Report - url.avanan.click/v2/___https:/protect-us.mimecast.com/s/dLqbCVOJm6cOr9Y2iGt0b5___.YXAzOm1hcnRlbjphOm86MzY0ZDQzMjFiZWVjNDdlZTI2NmExNmJlYjYwOTc4OTM6Njo0OTM4OmI1OTQ0OGEwODI2ZWQ4MWFkMDgwOWI4NmU1ZGY4MTI0NWFiODY2Y2E1ZGE5NGJmZTAyZDVlOGFiZWE4ODc0NWM6aDpU

Report Overview

Submitted URL
url.avanan.click/v2/___https:/protect-us.mimecast.com/s/dLqbCVOJm6cOr9Y2iGt0b5___.YXAzOm1hcnRlbjphOm86MzY0ZDQzMjFiZWVjNDdlZTI2NmExNmJlYjYwOTc4OTM6Njo0OTM4OmI1OTQ0OGEwODI2ZWQ4MWFkMDgwOWI4NmU1ZGY4MTI0NWFiODY2Y2E1ZGE5NGJmZTAyZDVlOGFiZWE4ODc0NWM6aDpU
IP
3.89.1.23
ASN
#14618 AMAZON-AES
Submitted
2023-06-06 04:54:22
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
6
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2016-06-13	2018-07-01	2023-06-05	2.3 kB	4.9 kB	142.250.74.131
js.hsforms.net	7264	2013-09-18	2013-09-26	2023-06-05	421 B	249 kB	104.16.186.65
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-06-05	902 B	16 kB	142.250.74.106
js.hs-scripts.com	2571	2016-07-11	2016-08-09	2023-06-05	440 B	2.5 kB	104.18.135.59
www.eliteextra.com	unknown	unknown	2014-03-13	2023-03-10	511 B	140 B	173.245.130.198
f.vimeocdn.com	3234	2010-04-21	2014-04-09	2023-06-05	2.3 kB	361 kB	151.101.246.109
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-06-05	8.4 kB	586 kB	216.58.207.227
url.avanan.click	104468	2021-03-16	2021-11-17	2023-06-05	702 B	325 B	3.89.1.23
forms.hscollectedforms.net	unknown	2017-01-23	2023-03-02	2023-06-05	527 B	17 kB	104.17.106.199
www.google.no	25607	2001-02-26	2016-04-05	2023-06-05	524 B	578 B	216.58.211.3
api.omappapi.com	5038	2020-03-16	2020-03-20	2023-06-05	458 B	6.8 kB	54.230.111.56
ocsp.r2m02.amazontrust.com	unknown	2007-05-11	2022-10-12	2023-06-05	680 B	1.9 kB	54.230.80.227
region1.analytics.google.com	unknown	1997-09-15	2022-03-17	2023-06-05	739 B	447 B	216.239.32.36
player.vimeo.com	1858	2004-12-15	2013-09-26	2023-06-05	1.1 kB	52 kB	162.159.128.61
stats.wpmucdn.com	40743	2018-04-04	2018-08-25	2023-06-05	405 B	32 kB	194.242.11.186
forms.hsforms.com	5160	2013-09-18	2018-03-07	2023-06-05	1.7 kB	17 kB	104.17.211.243
a.omappapi.com	5418	2020-03-16	2020-03-20	2023-06-05	7.6 kB	424 kB	194.242.11.186
stats1.wpmudev.com	32661	2008-07-11	2018-11-30	2023-06-05	811 B	224 B	3.13.103.82
embed.tawk.to	8650	unknown	2014-03-19	2023-06-05	4.9 kB	495 kB	172.67.38.66
ocsp.godaddy.com	698	1999-03-02	2012-05-20	2023-06-05	330 B	2.3 kB	192.124.249.41
u15333372.ct.sendgrid.net	unknown	2009-04-20	2022-06-15	2023-06-06	1.7 kB	354 B	167.89.123.16
eliteextra.com	283135	2009-01-27	2014-11-04	2023-06-05	21 kB	2.5 MB	173.245.130.198
js.hscollectedforms.net	5697	2017-01-23	2017-03-02	2023-06-05	447 B	72 kB	104.17.106.199
protect-us.mimecast.com	9817	2003-02-20	2017-01-30	2023-06-02	4.6 kB	5.4 kB	205.139.111.12
js.hs-banner.com	2426	2020-03-09	2020-03-26	2023-06-05	413 B	66 kB	104.18.25.196
moderate9-v4.cleantalk.org	unknown	2012-09-28	2023-05-24	2023-06-05	465 B	362 B	51.81.55.251
extend.vimeocdn.com	10179	2010-04-21	2015-04-13	2023-06-05	409 B	6.2 kB	151.101.246.109
i.vimeocdn.com	3126	2010-04-21	2014-03-27	2023-06-05	1.0 kB	54 kB	151.101.246.109
va.tawk.to	8297	unknown	2017-01-30	2023-06-05	2.1 kB	6.1 kB	172.67.38.66
forms-na1.hsforms.com	unknown	2013-09-18	2022-05-24	2023-06-05	483 B	957 B	104.17.211.243
www.googletagmanager.com	75	2011-11-11	2013-05-22	2023-06-05	846 B	133 kB	142.250.74.168

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-06-06 04:54:04	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-06-06 04:54:04	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-06-06 04:54:07	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-06-06 04:54:07	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-06-06 04:54:07	medium	Client IP	Internal IP	ET DNS Query for .to TLD
2023-06-06 04:54:07	medium	Client IP	Internal IP	ET DNS Query for .to TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (99)

