc01d65fad591c105b9374cdefd00503c05
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 06 Jun 2023 04:53:59 GMT
Last-Modified: Tue, 06 Jun 2023 04:07:01 GMT
Server: ECAcc (dcb/7352)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1VatuZ36re4-oTqenuk0MjmnNb-DTxS7fKsXk0yOyCYqbnxb31YSvg==
Age: 2818
url.avanan.click/v2/___https:/protect-us.mimecast.com/s/dLqbCVOJm6cOr9Y2iGt0b5___.YXAzOm1hcnRlbjphOm86MzY0ZDQzMjFiZWVjNDdlZTI2NmExNmJlYjYwOTc4OTM6Njo0OTM4OmI1OTQ0OGEwODI2ZWQ4MWFkMDgwOWI4NmU1ZGY4MTI0NWFiODY2Y2E1ZGE5NGJmZTAyZDVlOGFiZWE4ODc0NWM6aDpU
3.89.1.23302 Found 0 B URL User Request GET HTTP/2 url.avanan.click/v2/___https:/protect-us.mimecast.com/s/dLqbCVOJm6cOr9Y2iGt0b5___.YXAzOm1hcnRlbjphOm86MzY0ZDQzMjFiZWVjNDdlZTI2NmExNmJlYjYwOTc4OTM6Njo0OTM4OmI1OTQ0OGEwODI2ZWQ4MWFkMDgwOWI4NmU1ZGY4MTI0NWFiODY2Y2E1ZGE5NGJmZTAyZDVlOGFiZWE4ODc0NWM6aDpU
IP 3.89.1.23:443
Certificate IssuerAmazon
Subject*.avanan.click
Fingerprint92:AC:27:E7:73:6B:83:89:E7:C9:7F:95:38:7E:83:FC:59:02:E8:67
ValidityWed, 22 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v2/___https:/protect-us.mimecast.com/s/dLqbCVOJm6cOr9Y2iGt0b5___.YXAzOm1hcnRlbjphOm86MzY0ZDQzMjFiZWVjNDdlZTI2NmExNmJlYjYwOTc4OTM6Njo0OTM4OmI1OTQ0OGEwODI2ZWQ4MWFkMDgwOWI4NmU1ZGY4MTI0NWFiODY2Y2E1ZGE5NGJmZTAyZDVlOGFiZWE4ODc0NWM6aDpU HTTP/1.1
Host: url.avanan.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 06 Jun 2023 04:53:59 GMT
content-length: 0
location: https://protect-us.mimecast.com/s/dLqbCVOJm6cOr9Y2iGt0b5
apigw-requestid: GFJMPh_foAMEJGw=
set-cookie: x-cloud-sec-ctp = 556687b1-86ce-4040-b025-418a3ae58c59; Secure; HttpOnly; path=/; expires=05-Jun-2024 04:53:59 GMT
X-Firefox-Spdy: h2
protect-us.mimecast.com/s/dLqbCVOJm6cOr9Y2iGt0b5
205.139.111.12307 Temporary Redirect 0 B URL User Request GET HTTP/1.1 protect-us.mimecast.com/s/dLqbCVOJm6cOr9Y2iGt0b5
IP 205.139.111.12:443
Certificate IssuerDigiCert Inc
Subject*.mimecast.com
FingerprintE4:2D:2A:92:C3:85:1A:6E:2A:4E:39:EF:1B:0E:C2:A4:BA:5B:CB:DE
ValidityFri, 20 Jan 2023 00:00:00 GMT - Tue, 20 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/dLqbCVOJm6cOr9Y2iGt0b5 HTTP/1.1
Host: protect-us.mimecast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Date: Tue, 06 Jun 2023 04:54:00 GMT
Content-Length: 0
Connection: keep-alive
Location: https://protect-us.mimecast.com/r/ny6VcbTMfG6-li7NaC7GRtweGHQezW3ouVJIBP8q9et9MYq8uQHfXpmQuRMMd8UBFGt27p8Bhd9FQbAnVdRRiHH1zV7U_RmQF_SK0nJHwiKAaS0XHYxLHCwyGI8uBttuZsMCsXFchcAijnpClc0AnbJv5WtwV_77gdDMEBPq9odfy2lGAWMTXM0frti6QSSHsXvF6IHJk7d1NecjzXfDHwWzNvCcfGAGAC-dmpoVCDEr8DaSefJllDO_WRew_1yPakw6jXzmfXAXX4Rk67H5MwVJ9zv61a3xMRa_4tpMY-StFh7zhhAlChRfp0H7TKVKIjSInBlcbWvaP7J4klEfzH001lNgD8HioUwEzoNyqJXn6JoJKOSUcBQyEPu0W9bF9p9V19ZKOquOJZGRMe-uDw9rt82_6GgzmBwy8DUK7VSOQOAPCNMo2y7M_lflvVYpQFrtIZdERhQq0U-T0beuOMSzNxtbq4MIXeBTL0PHAwY4r_sIAdcGT0sgUOcvWZC6K0nkzHzfGW1wiupoDK6Z1MbehMjQvZmXzr53rjL6J03tE2Aaau5NPosbj44iig5Fz1HHRzAawch2U7MpFgyl4XSaXG3lltIep1UBUoL5YIkCuA8M8avvcvovvEPOah81sD5XbThtnoR16ypK0L7ZNVSScDPtS_TkwP4Cse3e3YI-8GuAe2hW8M91SoWs6d6TEq7vT9exHMIQ2UnTnTiyAOeFUU2SV_A4BnsI_8kVUtLegdDc2ZVzFH0WAlS81E6IY1jhwU66GiudG6o3TcVwvtYaqJrsVrmQRmQAyZ1FsImRlr_-wOzh54ql7InxjE9Zj2yN8Ryctw9T9nGFhk8HLvANgqEclhBbbObW2ZQ3ZP4USD0eDwOxrQ4DWwnQvZj74UtQmSQlBCs6F6Ks-fSR5P7knxo35hS_BB9VfNlEVjExJUL-zSqj8RkddPrAYwmoJWUDy0VmkVLX8rE8oV2eDluX0UzWeqAv3n2nQmajaBWKC5SNTyoWUSXkv-ezNaRebuhqsIIWg8qVU_bzBPYo5pXm-Rw2phy7qtFVjvIOYEcO4PhTC0WwL6yDoDdCJUlwTKZaMpj53_DpOA5QKw3oY38rib_H-Kv2KaAoQrnrgg2dKQba-stdXyrmhN0aB0w2vRP_Nl91aLSsD43wsucUgSRj6RMvzqd6Lro2BH0OKuVxjfkHAPblXlbJh5cVigHw9ppQyM50_U16hq9is_taRod1gBIeWwni9qkZij3yEPFtj9i3MHJcxFhxJjtft8ZciMhoCVRNyfHz0gKSOvJuX673F7iLX9aE3SWNhqGqZZkzfJFCL3SL9x9p6WGd6lzNTmmzfxBzVW2jq6IBBfycoXUhhR_7dRDNLmoH9ZiZfDns8dGrZeKtHe6l-o9P2zm-vEev43Do_vP3xyuFBKbpmkPPzaN8f1NOYrwvozyRTIfbv9TYZO0KMyX_WPpXgDss94YyLFtNLfT7fZ0ERKddrNmlfAY6ESC61t4d5izCSCfVgyX8v9hxRXNFu4o0HqlVmdmeIDNesC2u9q6mWihDMRXHqvY15OrJSFm-FLFWzaIie8S4vAFmI0DhSyIvKP3mefsBcXeKNHsVaIAwMPM3FLMNd9E8Cs3lSXyTthsYRFkUb4yx-ZvIw3RmKVkCwi4_cI8Yj1HLCxv_l6nJiSYDB3QWlFjCUPCkMDPaNWjdPCQ2y6VgTQOGY1SbE6l4KuPb87n55zLZSgrxpB_FTEqgY-DJZng0OQHobqpxmjt5urcw9PloNmbLy89jfnf8UTP0kuQiLqzORdEkpLx_rEfWTBZ_vvEzeDEg_DjAF3o8XyE2F2ybLesDvFOrQwlbVZALISGhZ8Un8RKbrHn7qE13q3kIqfS-e3YoXZd857V4fFEAahPrh3soJXcp9jwera2Lql8FQo6x1puk0C3zmUzm-9B-NfaKSJuJaKGpQ-1W_RMtxNA-F5qKgkMwveRpF_HYMGSCyB6Lb-xw18n_3bzH5g6eoxgEeOxMh9VUx1sEKWRS32G7kgGspcPIYWo0JcGc2pxz9XxYbY5RYavMEWM0UhJ2Zc7MF_zO85tZvfJfq3Cxiw6pKCHMmLVClWf4rgGOncV-W6WCmCEk2ds1i-ZQDwYvkS7SFuwmMSWt1EE1G7gtf-dSx2zl6b0N95w07Qifvg-5lPDpzLoElCn47THwti_QIWfmVJVRhiQVXe-_ZebKlnFjBpt8HqMxzhx-V83UGdD7QfcGjX7c48CeIwKcYxcbVvj7e2mnYF39p6TeNKKt2pcxVJQi7KmlvdhDdgnAKxDtdrDoVHankMVJ3BYzr9xGXzgGttSRCRikGFqGQTha9MBRN4kEvlYyvhxfrNUNkQs5yRs59q2vmcVzP0TQLzokZtrh_wdSr0hZbsE1MDk7i9FpK5BH2Oij5MPb5C-AA9IymJkX1xwf27cXlzfOtE2KlEfNhlhybD1-uuVdaM7VTddwerFSKZ3WP4dPw0v51gda-jUwAe2y2SfU-NoYMGmdW2WKGS8K8_D0k5KzUSNc7VrBhcxi9bojdINa6d2b612rKGz6b7Ha5Od8SuUyCutFeTOtSaZ4jW7-aiIQRYPXIoM7S-A5TEqQFM3o574moorMvGakF41g0p7ub52c8e39lqWmzTdyUre2RuQmBOi2qSPppaC4BLXVtyRRBbSCoQ84cMtPUx6ZfRLWdOJ7HPX4diYHzek6AAf7uqPtsG5v1jR6rGpUkJTSc2LvFFbH2t9FegPQAamO-ZQ9iHSXWswojiQmHhcsl8aeLBoWZNiVIPkoi2dOmGWGXX4Tt6KK46BBX1hXRwIPdlYVbLJJWeN5BtHkGCPsCFvjRMVa6E4EV_Vbmv_6X4uvd-7XXeueYUWGxGphx9ucWMIZaU9EH3IrjuwustsOEuNvLsqYydJVTqXkm03Mbu1vP4tNEETl2Mv8CE0tvh5v7gtRQO9I4fBIhfAPravJmCLUefC5VOZbU5T28DYjpR1wwzYLmv2-FsixlPZ1Q70UilJ40jUt2LqTPvxyiWH6tMi1zPHZC5E4aENjSFDQ_As5GFq04LJF7T5xO54aYYpgSYnU6U-OOln2uTvHFs8PUNUXZ8CGK6Zm7sepdjmNTtw9drvFTK4GLDIbeyjh3ajN4TSFqajqCvLcRaRxqsKk7tM6WuF7_HUn5o6oGcIhHc3aogQ8-vnBYTgPVPxTfRN8YcPsJd-4GSAbb2Bq64iKgR4xgkPVYGf_sJAzpGQUxhyQ2EMyQUfSo6AWQOM6lb5yTusjU5SE87F5BDhzJtf9oaPgiCFso36ba-00VYV2lP5cYcebEnKqjkEL5zz-xkEZ_Opn9xSvAZRDPtZIYqaSxanKlrp1n6BWXjKJPDyL_jpFGQu8bR-mLMJ5qvH9qDxZ7yk1ohj0sQn_23o7qSAKEZvYzW8D_5PkRGhu7GW1uPK0wBOrK5Z7pmSUVXf5Qe19XD_7-S74dxob2L-miuwtxFvZNE7cdLvfHq3frBulxIouyECrUpfC-mYhuzxIrZf8PZQB9SXIhll4jDh82hDN85hnhdLOiWaicUMPqCM7ufBPVJJIOLPBSrjKjZExrijGo6o9t02nv-Q-8GhG_U-wc3EZdyTB_h8
Cache-control: no-store
Pragma: no-cache
X-Robots-Tag: noindex, nofollow
protect-us.mimecast.com/r/ny6VcbTMfG6-li7NaC7GRtweGHQezW3ouVJIBP8q9et9MYq8uQHfXpmQuRMMd8UBFGt27p8Bhd9FQbAnVdRRiHH1zV7U_RmQF_SK0nJHwiKAaS0XHYxLHCwyGI8uBttuZsMCsXFchcAijnpClc0AnbJv5WtwV_77gdDMEBPq9odfy2lGAWMTXM0frti6QSSHsXvF6IHJk7d1NecjzXfDHwWzNvCcfGAGAC-dmpoVCDEr8DaSefJllDO_WRew_1yPakw6jXzmfXAXX4Rk67H5MwVJ9zv61a3xMRa_4tpMY-StFh7zhhAlChRfp0H7TKVKIjSInBlcbWvaP7J4klEfzH001lNgD8HioUwEzoNyqJXn6JoJKOSUcBQyEPu0W9bF9p9V19ZKOquOJZGRMe-uDw9rt82_6GgzmBwy8DUK7VSOQOAPCNMo2y7M_lflvVYpQFrtIZdERhQq0U-T0beuOMSzNxtbq4MIXeBTL0PHAwY4r_sIAdcGT0sgUOcvWZC6K0nkzHzfGW1wiupoDK6Z1MbehMjQvZmXzr53rjL6J03tE2Aaau5NPosbj44iig5Fz1HHRzAawch2U7MpFgyl4XSaXG3lltIep1UBUoL5YIkCuA8M8avvcvovvEPOah81sD5XbThtnoR16ypK0L7ZNVSScDPtS_TkwP4Cse3e3YI-8GuAe2hW8M91SoWs6d6TEq7vT9exHMIQ2UnTnTiyAOeFUU2SV_A4BnsI_8kVUtLegdDc2ZVzFH0WAlS81E6IY1jhwU66GiudG6o3TcVwvtYaqJrsVrmQRmQAyZ1FsImRlr_-wOzh54ql7InxjE9Zj2yN8Ryctw9T9nGFhk8HLvANgqEclhBbbObW2ZQ3ZP4USD0eDwOxrQ4DWwnQvZj74UtQmSQlBCs6F6Ks-fSR5P7knxo35hS_BB9VfNlEVjExJUL-zSqj8RkddPrAYwmoJWUDy0VmkVLX8rE8oV2eDluX0UzWeqAv3n2nQmajaBWKC5SNTyoWUSXkv-ezNaRebuhqsIIWg8qVU_bzBPYo5pXm-Rw2phy7qtFVjvIOYEcO4PhTC0WwL6yDoDdCJUlwTKZaMpj53_DpOA5QKw3oY38rib_H-Kv2KaAoQrnrgg2dKQba-stdXyrmhN0aB0w2vRP_Nl91aLSsD43wsucUgSRj6RMvzqd6Lro2BH0OKuVxjfkHAPblXlbJh5cVigHw9ppQyM50_U16hq9is_taRod1gBIeWwni9qkZij3yEPFtj9i3MHJcxFhxJjtft8ZciMhoCVRNyfHz0gKSOvJuX673F7iLX9aE3SWNhqGqZZkzfJFCL3SL9x9p6WGd6lzNTmmzfxBzVW2jq6IBBfycoXUhhR_7dRDNLmoH9ZiZfDns8dGrZeKtHe6l-o9P2zm-vEev43Do_vP3xyuFBKbpmkPPzaN8f1NOYrwvozyRTIfbv9TYZO0KMyX_WPpXgDss94YyLFtNLfT7fZ0ERKddrNmlfAY6ESC61t4d5izCSCfVgyX8v9hxRXNFu4o0HqlVmdmeIDNesC2u9q6mWihDMRXHqvY15OrJSFm-FLFWzaIie8S4vAFmI0DhSyIvKP3mefsBcXeKNHsVaIAwMPM3FLMNd9E8Cs3lSXyTthsYRFkUb4yx-ZvIw3RmKVkCwi4_cI8Yj1HLCxv_l6nJiSYDB3QWlFjCUPCkMDPaNWjdPCQ2y6VgTQOGY1SbE6l4KuPb87n55zLZSgrxpB_FTEqgY-DJZng0OQHobqpxmjt5urcw9PloNmbLy89jfnf8UTP0kuQiLqzORdEkpLx_rEfWTBZ_vvEzeDEg_DjAF3o8XyE2F2ybLesDvFOrQwlbVZALISGhZ8Un8RKbrHn7qE13q3kIqfS-e3YoXZd857V4fFEAahPrh3soJXcp9jwera2Lql8FQo6x1puk0C3zmUzm-9B-NfaKSJuJaKGpQ-1W_RMtxNA-F5qKgkMwveRpF_HYMGSCyB6Lb-xw18n_3bzH5g6eoxgEeOxMh9VUx1sEKWRS32G7kgGspcPIYWo0JcGc2pxz9XxYbY5RYavMEWM0UhJ2Zc7MF_zO85tZvfJfq3Cxiw6pKCHMmLVClWf4rgGOncV-W6WCmCEk2ds1i-ZQDwYvkS7SFuwmMSWt1EE1G7gtf-dSx2zl6b0N95w07Qifvg-5lPDpzLoElCn47THwti_QIWfmVJVRhiQVXe-_ZebKlnFjBpt8HqMxzhx-V83UGdD7QfcGjX7c48CeIwKcYxcbVvj7e2mnYF39p6TeNKKt2pcxVJQi7KmlvdhDdgnAKxDtdrDoVHankMVJ3BYzr9xGXzgGttSRCRikGFqGQTha9MBRN4kEvlYyvhxfrNUNkQs5yRs59q2vmcVzP0TQLzokZtrh_wdSr0hZbsE1MDk7i9FpK5BH2Oij5MPb5C-AA9IymJkX1xwf27cXlzfOtE2KlEfNhlhybD1-uuVdaM7VTddwerFSKZ3WP4dPw0v51gda-jUwAe2y2SfU-NoYMGmdW2WKGS8K8_D0k5KzUSNc7VrBhcxi9bojdINa6d2b612rKGz6b7Ha5Od8SuUyCutFeTOtSaZ4jW7-aiIQRYPXIoM7S-A5TEqQFM3o574moorMvGakF41g0p7ub52c8e39lqWmzTdyUre2RuQmBOi2qSPppaC4BLXVtyRRBbSCoQ84cMtPUx6ZfRLWdOJ7HPX4diYHzek6AAf7uqPtsG5v1jR6rGpUkJTSc2LvFFbH2t9FegPQAamO-ZQ9iHSXWswojiQmHhcsl8aeLBoWZNiVIPkoi2dOmGWGXX4Tt6KK46BBX1hXRwIPdlYVbLJJWeN5BtHkGCPsCFvjRMVa6E4EV_Vbmv_6X4uvd-7XXeueYUWGxGphx9ucWMIZaU9EH3IrjuwustsOEuNvLsqYydJVTqXkm03Mbu1vP4tNEETl2Mv8CE0tvh5v7gtRQO9I4fBIhfAPravJmCLUefC5VOZbU5T28DYjpR1wwzYLmv2-FsixlPZ1Q70UilJ40jUt2LqTPvxyiWH6tMi1zPHZC5E4aENjSFDQ_As5GFq04LJF7T5xO54aYYpgSYnU6U-OOln2uTvHFs8PUNUXZ8CGK6Zm7sepdjmNTtw9drvFTK4GLDIbeyjh3ajN4TSFqajqCvLcRaRxqsKk7tM6WuF7_HUn5o6oGcIhHc3aogQ8-vnBYTgPVPxTfRN8YcPsJd-4GSAbb2Bq64iKgR4xgkPVYGf_sJAzpGQUxhyQ2EMyQUfSo6AWQOM6lb5yTusjU5SE87F5BDhzJtf9oaPgiCFso36ba-00VYV2lP5cYcebEnKqjkEL5zz-xkEZ_Opn9xSvAZRDPtZIYqaSxanKlrp1n6BWXjKJPDyL_jpFGQu8bR-mLMJ5qvH9qDxZ7yk1ohj0sQn_23o7qSAKEZvYzW8D_5PkRGhu7GW1uPK0wBOrK5Z7pmSUVXf5Qe19XD_7-S74dxob2L-miuwtxFvZNE7cdLvfHq3frBulxIouyECrUpfC-mYhuzxIrZf8PZQB9SXIhll4jDh82hDN85hnhdLOiWaicUMPqCM7ufBPVJJIOLPBSrjKjZExrijGo6o9t02nv-Q-8GhG_U-wc3EZdyTB_h8
205.139.111.12 0 B URL protect-us.mimecast.com/r/ny6VcbTMfG6-li7NaC7GRtweGHQezW3ouVJIBP8q9et9MYq8uQHfXpmQuRMMd8UBFGt27p8Bhd9FQbAnVdRRiHH1zV7U_RmQF_SK0nJHwiKAaS0XHYxLHCwyGI8uBttuZsMCsXFchcAijnpClc0AnbJv5WtwV_77gdDMEBPq9odfy2lGAWMTXM0frti6QSSHsXvF6IHJk7d1NecjzXfDHwWzNvCcfGAGAC-dmpoVCDEr8DaSefJllDO_WRew_1yPakw6jXzmfXAXX4Rk67H5MwVJ9zv61a3xMRa_4tpMY-StFh7zhhAlChRfp0H7TKVKIjSInBlcbWvaP7J4klEfzH001lNgD8HioUwEzoNyqJXn6JoJKOSUcBQyEPu0W9bF9p9V19ZKOquOJZGRMe-uDw9rt82_6GgzmBwy8DUK7VSOQOAPCNMo2y7M_lflvVYpQFrtIZdERhQq0U-T0beuOMSzNxtbq4MIXeBTL0PHAwY4r_sIAdcGT0sgUOcvWZC6K0nkzHzfGW1wiupoDK6Z1MbehMjQvZmXzr53rjL6J03tE2Aaau5NPosbj44iig5Fz1HHRzAawch2U7MpFgyl4XSaXG3lltIep1UBUoL5YIkCuA8M8avvcvovvEPOah81sD5XbThtnoR16ypK0L7ZNVSScDPtS_TkwP4Cse3e3YI-8GuAe2hW8M91SoWs6d6TEq7vT9exHMIQ2UnTnTiyAOeFUU2SV_A4BnsI_8kVUtLegdDc2ZVzFH0WAlS81E6IY1jhwU66GiudG6o3TcVwvtYaqJrsVrmQRmQAyZ1FsImRlr_-wOzh54ql7InxjE9Zj2yN8Ryctw9T9nGFhk8HLvANgqEclhBbbObW2ZQ3ZP4USD0eDwOxrQ4DWwnQvZj74UtQmSQlBCs6F6Ks-fSR5P7knxo35hS_BB9VfNlEVjExJUL-zSqj8RkddPrAYwmoJWUDy0VmkVLX8rE8oV2eDluX0UzWeqAv3n2nQmajaBWKC5SNTyoWUSXkv-ezNaRebuhqsIIWg8qVU_bzBPYo5pXm-Rw2phy7qtFVjvIOYEcO4PhTC0WwL6yDoDdCJUlwTKZaMpj53_DpOA5QKw3oY38rib_H-Kv2KaAoQrnrgg2dKQba-stdXyrmhN0aB0w2vRP_Nl91aLSsD43wsucUgSRj6RMvzqd6Lro2BH0OKuVxjfkHAPblXlbJh5cVigHw9ppQyM50_U16hq9is_taRod1gBIeWwni9qkZij3yEPFtj9i3MHJcxFhxJjtft8ZciMhoCVRNyfHz0gKSOvJuX673F7iLX9aE3SWNhqGqZZkzfJFCL3SL9x9p6WGd6lzNTmmzfxBzVW2jq6IBBfycoXUhhR_7dRDNLmoH9ZiZfDns8dGrZeKtHe6l-o9P2zm-vEev43Do_vP3xyuFBKbpmkPPzaN8f1NOYrwvozyRTIfbv9TYZO0KMyX_WPpXgDss94YyLFtNLfT7fZ0ERKddrNmlfAY6ESC61t4d5izCSCfVgyX8v9hxRXNFu4o0HqlVmdmeIDNesC2u9q6mWihDMRXHqvY15OrJSFm-FLFWzaIie8S4vAFmI0DhSyIvKP3mefsBcXeKNHsVaIAwMPM3FLMNd9E8Cs3lSXyTthsYRFkUb4yx-ZvIw3RmKVkCwi4_cI8Yj1HLCxv_l6nJiSYDB3QWlFjCUPCkMDPaNWjdPCQ2y6VgTQOGY1SbE6l4KuPb87n55zLZSgrxpB_FTEqgY-DJZng0OQHobqpxmjt5urcw9PloNmbLy89jfnf8UTP0kuQiLqzORdEkpLx_rEfWTBZ_vvEzeDEg_DjAF3o8XyE2F2ybLesDvFOrQwlbVZALISGhZ8Un8RKbrHn7qE13q3kIqfS-e3YoXZd857V4fFEAahPrh3soJXcp9jwera2Lql8FQo6x1puk0C3zmUzm-9B-NfaKSJuJaKGpQ-1W_RMtxNA-F5qKgkMwveRpF_HYMGSCyB6Lb-xw18n_3bzH5g6eoxgEeOxMh9VUx1sEKWRS32G7kgGspcPIYWo0JcGc2pxz9XxYbY5RYavMEWM0UhJ2Zc7MF_zO85tZvfJfq3Cxiw6pKCHMmLVClWf4rgGOncV-W6WCmCEk2ds1i-ZQDwYvkS7SFuwmMSWt1EE1G7gtf-dSx2zl6b0N95w07Qifvg-5lPDpzLoElCn47THwti_QIWfmVJVRhiQVXe-_ZebKlnFjBpt8HqMxzhx-V83UGdD7QfcGjX7c48CeIwKcYxcbVvj7e2mnYF39p6TeNKKt2pcxVJQi7KmlvdhDdgnAKxDtdrDoVHankMVJ3BYzr9xGXzgGttSRCRikGFqGQTha9MBRN4kEvlYyvhxfrNUNkQs5yRs59q2vmcVzP0TQLzokZtrh_wdSr0hZbsE1MDk7i9FpK5BH2Oij5MPb5C-AA9IymJkX1xwf27cXlzfOtE2KlEfNhlhybD1-uuVdaM7VTddwerFSKZ3WP4dPw0v51gda-jUwAe2y2SfU-NoYMGmdW2WKGS8K8_D0k5KzUSNc7VrBhcxi9bojdINa6d2b612rKGz6b7Ha5Od8SuUyCutFeTOtSaZ4jW7-aiIQRYPXIoM7S-A5TEqQFM3o574moorMvGakF41g0p7ub52c8e39lqWmzTdyUre2RuQmBOi2qSPppaC4BLXVtyRRBbSCoQ84cMtPUx6ZfRLWdOJ7HPX4diYHzek6AAf7uqPtsG5v1jR6rGpUkJTSc2LvFFbH2t9FegPQAamO-ZQ9iHSXWswojiQmHhcsl8aeLBoWZNiVIPkoi2dOmGWGXX4Tt6KK46BBX1hXRwIPdlYVbLJJWeN5BtHkGCPsCFvjRMVa6E4EV_Vbmv_6X4uvd-7XXeueYUWGxGphx9ucWMIZaU9EH3IrjuwustsOEuNvLsqYydJVTqXkm03Mbu1vP4tNEETl2Mv8CE0tvh5v7gtRQO9I4fBIhfAPravJmCLUefC5VOZbU5T28DYjpR1wwzYLmv2-FsixlPZ1Q70UilJ40jUt2LqTPvxyiWH6tMi1zPHZC5E4aENjSFDQ_As5GFq04LJF7T5xO54aYYpgSYnU6U-OOln2uTvHFs8PUNUXZ8CGK6Zm7sepdjmNTtw9drvFTK4GLDIbeyjh3ajN4TSFqajqCvLcRaRxqsKk7tM6WuF7_HUn5o6oGcIhHc3aogQ8-vnBYTgPVPxTfRN8YcPsJd-4GSAbb2Bq64iKgR4xgkPVYGf_sJAzpGQUxhyQ2EMyQUfSo6AWQOM6lb5yTusjU5SE87F5BDhzJtf9oaPgiCFso36ba-00VYV2lP5cYcebEnKqjkEL5zz-xkEZ_Opn9xSvAZRDPtZIYqaSxanKlrp1n6BWXjKJPDyL_jpFGQu8bR-mLMJ5qvH9qDxZ7yk1ohj0sQn_23o7qSAKEZvYzW8D_5PkRGhu7GW1uPK0wBOrK5Z7pmSUVXf5Qe19XD_7-S74dxob2L-miuwtxFvZNE7cdLvfHq3frBulxIouyECrUpfC-mYhuzxIrZf8PZQB9SXIhll4jDh82hDN85hnhdLOiWaicUMPqCM7ufBPVJJIOLPBSrjKjZExrijGo6o9t02nv-Q-8GhG_U-wc3EZdyTB_h8
IP 205.139.111.12:0
Certificate IssuerDigiCert Inc
Subject*.mimecast.com
FingerprintE4:2D:2A:92:C3:85:1A:6E:2A:4E:39:EF:1B:0E:C2:A4:BA:5B:CB:DE