	URL	Size	First Seen	Last Seen
	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	47 B	2023-03-07	2024-05-01
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:48 Last Seen2024-05-01 20:31:56 Times Seen6665 Hash 2f518cfc8223c53c44094f57eacc972f a919f586352875054a0a7f438c3e3d33cb5768b3 1d89df5c4aeb93c45e67d479e74ca02e5a104d7e421e4f2415e4a204c9816b0b Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	383 B	2023-06-06	2023-06-06
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-06 06:54:25 Last Seen2023-06-06 06:54:25 Times Seen1 Hash b6229becd8ab7a313005a8c1eb7eca48 4cd896b9b27bb76551dc24519fa06a1e2666bb40 640b96fd150db7c317403c0d823a7b1c7fa6109da1258ab383b4d85391535ec7 Loading...

	eliteextra.com/wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=6.10	57 kB	2023-05-25	2024-02-28
Pretty URL eliteextra.com/wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=6.10 IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-25 10:31:41 Last Seen2024-02-28 12:55:25 Times Seen64 Hash e4e0ef4a4edc37146da4fcbfcadb4e26 9ad5b4781949517d03ea8476ca8bc95de283e178 8bbf08eb5c2873616b4b3a9f1191c887b231daf4e4e7e76af5778e46783d0548 Loading...

	a.omappapi.com/app/js/webfont/1.5.18/webfont.js	17 kB	2023-03-07	2024-04-30
Pretty URL a.omappapi.com/app/js/webfont/1.5.18/webfont.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:47 Last Seen2024-04-30 06:37:46 Times Seen10255 Hash 593e60ad549e46f8ca9a60755336c7df 9c030800712c832f2a15040cf02f546884a99808 ce261eb163fcaee6953cedc35059732a133766ab824dc512bbdf9424d48601e4 Loading...

	a.omappapi.com/app/js/4.a4362913.min.js	42 kB	2023-05-22	2023-06-16
Pretty URL a.omappapi.com/app/js/4.a4362913.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:53:15 Last Seen2023-06-16 15:40:10 Times Seen197 Hash e27cb1079566140ba165830dd3818a69 ef09073b8473776d2861b27bf134f6c15eb688a9 7dbf257b712c17d642968848baba0d6ece76863dba4437b0192e2b96b2fe922d Loading...

	embed.tawk.to/5f0776eb67771f3813c0c0b5/default	2.1 kB	2023-06-05	2023-06-19
Pretty URL embed.tawk.to/5f0776eb67771f3813c0c0b5/default IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-05 10:31:33 Last Seen2023-06-19 21:02:12 Times Seen5 Hash 0333a02ade91dda68196e0e324beb7bb 22d3bb4b82c68712b47d76821aad4603ed4adc3d f7b9ec5916ecd5439e1dff9ae3cd2696f02d1882ed40f06076c596d89cc7966e Loading...

	a.omappapi.com/app/js/29.739a6460.min.js	2.8 kB	2023-05-22	2023-06-20
Pretty URL a.omappapi.com/app/js/29.739a6460.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:53:16 Last Seen2023-06-20 06:25:56 Times Seen122 Hash f391bff68cd96b544c58eed8db8a2eae 79fa95c95656fd5c9d811ff7ad3ee6d44f69ea18 e78b254562d83b2d7e46a6f4a7787b476bf0e61d9672aa02948a69eb21a23bbd Loading...

	f.vimeocdn.com/p/4.23.28/js/player.module.js	509 kB	2023-06-01	2023-06-07
Pretty URL f.vimeocdn.com/p/4.23.28/js/player.module.js IP 151.101.246.109 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-01 20:53:17 Last Seen2023-06-07 16:34:48 Times Seen148 Hash d26e3d4b73b45f1b8faa992cfb65f368 13f74a0def7803c8cd5cd93615aa716976722a8a cd5e850d53ff90bebe198e5a6be51ecfbcb380104c50404ef34d2958e1893f0b Loading...

	www.googletagmanager.com/gtag/js?id=G-XHGWF8PBVN	242 kB	2023-06-06	2023-06-06
Pretty URL www.googletagmanager.com/gtag/js?id=G-XHGWF8PBVN IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 06:54:25 Last Seen2023-06-06 06:54:26 Times Seen2 Hash 16d3ef4daa39694d3b03d11a8fbac6f4 fe1667aa5c802603ae186d5082f6c60e10c36726 049aad4dddfb3bc1d9db997f45691afd9b8a1228b68eea8d4279748d56ffd66e Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	940 B	2023-06-06	2023-06-06
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-06 06:54:25 Last Seen2023-06-06 06:54:25 Times Seen1 Hash 4ae7a6f305e0e8cdc99a05023f1b9837 10a71086949f7e0c4b742cd2a35cc1fdab7fc37c d4fcbefd4e871fd94357ba25a7a1cf184b40c8f173e171f787a1c4bb3f5b6642 Loading...

	eliteextra.com/wp-content/plugins/optinmonster/assets/dist/js/helper.min.js?ver=2.13.2	2.5 kB	2023-03-13	2024-03-14
Pretty URL eliteextra.com/wp-content/plugins/optinmonster/assets/dist/js/helper.min.js?ver=2.13.2 IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 03:44:42 Last Seen2024-03-14 14:15:11 Times Seen221 Hash 0848e6716d27979d3104a780fcfd819a 52d767b0daa39f2eb9996b27daacbff238f2e07b ed4a940faeaa3dc23dad3af003a54680db0da12d22214094dc171e0d10c3ca12 Loading...