ValidityFri, 20 Jan 2023 00:00:00 GMT - Tue, 20 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /r/ny6VcbTMfG6-li7NaC7GRtweGHQezW3ouVJIBP8q9et9MYq8uQHfXpmQuRMMd8UBFGt27p8Bhd9FQbAnVdRRiHH1zV7U_RmQF_SK0nJHwiKAaS0XHYxLHCwyGI8uBttuZsMCsXFchcAijnpClc0AnbJv5WtwV_77gdDMEBPq9odfy2lGAWMTXM0frti6QSSHsXvF6IHJk7d1NecjzXfDHwWzNvCcfGAGAC-dmpoVCDEr8DaSefJllDO_WRew_1yPakw6jXzmfXAXX4Rk67H5MwVJ9zv61a3xMRa_4tpMY-StFh7zhhAlChRfp0H7TKVKIjSInBlcbWvaP7J4klEfzH001lNgD8HioUwEzoNyqJXn6JoJKOSUcBQyEPu0W9bF9p9V19ZKOquOJZGRMe-uDw9rt82_6GgzmBwy8DUK7VSOQOAPCNMo2y7M_lflvVYpQFrtIZdERhQq0U-T0beuOMSzNxtbq4MIXeBTL0PHAwY4r_sIAdcGT0sgUOcvWZC6K0nkzHzfGW1wiupoDK6Z1MbehMjQvZmXzr53rjL6J03tE2Aaau5NPosbj44iig5Fz1HHRzAawch2U7MpFgyl4XSaXG3lltIep1UBUoL5YIkCuA8M8avvcvovvEPOah81sD5XbThtnoR16ypK0L7ZNVSScDPtS_TkwP4Cse3e3YI-8GuAe2hW8M91SoWs6d6TEq7vT9exHMIQ2UnTnTiyAOeFUU2SV_A4BnsI_8kVUtLegdDc2ZVzFH0WAlS81E6IY1jhwU66GiudG6o3TcVwvtYaqJrsVrmQRmQAyZ1FsImRlr_-wOzh54ql7InxjE9Zj2yN8Ryctw9T9nGFhk8HLvANgqEclhBbbObW2ZQ3ZP4USD0eDwOxrQ4DWwnQvZj74UtQmSQlBCs6F6Ks-fSR5P7knxo35hS_BB9VfNlEVjExJUL-zSqj8RkddPrAYwmoJWUDy0VmkVLX8rE8oV2eDluX0UzWeqAv3n2nQmajaBWKC5SNTyoWUSXkv-ezNaRebuhqsIIWg8qVU_bzBPYo5pXm-Rw2phy7qtFVjvIOYEcO4PhTC0WwL6yDoDdCJUlwTKZaMpj53_DpOA5QKw3oY38rib_H-Kv2KaAoQrnrgg2dKQba-stdXyrmhN0aB0w2vRP_Nl91aLSsD43wsucUgSRj6RMvzqd6Lro2BH0OKuVxjfkHAPblXlbJh5cVigHw9ppQyM50_U16hq9is_taRod1gBIeWwni9qkZij3yEPFtj9i3MHJcxFhxJjtft8ZciMhoCVRNyfHz0gKSOvJuX673F7iLX9aE3SWNhqGqZZkzfJFCL3SL9x9p6WGd6lzNTmmzfxBzVW2jq6IBBfycoXUhhR_7dRDNLmoH9ZiZfDns8dGrZeKtHe6l-o9P2zm-vEev43Do_vP3xyuFBKbpmkPPzaN8f1NOYrwvozyRTIfbv9TYZO0KMyX_WPpXgDss94YyLFtNLfT7fZ0ERKddrNmlfAY6ESC61t4d5izCSCfVgyX8v9hxRXNFu4o0HqlVmdmeIDNesC2u9q6mWihDMRXHqvY15OrJSFm-FLFWzaIie8S4vAFmI0DhSyIvKP3mefsBcXeKNHsVaIAwMPM3FLMNd9E8Cs3lSXyTthsYRFkUb4yx-ZvIw3RmKVkCwi4_cI8Yj1HLCxv_l6nJiSYDB3QWlFjCUPCkMDPaNWjdPCQ2y6VgTQOGY1SbE6l4KuPb87n55zLZSgrxpB_FTEqgY-DJZng0OQHobqpxmjt5urcw9PloNmbLy89jfnf8UTP0kuQiLqzORdEkpLx_rEfWTBZ_vvEzeDEg_DjAF3o8XyE2F2ybLesDvFOrQwlbVZALISGhZ8Un8RKbrHn7qE13q3kIqfS-e3YoXZd857V4fFEAahPrh3soJXcp9jwera2Lql8FQo6x1puk0C3zmUzm-9B-NfaKSJuJaKGpQ-1W_RMtxNA-F5qKgkMwveRpF_HYMGSCyB6Lb-xw18n_3bzH5g6eoxgEeOxMh9VUx1sEKWRS32G7kgGspcPIYWo0JcGc2pxz9XxYbY5RYavMEWM0UhJ2Zc7MF_zO85tZvfJfq3Cxiw6pKCHMmLVClWf4rgGOncV-W6WCmCEk2ds1i-ZQDwYvkS7SFuwmMSWt1EE1G7gtf-dSx2zl6b0N95w07Qifvg-5lPDpzLoElCn47THwti_QIWfmVJVRhiQVXe-_ZebKlnFjBpt8HqMxzhx-V83UGdD7QfcGjX7c48CeIwKcYxcbVvj7e2mnYF39p6TeNKKt2pcxVJQi7KmlvdhDdgnAKxDtdrDoVHankMVJ3BYzr9xGXzgGttSRCRikGFqGQTha9MBRN4kEvlYyvhxfrNUNkQs5yRs59q2vmcVzP0TQLzokZtrh_wdSr0hZbsE1MDk7i9FpK5BH2Oij5MPb5C-AA9IymJkX1xwf27cXlzfOtE2KlEfNhlhybD1-uuVdaM7VTddwerFSKZ3WP4dPw0v51gda-jUwAe2y2SfU-NoYMGmdW2WKGS8K8_D0k5KzUSNc7VrBhcxi9bojdINa6d2b612rKGz6b7Ha5Od8SuUyCutFeTOtSaZ4jW7-aiIQRYPXIoM7S-A5TEqQFM3o574moorMvGakF41g0p7ub52c8e39lqWmzTdyUre2RuQmBOi2qSPppaC4BLXVtyRRBbSCoQ84cMtPUx6ZfRLWdOJ7HPX4diYHzek6AAf7uqPtsG5v1jR6rGpUkJTSc2LvFFbH2t9FegPQAamO-ZQ9iHSXWswojiQmHhcsl8aeLBoWZNiVIPkoi2dOmGWGXX4Tt6KK46BBX1hXRwIPdlYVbLJJWeN5BtHkGCPsCFvjRMVa6E4EV_Vbmv_6X4uvd-7XXeueYUWGxGphx9ucWMIZaU9EH3IrjuwustsOEuNvLsqYydJVTqXkm03Mbu1vP4tNEETl2Mv8CE0tvh5v7gtRQO9I4fBIhfAPravJmCLUefC5VOZbU5T28DYjpR1wwzYLmv2-FsixlPZ1Q70UilJ40jUt2LqTPvxyiWH6tMi1zPHZC5E4aENjSFDQ_As5GFq04LJF7T5xO54aYYpgSYnU6U-OOln2uTvHFs8PUNUXZ8CGK6Zm7sepdjmNTtw9drvFTK4GLDIbeyjh3ajN4TSFqajqCvLcRaRxqsKk7tM6WuF7_HUn5o6oGcIhHc3aogQ8-vnBYTgPVPxTfRN8YcPsJd-4GSAbb2Bq64iKgR4xgkPVYGf_sJAzpGQUxhyQ2EMyQUfSo6AWQOM6lb5yTusjU5SE87F5BDhzJtf9oaPgiCFso36ba-00VYV2lP5cYcebEnKqjkEL5zz-xkEZ_Opn9xSvAZRDPtZIYqaSxanKlrp1n6BWXjKJPDyL_jpFGQu8bR-mLMJ5qvH9qDxZ7yk1ohj0sQn_23o7qSAKEZvYzW8D_5PkRGhu7GW1uPK0wBOrK5Z7pmSUVXf5Qe19XD_7-S74dxob2L-miuwtxFvZNE7cdLvfHq3frBulxIouyECrUpfC-mYhuzxIrZf8PZQB9SXIhll4jDh82hDN85hnhdLOiWaicUMPqCM7ufBPVJJIOLPBSrjKjZExrijGo6o9t02nv-Q-8GhG_U-wc3EZdyTB_h8 HTTP/1.1
Host: protect-us.mimecast.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Date: Tue, 06 Jun 2023 04:54:00 GMT
Content-Length: 0
Connection: keep-alive
Location: https://u15333372.ct.sendgrid.net/ls/click?upn=tcjvwtgkajssLOnJZkrnQmKqyAYcOVZfmASusWAVXrjeTDfxF1LcO6-2BkKNSlBf6tOfQRjNPrOnSRV4iF4HyhHNJczl8DoOr7tdTbh3jIDpE-3D7E29_ghRD3AeEDcGlyADbqxA0fRBaw-2FkdoAPuP9-2FH57LiR8Z7XWCaFmnFqm4mobe4bFAikTaBY70evQS9Q1OYu2k30okngSLBdB3DBs3wuIqyhd2Yb66CpIp-2Bc5OzNjhvyQb93fj-2F1mstQMqOeUGA9pGi1MzNHM6BSg6WkdSofHThAbDg7J6dGa5hvu3STGRbD4ALtkfIoy18OYqemEYc-2F1vF8hwKqabKrgvJ8G-2FJvpj-2FqJ4xwRv80GTD-2BfqdP1LJRm-2FdKAs69LqWHXUw3DbhbMlpzzF-2B8RPmFhLZEN3Mgh2PZa3qLZaWuaLuAlvR6PDFEmM1S0MonQsGqqOiFUmr6LeElGZWfPndGoIen0wHjvMIOJ8-2Fnr1XUDe7LxQM4rVCMo1qbBEUsxr7R-2BQ3Do-2BWTXlXr-2BZj1DLXBNrojIPow0qTkL1gilkN5sURHscZW26bSZDExypV1ExZkDPeR2LjyqYe-2F-2FrKeQlk3opNBmXvaEJFz74773IViF82N6jK3-2BANAAUpicHJAH279qyO6mlzwTNrsFxPMUIMRDTifjAWu-2FpAALQjB3ltSumVa8FoBph5ME1Z0PWTixXpSi7Q8LZt-2FITlDBykUReVS45s7tW5hjzkjujyaZpBz0X-2Bv2HrZNFp4Ev5DQolOFlkcIUA4YXtPq8HVqhRToa2bZq86oEMZrHdkN5KrfeAoECt7WIZwBGCENasUqe8Da6SgCmR28vsTuN10RfUZDs6DP0eLBSvC7rTIU6tKYWfy4Rdvi5gmNjUwhWT61zFP0FLOwMHrkvepeG14mVeQMyIFnK4zVulTcrpqeI83sPapEHyh9PP6mrkMhsOdWHaKFHWfOSF6aphZ4Miq-2FeatvYDPx-2F44aa1jD7wSOC1kKKXAOA-2BsTnkm1Zs0u6VRF-2F5KMrNGeG3-2F-2B-2Fp03kG5-2BRhjDvCiZG9yaf4uxpso2Ds9g0f5FpvJTvPhSm2bjjtUcpEnhWq3tHYhzUd8sDNaQHZ6zf1o2aQxSjK7lxBNZ5ueDtkqbr7dXtRPQuqBHJ-2BNZVpgVQzph4GKuW-2BLCGG8XXBtucgJqPiMeqzs2hd-2FlI-3D
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Cache-control: no-store
Pragma: no-cache
X-Robots-Tag: noindex, nofollow
ocsp.godaddy.com/
192.124.249.41 1.8 kB IP 192.124.249.41:0
Hash b42842ad2d3522fffaf5ec0e2589ef4e
f6fff4a5f162c07a3aa07d2c6dafd4864b20b3a2
4ba6abad79d5de99b6226bfa6ed7a52ba8141704b9cdfc4f2cb836a55a2eb6b1
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Tue, 06 Jun 2023 04:54:00 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19041
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 05 Jun 2023 21:17:08 GMT
Expires: Tue, 06 Jun 2023 21:17:08 GMT
ETag: "f6fff4a5f162c07a3aa07d2c6dafd4864b20b3a2"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
u15333372.ct.sendgrid.net/ls/click?upn=tcjvwtgkajssLOnJZkrnQmKqyAYcOVZfmASusWAVXrjeTDfxF1LcO6-2BkKNSlBf6tOfQRjNPrOnSRV4iF4HyhHNJczl8DoOr7tdTbh3jIDpE-3D7E29_ghRD3AeEDcGlyADbqxA0fRBaw-2FkdoAPuP9-2FH57LiR8Z7XWCaFmnFqm4mobe4bFAikTaBY70evQS9Q1OYu2k30okngSLBdB3DBs3wuIqyhd2Yb66CpIp-2Bc5OzNjhvyQb93fj-2F1mstQMqOeUGA9pGi1MzNHM6BSg6WkdSofHThAbDg7J6dGa5hvu3STGRbD4ALtkfIoy18OYqemEYc-2F1vF8hwKqabKrgvJ8G-2FJvpj-2FqJ4xwRv80GTD-2BfqdP1LJRm-2FdKAs69LqWHXUw3DbhbMlpzzF-2B8RPmFhLZEN3Mgh2PZa3qLZaWuaLuAlvR6PDFEmM1S0MonQsGqqOiFUmr6LeElGZWfPndGoIen0wHjvMIOJ8-2Fnr1XUDe7LxQM4rVCMo1qbBEUsxr7R-2BQ3Do-2BWTXlXr-2BZj1DLXBNrojIPow0qTkL1gilkN5sURHscZW26bSZDExypV1ExZkDPeR2LjyqYe-2F-2FrKeQlk3opNBmXvaEJFz74773IViF82N6jK3-2BANAAUpicHJAH279qyO6mlzwTNrsFxPMUIMRDTifjAWu-2FpAALQjB3ltSumVa8FoBph5ME1Z0PWTixXpSi7Q8LZt-2FITlDBykUReVS45s7tW5hjzkjujyaZpBz0X-2Bv2HrZNFp4Ev5DQolOFlkcIUA4YXtPq8HVqhRToa2bZq86oEMZrHdkN5KrfeAoECt7WIZwBGCENasUqe8Da6SgCmR28vsTuN10RfUZDs6DP0eLBSvC7rTIU6tKYWfy4Rdvi5gmNjUwhWT61zFP0FLOwMHrkvepeG14mVeQMyIFnK4zVulTcrpqeI83sPapEHyh9PP6mrkMhsOdWHaKFHWfOSF6aphZ4Miq-2FeatvYDPx-2F44aa1jD7wSOC1kKKXAOA-2BsTnkm1Zs0u6VRF-2F5KMrNGeG3-2F-2B-2Fp03kG5-2BRhjDvCiZG9yaf4uxpso2Ds9g0f5FpvJTvPhSm2bjjtUcpEnhWq3tHYhzUd8sDNaQHZ6zf1o2aQxSjK7lxBNZ5ueDtkqbr7dXtRPQuqBHJ-2BNZVpgVQzph4GKuW-2BLCGG8XXBtucgJqPiMeqzs2hd-2FlI-3D
167.89.123.16302 Found 90 B URL User Request GET HTTP/1.1 u15333372.ct.sendgrid.net/ls/click?upn=tcjvwtgkajssLOnJZkrnQmKqyAYcOVZfmASusWAVXrjeTDfxF1LcO6-2BkKNSlBf6tOfQRjNPrOnSRV4iF4HyhHNJczl8DoOr7tdTbh3jIDpE-3D7E29_ghRD3AeEDcGlyADbqxA0fRBaw-2FkdoAPuP9-2FH57LiR8Z7XWCaFmnFqm4mobe4bFAikTaBY70evQS9Q1OYu2k30okngSLBdB3DBs3wuIqyhd2Yb66CpIp-2Bc5OzNjhvyQb93fj-2F1mstQMqOeUGA9pGi1MzNHM6BSg6WkdSofHThAbDg7J6dGa5hvu3STGRbD4ALtkfIoy18OYqemEYc-2F1vF8hwKqabKrgvJ8G-2FJvpj-2FqJ4xwRv80GTD-2BfqdP1LJRm-2FdKAs69LqWHXUw3DbhbMlpzzF-2B8RPmFhLZEN3Mgh2PZa3qLZaWuaLuAlvR6PDFEmM1S0MonQsGqqOiFUmr6LeElGZWfPndGoIen0wHjvMIOJ8-2Fnr1XUDe7LxQM4rVCMo1qbBEUsxr7R-2BQ3Do-2BWTXlXr-2BZj1DLXBNrojIPow0qTkL1gilkN5sURHscZW26bSZDExypV1ExZkDPeR2LjyqYe-2F-2FrKeQlk3opNBmXvaEJFz74773IViF82N6jK3-2BANAAUpicHJAH279qyO6mlzwTNrsFxPMUIMRDTifjAWu-2FpAALQjB3ltSumVa8FoBph5ME1Z0PWTixXpSi7Q8LZt-2FITlDBykUReVS45s7tW5hjzkjujyaZpBz0X-2Bv2HrZNFp4Ev5DQolOFlkcIUA4YXtPq8HVqhRToa2bZq86oEMZrHdkN5KrfeAoECt7WIZwBGCENasUqe8Da6SgCmR28vsTuN10RfUZDs6DP0eLBSvC7rTIU6tKYWfy4Rdvi5gmNjUwhWT61zFP0FLOwMHrkvepeG14mVeQMyIFnK4zVulTcrpqeI83sPapEHyh9PP6mrkMhsOdWHaKFHWfOSF6aphZ4Miq-2FeatvYDPx-2F44aa1jD7wSOC1kKKXAOA-2BsTnkm1Zs0u6VRF-2F5KMrNGeG3-2F-2B-2Fp03kG5-2BRhjDvCiZG9yaf4uxpso2Ds9g0f5FpvJTvPhSm2bjjtUcpEnhWq3tHYhzUd8sDNaQHZ6zf1o2aQxSjK7lxBNZ5ueDtkqbr7dXtRPQuqBHJ-2BNZVpgVQzph4GKuW-2BLCGG8XXBtucgJqPiMeqzs2hd-2FlI-3D
IP 167.89.123.16:443
Certificate IssuerGoDaddy.com, Inc.
Subject*.ct.sendgrid.net
FingerprintFA:62:11:65:55:5A:5A:54:C9:8B:E1:AD:1C:F2:61:78:A5:CF:60:86
ValidityMon, 17 Apr 2023 08:37:24 GMT - Wed, 15 May 2024 07:15:31 GMT
File type HTML document, ASCII text
Hash 143913866443101d33400d26ad345039
2d4b0a6c2186bdce68df58cb87e51d8431037427
6572606ee86750503e30eaac16b0efedaaf045d92a751b577e4542d23e2836e2
GET /ls/click?upn=tcjvwtgkajssLOnJZkrnQmKqyAYcOVZfmASusWAVXrjeTDfxF1LcO6-2BkKNSlBf6tOfQRjNPrOnSRV4iF4HyhHNJczl8DoOr7tdTbh3jIDpE-3D7E29_ghRD3AeEDcGlyADbqxA0fRBaw-2FkdoAPuP9-2FH57LiR8Z7XWCaFmnFqm4mobe4bFAikTaBY70evQS9Q1OYu2k30okngSLBdB3DBs3wuIqyhd2Yb66CpIp-2Bc5OzNjhvyQb93fj-2F1mstQMqOeUGA9pGi1MzNHM6BSg6WkdSofHThAbDg7J6dGa5hvu3STGRbD4ALtkfIoy18OYqemEYc-2F1vF8hwKqabKrgvJ8G-2FJvpj-2FqJ4xwRv80GTD-2BfqdP1LJRm-2FdKAs69LqWHXUw3DbhbMlpzzF-2B8RPmFhLZEN3Mgh2PZa3qLZaWuaLuAlvR6PDFEmM1S0MonQsGqqOiFUmr6LeElGZWfPndGoIen0wHjvMIOJ8-2Fnr1XUDe7LxQM4rVCMo1qbBEUsxr7R-2BQ3Do-2BWTXlXr-2BZj1DLXBNrojIPow0qTkL1gilkN5sURHscZW26bSZDExypV1ExZkDPeR2LjyqYe-2F-2FrKeQlk3opNBmXvaEJFz74773IViF82N6jK3-2BANAAUpicHJAH279qyO6mlzwTNrsFxPMUIMRDTifjAWu-2FpAALQjB3ltSumVa8FoBph5ME1Z0PWTixXpSi7Q8LZt-2FITlDBykUReVS45s7tW5hjzkjujyaZpBz0X-2Bv2HrZNFp4Ev5DQolOFlkcIUA4YXtPq8HVqhRToa2bZq86oEMZrHdkN5KrfeAoECt7WIZwBGCENasUqe8Da6SgCmR28vsTuN10RfUZDs6DP0eLBSvC7rTIU6tKYWfy4Rdvi5gmNjUwhWT61zFP0FLOwMHrkvepeG14mVeQMyIFnK4zVulTcrpqeI83sPapEHyh9PP6mrkMhsOdWHaKFHWfOSF6aphZ4Miq-2FeatvYDPx-2F44aa1jD7wSOC1kKKXAOA-2BsTnkm1Zs0u6VRF-2F5KMrNGeG3-2F-2B-2Fp03kG5-2BRhjDvCiZG9yaf4uxpso2Ds9g0f5FpvJTvPhSm2bjjtUcpEnhWq3tHYhzUd8sDNaQHZ6zf1o2aQxSjK7lxBNZ5ueDtkqbr7dXtRPQuqBHJ-2BNZVpgVQzph4GKuW-2BLCGG8XXBtucgJqPiMeqzs2hd-2FlI-3D HTTP/1.1
Host: u15333372.ct.sendgrid.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx
Date: Tue, 06 Jun 2023 04:54:01 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 90
Connection: keep-alive
Location: https://www.eliteextra.com/?e=weslie.loomis@marten.com&c=pmails
X-Robots-Tag: noindex, nofollow
www.eliteextra.com/?e=weslie.loomis@marten.com&c=pmails
173.245.130.198301 Moved Permanently 0 B URL User Request GET HTTP/2 www.eliteextra.com/?e=weslie.loomis@marten.com&c=pmails
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?e=weslie.loomis@marten.com&c=pmails HTTP/1.1
Host: www.eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
content-length: 0
location: https://eliteextra.com/?e=weslie.loomis@marten.com&c=pmails
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ce0ebcb6eab1a7dd3eab3a8147da0859
8164473145746d55203f9505ae8a1643350a79e3
b8771619cd596cd7015fdf1ff5e21e989535b3ba3d90f5efcd5867d85b98adcc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 04:54:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 82d60e5c89d861bf88494c1b30123a7d
696454de610c86434fca82187d45b770aa712b74
1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 04:54:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash ce0ebcb6eab1a7dd3eab3a8147da0859
8164473145746d55203f9505ae8a1643350a79e3
b8771619cd596cd7015fdf1ff5e21e989535b3ba3d90f5efcd5867d85b98adcc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 04:54:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 82d60e5c89d861bf88494c1b30123a7d
696454de610c86434fca82187d45b770aa712b74
1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 04:54:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
extend.vimeocdn.com/ga/18803845.js
151.101.246.109200 OK 5.6 kB URL GET HTTP/2 extend.vimeocdn.com/ga/18803845.js
IP 151.101.246.109:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F
ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT
File type Unicode text, UTF-8 text, with very long lines (16858)
Hash 377b77886b8f14f7c30f202b4afedde9
d8ffa187f74c7b4295240038349937f7b57c2b42
6c649cc3d4aee7683250622541a6045ad4ac3beb93df1fcdd3ec1f7f12a1ff44
GET /ga/18803845.js HTTP/1.1
Host: extend.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: Apache
last-modified: Thu, 01 Sep 2022 18:23:26 GMT
etag: "421e-5e7a1b598e380-gzip"
expires: Sun, 29 Aug 2032 19:32:02 GMT
content-encoding: gzip
x-bapp-server: assets-67ff759c65-v5tqh
x-vimeo-dc: ge
timing-allow-origin: *
content-type: text/javascript; charset=utf-8
accept-ranges: bytes
date: Tue, 06 Jun 2023 04:54:04 GMT
via: 1.1 varnish
age: 23966523
x-served-by: cache-hel1410025-HEL
x-cache: HIT
x-cache-hits: 904
x-timer: S1686027244.368634,VS0,VE0
vary: Accept-Encoding
cache-control: max-age=86400
content-length: 5579
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2
216.58.207.227 22 kB URL fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 22084, version 1.0\012- data
Hash bab4daa6bec06781aa7262eca0be0ed4
b896fcea50433114a0433c9c8117677a875f1116
ee901a5f44fcc6ea6ab97fb2751ce51af915d16dd99995a29a5905d2ce4b0831
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eliteextra.com/
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22084
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 May 2023 21:58:16 GMT
expires: Thu, 30 May 2024 21:58:16 GMT
cache-control: public, max-age=31536000
age: 456948
last-modified: Mon, 15 Aug 2022 18:14:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2
216.58.207.227200 OK 22 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2
IP 216.58.207.227:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 21516, version 1.0\012- data
Hash 90135ea44811b2d9610c33e07068fdb0
84ef1a8343877a598f1c7cbae56f35ded54a1787
bd067b886f4a67dd25c08fe73777bce7f506beb4c09d17d9f036f8a90901efd2
GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eliteextra.com/
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21516
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 14:06:32 GMT
expires: Wed, 29 May 2024 14:06:32 GMT
cache-control: public, max-age=31536000
age: 571652
last-modified: Mon, 15 Aug 2022 18:12:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-8098030-1
142.250.74.168200 OK 48 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-8098030-1
IP 142.250.74.168:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with very long lines (2271)
Hash 9979d6a55bab5315178b8b0afb697db6
647fc007ccd7429cb097a0a51139689ee19255c8
5d969b53c2c837777eed33ca0aa76320942da27ae284580315b2ae18b52c786a
GET /gtag/js?id=UA-8098030-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Jun 2023 04:54:04 GMT
expires: Tue, 06 Jun 2023 04:54:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 48405
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-XHGWF8PBVN
142.250.74.168200 OK 84 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-XHGWF8PBVN
IP 142.250.74.168:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
File type ASCII text, with very long lines (6408)
Hash 16d3ef4daa39694d3b03d11a8fbac6f4
fe1667aa5c802603ae186d5082f6c60e10c36726
049aad4dddfb3bc1d9db997f45691afd9b8a1228b68eea8d4279748d56ffd66e
GET /gtag/js?id=G-XHGWF8PBVN HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Jun 2023 04:54:04 GMT
expires: Tue, 06 Jun 2023 04:54:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 83510
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash 82d60e5c89d861bf88494c1b30123a7d
696454de610c86434fca82187d45b770aa712b74
1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 04:54:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
eliteextra.com/wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=6.10
173.245.130.198200 OK 1.0 kB URL GET HTTP/2 eliteextra.com/wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=6.10
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type gzip compressed data, from Unix\012- data
Hash 95af16b71667c4245d5ba494c00267b6
21de7d3160a358512f1f21c5eae7630b478c2651
f4258dcd3085064f15836d6001baa69df1a1d0af547f06572ee0a06d5b4c29a7
GET /wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=6.10 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: text/css
last-modified: Thu, 25 May 2023 04:30:04 GMT
etag: W/"646ee44c-4f4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/04/Elite-EXTRA-Logo-sm.png