	a.omappapi.com/app/js/34.a4153577.min.js	8.3 kB	2023-05-22	2023-06-20
Pretty URL a.omappapi.com/app/js/34.a4153577.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:53:15 Last Seen2023-06-20 06:25:57 Times Seen139 Hash c73e74f1f85dbe25c82d8ce966ef58a1 f00ac8ccc2f8faee1654255c2aefd2e8db25e36e 6e1d0902f6625b2354dcee9e39853e1eba710efb962eff32d6fc854740c6a522 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	803 B	2023-03-13	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 12:27:53 Last Seen2023-06-19 21:02:11 Times Seen5 Hash 2b4f27608a6d075c74f20c11b17ae70a 6c24c7c24ac05f238c1e4e787585bf8b01e40033 889fd61070c02283f8aca3cb1f10e39de08fa426482ac9dbbf8887cd7b3b562b Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	386 B	2023-03-13	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 12:27:53 Last Seen2023-06-19 21:02:11 Times Seen5 Hash a3f8ef27a8ee8c2d746d3abc235d1c42 bbf0a716a2c39d64f1b93477f547309f99eee0fb 146d87f3cf9892d8da1f7163711ffd54e497ce7195efa14713c9045c3d29e81d Loading...

	a.omappapi.com/app/js/10.1224bb49.min.js	20 kB	2023-05-22	2023-06-20
Pretty URL a.omappapi.com/app/js/10.1224bb49.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:53:15 Last Seen2023-06-20 06:25:57 Times Seen208 Hash b55bf398edbae4634409eb26a56a991f 0b689037c37bec91d231490c3b32102d8db33778 2394e70e9e554b5a405d343d73242bb59351f5039ecf19bf5993e592580ed729 Loading...

	a.omappapi.com/app/js/api.min.js	51 kB	2023-06-06	2023-06-09
Pretty URL a.omappapi.com/app/js/api.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 06:05:18 Last Seen2023-06-09 17:21:19 Times Seen48 Hash eed2ddb2c4c4b3dccf08f52a343cd8e9 c22a678a70a08eb2a15752e9ce8864c44e5dedb8 feebfcd767aba4a271e38f94282fbe863ba0e393e21b92a5bc367d36ecade0c2 Loading...

	unknown	11 B	2023-04-10	2024-05-01
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-10 16:02:06 Last Seen2024-05-01 17:14:35 Times Seen1504 Hash 55502d99942870d6241f351d1f2d737b e102e477fdd0f9474800a94b5df1fccbe6e02428 ba21d0e962fd67149deb3819bec5eb166d86ff32839869ab1d7ece80611d3254 Loading...

	player.vimeo.com/video/783404154?dnt=1&app_id=122963	877 B	2023-05-30	2024-05-01
Pretty URL player.vimeo.com/video/783404154?dnt=1&app_id=122963 IP 162.159.128.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-30 16:19:13 Last Seen2024-05-01 21:59:11 Times Seen3957 Hash 1a5b4d5d3e4b011a5ab11c586f797d44 648e005b908e068c567f5236736ea923480a8c08 49653c792dd94bb881bb47fde59c3036d1009d19d8151b3894b09419eb4bc8e3 Loading...

	a.omappapi.com/app/js/1.8f37474e.min.js	9.0 kB	2023-06-06	2023-06-09
Pretty URL a.omappapi.com/app/js/1.8f37474e.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 06:05:18 Last Seen2023-06-09 16:03:24 Times Seen13 Hash c31dbe57c383ab8a0ef7712d9561ad7e ecfb71a6d8c1d4afd3038f73f6940b9d1489a46e 329c83d2ba414969cd627bcf5b53ff518cafcb1862e7114218498b8691e839de Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b383d.js	689 B	2023-06-02	2023-12-05
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b383d.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09:48 Last Seen2023-12-05 11:37:44 Times Seen16575 Hash a6432972b93f7d0476635e7ac224d718 982170daa2061994afe4c414adfbf32596ab3cca 72deb01333692d6942fe77383825537b0dac6653af9b50312a53fdf3b31efa09 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	153 B	2023-03-13	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 12:27:53 Last Seen2023-06-19 21:02:11 Times Seen5 Hash b253dd762875d9a243a7d0dc07f73dbd d51a7a42a7a42a35a678c07fdd755b55d7f55be8 84ddab5d74bfcdbafa7164e90c17746cce6ebc3b4aed0b0eb30c62458afddc9f Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	153 B	2023-03-13	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 12:27:53 Last Seen2023-06-19 21:02:11 Times Seen5 Hash 97b8b225182bc0dbc5966c9cceccc967 0b21ba96d1045a0cdf7d5711096e0237a742fe41 a5b75ec14d029193e798bf59805d85898be95a35c67f79241bb47c878bd7ca2d Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	939 B	2023-03-08	2024-01-21
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-08 21:59:10 Last Seen2024-01-21 00:01:31 Times Seen20 Hash 29c18678f1b722cb715c9e753be6683d 108ca9707a3d6072fe3e247ff1e2d95e752b64d0 c4e2c245e9361cbd6e18faa4db8a6edaf5c43c337afdbec5028a74dfc2e7b108 Loading...

	a.omappapi.com/app/js/5.58816c65.min.js	16 kB	2023-05-22	2023-06-20
Pretty URL a.omappapi.com/app/js/5.58816c65.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:53:15 Last Seen2023-06-20 06:25:57 Times Seen288 Hash c85fcdea911b7576d241820317427db7 9f226e066230b1b92b354d0f46c239776899447b 59fd27868af28f0432fefa2051b852b00011cdfda0c18d4e40c5adb48ef7a85b Loading...