173.245.130.198200 OK 7.2 kB URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/04/Elite-EXTRA-Logo-sm.png
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 12ed93081606d34a84f7d5ba777c02af
eb84a4e77fcd1b02ec4313e5c6b81787dd60b2c2
34fe3b0d6a7cfb7879d46f987a8defe7fb4be67972575d85fafbe6728d6f8495
GET /wp-content/uploads/2022/04/Elite-EXTRA-Logo-sm.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 7150
last-modified: Fri, 29 Apr 2022 15:16:24 GMT
etag: "626c0148-1bee"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/05/Elite_EXTRA_Devices_Banner-300x197.png
173.245.130.198200 OK 34 kB URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/05/Elite_EXTRA_Devices_Banner-300x197.png
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 9b970c0521ecf26011017b6e2e14232f
947bfe8c1acbcb1811fc69892ab1bd7ac150c921
8609931212253f476b98ffa580e1c1945af95078473fd9133158f0693dae479d
GET /wp-content/uploads/2022/05/Elite_EXTRA_Devices_Banner-300x197.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 34298
last-modified: Fri, 20 May 2022 16:19:32 GMT
etag: "6287bf94-85fa"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/04/RTx.png
173.245.130.198200 OK 2.1 kB URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/04/RTx.png
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 43b1ca310c669f85cd394df1e8634284
6f4c475f3ee13c5139c673ddf305b07d847d4bf7
0e362e61f4074c538093623993bf917f98706fe269a3dcbb73283e546a4cc184
GET /wp-content/uploads/2022/04/RTx.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 2052
last-modified: Fri, 01 Apr 2022 17:53:53 GMT
etag: "62473c31-804"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/06/elite-extra-delivery-network-logo.png
173.245.130.198 1.2 kB URL eliteextra.com/wp-content/uploads/2022/06/elite-extra-delivery-network-logo.png
IP 173.245.130.198:0
ASN #11796 AIRSTREAMCOMM-NET
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash f7401f37242879df8029b1b5437ec50c
08c01d8bbc014a22d2ea6828ce0dd00cbb349023
522d996e91ed0fd2a2d085c424f994866a765e1b8a6e75dd6b3b317c75b2ccc7
GET /wp-content/uploads/2022/06/elite-extra-delivery-network-logo.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 1232
last-modified: Thu, 16 Jun 2022 16:36:05 GMT
etag: "62ab5bf5-4d0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/04/RAx.png
173.245.130.198200 OK 1.5 kB URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/04/RAx.png
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash bc54d577385e39e7f409575c1444e6c0
5dc8b152d9afbd80519665622651d5a0d33beea7
050f43b55ddacbf3b338bd0ed21639ce1023979ecd6bc106f763fa684edf9f9e
GET /wp-content/uploads/2022/04/RAx.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 1536
last-modified: Fri, 01 Apr 2022 17:53:53 GMT
etag: "62473c31-600"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/02/Capterra_User_5_Star_Rating-Image.png
173.245.130.198200 OK 1.3 kB URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/02/Capterra_User_5_Star_Rating-Image.png
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 70893321e927b8c2c48c4878268aacfc
e92fce263ef7468df92c171b2f863397cc745cf5
8a8cc631ea0ebf7ccb15e8086a40f27209f4e77e355e54d1c57fbe54fec93e51
GET /wp-content/uploads/2022/02/Capterra_User_5_Star_Rating-Image.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 1270
last-modified: Tue, 01 Mar 2022 21:49:52 GMT
etag: "621e9500-4f6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/02/Capterra_Best_Value_Image.png
173.245.130.198200 OK 7.2 kB URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/02/Capterra_Best_Value_Image.png
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 218dae7cc5e1a380199422bd609b57ab
fbe00e062a655bf8471a1f4675e830c4597f58db
c634af95780373189b06d0e01361da1a88bbb63f7e38a3e0bf0ecbb140d46cba
GET /wp-content/uploads/2022/02/Capterra_Best_Value_Image.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 7154
last-modified: Tue, 01 Mar 2022 21:49:17 GMT
etag: "621e94dd-1bf2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/02/Capterra_Best_Ease_of_Use_Image.png
173.245.130.198 7.0 kB URL eliteextra.com/wp-content/uploads/2022/02/Capterra_Best_Ease_of_Use_Image.png
IP 173.245.130.198:0
ASN #11796 AIRSTREAMCOMM-NET
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash b17d38b1b6ca95342fe713c74dd992f5
7143b504059caed38a5da0a7cd1765480230dccd
5ed7b778b7978b7090727c1696082014d46ff4cbecc90723acd31a5d21791a90
GET /wp-content/uploads/2022/02/Capterra_Best_Ease_of_Use_Image.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 6974
last-modified: Tue, 01 Mar 2022 21:49:16 GMT
etag: "621e94dc-1b3e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/02/GetApp_User_Reviews_Image.png
173.245.130.198 1.7 kB URL eliteextra.com/wp-content/uploads/2022/02/GetApp_User_Reviews_Image.png
IP 173.245.130.198:0
ASN #11796 AIRSTREAMCOMM-NET
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash d3bcfdc18303d4746994f3c25948f6e4
3758fe080452f9376f075d63223da0ad3fab9e40
85021778d54c473f5b0e19e44b23944e7b1b64bc918705db817107c1d78fb41c
GET /wp-content/uploads/2022/02/GetApp_User_Reviews_Image.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 1650
last-modified: Tue, 01 Mar 2022 21:49:19 GMT
etag: "621e94df-672"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/02/GetApp_Best_Functionality_and_Features_Image.png
173.245.130.198200 OK 7.9 kB URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/02/GetApp_Best_Functionality_and_Features_Image.png
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 0b623b3b64d21023e990cd2b114d9c64
5193a9bfc8c87339377db45e3dc768d8a9755d87
194a4a6f810b56b3e9dbfd6325f623cab85c7865bd17311b485dc3e01ab098df
GET /wp-content/uploads/2022/02/GetApp_Best_Functionality_and_Features_Image.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 7876
last-modified: Tue, 01 Mar 2022 21:49:18 GMT
etag: "621e94de-1ec4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/04/SoftwareConnect_5_Stars_Small.png
173.245.130.198200 OK 9.9 kB URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/04/SoftwareConnect_5_Stars_Small.png
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash c0398fd359c4c7746119a18ca9581970
b3c5e45c131085f58c8810eb8a7a709e93a76c9b
e64c59dd6789c777879dcf18e18940262b32b57e0e1ae4510d14c07ff8ae8f34
GET /wp-content/uploads/2022/04/SoftwareConnect_5_Stars_Small.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 9868
last-modified: Tue, 05 Apr 2022 14:37:35 GMT
etag: "624c542f-268c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/05/Elite_EXTRA_Devices_Banner.png
173.245.130.198 246 kB URL eliteextra.com/wp-content/uploads/2022/05/Elite_EXTRA_Devices_Banner.png
IP 173.245.130.198:0
ASN #11796 AIRSTREAMCOMM-NET
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Size 246 kB (245834 bytes)
Hash 7a37303a3a8d427be4e0d56332a865a1
98bbeeeb132f9eca8d17a2f9dac14bcc03c040b9
5b724341c247b83534b507c75469bd656f4f370ec467e5fab6264c7223e1b6ff
GET /wp-content/uploads/2022/05/Elite_EXTRA_Devices_Banner.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 245834
last-modified: Fri, 20 May 2022 16:19:42 GMT
etag: "6287bf9e-3c04a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/04/Customer_Reviews_Crests_Image_sm.png
173.245.130.198200 OK 18 kB URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/04/Customer_Reviews_Crests_Image_sm.png
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 013d0d3c91e8080984fa3c514d7e3f4b
8410d1ce894935fd316fc8b9ee237e450bd167d7
314353f809b26f06f589779c4a152467b66c4714762e38390fe28cfb278b485f
GET /wp-content/uploads/2022/04/Customer_Reviews_Crests_Image_sm.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 18436
last-modified: Fri, 08 Apr 2022 16:49:18 GMT
etag: "6250678e-4804"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2023/06/outsourcing-logistics-best-practices-for-success-400x250.jpg
173.245.130.198 13 kB URL eliteextra.com/wp-content/uploads/2023/06/outsourcing-logistics-best-practices-for-success-400x250.jpg
IP 173.245.130.198:0
ASN #11796 AIRSTREAMCOMM-NET
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ac5b1620cc8f97917e81a513f2e6ecaa
d7698bb6585308f746ca6a9659f2651c3c9e21d5
ae7c3258569c6441608261f394c53118efa9b8a154301f93cd804ad6c888322f
GET /wp-content/uploads/2023/06/outsourcing-logistics-best-practices-for-success-400x250.jpg HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 12626
last-modified: Thu, 01 Jun 2023 19:03:23 GMT
etag: "6478eb7b-3152"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2023/04/what-is-rma-400x250.jpg
173.245.130.198200 OK 6.8 kB URL GET HTTP/2 eliteextra.com/wp-content/uploads/2023/04/what-is-rma-400x250.jpg
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 691f35f3b81afa4cc28b1d03bb96efbc
13566b6c018b8626560008e393ee532b341016f6
64092c704d8be92045eee2b4e319e6a095693f9906ddf3613d45b2968809f28a
GET /wp-content/uploads/2023/04/what-is-rma-400x250.jpg HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 6844
last-modified: Mon, 17 Apr 2023 15:13:46 GMT
etag: "643d622a-1abc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2023/04/out-for-delivery-when-to-expect-your-package-400x250.jpg
173.245.130.198 8.4 kB URL eliteextra.com/wp-content/uploads/2023/04/out-for-delivery-when-to-expect-your-package-400x250.jpg
IP 173.245.130.198:0
ASN #11796 AIRSTREAMCOMM-NET
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 54c6326e3c38f274a9b84d5dd053d07f
44f63f9134b495756d011639e45fae968ff241c0
94ea10705df700f109a587db1c2e0d6da570d921b6c1f853700284b41b753fed
GET /wp-content/uploads/2023/04/out-for-delivery-when-to-expect-your-package-400x250.jpg HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 8370
last-modified: Fri, 14 Apr 2023 19:13:09 GMT
etag: "6439a5c5-20b2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/04/Contact-us-bubble-graphic-980x551.png
173.245.130.198 165 kB URL eliteextra.com/wp-content/uploads/2022/04/Contact-us-bubble-graphic-980x551.png
IP 173.245.130.198:0
ASN #11796 AIRSTREAMCOMM-NET
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Size 165 kB (164870 bytes)
Hash 783317b5c52bc6a943f9d627851d7812
55ce83f65a526089f00850c3b24b193647c663d5
463f7d7604043d9a6556ee5254551eefa42c7ba7aca0fc6d038a2fe89123b513
GET /wp-content/uploads/2022/04/Contact-us-bubble-graphic-980x551.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: image/webp
content-length: 164870
last-modified: Fri, 22 Apr 2022 15:09:24 GMT
etag: "6262c524-28406"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2
216.58.207.227 26 kB URL fonts.gstatic.com/s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 25456, version 1.0\012- data
Hash 4065d61a7ba7eb2602d2cbb54723e3de
7c6f159e263b1c1e88de91d6b745853fc7e46683
ce4714944663ab66446464e544e69808450bee9d0332659795eacea5751fc4f2
GET /s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25456
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 19:42:58 GMT
expires: Wed, 29 May 2024 19:42:58 GMT
cache-control: public, max-age=31536000
age: 551466
last-modified: Tue, 02 May 2023 15:15:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2
216.58.207.227200 OK 25 kB URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2
IP 216.58.207.227:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 24712, version 1.0\012- data
Hash 6426d7c7cf628698f2693c345e78f3ed
ba5c3dc9e202a5a6fa582ec90e94449e88c65d60
607eb42162512af73de673e5529e0f752efc846afd3cd75ca794af1ddc2f3d00
GET /s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 24712
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 May 2023 20:14:29 GMT
expires: Wed, 29 May 2024 20:14:29 GMT
cache-control: public, max-age=31536000
age: 549575
last-modified: Tue, 02 May 2023 15:15:47 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff
216.58.207.227 31 kB URL fonts.gstatic.com/s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff
IP 216.58.207.227:0
File type Web Open Font Format, TrueType, length 31292, version 1.1\012- data
Hash 76c7375392099b93fa48759263c8f6de
23fbe71952b68172db99e71b9b2cdf86ff59f4b3
8035ec9cc1f2f4b2277e10ae36ac529e58c06cf7688e29960b792ef492fa689c
GET /s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31292
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 05:04:48 GMT
expires: Fri, 31 May 2024 05:04:48 GMT
cache-control: public, max-age=31536000
age: 431356
last-modified: Tue, 02 May 2023 15:15:41 GMT
content-type: font/woff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
eliteextra.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.21.0
173.245.130.198200 OK 28 kB URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.21.0
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type gzip compressed data, from Unix\012- data
Hash 82ae66485b457eda975b678187e9ae60
3c5421b91b13ecd20a162b7346f00127a0a32b75
0b8e61bd49d436f9e49ed8ad72a0cffc6992d08201179e278d551b0f6c1d349f
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.21.0 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: application/javascript
last-modified: Fri, 28 Apr 2023 04:33:39 GMT
etag: W/"644b4ca3-2466"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2023/01/2welcome_to_elite_extra_thumbnail-1200x675.jpg
173.245.130.198 64 kB URL eliteextra.com/wp-content/uploads/2023/01/2welcome_to_elite_extra_thumbnail-1200x675.jpg
IP 173.245.130.198:0
ASN #11796 AIRSTREAMCOMM-NET
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x675, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 3455a70ba13d1844d8ddc36c16576c9c
2a18e740c71b154dccbb3f7530c4cb195c719cff
6f07cd124b4f6268d8c84c744932262ae750358ce90093798843ed5bd874b23c
GET /wp-content/uploads/2023/01/2welcome_to_elite_extra_thumbnail-1200x675.jpg HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: image/webp
content-length: 63966
last-modified: Fri, 06 Jan 2023 23:07:54 GMT
etag: "63b8a9ca-f9de"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff
173.245.130.198200 OK 92 kB URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type Web Open Font Format, TrueType, length 92476, version 2.4\012- data
Hash 7d04c782e3ec7b655cb15e50245c4c49
6ac6c03ebcebc29f36f09525ae9564f12240776d
88795f28bb66a45f9c32245dd21d6319ed5d26a45bf5afa31d91a0f83ee855f7
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/wp-content/themes/Divi/style-static.min.css?ver=4.21.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: application/font-woff
content-length: 92476
last-modified: Fri, 28 Apr 2023 04:33:39 GMT
etag: "644b4ca3-1693c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
forms.hsforms.com/embed/v3/form/22644969/7bbc8f9c-9c64-4e97-8b09-69dad2f29f48/json?hs_static_app=forms-embed&hs_static_app_version=1.3243&X-HubSpot-Static-App-Info=forms-embed-1.3243
104.17.211.243 3.1 kB URL forms.hsforms.com/embed/v3/form/22644969/7bbc8f9c-9c64-4e97-8b09-69dad2f29f48/json?hs_static_app=forms-embed&hs_static_app_version=1.3243&X-HubSpot-Static-App-Info=forms-embed-1.3243
IP 104.17.211.243:0
File type JSON data\012- , ASCII text, with very long lines (13336), with no line terminators
Hash a0c989a355b6910c0fc9977566423c6d
9c10ef2987fefd15646b5b56b63afc9706f97b0f
77e3934a0566233c64bb51d6ef51e61ebfd8e01245d52e3aeab2e194a22af778