	js.hscollectedforms.net/collectedforms.js	70 kB	2023-05-09	2024-01-19
Pretty URL js.hscollectedforms.net/collectedforms.js IP 104.17.106.199 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 13:41:08 Last Seen2024-01-19 11:21:28 Times Seen915 Hash d1b16df440198d59c993c4956b7fded6 e66e19e973cb46a51831905b9cb85b03d4fac987 1e1bce508370a6994bd3e0e67c257f06875e16ca2038c27f498616a0f0d55687 Loading...

	a.omappapi.com/app/js/21.bece25d8.min.js	3.2 kB	2023-05-22	2023-06-20
Pretty URL a.omappapi.com/app/js/21.bece25d8.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 22:17:07 Last Seen2023-06-20 05:57:34 Times Seen92 Hash 36484c0e40cd281c9d29fca993f499eb 24e74976f7132e89fbf0a3e132308c3424dc3759 6a65e9178c10b160327725b3b10f6ba63a2fbf4f33bcfd566d75987175fa98d1 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	83 B	2023-03-07	2024-05-01
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:07 Last Seen2024-05-01 22:47:40 Times Seen1946 Hash ed77093016336e2d00eae2411dac952a ae357a77ea0c6e959e9de4002845ad4b042dad16 37fa652c65354aabd9f4910c80da871371b2aabbd0fc3d72f34a61a37ccb5e58 Loading...

	js.hsforms.net/forms/embed/v2.js	539 kB	2023-05-23	2023-06-06
Pretty URL js.hsforms.net/forms/embed/v2.js IP 104.16.186.65 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-23 13:07:33 Last Seen2023-06-06 10:08:33 Times Seen233 Hash a5301b6f08ed64649a3390f949aa4175 32c03d85e0ae4e4152ec18c1f4b9f4074cc84a59 6068122af5aaf3871c283132bb19ddafc391f4cb78126882ca18a7c5f4c03611 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	242 B	2023-06-05	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-05 10:31:33 Last Seen2023-06-19 21:02:11 Times Seen4 Hash 7de11cc388723b8972d2d5036deb661b 769f62dbf8fe5b80532256136595b3dfc579df15 b0bd1fda9eb544134f06f14f706885c38f75a08dcf33dc943a189484de7ffe72 Loading...

	eliteextra.com/sandbox%20eval%20code	147 B	2023-04-11	2024-05-02
Pretty URL eliteextra.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-02 00:00:54 Times Seen343882 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-f1596d96.js	11 kB	2023-06-02	2023-12-05
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-f1596d96.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:18:26 Last Seen2023-12-05 11:37:44 Times Seen6306 Hash ecc97f98f23e936ee6e93a25b5deda4e 8a39efe08e455e6c973d7afbbcf429e04a55c767 214a552a60d83d9b746191d65391e98126e2b9cf207894f6a590494f1623f74a Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-4fe9d5dd.js	906 B	2023-06-02	2024-05-01
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-4fe9d5dd.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09:48 Last Seen2024-05-01 21:57:32 Times Seen32134 Hash 1c5ecf371149feca23bd895ba9dfec4d 6f6213ae4c63d959441572d232f0425467ed05de fb193c2bcf1a14030cea8d72baa20ab7b1cf88f9e90adb31895279beedf6bf84 Loading...

	eliteextra.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0	13 kB	2023-03-07	2024-05-01
Pretty URL eliteextra.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:52 Last Seen2024-05-01 11:53:04 Times Seen76258 Hash 5cfa2b481de6e87c2190a0e3538515d8 0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68 9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	126 B	2023-06-06	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-06 06:54:25 Last Seen2023-06-19 21:02:11 Times Seen3 Hash 1d4617a45c37dd68a3b6ceb8c2fef545 bd6da74c18c141a6a47bb380e1db9854f383075a 6d9f2cfe343706b116f8f837ee6eb149cf6145df7525a22257151cc94b837fa9 Loading...

	extend.vimeocdn.com/ga/18803845.js	17 kB	2023-03-07	2024-05-01
Pretty URL extend.vimeocdn.com/ga/18803845.js IP 151.101.246.109 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:49 Last Seen2024-05-01 17:24:08 Times Seen985 Hash 377b77886b8f14f7c30f202b4afedde9 d8ffa187f74c7b4295240038349937f7b57c2b42 6c649cc3d4aee7683250622541a6045ad4ac3beb93df1fcdd3ec1f7f12a1ff44 Loading...

	a.omappapi.com/app/js/20.30ad6480.min.js	3.8 kB	2023-05-22	2023-06-20
Pretty URL a.omappapi.com/app/js/20.30ad6480.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:53:16 Last Seen2023-06-20 06:25:56 Times Seen137 Hash 5953ae63377584eef232801bd8aeb44e a788ecfa37a84426dd48735f2643f4c0b172b9b8 642dd277edb023fd13d8b20f337f5e8eaf324c4505f9e25205d46679ab6a6e0f Loading...

	a.omappapi.com/app/js/22.a1b86cf5.min.js	1.6 kB	2023-05-22	2023-06-20
Pretty URL a.omappapi.com/app/js/22.a1b86cf5.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:53:16 Last Seen2023-06-20 06:25:56 Times Seen127 Hash 3d2ade48aee2626e98be150aa9879e98 6ce8b4a4ee1765baa5e89741826605f1e524047c 96b65f7327df7c3bae0144743369651aae9ab02ee55641e7e63f574f9adbd19e Loading...

	www.googletagmanager.com/gtag/js?id=UA-8098030-1	125 kB	2023-06-06	2023-06-06
Pretty URL www.googletagmanager.com/gtag/js?id=UA-8098030-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 06:54:25 Last Seen2023-06-06 06:54:26 Times Seen2 Hash 9979d6a55bab5315178b8b0afb697db6 647fc007ccd7429cb097a0a51139689ee19255c8 5d969b53c2c837777eed33ca0aa76320942da27ae284580315b2ae18b52c786a Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	126 B	2023-03-13	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 23:21:24 Last Seen2023-06-19 21:02:11 Times Seen5 Hash 54543dccfe230731a1265a9524b2698a ee5892674b42f80e7b031f03e22e6764b6464817 a3e5b8e7c21689647d14871c603ac89d9c06d0856759d888f0c7b28707e78b0a Loading...

	eliteextra.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.21.0	9.3 kB	2023-03-07	2024-05-01
Pretty URL eliteextra.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.21.0 IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:42:32 Last Seen2024-05-01 20:31:55 Times Seen1677 Hash 00346ced8d8b5c664b826381bdcd7c48 1cb0ab506f3892db432c81ab6982fe6837004d23 5aa24e4ab926693e29ffb0d0ca1557141defd3ca61b3b4e7caebaa2fcd5bf327 Loading...

	eliteextra.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.5.1	4.6 kB	2023-03-07	2024-04-17
Pretty URL eliteextra.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.5.1 IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:29 Last Seen2024-04-17 04:06:23 Times Seen887 Hash 3940eede2b6841663dddd9e946dec11e ccb59e18338a06a5f0168be0bd1677710f6d7bd4 b0fadf75681475e975bd2bdaceac6c08e8f5ef06f9a1c7fe9f3f7a571f5bc935 Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-common.js	210 kB	2023-06-02	2023-12-05
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-common.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09:48 Last Seen2023-12-05 11:37:44 Times Seen12167 Hash 00aa43670bf94cf802dd5797a4416a00 321252add669266027cadb78a82f94d51e3f469e b9e3acc3ea33954ac74406b8bbd9489bba42631dda3b1ebfa20bb8874226a95a Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-696bc286.js	18 kB	2023-06-02	2023-12-05
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-696bc286.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09:48 Last Seen2023-12-05 11:37:44 Times Seen11124 Hash 6dd996f847762fe19aadcbd932a92b08 c1c5edd05a7e437b4d07feed69e2be8cc94e2ad1 a137b6d915c842f317b92af003081805d36f2037062eead04c3cecc3893cc9ab Loading...

	stats.wpmucdn.com/analytics.js	70 kB	2023-03-07	2024-04-30
Pretty URL stats.wpmucdn.com/analytics.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:24:47 Last Seen2024-04-30 20:54:41 Times Seen2969 Hash 434f3d0418b4425917954bf073f4d262 1119ad5f14fe6a7ce2cc7bdaea72245d5e05c71a 0995371a359a4a701d66f8b183de6144de9a042e5bac84b6f920968f51567742 Loading...

	player.vimeo.com/video/783404154?dnt=1&app_id=122963	189 B	2023-06-06	2023-06-19
Pretty URL player.vimeo.com/video/783404154?dnt=1&app_id=122963 IP 162.159.128.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-06 06:54:25 Last Seen2023-06-19 21:02:11 Times Seen3 Hash 08c47f93dc4a6ac28ca419ad1b439b23 b5fa4cb9b7fddea0d45f89d5d3ebefae001c4fc3 e65e885dd5b36a2061bceac960662f74180e7aa45b2ceff61bb7bdb62ca1cdac Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-runtime.js	2.3 kB	2023-06-02	2023-12-05
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-runtime.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09:48 Last Seen2023-12-05 11:37:44 Times Seen7099 Hash 471fc97e0f884da442b8dc6ac18e204a 5e4fe412d9116c27043a86bd42f03c19418cb635 ed25316f9b1fa338342fa7af622e15a20c0123d200c4bdcbfca53ce5fede3a23 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-05-02
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-05-02 00:00:54 Times Seen343377 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-main.js	121 B	2023-03-07	2024-05-01
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-main.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-05-01 21:57:32 Times Seen45987 Hash da5bb1dc647470204df0e49f5afac2de f5cbf596ca5e4fe208e4c55af6e45b71f9febbe8 705186becc9e0a306a6b4867ae2768aa9dd3b8c12393d9f9c52029e9a6fcf31c Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-07cad36d.js	94 kB	2023-06-02	2023-12-05
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-07cad36d.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09:48 Last Seen2023-12-05 11:37:44 Times Seen10945 Hash c1f0a7a7efb96bfdcdc443a0d6dfd1ca 2fad289307a1e188576c8a9e3103157239c147dd c55670ad77526b0eb69b7fab93da3bf979e4197bafffb5e6802d36aed72249fb Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	363 B	2023-03-13	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 12:27:52 Last Seen2023-06-19 21:02:11 Times Seen5 Hash 55532cf2c7e72bc3c3da19515104d352 e94382ec981b6993d5de45a8ae9944037bd9afe9 bd1b3672ff9b63a78e7a7a65f42455654553df17c7a2bf6d8d6462ea8818f77b Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	503 B	2023-03-13	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 12:27:52 Last Seen2023-06-19 21:02:11 Times Seen5 Hash 17fb82efce4287c56e768c89f050509f 75ca5246e7ec0a54ba9a92e9077c461d931d2445 244684884390f55de3f3b9f26a7491d1ddb98b37321a6a5660e582e7e96ceeba Loading...