GET /embed/v3/form/22644969/7bbc8f9c-9c64-4e97-8b09-69dad2f29f48/json?hs_static_app=forms-embed&hs_static_app_version=1.3243&X-HubSpot-Static-App-Info=forms-embed-1.3243 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 04:54:05 GMT
Content-Type: application/json;charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Trace: 2BCECFDAD51E387AB16104BDBD20424D449994F8DC000000000000000000
X-Origin-Hublet: na1
Vary: origin
X-HubSpot-Correlation-Id: 6e4c0ed0-56c3-4e2b-ab20-d9f1a3c88734
Access-Control-Allow-Origin: https://eliteextra.com
Access-Control-Allow-Methods: OPTIONS, GET
Access-Control-Allow-Headers: *
Access-Control-Allow-Credentials: false
Access-Control-Max-Age: 180
Access-Control-Expose-Headers: X-Origin-Hublet
Cache-Control: max-age=0, no-cache, no-store
X-Robots-Tag: none
x-envoy-upstream-service-time: 17
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-759c64d45c-c6p2z
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 7a04376e-be03-4921-8fe8-28ad88a442f4
CF-Cache-Status: DYNAMIC
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Server: cloudflare
CF-RAY: 7d2e0e295849b4ed-OSL
Content-Encoding: br
alt-svc: h3=":443"; ma=86400
js.hsforms.net/forms/embed/v2.js
104.16.186.65200 OK 247 kB URL GET HTTP/3 js.hsforms.net/forms/embed/v2.js
IP 104.16.186.65:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint16:1A:D5:A1:BC:62:B5:09:33:E2:A8:32:88:88:60:DE:BD:00:B5:F3
ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 247 kB (247255 bytes)
Hash a5301b6f08ed64649a3390f949aa4175
32c03d85e0ae4e4152ec18c1f4b9f4074cc84a59
6068122af5aaf3871c283132bb19ddafc391f4cb78126882ca18a7c5f4c03611
GET /forms/embed/v2.js HTTP/1.1
Host: js.hsforms.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Tue, 23 May 2023 10:19:29 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: l7bHRIBQ6TE8MnbN5jsE1ccMSwu0_dqN
etag: W/"a5301b6f08ed64649a3390f949aa4175"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 73c5607bdb5db0d651e25c848846d554.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: KrMk-MZEBhx0DuoOoEVMcqoQCNfZhwLuyv1WrR7Ls14lYCQKNa1t8Q==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=forms-embed/static-1.3243/bundles/project-v2.js&cfRay=7cbca014de4fabda-IAD
cache-control: s-maxage=600, max-age=300
x-hs-target-asset: forms-embed/static-1.3243/bundles/project-v2.js
access-control-allow-origin: *
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-57ff77fcd-nnm64
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: e785ba16-43a2-424a-b279-70d74c967891
cache-tag: staticjsapp-forms-embed-v2-web-prod,staticjsapp-prod
cf-cache-status: HIT
age: 0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P3g1F6jG8Tws2XS4vXP%2Bd%2FqwTocIyZ9Si2J0kA4EODRWnlh%2F0tkAvDK%2BdgfVsOBeOz4iPx8VkK5WGzFfLW9CFPDiNzkWS5D3JdjiOO4ClBwc1%2BeytuMPlx6VyIeDZ1Y2"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7d2e0e292e90fab4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
eliteextra.com/wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=6.10
173.245.130.198200 OK 21 kB URL GET HTTP/2 eliteextra.com/wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=6.10
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type ASCII text, with very long lines (57249)
Hash b714f42f98ac85d63a4fa95c8f6307a7
81fa06eebe2c8a0fc5984602e6e8b7f2b9f35181
73dc9d5456426eda4ab7e977d625736c6f8d6585b32bc5d7fa37ce2d33dd37c0
GET /wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=6.10 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: application/javascript
last-modified: Thu, 25 May 2023 04:30:04 GMT
etag: W/"646ee44c-df92"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.23.28/css/player.css
151.101.246.109200 OK 21 kB URL GET HTTP/2 f.vimeocdn.com/p/4.23.28/css/player.css
IP 151.101.246.109:443
Requested by https://player.vimeo.com/video/783404154?dnt=1&app_id=122963
Certificate IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F
ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT
File type ASCII text, with very long lines (65494)
Hash 1f1c1626ba04385953bc763b6d9b75fa
241f3dcd0fbddab8d340a20eded3039b16045c0f
deb9241df937a3babc723df492b82a7be017252b5395360b8c1d905cc28685a7
GET /p/4.23.28/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 06 Jun 2023 04:54:05 GMT
age: 382484
x-served-by: cache-iad-kiad7000054-IAD, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 46, 4377
x-timer: S1686027245.315989,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 21433
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.23.28/js/player.module.js
151.101.246.109200 OK 123 kB URL GET HTTP/2 f.vimeocdn.com/p/4.23.28/js/player.module.js
IP 151.101.246.109:443
Requested by https://player.vimeo.com/video/783404154?dnt=1&app_id=122963
Certificate IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F
ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT
File type Unicode text, UTF-8 text, with very long lines (65444)
Size 123 kB (122957 bytes)
Hash d26e3d4b73b45f1b8faa992cfb65f368
13f74a0def7803c8cd5cd93615aa716976722a8a
cd5e850d53ff90bebe198e5a6be51ecfbcb380104c50404ef34d2958e1893f0b
GET /p/4.23.28/js/player.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 06 Jun 2023 04:54:05 GMT
age: 382484
x-served-by: cache-iad-kiad7000113-IAD, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 46, 3788
x-timer: S1686027245.339149,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 122957
X-Firefox-Spdy: h2
i.vimeocdn.com/video/1582276959-4f87e93cefeac3aee6c9ffb97035a10141c5363ba5d49d5ec2b6be08dcf1297c-d.jpg?mw=80&q=85
151.101.246.109200 OK 1.7 kB URL GET HTTP/2 i.vimeocdn.com/video/1582276959-4f87e93cefeac3aee6c9ffb97035a10141c5363ba5d49d5ec2b6be08dcf1297c-d.jpg?mw=80&q=85
IP 151.101.246.109:443
Requested by https://player.vimeo.com/video/783404154?dnt=1&app_id=122963
Certificate IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F
ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data
Hash 619fe01b93a090b953706ed11b97de79
862683fc141c876041b65e00909deff151fcf81e
380078c5496479627e791910477eda71f97f2b37a9fd0e607423265349cd1b5f
GET /video/1582276959-4f87e93cefeac3aee6c9ffb97035a10141c5363ba5d49d5ec2b6be08dcf1297c-d.jpg?mw=80&q=85 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
etag: 619fe01b93a090b953706ed11b97de79
x-viewmaster-lossless-format: lossy
viewmaster-server: viewmaster-us-central1-mqjc
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 06 Jun 2023 04:54:05 GMT
age: 1167383
x-served-by: cache-dfw-kdfw8210138-DFW, cache-hel1410025-HEL
x-cache: miss, HIT, MISS
x-cache-hits: 132, 0
x-timer: S1686027245.340676,VS0,VE126
content-length: 1694
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.23.28/js/vendor.module.js
151.101.246.109200 OK 96 kB URL GET HTTP/2 f.vimeocdn.com/p/4.23.28/js/vendor.module.js
IP 151.101.246.109:443
Requested by https://player.vimeo.com/video/783404154?dnt=1&app_id=122963
Certificate IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F
ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT
File type ASCII text, with very long lines (65456)
Hash 729ac031eec1128b61864c241f995f9d
c9c6b8bb97e79bef90539f0fbf45e453f55f2484
4ed3659bb3b52dd3f04ee2b7dcdbc698180a08884ac2bccc692f447c5124a386
GET /p/4.23.28/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 06 Jun 2023 04:54:05 GMT
age: 382484
x-served-by: cache-iad-kjyo7100158-IAD, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 45, 4121
x-timer: S1686027245.472033,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 96482
X-Firefox-Spdy: h2
eliteextra.com/wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-solid-900.woff2
173.245.130.198200 OK 80 kB URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-solid-900.woff2
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type Web Open Font Format (Version 2), TrueType, length 80300, version 331.-31392\012- data
Hash 8e1ed89b6ccb8ce41faf5cb672677105
9b592048b9062b00f0b2dd782d70a95b7dc69b83
6b555920e358f8a25a422988b448615c33bcccb4f932e8331cebfc8e2a737fc7
GET /wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-solid-900.woff2 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/wp-content/themes/Divi/style-static.min.css?ver=4.21.0
Cookie: _pk_id.95407.f05f=f81fa9d271f0ccb0.1686027245.1.1686027245.1686027245.; _pk_ses.95407.f05f=1; _omappvp=h0qCPvIKGcjbM77maNNdFMkWLovqrCWLcGVt7qMn8zFLMQiJSG5yXkTdUGFPzBmqnh1f9M7OuKEpTNJZZ4SK5dBf8Db9C0zV; _omappvs=1686027245079
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: application/octet-stream
content-length: 80300
last-modified: Fri, 28 Apr 2023 04:33:39 GMT
etag: "644b4ca3-139ac"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
eliteextra.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff
173.245.130.198200 OK 92 kB URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type Web Open Font Format, TrueType, length 92476, version 2.4\012- data
Hash 7d04c782e3ec7b655cb15e50245c4c49
6ac6c03ebcebc29f36f09525ae9564f12240776d
88795f28bb66a45f9c32245dd21d6319ed5d26a45bf5afa31d91a0f83ee855f7
GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/wp-content/themes/Divi/style-static.min.css?ver=4.21.0
Cookie: _pk_id.95407.f05f=f81fa9d271f0ccb0.1686027245.1.1686027245.1686027245.; _pk_ses.95407.f05f=1; _omappvp=h0qCPvIKGcjbM77maNNdFMkWLovqrCWLcGVt7qMn8zFLMQiJSG5yXkTdUGFPzBmqnh1f9M7OuKEpTNJZZ4SK5dBf8Db9C0zV; _omappvs=1686027245079
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: application/font-woff
content-length: 92476
last-modified: Fri, 28 Apr 2023 04:33:39 GMT
etag: "644b4ca3-1693c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2
stats.wpmucdn.com/analytics.js
194.242.11.186200 OK 32 kB URL GET HTTP/2 stats.wpmucdn.com/analytics.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjectstats.wpmucdn.com
FingerprintD6:A0:81:63:2A:60:B0:96:B4:FD:0A:A1:12:2E:D9:B9:95:B0:CB:F1
ValidityFri, 12 May 2023 01:08:29 GMT - Thu, 10 Aug 2023 01:08:28 GMT
File type ASCII text, with very long lines (1925)
Hash 434f3d0418b4425917954bf073f4d262
1119ad5f14fe6a7ce2cc7bdaea72245d5e05c71a
0995371a359a4a701d66f8b183de6144de9a042e5bac84b6f920968f51567742
GET /analytics.js HTTP/1.1
Host: stats.wpmucdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 1121147
cdn-uid: 778bbc1f-fc99-4e43-843d-a54ddaa69624
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
cache-control: public, max-age=86400
etag: W/"620551e5-1131c"
last-modified: Thu, 10 Feb 2022 17:56:53 GMT
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 12/30/2022 23:33:58
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 5a1455decf97da03d2625dc9348748fa
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 84647b2d91394bd1187fa265ffe57dff
da2bf209975689eba98dc3879a3d3806a0d8e94f
482cfbaa842d121986e2cdae6933fc6453c34b7672b5e57db76209ee633bd08e
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 06 Jun 2023 04:54:05 GMT
Last-Modified: Tue, 06 Jun 2023 04:21:42 GMT
Server: ECAcc (nya/7946)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: P9fH8bhhABtWauUL40j8e9CMW-JjwD9uBlcDhqfqCd7mln6Bz4CgJQ==
Age: 1944
f.vimeocdn.com/p/4.23.28/css/player.css
151.101.246.109200 OK 21 kB URL GET HTTP/2 f.vimeocdn.com/p/4.23.28/css/player.css
IP 151.101.246.109:443
Requested by https://player.vimeo.com/video/783404154?dnt=1&app_id=122963
Certificate IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F
ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT
File type ASCII text, with very long lines (65494)
Hash 1f1c1626ba04385953bc763b6d9b75fa
241f3dcd0fbddab8d340a20eded3039b16045c0f
deb9241df937a3babc723df492b82a7be017252b5395360b8c1d905cc28685a7
GET /p/4.23.28/css/player.css HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 06 Jun 2023 04:54:06 GMT
age: 382485
x-served-by: cache-iad-kiad7000054-IAD, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 46, 4378
x-timer: S1686027246.117021,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 21433
X-Firefox-Spdy: h2
a.omappapi.com/app/js/1.8f37474e.min.js
194.242.11.186200 OK 4.1 kB URL GET HTTP/2 a.omappapi.com/app/js/1.8f37474e.min.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type ASCII text, with very long lines (8953)
Hash c31dbe57c383ab8a0ef7712d9561ad7e
ecfb71a6d8c1d4afd3038f73f6940b9d1489a46e
329c83d2ba414969cd627bcf5b53ff518cafcb1862e7114218498b8691e839de
GET /app/js/1.8f37474e.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"647e6abf-2330"
last-modified: Mon, 05 Jun 2023 23:07:43 GMT
cdn-storagebalancer: SE-344
cdn-storageserver: DE-571
cdn-requestpullsuccess: True
cdn-fileserver: 588
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 23:07:43
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 7a81e48421d760067f85e40adb50e98d
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
a.omappapi.com/app/js/7.46bf2ce0.min.js
194.242.11.186200 OK 124 kB URL GET HTTP/2 a.omappapi.com/app/js/7.46bf2ce0.min.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type ASCII text, with very long lines (2894)
Size 124 kB (124372 bytes)
Hash fd1141f4f9680689b6e4a2e52e1ebdc4
b48c76fcbe81c15159e56b888e183cc43b073e40
d5d62f06936d9ec891eb7fc37b88e98e3eda0b386684fafccc9c5746e6fae7fc
GET /app/js/7.46bf2ce0.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"646b8488-b85"
last-modified: Mon, 22 May 2023 15:04:40 GMT
cdn-storageserver: SE-344
cdn-requestpullsuccess: True
cdn-fileserver: 385
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 18:44:38
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1369348a00c20733d5d84a4c812b86d4
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1
104.17.211.243 35 B URL forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1
IP 104.17.211.243:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: image/gif
content-length: 35
x-trace: 2B975E6BC1A6B2D36AFD72DEB945908A74A30E3191000000000000000000
cache-control: max-age=0, no-cache, no-store
vary: origin
x-hubspot-correlation-id: 4936d0b3-cc8c-4864-90ce-555c3a364595
access-control-allow-credentials: false
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-759c64d45c-cxrpn
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: e01ef90e-9389-4dae-9ac8-0b1dbb80939f
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7d2e0e2fe801b4fa-OSL
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash e658f45faae0edd26f5908c922167f73
33e4e65ccf9cb9b15a7a9f5fd0083f1cebfa7064
5cc8bb25c78320b6cafdc4a6a017081a2c953cb86e1a1dc45c8f8811798adbc5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 04:54:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
a.omappapi.com/app/js/16.9011206e.min.js
194.242.11.186 567 B URL a.omappapi.com/app/js/16.9011206e.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type ASCII text, with very long lines (794)
Hash a9eaedb61de10e73ade2d372f97917bf
aa4bc449f59b9f698b13d89759acd0e1edb79b16
bf628c81f952a8cb4713f04b9b2a78e4786e7c99addcfb3ec9599d3da89df89a
GET /app/js/16.9011206e.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"646b848a-34f"
last-modified: Mon, 22 May 2023 15:04:42 GMT
cdn-storageserver: SE-344
cdn-requestpullsuccess: True
cdn-fileserver: 584
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 18:44:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: a25f9f161a3abca2e782f820ddbaa071
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
stats1.wpmudev.com/track/?action_name=Elite%20EXTRA%20%7C%20Last%20Mile%20Software%20Solutions&idsite=95407&rec=1&r=149159&h=4&m=54&s=5&url=https%3A%2F%2Feliteextra.com%2F%3Fe%3Dweslie.loomis%40marten.com%26c%3Dpmails&_id=f81fa9d271f0ccb0&_idts=1686027245&_idvc=1&_idn=1&_refts=0&_viewts=1686027245&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024>_ms=1487&pv_id=BRpxPA
3.13.103.82200 OK 43 B URL GET HTTP/2 stats1.wpmudev.com/track/?action_name=Elite%20EXTRA%20%7C%20Last%20Mile%20Software%20Solutions&idsite=95407&rec=1&r=149159&h=4&m=54&s=5&url=https%3A%2F%2Feliteextra.com%2F%3Fe%3Dweslie.loomis%40marten.com%26c%3Dpmails&_id=f81fa9d271f0ccb0&_idts=1686027245&_idvc=1&_idn=1&_refts=0&_viewts=1686027245&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024>_ms=1487&pv_id=BRpxPA
IP 3.13.103.82:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerAmazon
Subjectstats1.wpmudev.com
Fingerprint41:CF:24:4A:1D:14:F9:34:CC:FD:CA:17:CF:C7:EB:DD:94:92:92:56
ValidityFri, 17 Mar 2023 00:00:00 GMT - Sun, 14 Apr 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87
GET /track/?action_name=Elite%20EXTRA%20%7C%20Last%20Mile%20Software%20Solutions&idsite=95407&rec=1&r=149159&h=4&m=54&s=5&url=https%3A%2F%2Feliteextra.com%2F%3Fe%3Dweslie.loomis%40marten.com%26c%3Dpmails&_id=f81fa9d271f0ccb0&_idts=1686027245&_idvc=1&_idn=1&_refts=0&_viewts=1686027245&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024>_ms=1487&pv_id=BRpxPA HTTP/1.1
Host: stats1.wpmudev.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: image/gif
content-length: 43
server: nginx
cache-control: no-store
content-encoding: none
X-Firefox-Spdy: h2
a.omappapi.com/app/js/21.bece25d8.min.js
194.242.11.186 1.3 kB URL a.omappapi.com/app/js/21.bece25d8.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type ASCII text, with very long lines (3159)
Hash 36484c0e40cd281c9d29fca993f499eb
24e74976f7132e89fbf0a3e132308c3424dc3759
6a65e9178c10b160327725b3b10f6ba63a2fbf4f33bcfd566d75987175fa98d1
GET /app/js/21.bece25d8.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"646b8494-c8a"
last-modified: Mon, 22 May 2023 15:04:52 GMT
cdn-storageserver: SE-318
cdn-requestpullsuccess: True
cdn-fileserver: 385
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 18:44:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: a166f45fdf1072eafc3d0641ee808134
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Open%20Sans:wght@400;500;700&display=swap
142.250.74.106200 OK 1.2 kB URL GET HTTP/2 fonts.googleapis.com/css2?family=Open%20Sans:wght@400;500;700&display=swap
IP 142.250.74.106:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type gzip compressed data, max compression\012- data
Hash cc9b4cbae6bbcb51588d302247d3ce55
75123a5ccfa0fb3436de9f6d97a6fcd145134a28
9c6be6a2a5b7d0a30d24e0c09894af1ced56b3d1284739fd58412e6d8f7ff465
GET /css2?family=Open%20Sans:wght@400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Jun 2023 04:54:06 GMT
date: Tue, 06 Jun 2023 04:54:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
f.vimeocdn.com/p/4.23.28/js/vendor.module.js
151.101.246.109200 OK 96 kB URL GET HTTP/2 f.vimeocdn.com/p/4.23.28/js/vendor.module.js
IP 151.101.246.109:443
Requested by https://player.vimeo.com/video/783404154?dnt=1&app_id=122963
Certificate IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F
ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT
File type ASCII text, with very long lines (65456)
Hash 729ac031eec1128b61864c241f995f9d
c9c6b8bb97e79bef90539f0fbf45e453f55f2484
4ed3659bb3b52dd3f04ee2b7dcdbc698180a08884ac2bccc692f447c5124a386
GET /p/4.23.28/js/vendor.module.js HTTP/1.1
Host: f.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://player.vimeo.com
DNT: 1
Connection: keep-alive
Referer: https://f.vimeocdn.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
content-encoding: br
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 06 Jun 2023 04:54:06 GMT
age: 382485
x-served-by: cache-iad-kjyo7100158-IAD, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 45, 4123
x-timer: S1686027246.373087,VS0,VE0
vary: Accept-Encoding,x-http-method-override
cache-control: max-age=1209600
access-control-allow-origin: *
content-length: 96482
X-Firefox-Spdy: h2
a.omappapi.com/users/044e7e4e791f/images/a8b22d80b2d31655968873-page0001.jpg
194.242.11.186200 OK 20 kB URL GET HTTP/2 a.omappapi.com/users/044e7e4e791f/images/a8b22d80b2d31655968873-page0001.jpg
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x338, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 14a303069601633934c72cfe720b3a97
8a0d3fd69ef88266db9b277444a37bb60c00e66d
e3e72823513ff9495233f7f962d19a1b0063b14e3b190859495810f79e0eae57
GET /users/044e7e4e791f/images/a8b22d80b2d31655968873-page0001.jpg HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: image/webp
content-length: 20224
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: "646818e3-4f00"
last-modified: Sat, 20 May 2023 00:48:35 GMT
cdn-storageserver: SE-318
cdn-requestpullsuccess: True
cdn-fileserver: 385
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/06/2023 04:54:06
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4084b87b2e6527ad007169b0c31c8788
cdn-cache: MISS
accept-ranges: bytes
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 11:49:35 GMT
expires: Fri, 31 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 407071
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 11:49:35 GMT
expires: Fri, 31 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 407071
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 11:49:35 GMT
expires: Fri, 31 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 407071
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 11:49:35 GMT
expires: Fri, 31 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 407071
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
js.hs-banner.com/v2/22644969/banner.js
104.18.25.196200 OK 64 kB URL GET HTTP/2 js.hs-banner.com/v2/22644969/banner.js
IP 104.18.25.196:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2C:9C:DC:70:87:29:18:51:70:06:6E:2F:4B:4D:E0:23:1F:30:84:18
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (65041)
Hash 7c646340ca8b2e29baa15a59c527b9bf
f3a2d7aa16b787f69daa2bf0b1f9c9464c0c7d7e
03437fff07fca0ab44c853c3997317dc68b26b24c488fd5fab6e88541d77befb
GET /v2/22644969/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: jGuyScVyt2C/tyuOxVtUWO6iTRd2fwE3Ff97mTjirDkNlG98CsrhuydaD+t9cpVpru6D4B0AY5U=
x-amz-request-id: XWC2R7TWZ94N27EM
last-modified: Mon, 05 Jun 2023 21:10:36 GMT
etag: W/"7c646340ca8b2e29baa15a59c527b9bf"
x-amz-server-side-encryption: AES256
cache-control: max-age=300,public
x-amz-version-id: Qys7E0LEcG9OARU1TBqaUxoxg7DbbwEq
access-control-allow-origin: https://eliteextra.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Tue, 06 Jun 2023 04:59:05 GMT
x-envoy-upstream-service-time: 62
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-7dbb6c8f49-f4w7q
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 6571835e-e3d5-4d86-bd8f-07e118aaf4c3
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7d2e0e2cbba9b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 11:49:35 GMT
expires: Fri, 31 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 407071
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 11:49:35 GMT
expires: Fri, 31 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 407071
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
eliteextra.com/wp-json/cleantalk-antispam/v1/apbct_get_pixel_url
173.245.130.198200 OK 31 kB URL POST HTTP/2 eliteextra.com/wp-json/cleantalk-antispam/v1/apbct_get_pixel_url
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type gzip compressed data, from Unix\012- data
Hash 194501d0eaf686a9331b77bdddece68c
49cc3c11ba78e94f8f401133e1918c2cc866ad46
7050688e6d2bb38ff6502deffb1211d6941fec52706f35834365f2243b64926b
POST /wp-json/cleantalk-antispam/v1/apbct_get_pixel_url HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-WP-Nonce: 9537a8cbfa
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: application/json; charset=UTF-8
x-robots-tag: noindex
link: <https://eliteextra.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type, X-OptinMonster-ApiKey
x-wp-nonce: 9537a8cbfa
allow: POST
access-control-allow-origin: https://eliteextra.com
access-control-allow-methods: OPTIONS, GET, POST, PUT, PATCH, DELETE
access-control-allow-credentials: true
vary: Origin
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 May 2023 00:25:28 GMT
expires: Thu, 30 May 2024 00:25:28 GMT
cache-control: public, max-age=31536000
age: 534518
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 11:49:35 GMT
expires: Fri, 31 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 407071
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.227200 OK 31 kB URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.227:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 May 2023 00:25:28 GMT
expires: Thu, 30 May 2024 00:25:28 GMT
cache-control: public, max-age=31536000
age: 534518
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
i.vimeocdn.com/video/1582276959-4f87e93cefeac3aee6c9ffb97035a10141c5363ba5d49d5ec2b6be08dcf1297c-d?mw=900&mh=507
151.101.246.109 51 kB URL i.vimeocdn.com/video/1582276959-4f87e93cefeac3aee6c9ffb97035a10141c5363ba5d49d5ec2b6be08dcf1297c-d?mw=900&mh=507
IP 151.101.246.109:0
Certificate IssuerGlobalSign nv-sa
Subject*.vimeocdn.com
FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F
ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT
File type ISO Media, AVIF Image\012- data
Hash 512fc722decce56e178eaa57a1c8cff0
a53bf72cb867c313cfdfb54636cce6174634975d
14bd0330d004a50b9e9e9554a11ed7002fd356bdbebc1ffe5a57731ae81092c6
GET /video/1582276959-4f87e93cefeac3aee6c9ffb97035a10141c5363ba5d49d5ec2b6be08dcf1297c-d?mw=900&mh=507 HTTP/1.1
Host: i.vimeocdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://player.vimeo.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: image/avif
etag: 512fc722decce56e178eaa57a1c8cff0
x-viewmaster-lossless-format: automatic
viewmaster-server: viewmaster-us-east1-20c4
cache-control: public, max-age=2592000
via: vvarnish, 1.1 varnish, 1.1 varnish
x-backend-server: varnish
access-control-allow-origin: *
access-control-expose-headers: X-Viewmaster-Status
access-control-max-age: 86400
accept-ranges: bytes
date: Tue, 06 Jun 2023 04:54:06 GMT
age: 1921712
x-served-by: cache-dfw-kdfw8210063-DFW, cache-hel1410025-HEL
x-cache: miss, HIT, MISS
x-cache-hits: 30, 0
x-timer: S1686027247.587709,VS0,VE127
vary: Accept
content-length: 50630
X-Firefox-Spdy: h2
a.omappapi.com/app/js/34.a4153577.min.js
194.242.11.186200 OK 3.0 kB URL GET HTTP/2 a.omappapi.com/app/js/34.a4153577.min.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type Unicode text, UTF-8 text, with very long lines (7857)
Hash c73e74f1f85dbe25c82d8ce966ef58a1
f00ac8ccc2f8faee1654255c2aefd2e8db25e36e
6e1d0902f6625b2354dcee9e39853e1eba710efb962eff32d6fc854740c6a522
GET /app/js/34.a4153577.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"646b8488-2071"
last-modified: Mon, 22 May 2023 15:04:40 GMT
cdn-storageserver: SE-344
cdn-requestpullsuccess: True
cdn-fileserver: 584
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 18:44:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 6cc543671bd66442bf39b79b68d3cb82
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
eliteextra.com/wp-content/uploads/2022/02/Small-Logo.png
173.245.130.198200 OK 14 kB URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/02/Small-Logo.png
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash ab04a03e86fb4bbe7b223de1d77179af
007fe9974af8ba59ec0aae61851c97d8bf1aad39
fa19cfe1129696e5dd51f76da6cb289d45372bb345faf22b2d5431bb74741153
GET /wp-content/uploads/2022/02/Small-Logo.png HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Cookie: _pk_id.95407.f05f=f81fa9d271f0ccb0.1686027245.1.1686027245.1686027245.; _pk_ses.95407.f05f=1; _omappvp=h0qCPvIKGcjbM77maNNdFMkWLovqrCWLcGVt7qMn8zFLMQiJSG5yXkTdUGFPzBmqnh1f9M7OuKEpTNJZZ4SK5dBf8Db9C0zV; _omappvs=1686027245079; _ga_XHGWF8PBVN=GS1.1.1686027245.1.0.1686027245.60.0.0; _ga=GA1.1.1188448344.1686027245
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: image/webp
content-length: 14520
last-modified: Tue, 01 Mar 2022 21:50:12 GMT
etag: "621e9514-38b8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
vary: Accept
accept-ranges: bytes
X-Firefox-Spdy: h2
forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=22644969&utk=
104.17.106.199200 OK 16 kB URL GET HTTP/2 forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=22644969&utk=
IP 104.17.106.199:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA5:D1:D2:E1:EA:8D:D7:F7:79:F2:ED:55:66:75:F5:52:07:A7:F4:B3
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash f582e2d85c80484b8b176e1fcfcc88d0
dc95db41282a97386bb9f4b3056e0ca25defe951
876f752496964dfda20d767b7bd2db64e47ffbf56e2b20a291bf6395902980e7
GET /collected-forms/v1/config/json?portalId=22644969&utk= HTTP/1.1
Host: forms.hscollectedforms.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: application/json;charset=utf-8
vary: Accept-Encoding
x-hubspot-correlation-id: 426d4488-8919-468b-8be4-3032f2d223d4
cache-control: max-age=0
access-control-allow-origin: https://eliteextra.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: *
access-control-max-age: 180
x-robots-tag: none
x-envoy-upstream-service-time: 8
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-57ff77fcd-x5fmx
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: a5c8aba4-5ebb-40b3-b9a3-98b99f8e7a3f
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7d2e0e2e7c04b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-XHGWF8PBVN&cid=1188448344.1686027245>m=45je35v0&aip=1&z=1654791884
216.58.211.3 42 B URL www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-XHGWF8PBVN&cid=1188448344.1686027245>m=45je35v0&aip=1&z=1654791884
IP 216.58.211.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-XHGWF8PBVN&cid=1188448344.1686027245>m=45je35v0&aip=1&z=1654791884 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Tue, 06 Jun 2023 04:54:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
a.omappapi.com/app/js/10.1224bb49.min.js
194.242.11.186200 OK 6.8 kB URL GET HTTP/2 a.omappapi.com/app/js/10.1224bb49.min.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type ASCII text, with very long lines (20130)
Hash b55bf398edbae4634409eb26a56a991f
0b689037c37bec91d231490c3b32102d8db33778
2394e70e9e554b5a405d343d73242bb59351f5039ecf19bf5993e592580ed729
GET /app/js/10.1224bb49.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"646b8488-4edc"
last-modified: Mon, 22 May 2023 15:04:40 GMT
cdn-storageserver: SE-318
cdn-requestpullsuccess: True
cdn-fileserver: 385
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 18:44:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: e785545b40c0a5a6503b370775e56733