	eliteextra.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.21.0	1.3 kB	2023-03-07	2024-05-01
Pretty URL eliteextra.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.21.0 IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:48 Last Seen2024-05-01 20:31:57 Times Seen9532 Hash d71b75b2327258b1d01d50590c1f67ca b7820e4ffb6becc133c48f66d9f683545530b959 1ca76922f55b389b8f590ae7e3bcc3a2dccdce3aff1e5a4335af081b76a414ea Loading...

	player.vimeo.com/video/783404154?dnt=1&app_id=122963	14 kB	2023-06-06	2023-06-06
Pretty URL player.vimeo.com/video/783404154?dnt=1&app_id=122963 IP 162.159.128.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-06 06:54:26 Last Seen2023-06-06 06:54:26 Times Seen1 Hash 55582a2b8aa3fca65b05a5f1253fba2d dee28d2a019f5b5bf0b6673d36e45fe6abc059d9 fb4d8e0973509a754a383f651a1ea88509b73c4d64068741fa7326b8d3fc576e Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	996 B	2023-06-06	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-06 06:54:26 Last Seen2023-06-19 21:02:11 Times Seen3 Hash 713fe929c16821e6a546767850ebb0d7 472362b371aa9b513bc037908ad9a1d0740621d1 3b736c2337c6bb19b3fe7fb7694c1a34e32c2b8aae3b15388ad566dd72efdd33 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	268 B	2023-06-05	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-05 10:31:33 Last Seen2023-06-19 21:02:11 Times Seen4 Hash f41a98000a432657062297962716e39f 35f4c0e80e82699e93ae2d0829949e413e63baa6 b883a0abccaf514ceb991a1ef3ff63716ade9ed751b40f37d793e835706aa8a7 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	268 B	2023-03-13	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 12:27:53 Last Seen2023-06-19 21:02:11 Times Seen5 Hash a4962ccf019c682d1c6a2b0b0bd887e1 418fe054a317d21aa66022df71bf8fb4744c27e3 c8411f6ee4469913e3da5aca1951a06d69b2e9a2c0d56414fea6fdf69c6eff62 Loading...

	unknown	39 B	2023-04-11	2024-05-01
Pretty Introduced by eventHandler Embedded in HTML false Observations First Seen2023-04-11 03:58:47 Last Seen2024-05-01 17:14:35 Times Seen2804 Hash 87b659c90b81604997dd06a67e8b773e bc13329ca575a3e32c93e0e1cf791f47f91b0c2f 1ac445488ebead2ed0b74a9c86ad76fa1a81f363806218afb2ae4aae5f127448 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	89 B	2023-06-05	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-05 10:31:33 Last Seen2023-06-19 21:02:12 Times Seen4 Hash 1db3dc4868fd0c648933bd15c79ba4dc c002595b1200c118a1d8b34a0b1844c55d057a15 19e230425a3080003fb32e923e3d4142ddfe9979cdfa9c5bc0e1678cb4fafe11 Loading...

	eliteextra.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.2.2	1.1 kB	2023-03-29	2024-05-01
Pretty URL eliteextra.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.2.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:52:25 Last Seen2024-05-01 20:31:57 Times Seen6438 Hash 8a5c9689ae636c452b6808740ba04136 8d2c85d7779d00c12aeb6b55a99443952d9a144e 79cb399203843f65199bec32bc4abac5dfd20f141d3e4ec1424bf00c7108fa45 Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-app.js	151 B	2023-03-07	2024-05-01
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-app.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:46 Last Seen2024-05-01 21:57:32 Times Seen46666 Hash e736e189edb5d0d9d5b8e7f23dd9114a bcabee193f13756fa9154fc492fe420c47140343 13cf82e6f9d48221cd55f8b3c3d206f7bdb83f291034b478e484ccfef7d500dd Loading...

	a.omappapi.com/app/js/7.46bf2ce0.min.js	2.9 kB	2023-05-23	2023-06-20
Pretty URL a.omappapi.com/app/js/7.46bf2ce0.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-23 00:00:15 Last Seen2023-06-20 05:57:34 Times Seen41 Hash fd1141f4f9680689b6e4a2e52e1ebdc4 b48c76fcbe81c15159e56b888e183cc43b073e40 d5d62f06936d9ec891eb7fc37b88e98e3eda0b386684fafccc9c5746e6fae7fc Loading...