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 472 B IP 142.250.74.131:0
Hash 35986eefb8831c2da0701e8c3a895c44
0773dc9f6f5c4aaeb511f4ec826aa628b47a6dc9
0c2cd3045859b0fc9a00eee2a486f946d11a84d4045cf8bfb46d3b5455b15dc8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Jun 2023 04:54:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
moderate9-v4.cleantalk.org/pixel/7855574afcebefe3196fc60ec2efd1a3.gif
51.81.55.251 43 B URL moderate9-v4.cleantalk.org/pixel/7855574afcebefe3196fc60ec2efd1a3.gif
IP 51.81.55.251:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda
GET /pixel/7855574afcebefe3196fc60ec2efd1a3.gif HTTP/1.1
Host: moderate9-v4.cleantalk.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 06 Jun 2023 04:54:06 GMT
Content-Type: image/gif
Content-Length: 43
Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT
Connection: keep-alive
X-XSS-Protection: 1; mode=block
Strict-Transport-Security: max-age=31536000; includeSubdomains; preload
X-Frame-Options: SAMEORIGIN
embed.tawk.to/_s/v4/app/64795e77f7f/languages/en.js
172.67.38.66 6.3 kB URL embed.tawk.to/_s/v4/app/64795e77f7f/languages/en.js
IP 172.67.38.66:0
File type ASCII text, with CRLF, LF line terminators
Hash 585ba00b2c167b90c210161454f843b5
89ee8372cc6d5eb307cf5840b70d8f3dab3c57f2
e924ffe8bcc65483510a22a7286bd6d4d204e72ffe5927eec50158f7a7be50c0
GET /_s/v4/app/64795e77f7f/languages/en.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:08 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"585ba00b2c167b90c210161454f843b5"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 348504
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e3ceaacb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b383d.js
172.67.38.66200 OK 49 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b383d.js
IP 172.67.38.66:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (689), with no line terminators
Hash a6432972b93f7d0476635e7ac224d718
982170daa2061994afe4c414adfbf32596ab3cca
72deb01333692d6942fe77383825537b0dac6653af9b50312a53fdf3b31efa09
GET /_s/v4/app/64795e77f7f/js/twk-chunk-2d0b383d.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:08 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"a6432972b93f7d0476635e7ac224d718"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 348503
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e3d2af0b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 48 kB URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data
Hash 31a8297826cdcea344698ff952694a7f
4fa1ee4c471d1c05e9141855eec5ee09b898d594
7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5
GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48412
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Jun 2023 11:49:35 GMT
expires: Fri, 31 May 2024 11:49:35 GMT
cache-control: public, max-age=31536000
age: 407080
last-modified: Tue, 02 May 2023 15:08:53 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-main.js
172.67.38.66200 OK 14 kB URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-main.js
IP 172.67.38.66:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash da5bb1dc647470204df0e49f5afac2de
f5cbf596ca5e4fe208e4c55af6e45b71f9febbe8
705186becc9e0a306a6b4867ae2768aa9dd3b8c12393d9f9c52029e9a6fcf31c
GET /_s/v4/app/64795e77f7f/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:07 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 73375
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e35b8130b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/css/min-widget.css
172.67.38.66200 OK 30 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/css/min-widget.css
IP 172.67.38.66:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (24760), with no line terminators
Hash b0b0abe33d92f7a199e2e71fd516ff27
bf6af864e9e26100ae865904a5f5e9c270a63eb5
51e73fb66e2b18f262f86ba2880f9369b6a66d7411a3c8daa1146aaafc2690e6
GET /_s/v4/app/64795e77f7f/css/min-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:08 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=24840
access-control-allow-origin: *
etag: W/"3d22e9f29d90d6fd0e66aebbeadc0ca2"
last-modified: Fri, 02 Jun 2023 03:15:38 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 348503
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e3e0b94b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
va.tawk.to/v1/session/start
172.67.38.66200 OK 911 B URL POST HTTP/3 va.tawk.to/v1/session/start
IP 172.67.38.66:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Hash b3e4a82e5f2834a976481c34620e5845
282223833a9ed0aceec56eabf81f4472a2957aaf
5e3c09a7aa37a7a2d283f36555e3d4446f602b113d0ceeab16f4da04a7ecfb25
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://eliteextra.com/
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:07 GMT
x-served-by: visitor-application-preemptive-3fxt
access-control-allow-origin: https://eliteextra.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e391f93fabc-OSL
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/css/message-preview.css
172.67.38.66200 OK 7.6 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/css/message-preview.css
IP 172.67.38.66:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (38236), with no line terminators
Hash 525e595977273d758b1f8b4b5b45eaff
82823b09d4b64e4e0ead74180c3021937701edfc
788855d7239de368ab83b2a1d743be8504c68659912d8f9aaf67a5a6aac463ed
GET /_s/v4/app/64795e77f7f/css/message-preview.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:08 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=38369
access-control-allow-origin: *
etag: W/"4ad3afbed0c84d07cd50f865330d4a82"
last-modified: Fri, 02 Jun 2023 03:15:38 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 348502
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e3e1bb9b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.omappapi.com/app/js/4.a4362913.min.js
194.242.11.186200 OK 42 kB URL GET HTTP/2 a.omappapi.com/app/js/4.a4362913.min.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type ASCII text, with very long lines (42298)
Hash e27cb1079566140ba165830dd3818a69
ef09073b8473776d2861b27bf134f6c15eb688a9
7dbf257b712c17d642968848baba0d6ece76863dba4437b0192e2b96b2fe922d
GET /app/js/4.a4362913.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"646b8488-a570"
last-modified: Mon, 22 May 2023 15:04:40 GMT
cdn-storageserver: SE-344
cdn-requestpullsuccess: True
cdn-fileserver: 385
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 18:44:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 9f88f8cd4f27e47656731c321b73fffd
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
eliteextra.com/wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.5.1
173.245.130.198200 OK 6.8 kB URL GET HTTP/2 eliteextra.com/wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.5.1
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type ASCII text, with very long lines (6817), with no line terminators
Hash f7fdc7752b96f5529f374e62b68c9f14
cfed641322a2aca3789cfa95d8dda603880396fd
81e3ed5dd78281c21cff51e7700c54b0faa89fc7ab7b1a99e255d725e95d8d33
GET /wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.5.1 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: text/css
last-modified: Thu, 30 Mar 2023 14:10:59 GMT
etag: W/"64259873-1a9b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
a.omappapi.com/app/js/11.0485dfca.min.js
194.242.11.186200 OK 2.0 kB URL GET HTTP/2 a.omappapi.com/app/js/11.0485dfca.min.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type ASCII text, with very long lines (2049), with no line terminators
Hash 2043941cb97f440527a44def5b3eb850
754928c545acd7ac7057177283e3afe6edeb8f40
667cc5eeef7e260125e5199f1aa7b3e397aec094fc2fc43b901621f9213e61ee
GET /app/js/11.0485dfca.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"646b8488-7c4"
last-modified: Mon, 22 May 2023 15:04:40 GMT
cdn-storageserver: SE-318
cdn-requestpullsuccess: True
cdn-fileserver: 584
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 18:44:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: a86d16721b26a4f25a5c5e003cb70dbf
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-XHGWF8PBVN>m=45je35v0&_p=1144586236&_gaz=1&cid=1188448344.1686027245&ul=en-us&sr=1280x1024&_s=1&sid=1686027245&sct=1&seg=0&dl=https%3A%2F%2Feliteextra.com%2F%3Fe%3Dweslie.loomis%2540marten.com%26c%3Dpmails&dt=Elite%20EXTRA%20%7C%20Last%20Mile%20Software%20Solutions&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.32.36204 No Content 0 B URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-XHGWF8PBVN>m=45je35v0&_p=1144586236&_gaz=1&cid=1188448344.1686027245&ul=en-us&sr=1280x1024&_s=1&sid=1686027245&sct=1&seg=0&dl=https%3A%2F%2Feliteextra.com%2F%3Fe%3Dweslie.loomis%2540marten.com%26c%3Dpmails&dt=Elite%20EXTRA%20%7C%20Last%20Mile%20Software%20Solutions&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.32.36:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C
ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-XHGWF8PBVN>m=45je35v0&_p=1144586236&_gaz=1&cid=1188448344.1686027245&ul=en-us&sr=1280x1024&_s=1&sid=1686027245&sct=1&seg=0&dl=https%3A%2F%2Feliteextra.com%2F%3Fe%3Dweslie.loomis%2540marten.com%26c%3Dpmails&dt=Elite%20EXTRA%20%7C%20Last%20Mile%20Software%20Solutions&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://eliteextra.com
date: Tue, 06 Jun 2023 04:54:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/css/max-widget.css
172.67.38.66200 OK 74 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/css/max-widget.css
IP 172.67.38.66:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash ebb53d03ee18dec4b394c3db6d7292d3
29ff00d5ff9045bddf07fe99e265a3420c3fbf75
a374cd80761045b46086558d2a9449f98c578d9f9bd68cc435ae780a845770c6
GET /_s/v4/app/64795e77f7f/css/max-widget.css HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:08 GMT
content-type: text/css
cache-control: public, max-age=2592000, immutable
cf-bgj: minify
cf-polished: origSize=74548
access-control-allow-origin: *
etag: W/"f335908186585c187eea3163811286d9"
last-modified: Fri, 02 Jun 2023 03:15:38 GMT
strict-transport-security: max-age=0; includeSubDomains; preload
x-cache-status: HIT
cf-cache-status: HIT
age: 348502
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e3e1bb8b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.omappapi.com/app/js/webfont/1.5.18/webfont.js
194.242.11.186200 OK 17 kB URL GET HTTP/2 a.omappapi.com/app/js/webfont/1.5.18/webfont.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type ASCII text, with very long lines (1190)
Hash 593e60ad549e46f8ca9a60755336c7df
9c030800712c832f2a15040cf02f546884a99808
ce261eb163fcaee6953cedc35059732a133766ab824dc512bbdf9424d48601e4
GET /app/js/webfont/1.5.18/webfont.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"64680524-40cb"
last-modified: Fri, 19 May 2023 23:24:20 GMT
cdn-storageserver: SE-318
cdn-requestpullsuccess: True
cdn-fileserver: 584
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 18:44:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 2a77467d37abecb34f382373be2355aa
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-app.js
172.67.38.66200 OK 151 B URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-app.js
IP 172.67.38.66:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 04a9862af6efaf787bc8fb8e99ba6987
a57bb8f258eb1a60dc3b288a608ad8ef9fbecef3
ecc74c329a700e3e6ca29aed5ffe3c166cf39670c8b11573fa7f837f79a71b5c
GET /_s/v4/app/64795e77f7f/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:07 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 73375
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e35c8220b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
eliteextra.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.5.1
173.245.130.198200 OK 4.6 kB URL GET HTTP/2 eliteextra.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.5.1
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type ASCII text, with very long lines (4857), with no line terminators
Hash 3c05b4818fda400788cc5c2f60d87ea4
01e544e8461be8bb14a13fb8be13cc1e8259858e
db8170cdde3c954a075a4c1cfe836be73fc450ee8a298978470ca6a110284a08
GET /wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.5.1 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: application/javascript
last-modified: Thu, 30 Mar 2023 14:10:59 GMT
etag: W/"64259873-11ef"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
a.omappapi.com/app/js/api.min.js
194.242.11.186200 OK 51 kB URL GET HTTP/2 a.omappapi.com/app/js/api.min.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type C source, ASCII text, with very long lines (51351), with no line terminators
Hash eed2ddb2c4c4b3dccf08f52a343cd8e9
c22a678a70a08eb2a15752e9ce8864c44e5dedb8
feebfcd767aba4a271e38f94282fbe863ba0e393e21b92a5bc367d36ecade0c2
GET /app/js/api.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"eed2ddb2c4c4b3dccf08f52a343cd8e9"
last-modified: Mon, 05 Jun 2023 23:07:35 GMT
cdn-storagebalancer: SE-344
perma-cache: MISS
x-amz-id-2: dI4f5PiM1b9R7575Qe5wnkV0Uf/scd3zbJHWxnuKYNIhjcUecEWrzE0tKMCGEBARLrtQ8HGHZ00=
x-amz-request-id: 35TFP39G43EJ0FWZ
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 23:07:42
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 61bba6e07065b16c90f11341b22adb33
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-common.js
172.67.38.66200 OK 210 kB URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-common.js
IP 172.67.38.66:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65466)
Size 210 kB (210377 bytes)
Hash 00aa43670bf94cf802dd5797a4416a00
321252add669266027cadb78a82f94d51e3f469e
b9e3acc3ea33954ac74406b8bbd9489bba42631dda3b1ebfa20bb8874226a95a
GET /_s/v4/app/64795e77f7f/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:07 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"00aa43670bf94cf802dd5797a4416a00"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e35b8190b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
forms.hsforms.com/embed/v3/form/22644969/d7d881e0-97d4-4f4f-be3c-b6999fd60a5e/json?hs_static_app=forms-embed&hs_static_app_version=1.3243&X-HubSpot-Static-App-Info=forms-embed-1.3243
104.17.211.243200 OK 10 kB URL GET HTTP/3 forms.hsforms.com/embed/v3/form/22644969/d7d881e0-97d4-4f4f-be3c-b6999fd60a5e/json?hs_static_app=forms-embed&hs_static_app_version=1.3243&X-HubSpot-Static-App-Info=forms-embed-1.3243
IP 104.17.211.243:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (10432), with no line terminators
Hash 35523ebf0743c3fcb76d39107d6b5bf3
d7a024dda98ebfc12af857a5d5f30968f68b0b1a
bdde05eda0247ff6cfe5d01cb836fbcc974afe4e34c7536a77ed7990722b4421
GET /embed/v3/form/22644969/d7d881e0-97d4-4f4f-be3c-b6999fd60a5e/json?hs_static_app=forms-embed&hs_static_app_version=1.3243&X-HubSpot-Static-App-Info=forms-embed-1.3243 HTTP/1.1
Host: forms.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: application/json;charset=utf-8
x-trace: 2BAD7F460027E5781766E0B3A19A55B2E01B6BECC4000000000000000000
x-origin-hublet: na1
vary: origin
x-hubspot-correlation-id: 2669c782-e470-4dfc-85fb-c2ed05c699c8