	js.hs-banner.com/v2/22644969/banner.js	213 kB	2023-06-06	2023-06-06
Pretty URL js.hs-banner.com/v2/22644969/banner.js IP 104.18.25.196 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 06:54:26 Last Seen2023-06-06 06:54:26 Times Seen2 Hash 7c646340ca8b2e29baa15a59c527b9bf f3a2d7aa16b787f69daa2bf0b1f9c9464c0c7d7e 03437fff07fca0ab44c853c3997317dc68b26b24c488fd5fab6e88541d77befb Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	124 B	2023-06-02	2024-01-09
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-02 23:51:09 Last Seen2024-01-09 07:25:46 Times Seen63 Hash 4b0c584e6f0d18c3b96cf9619b4f8f1e b0239fd2de4a6b347601c7b776186950ab14a6e4 d86bfec8b577613c4616f203ce666a530fbacec84a018dbe0dd566b19bdee535 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	563 B	2023-03-13	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 12:27:52 Last Seen2023-06-19 21:02:12 Times Seen5 Hash 9c6a0e76ff121f3cfc6a32007afeed10 0d3d0aa6606dc923eaf73c603788f51ec9414be3 a17bf784df8c9f1db574b352791f32a3043c36e792be5f4068227d1757189994 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	2.1 kB	2023-03-07	2024-05-01
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:09 Last Seen2024-05-01 23:34:17 Times Seen6385 Hash 9cd47ac5a0389a37b4d8e7d194e17c9a 9121da7907e37462c10ce8616f06b5c22f640744 ae37d2523200d80db4a789404c079f2cb1bb172ed526cb27909f929c9d935cda Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/languages/en.js	17 kB	2023-03-07	2024-02-05
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/languages/en.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:47 Last Seen2024-02-05 02:14:35 Times Seen39084 Hash 585ba00b2c167b90c210161454f843b5 89ee8372cc6d5eb307cf5840b70d8f3dab3c57f2 e924ffe8bcc65483510a22a7286bd6d4d204e72ffe5927eec50158f7a7be50c0 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	530 B	2023-06-05	2023-06-19
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-05 10:31:33 Last Seen2023-06-19 21:02:12 Times Seen4 Hash 0f4e946d579f70dfcb0a2af2effd246b ef49f71a3344215a5ae63807f1468c89b28d3706 288480a11543fcb1a23a560504857f9613e10dc97898d9db3edeed8144ed41ee Loading...

	eliteextra.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17	158 kB	2023-03-08	2024-05-01
Pretty URL eliteextra.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:26:25 Last Seen2024-05-01 20:31:58 Times Seen10267 Hash e53ec3d6e21be78115810135f5e956fe 523892839b88351523e0498ba881c4431197b54e b15c3ea03d50c2430490e7416733a254feea4237bb60b54181bd3473ebe4149f Loading...

	eliteextra.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.21.0	8.6 kB	2023-03-07	2024-05-01
Pretty URL eliteextra.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.21.0 IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:02 Last Seen2024-05-01 20:31:57 Times Seen1556 Hash bf7fe805ab945e4b2c4d56da59476811 307135fd2987f477c7bd50fcd0cc28a1cff1f568 b6205029e1016596807b655c8f57818736a787e32ceb1407effa152ac3bb9380 Loading...

	a.omappapi.com/app/js/0.4c34bb83.min.js	6.9 kB	2023-05-22	2023-06-20
Pretty URL a.omappapi.com/app/js/0.4c34bb83.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:53:15 Last Seen2023-06-20 06:25:56 Times Seen118 Hash 905139ecd80e6253a73fe7da9da6a8c5 b225c0825180d5a66f2b3a9b160a684612f247f9 b512f2eb5fdbbd412b6c7976aad1daea7082608784fa23b28d4642c5474799df Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-vendors.js	215 kB	2023-06-02	2023-12-05
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-vendors.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09:48 Last Seen2023-12-05 11:37:43 Times Seen7154 Hash 01b31f3e100a09c2fbb450c0599a9d8e edbc3be35cc8db7965e78c739abdc373bd0147b5 6d6b969806080e1a761470b1f28859f3ff7d1bf3b6b41a2392ef6143af5b0d13 Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b9454.js	535 B	2023-06-02	2024-05-01
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b9454.js IP 172.67.38.66 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09:48 Last Seen2024-05-01 21:57:32 Times Seen32105 Hash c506281367048d4a134c9affbc68c8c6 ffa331eb81694501d6ff64ae2d1f7e667529c3ba 7e0a886153a50f34adeb6d141b542d08a6338c5e3bada9fc3ccf88d0580356df Loading...

	eliteextra.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.4	90 kB	2023-03-29	2024-05-01
Pretty URL eliteextra.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.4 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:52:25 Last Seen2024-05-01 11:53:04 Times Seen102934 Hash 0e850a69bc7fd0acc2e92ce6eee87959 8be6d9e7f7a61ccf0b8eac8a8144d770b608a19c afacce23cb4feaaaef37997f8439819d8f827df4951f3ff02704c9f16fb7f53a Loading...

	player.vimeo.com/video/783404154?dnt=1&app_id=122963	2.6 kB	2023-05-30	2024-05-01
Pretty URL player.vimeo.com/video/783404154?dnt=1&app_id=122963 IP 162.159.128.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-30 16:19:14 Last Seen2024-05-01 21:59:11 Times Seen3932 Hash 7d70ffccf91ab1fa16c1ff5679defe00 652e57ea3052e22b0b856f12d1a3fcc7078215a5 343e9afe006e5a64f2aedc9a4330d6e97de7a014b84e9be2d8a55d3111f3f190 Loading...

	a.omappapi.com/app/js/26.217f8abc.min.js	2.8 kB	2023-05-22	2023-06-19
Pretty URL a.omappapi.com/app/js/26.217f8abc.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:53:16 Last Seen2023-06-19 21:02:12 Times Seen72 Hash b8841452786a9f1691f6109ec31cb39a 98b68a0090b6bf81232dc6ccb5e29703b67f377c 090b8f4d202fe1798217ff5076298aa2d96b723fc6f3c8990e60f3b1a469833f Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	3.4 kB	2023-03-07	2024-05-01
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:09 Last Seen2024-05-01 23:34:17 Times Seen6197 Hash a94b76e45c11675df9f26fd25a8e4359 1cd29363bb1b514e6f7ef031f1831008df181f17 4569f5c3704a88394335b0fabccd6460ba5e582c3058f9286f42cc589da02899 Loading...