access-control-allow-origin: https://eliteextra.com
access-control-allow-methods: OPTIONS, GET
access-control-allow-headers: *
access-control-allow-credentials: false
access-control-max-age: 180
access-control-expose-headers: X-Origin-Hublet
cache-control: max-age=0, no-cache, no-store
x-robots-tag: none
x-envoy-upstream-service-time: 22
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-759c64d45c-j4dtm
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: e08afc6c-49e9-4966-a3d9-705ae3af8cc1
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7d2e0e2b396cb523-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
a.omappapi.com/app/js/28.471a76a7.min.js
194.242.11.186200 OK 6.0 kB URL GET HTTP/2 a.omappapi.com/app/js/28.471a76a7.min.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type ASCII text, with very long lines (6160), with no line terminators
Hash 39f163c2dbb0d0379e3ec8096122925f
40c60f60991f5e8feef4d4791a998f06ccbe2540
c9a8b28ef91cad05161507df4d4b820b348d6550c552ee06876a269dd2f62ad0
GET /app/js/28.471a76a7.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"646b8489-1759"
last-modified: Mon, 22 May 2023 15:04:41 GMT
cdn-storageserver: SE-344
cdn-requestpullsuccess: True
cdn-fileserver: 385
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 18:44:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 41e792c2a8f55b9406b0ba7b80928295
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
a.omappapi.com/app/js/27.f35a62ac.min.js
194.242.11.186200 OK 1.3 kB URL GET HTTP/2 a.omappapi.com/app/js/27.f35a62ac.min.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type ASCII text, with very long lines (1286), with no line terminators
Hash d945a71d887c69e5d3c4cad3076e4af2
797dcefcc3dcfdeef7732c3c9da444aa6dae37d7
bb688506d9252080760af345ca5e3f7ec2568ecd706191c5aceb5428a5813a21
GET /app/js/27.f35a62ac.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"646b8487-4ed"
last-modified: Mon, 22 May 2023 15:04:39 GMT
cdn-storageserver: SE-344
cdn-requestpullsuccess: True
cdn-fileserver: 584
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 18:44:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 41a90b89fff1e14d5f149e24e6645d29
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
va.tawk.to/log-performance/v3
172.67.38.66200 OK 0 B URL OPTIONS HTTP/3 va.tawk.to/log-performance/v3
IP 172.67.38.66:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://eliteextra.com/
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:09 GMT
x-served-by: visitor-application-preemptive-3fxt
access-control-allow-origin: https://eliteextra.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e41be43b4f1-OSL
alt-svc: h3=":443"; ma=86400
a.omappapi.com/app/js/api.min.js
194.242.11.186200 OK 51 kB URL GET HTTP/2 a.omappapi.com/app/js/api.min.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type C source, ASCII text, with very long lines (51351), with no line terminators
Hash eed2ddb2c4c4b3dccf08f52a343cd8e9
c22a678a70a08eb2a15752e9ce8864c44e5dedb8
feebfcd767aba4a271e38f94282fbe863ba0e393e21b92a5bc367d36ecade0c2
GET /app/js/api.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"eed2ddb2c4c4b3dccf08f52a343cd8e9"
last-modified: Mon, 05 Jun 2023 23:07:35 GMT
cdn-storagebalancer: SE-344
perma-cache: MISS
x-amz-id-2: dI4f5PiM1b9R7575Qe5wnkV0Uf/scd3zbJHWxnuKYNIhjcUecEWrzE0tKMCGEBARLrtQ8HGHZ00=
x-amz-request-id: 35TFP39G43EJ0FWZ
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 23:07:42
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: fe8df7fa4737bb02c28236f23e30e168
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
api.omappapi.com/v2/embed/185461/ksiwffe9u6uwlfekznw3
54.230.111.56200 OK 6.0 kB URL GET HTTP/2 api.omappapi.com/v2/embed/185461/ksiwffe9u6uwlfekznw3
IP 54.230.111.56:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerAmazon
Subjectapi.opmnstr.com
Fingerprint34:6F:11:EF:D5:CB:E0:6D:60:61:6B:1C:48:AC:44:A4:64:29:61:F9
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 08 Feb 2024 23:59:59 GMT
File type ASCII text, with very long lines (6604), with no line terminators
Hash 9890f0d65ad3becca552f1b314ed8693
310b2025573e7d8bf194f46d1c50b27b642ce01e
37e3ea6d709b7198379f3968a9b08bb211ec8c0babb2abfd9ad88daaa95656bf
GET /v2/embed/185461/ksiwffe9u6uwlfekznw3 HTTP/1.1
Host: api.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json
date: Tue, 06 Jun 2023 04:54:05 GMT
access-control-allow-origin: *
access-control-allow-headers: X-CSRF-Token
expires: Tue, 06 Jun 2023 04:54:35 GMT
cache-control: public, max-age=30, stale-while-revalidate=1800
last-modified: Thu, 01 Jun 2023 20:26:26 GMT
etag: W/"11572fd4e6a15fba489887a4383c14ab"
x-optinmonster-campaign: ksiwffe9u6uwlfekznw3
access-control-expose-headers: X-OptinMonster-Campaign, X-User-Agent
x-user-agent: standard--
x-cache-config: 0 0
vary: Accept-Encoding, User-Agent
x-cache-status: EXPIRED
content-encoding: gzip
server: Pagely Gateway/1.5.1
x-cache: Miss from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VXvQX0qCQgMi4_LlTmDdf4hbboS2IG22R0raMgE41fSMnIS3SfuAng==
X-Firefox-Spdy: h2
js.hs-scripts.com/22644969.js?integration=WordPress&ver=10.1.24
104.18.135.59200 OK 1.5 kB URL GET HTTP/2 js.hs-scripts.com/22644969.js?integration=WordPress&ver=10.1.24
IP 104.18.135.59:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5A:DE:00:16:F4:3C:EB:0D:2A:0C:6E:27:59:94:38:E3:D9:B1:20:3E
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (1601), with no line terminators
Hash fc22e08ad7b069da3ff4872378fea296
a0f81924347ca94778a527c611724f2e999e1dc5
04d61f16c613c3a731ebf4ca60c5813d80d63fcf88a169d5b8f92892b1f85c0a
GET /22644969.js?integration=WordPress&ver=10.1.24 HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B2A773212B5AC6ADBE4A2C596DF616F1BF5263532000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: 29d0a665-c1c9-4464-8224-2439473ebe4a
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://eliteextra.com
x-envoy-upstream-service-time: 14
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-598c95b5b7-ltr78
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: f539ac66-113d-45ea-91f7-cd7c370b9e2c
last-modified: Mon, 05 Jun 2023 19:55:02 GMT
cf-cache-status: EXPIRED
expires: Tue, 06 Jun 2023 04:55:04 GMT
server: cloudflare
cf-ray: 7d2e0e251ae10b65-OSL
content-encoding: br
X-Firefox-Spdy: h2
embed.tawk.to/5f0776eb67771f3813c0c0b5/default
172.67.38.66200 OK 2.1 kB URL GET HTTP/2 embed.tawk.to/5f0776eb67771f3813c0c0b5/default
IP 172.67.38.66:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (2308), with no line terminators
Hash 01f204bc784e77984e25c943dbd877dd
b8c1a70ac57a2d54435db6dbc34c3bba8006ead3
1cadfb6f0a4019534416fbe471511ade2d94ec3c3a7a6623b5c37414db6acd4e
GET /5f0776eb67771f3813c0c0b5/default HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-64795e77f7f"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e2b697b0b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
a.omappapi.com/app/js/5.58816c65.min.js
194.242.11.186200 OK 16 kB URL GET HTTP/2 a.omappapi.com/app/js/5.58816c65.min.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type ASCII text, with very long lines (16201)
Hash c85fcdea911b7576d241820317427db7
9f226e066230b1b92b354d0f46c239776899447b
59fd27868af28f0432fefa2051b852b00011cdfda0c18d4e40c5adb48ef7a85b
GET /app/js/5.58816c65.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"646b8488-3f80"
last-modified: Mon, 22 May 2023 15:04:40 GMT
cdn-storageserver: SE-318
cdn-requestpullsuccess: True
cdn-fileserver: 385
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 18:44:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: d1fffd767b4d07b34d6d5dd72ac2a0ab
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
eliteextra.com/wp-content/themes/Divi/style-static.min.css?ver=4.21.0
173.245.130.198200 OK 825 kB URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/style-static.min.css?ver=4.21.0
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type ASCII text, with very long lines (65192)
Size 825 kB (824656 bytes)
Hash fc5209413ba5559d727da540892fce96
2be81df594cf7a107d7189c5a2bb5900e114e017
fc88a81a336eb3688e71561dc45c60ecda0179b7baea8c51be5b54666e8bb077
GET /wp-content/themes/Divi/style-static.min.css?ver=4.21.0 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: text/css
last-modified: Fri, 28 Apr 2023 04:33:39 GMT
etag: W/"644b4ca3-c9550"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
eliteextra.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.21.0
173.245.130.198200 OK 274 kB URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.21.0
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type ASCII text, with very long lines (65467)
Size 274 kB (274266 bytes)
Hash d01712dc614e43de021a98920dfb7208
fd6bef0ce9eccf622cc89736a211f7585fa48074
124999106b36b91138193de6ae365bc2e97ec51e122e2f967318ce3d662b561b
GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.21.0 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: application/javascript
last-modified: Fri, 28 Apr 2023 04:33:39 GMT
etag: W/"644b4ca3-42f5a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
eliteextra.com/wp-content/plugins/optinmonster/assets/dist/js/helper.min.js?ver=2.13.2
173.245.130.198200 OK 2.5 kB URL GET HTTP/2 eliteextra.com/wp-content/plugins/optinmonster/assets/dist/js/helper.min.js?ver=2.13.2
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type ASCII text, with very long lines (2578), with no line terminators
Hash 21fc3fbc097a8c9e49dcfa9af02f4a4f
e47d3bd1f449bfb80e8401634c96b024a33ab58d
5f077bcc1164e773a4aee7872202dcaecab96be402b40ab11563aa73078e03a3
GET /wp-content/plugins/optinmonster/assets/dist/js/helper.min.js?ver=2.13.2 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: application/javascript
last-modified: Thu, 27 Apr 2023 14:26:55 GMT
etag: W/"644a862f-9d4"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
player.vimeo.com/video/783404154?dnt=1&app_id=122963
162.159.128.61200 OK 22 kB URL GET HTTP/1.1 player.vimeo.com/video/783404154?dnt=1&app_id=122963
IP 162.159.128.61:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4B:91:E3:66:C8:AB:7B:DB:A8:E4:58:1B:25:C3:EF:38:4C:8E:CE:21
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video/783404154?dnt=1&app_id=122963 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 04:54:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: default-src 'none'; script-src 'self' 'unsafe-inline' https://*.vimeocdn.com 'unsafe-eval' blob: resource: https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv; style-src 'self' 'unsafe-inline' https://*.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com; connect-src 'self' ws: wss: https://vimeo.com https://api.vimeo.com https://csi.gstatic.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://*.hivestreaming.com/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; font-src https://edge-assets.wirewax.com https://fonts.gstatic.com https://player.vimeo.com; img-src 'self' data: https://player.vimeo.com https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://*.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://*.ci.vimeows.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com; frame-src 'self' https://*
expires: Fri, 15 Dec 1985 19:30:00 GMT
link: <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin, <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-host: player-backend-6dc57d49ff-dcdkv
x-player-backend: g
x-xss-protection: 1; mode=block
x-backend-server: player-backend-edge-entry
x-bapp-server: player-backend-6dc57d49ff-dcdkv
Via: 1.1 varnish
Age: 0
X-Served-By: cache-bma1673-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1686027246.774437,VS0,VE157
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=ITeFjVuT9r3OsCTD5xHoVX42t3an92J_mP3OXA_kYXU-1686027245-0-ARU02UrLtnBR6MfFiScnLMYnJENDS3I5o43al3gxpIpDzyPKLJCq/bIKNtyjpqJ55DkiaqHZFLbsZ6k68NfCPbM=; path=/; expires=Tue, 06-Jun-23 05:24:05 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 7d2e0e2e0866b518-OSL
Content-Encoding: gzip
eliteextra.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.21.0
173.245.130.198200 OK 8.6 kB URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.21.0
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type ASCII text, with very long lines (8723), with no line terminators
Hash 1dc4733800bde9331c0d7b251b3c1e38
483737590462acbf6c93b062e3ad201c999d8773
37dd6d46eefe87d64e19be56bea0dfe297b99a595ac840a03ceb220b9d50f9b4
GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.21.0 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: application/javascript
last-modified: Fri, 28 Apr 2023 04:33:39 GMT
etag: W/"644b4ca3-217e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,700,500%7CMontserrat:400,600,600,700
142.250.74.106200 OK 13 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700,500%7CMontserrat:400,600,600,700
IP 142.250.74.106:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0
ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT
Hash 4ed038e61a2d5baad26be7b28611a2a0
b9a4f43082589c94b7bff290e562d1fb2d13a98c
77fb65d75c824e7c11cd7b055cb1a2752ee4cdb5426c1cc6f9d024ee386f48ae
GET /css?family=Open+Sans:400,700,500%7CMontserrat:400,600,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Jun 2023 04:54:06 GMT
date: Tue, 06 Jun 2023 04:54:06 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
eliteextra.com/wp-content/et-cache/777/et-core-unified-deferred-777.min.css?ver=1685993212
173.245.130.198200 OK 36 kB URL GET HTTP/2 eliteextra.com/wp-content/et-cache/777/et-core-unified-deferred-777.min.css?ver=1685993212
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type ASCII text, with very long lines (36360), with no line terminators
Hash 69dccc07883373e0078dc6ad70597161
08fa65313f5298f0dff04e9f902057e752b69c10
63a66eb969d9da67ca442a086936fca6c8f9b247bc6b3257125bd8c49fa8e11c
GET /wp-content/et-cache/777/et-core-unified-deferred-777.min.css?ver=1685993212 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: text/css
last-modified: Mon, 05 Jun 2023 19:26:52 GMT
etag: W/"647e36fc-8e08"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
eliteextra.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
173.245.130.198200 OK 158 kB URL GET HTTP/2 eliteextra.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type ASCII text, with very long lines (65266)
Size 158 kB (158005 bytes)
Hash e53ec3d6e21be78115810135f5e956fe
523892839b88351523e0498ba881c4431197b54e
b15c3ea03d50c2430490e7416733a254feea4237bb60b54181bd3473ebe4149f
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: application/javascript
last-modified: Wed, 02 Nov 2022 04:30:11 GMT
etag: W/"6361f253-26935"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
eliteextra.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
173.245.130.198200 OK 13 kB URL GET HTTP/2 eliteextra.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type ASCII text, with very long lines (13326)
Hash 5cfa2b481de6e87c2190a0e3538515d8
0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68
9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: application/javascript
last-modified: Thu, 30 Mar 2023 04:30:01 GMT
etag: W/"64251049-3470"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
eliteextra.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.21.0
173.245.130.198200 OK 1.3 kB URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.21.0
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type ASCII text, with very long lines (1504), with no line terminators
Hash 7bc5428fa6437f2a1b20b414aae17df4
7856b096ba35f489bdc69190bdd86b6790e661af
1331301ce99cbb52f3a8e865c343d84ebb43664acb79339230e008ba4488f1da
GET /wp-content/themes/Divi/core/admin/js/common.js?ver=4.21.0 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: application/javascript
last-modified: Fri, 28 Apr 2023 04:33:39 GMT
etag: W/"644b4ca3-53f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
va.tawk.to/v1/widget-settings?propertyId=5f0776eb67771f3813c0c0b5&widgetId=default&sv=undefined
172.67.38.66200 OK 3.0 kB URL GET HTTP/3 va.tawk.to/v1/widget-settings?propertyId=5f0776eb67771f3813c0c0b5&widgetId=default&sv=undefined
IP 172.67.38.66:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (3425), with no line terminators
Hash 25b8f6a309c4ed140fd8419b87a57e7f
9bab989c6cd39c3b40fac11f14c4c08e469ee774
e51f48ae096a478e77d4344c5d55e666298a59899a8eeb171130b4cadcf638a1
GET /v1/widget-settings?propertyId=5f0776eb67771f3813c0c0b5&widgetId=default&sv=undefined HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eliteextra.com/
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:08 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-91z5
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-52-0"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: MISS
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e391f94fabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-07cad36d.js
172.67.38.66200 OK 94 kB URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-07cad36d.js
IP 172.67.38.66:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash c1f0a7a7efb96bfdcdc443a0d6dfd1ca
2fad289307a1e188576c8a9e3103157239c147dd
c55670ad77526b0eb69b7fab93da3bf979e4197bafffb5e6802d36aed72249fb
GET /_s/v4/app/64795e77f7f/js/twk-chunk-07cad36d.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:08 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"c1f0a7a7efb96bfdcdc443a0d6dfd1ca"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 348502
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e3d3afab4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
173.245.130.198200 OK 129 kB URL User Request GET HTTP/2 eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
Size 129 kB (128941 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?e=weslie.loomis%40marten.com&c=pmails HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:03 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
link: <https://eliteextra.com/wp-json/>; rel="https://api.w.org/", <https://eliteextra.com/wp-json/wp/v2/pages/777>; rel="alternate"; type="application/json", <https://eliteextra.com/>; rel=shortlink
content-encoding: gzip
X-Firefox-Spdy: h2
eliteextra.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
173.245.130.198200 OK 11 kB URL GET HTTP/2 eliteextra.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type ASCII text, with very long lines (11256), with no line terminators
Hash 2b0dd7eecea03b4bdedb94ba622fdb03
703becba85161118dd6fc66af465428ef43f561c
b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: text/css
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
etag: W/"5f735862-2bf8"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
a.omappapi.com/app/js/api.min.js
194.242.11.186200 OK 51 kB URL GET HTTP/2 a.omappapi.com/app/js/api.min.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type C source, ASCII text, with very long lines (51351), with no line terminators
Hash eed2ddb2c4c4b3dccf08f52a343cd8e9
c22a678a70a08eb2a15752e9ce8864c44e5dedb8
feebfcd767aba4a271e38f94282fbe863ba0e393e21b92a5bc367d36ecade0c2
GET /app/js/api.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"eed2ddb2c4c4b3dccf08f52a343cd8e9"
last-modified: Mon, 05 Jun 2023 23:07:35 GMT
cdn-storagebalancer: SE-344
perma-cache: MISS
x-amz-id-2: dI4f5PiM1b9R7575Qe5wnkV0Uf/scd3zbJHWxnuKYNIhjcUecEWrzE0tKMCGEBARLrtQ8HGHZ00=
x-amz-request-id: 35TFP39G43EJ0FWZ
x-amz-server-side-encryption: AES256
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 23:07:42
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 779a867dade00a9d8e361ab56b1c1f9f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
a.omappapi.com/app/js/20.30ad6480.min.js
194.242.11.186200 OK 3.8 kB URL GET HTTP/2 a.omappapi.com/app/js/20.30ad6480.min.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type ASCII text, with very long lines (3871), with no line terminators
Hash 6fad2bd8bad5697d9476cf90a8c9e9f5
2c55e1b8226449665fcfeede6051f461d920b11c
47c30b99fb5157e4cd072f122effe416aaef3ceea5a7f9e8aaf7e209b85243bf
GET /app/js/20.30ad6480.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"646b8488-ed9"
last-modified: Mon, 22 May 2023 15:04:40 GMT
cdn-storageserver: SE-318
cdn-requestpullsuccess: True
cdn-fileserver: 585
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 18:44:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4dd16c6e22a0d27b51ad95c1c78273ba
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
forms-na1.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1
104.17.211.243200 OK 35 B URL GET HTTP/3 forms-na1.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1
IP 104.17.211.243:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B
ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT
File type GIF image data, version 89a, 1 x 1\012- data
Hash c2196de8ba412c60c22ab491af7b1409
5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b
6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992
GET /embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1 HTTP/1.1
Host: forms-na1.hsforms.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: image/gif
content-length: 35
x-trace: 2B2214EC84C85F8CE7C89E2671C1B3B3752A5A90E9000000000000000000
cache-control: max-age=0, no-cache, no-store
vary: origin
x-hubspot-correlation-id: 0c12af17-f558-48d3-823f-9115f4764a7d
access-control-allow-credentials: false
access-control-expose-headers: X-Origin-Hublet
x-robots-tag: none
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-759c64d45c-jkmcj
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: e8c652f6-f91d-47b7-a010-e42b36eaf8e0
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7d2e0e320983b4fa-OSL
alt-svc: h3=":443"; ma=86400
js.hscollectedforms.net/collectedforms.js
104.17.106.199200 OK 70 kB URL GET HTTP/2 js.hscollectedforms.net/collectedforms.js
IP 104.17.106.199:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA5:D1:D2:E1:EA:8D:D7:F7:79:F2:ED:55:66:75:F5:52:07:A7:F4:B3
ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /collectedforms.js HTTP/1.1
Host: js.hscollectedforms.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:05 GMT
content-type: application/javascript; charset=utf-8
x-amz-replication-status: COMPLETED
last-modified: Tue, 09 May 2023 08:44:18 UTC
x-amz-server-side-encryption: AES256
x-amz-version-id: SGo7xq5b6d1kUu6c8SU5YR.mobmUICUY
etag: W/"d1b16df440198d59c993c4956b7fded6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f01dafb3bec9893b47152910d47900a4.cloudfront.net (CloudFront)
x-amz-cf-pop: IAD12-P3
x-amz-cf-id: I1Ejl0J4VuCw1GH1popC9kfQkYD91L8Gql3wS_L8O4ts0qJOrKuUOg==
content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=collected-forms-embed-js/static-1.370/bundles/project.js&cfRay=7d2e0e2cbab1b4ed-ARN
cache-control: s-maxage=600, max-age=300
x-hs-target-asset: collected-forms-embed-js/static-1.370/bundles/project.js
access-control-allow-origin: *
x-hs-cache-status: HIT
x-envoy-upstream-service-time: 1
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-57ff77fcd-xhv87
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: ca12372e-2131-4a66-8d07-221cd8f6c2d8
cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod
cf-cache-status: EXPIRED
server: cloudflare
cf-ray: 7d2e0e2cbab1b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
a.omappapi.com/app/js/29.739a6460.min.js
194.242.11.186200 OK 2.8 kB URL GET HTTP/2 a.omappapi.com/app/js/29.739a6460.min.js
IP 194.242.11.186:443
ASN #34989 ServeTheWorld AS
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecta.omappapi.com
Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2
ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT
File type ASCII text, with very long lines (2907), with no line terminators
Hash e95eac4b7678f6b80b1cf1e0b56f9e37
9f00aeaf6ae5461d3c723c3247f1aaab68b998f7
6715bf6a0a8b46e3718c1f2354ebfe360f08c9c0f5404aeef4bb391615eec4b3
GET /app/js/29.739a6460.min.js HTTP/1.1
Host: a.omappapi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 06 Jun 2023 04:54:06 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 293267
cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
etag: W/"646b8495-ad7"
last-modified: Mon, 22 May 2023 15:04:53 GMT
cdn-storageserver: SE-318
cdn-requestpullsuccess: True
cdn-fileserver: 385
perma-cache: HIT
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-cachedat: 06/05/2023 18:44:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c499114ae4caa11be8a05b9f7c2d0a50
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
va.tawk.to/log-performance/v3
172.67.38.66200 OK 5 B URL POST HTTP/3 va.tawk.to/log-performance/v3
IP 172.67.38.66:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 38a8a3e3b4b6a6e4f295b2e0f899b1f0
474f5fac3d23afbaf16c5a31c98dfcd956e4c186
7652c7891ed06bce4174ab00a6ee9721daf6a4286929213ecb7daf42cd866615
POST /log-performance/v3 HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://eliteextra.com/
Content-Type: application/json; charset=utf-8
Content-Length: 95
Origin: https://eliteextra.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:09 GMT
content-type: text/html; charset=utf-8
x-served-by: visitor-application-preemptive-k0rt
access-control-allow-origin: https://eliteextra.com
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e42bf15b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
eliteextra.com/wp-content/plugins/wp-external-links/public/js/wpel-front.js?ver=6.2.2
173.245.130.198200 OK 4.8 kB URL GET HTTP/2 eliteextra.com/wp-content/plugins/wp-external-links/public/js/wpel-front.js?ver=6.2.2
IP 173.245.130.198:443
ASN #11796 AIRSTREAMCOMM-NET
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerLet's Encrypt
Subjecteliteextra.com
Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4
ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT
File type HTML document, ASCII text, with very long lines (5005), with no line terminators
Hash 717c8cfea5c3101c2cc884fbf38b7595
a787def500cbfe58561aa5982a3d80180ee92746
45125813d38a78cd6dc48110b3f7e5bc82db81faa704dad08287aaa0b41070f8
GET /wp-content/plugins/wp-external-links/public/js/wpel-front.js?ver=6.2.2 HTTP/1.1
Host: eliteextra.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Tue, 06 Jun 2023 04:54:04 GMT
content-type: application/javascript
last-modified: Mon, 15 May 2023 16:31:12 GMT
etag: W/"64625e50-12cd"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
X-Firefox-Spdy: h2
player.vimeo.com/video/783404154?dnt=1&app_id=122963
162.159.128.61200 OK 22 kB URL GET HTTP/1.1 player.vimeo.com/video/783404154?dnt=1&app_id=122963
IP 162.159.128.61:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint4B:91:E3:66:C8:AB:7B:DB:A8:E4:58:1B:25:C3:EF:38:4C:8E:CE:21
ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /video/783404154?dnt=1&app_id=122963 HTTP/1.1
Host: player.vimeo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 06 Jun 2023 04:54:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-security-policy: default-src 'none'; script-src 'self' 'unsafe-inline' https://*.vimeocdn.com 'unsafe-eval' blob: resource: https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv; style-src 'self' 'unsafe-inline' https://*.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com; connect-src 'self' ws: wss: https://vimeo.com https://api.vimeo.com https://csi.gstatic.com https://player-telemetry.vimeo.com https://*.akamaized.net https://*.akamaized-staging.net https://*.vimeocdn.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://*.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://*.dna-delivery.com https://*.kollective.app/ https://*.hivestreaming.com/ https://mimir.cloud.vimeo.com https://*.wirewax.com https://*.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; font-src https://edge-assets.wirewax.com https://fonts.gstatic.com https://player.vimeo.com; img-src 'self' data: https://player.vimeo.com https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://*.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://*.ci.vimeows.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com; object-src 'self' https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net; media-src 'self' blob: https://*.vimeocdn.com https://*.akamaized.net https://*.akamaized-staging.net https://*.gvt1.com https://live-api.cloud.vimeo.com; frame-src 'self' https://*
expires: Fri, 15 Dec 1985 19:30:00 GMT
link: <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin, <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
x-host: player-backend-6dc57d49ff-zlj79
x-player-backend: g
x-xss-protection: 1; mode=block
x-backend-server: player-backend-edge-entry
x-bapp-server: player-backend-6dc57d49ff-zlj79
Via: 1.1 varnish
Age: 0
X-Served-By: cache-bma1644-BMA
X-Cache: MISS
X-Cache-Hits: 0
X-Timer: S1686027245.950795,VS0,VE253
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=oNw8jxePT5X5Zn517tHcUgyENMrjkBmpaunaOD1TdnE-1686027245-0-ASgnRx9xd2efTdy1yTfRnzXb010qeQOs7UZLMcBH5QHtNhv4QtgyByUnoceTD6dVDNfJMaV46jSW3EOGVM5qPFU=; path=/; expires=Tue, 06-Jun-23 05:24:05 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None
Server: cloudflare
CF-RAY: 7d2e0e28cc0cb518-OSL
Content-Encoding: gzip
embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b9454.js
172.67.38.66200 OK 535 B URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b9454.js
IP 172.67.38.66:443
Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3
ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (557), with no line terminators
Hash 3f4a6312d60391bda06462d7321ffcdc
9f09295297840a36d2ac95344b39b0af1a729f82
28d61df22c079e51c45b6f87db516f03cb85cf3f2c3a970be369944c3f91bcf1
GET /_s/v4/app/64795e77f7f/js/twk-chunk-2d0b9454.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://eliteextra.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 06 Jun 2023 04:54:08 GMT
content-type: application/javascript
last-modified: Fri, 02 Jun 2023 03:15:39 GMT
etag: W/"c506281367048d4a134c9affbc68c8c6"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
age: 348503
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7d2e0e3d3afbb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400