	f.vimeocdn.com/p/4.23.28/js/vendor.module.js	400 kB	2023-06-01	2023-06-07
Pretty URL f.vimeocdn.com/p/4.23.28/js/vendor.module.js IP 151.101.246.109 ASN #54113 FASTLY Introduced by importedModule Embedded in HTML false Observations First Seen2023-06-01 20:53:17 Last Seen2023-06-07 16:34:48 Times Seen146 Hash 729ac031eec1128b61864c241f995f9d c9c6b8bb97e79bef90539f0fbf45e453f55f2484 4ed3659bb3b52dd3f04ee2b7dcdbc698180a08884ac2bccc692f447c5124a386 Loading...

	js.hs-scripts.com/22644969.js?integration=WordPress&ver=10.1.24	1.5 kB	2023-06-06	2023-06-06
Pretty URL js.hs-scripts.com/22644969.js?integration=WordPress&ver=10.1.24 IP 104.18.135.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-06 06:54:26 Last Seen2023-06-06 06:54:26 Times Seen1 Hash 8da9fe564c2d165776486249a5e9b1da 575d602a806f213ab5a02d6494916f2997325f95 0a36e1ebeeedecaa0dcc3de4ae760c25f24df8653ad99f3b72badb563e43a4c4 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	1.6 kB	2023-06-06	2023-06-06
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-06 06:54:26 Last Seen2023-06-06 06:54:26 Times Seen1 Hash 4f7e7f53957974ea573b3fee1d02830f 5281839863a1d2cb5cc260d1edf5db0bae350d49 57857fc74fd93d3084cd561cecc9b561d62200001242ecf56d1f53d96fc7133a Loading...

	eliteextra.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.21.0	3.3 kB	2023-03-07	2024-05-01
Pretty URL eliteextra.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/jquery.fitvids.js?ver=4.21.0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:43 Last Seen2024-05-01 17:14:35 Times Seen6206 Hash fa07f10043b891dacdb82f26fd2b42bc 9c1dc49e9747758e033c0e9a7d016401bd78602c 462747422c6af30aa81a0373fa1cfd736455cef52bdbb816f67be9531d84eace Loading...

	a.omappapi.com/app/js/27.f35a62ac.min.js	1.3 kB	2023-05-22	2023-06-20
Pretty URL a.omappapi.com/app/js/27.f35a62ac.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:53:15 Last Seen2023-06-20 06:25:56 Times Seen123 Hash 26199389579218b90dd184d58e77064b 01ef8b7c4d4489de08692c81aba9a59b0ae64bfd 7d1b10a63cdf8028ae5d1ebfdc35dfb610d5723bf62d833b2f9a9b1f9cd2ff44 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	214 B	2023-03-07	2024-05-01
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:06:32 Last Seen2024-05-01 23:34:17 Times Seen1000 Hash f82bb6a69a4493d7b599f566b44dab8c c0605d565ca54c714acd5917c3dbd03c13bcea7d acfb1edfb9b23791a1a109ee24592571c5009a4f341d28d96c86055752e97214 Loading...

	a.omappapi.com/app/js/11.0485dfca.min.js	2.0 kB	2023-05-22	2023-06-20
Pretty URL a.omappapi.com/app/js/11.0485dfca.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:53:15 Last Seen2023-06-20 06:25:56 Times Seen122 Hash 1cab7d681db525525caf6d6ad25b2a1e 8ce9e5e1afca9a252cd8cc767a7032968db2ef8e 0eb3b195796bd34bfe619df29e1bb106e9d438cc76a8d427bd9a186354e28cdd Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2c78ba82.js	7.3 kB	2023-06-02	2023-12-05
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2c78ba82.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09:48 Last Seen2023-12-05 11:37:44 Times Seen6782 Hash a365c34c6cb5f6c0443d0e2a66a93be2 5299a9cbdf266bce1775ce48b642d22f75afbe96 0411bd9e471f272135c9cd02f2a28757862e8b59733f1501d9ad1af2dec5a879 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	79 B	2023-03-07	2024-04-30
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:07:29 Last Seen2024-04-30 01:05:33 Times Seen650 Hash ab1b0ef42311479d7559bffd29ef8d7d ba1509057a5f82563a2b55a7379f4825fe35bcab 37bf8b4db5288941c20c28fd7c0b201d2270201a94739d64462744ffe6b52f79 Loading...

	player.vimeo.com/video/783404154?dnt=1&app_id=122963	129 B	2023-05-30	2024-05-01
Pretty URL player.vimeo.com/video/783404154?dnt=1&app_id=122963 IP 162.159.128.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-30 16:19:14 Last Seen2024-05-01 21:59:11 Times Seen3922 Hash 8e500be2456c7adccd83f363e52ef5bd 327c9f69248844f40f89b9ade646394c825f2a28 95c35c2edce177114158dda90aa3f769080a60b08e437651df026a422da4c17d Loading...

	a.omappapi.com/app/js/9.dab0c387.min.js	1.7 kB	2023-05-22	2023-06-20
Pretty URL a.omappapi.com/app/js/9.dab0c387.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:53:16 Last Seen2023-06-20 06:25:56 Times Seen125 Hash 61b4c6943748c0215141ea315bb9f3bc faab0915d4feb74d726cfaf6c2a0d5db53b04b65 a6a4930427c4ca7452715a144525e4cc5faf463189fd9ab7bfad75ada86336b4 Loading...

	eliteextra.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.2.2	1.2 kB	2023-03-07	2024-05-01
Pretty URL eliteextra.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.2.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-05-01 20:31:57 Times Seen9251 Hash 51300497928562f8c86c7aaba99237cd e5826832b85c6afc6502b74cbb8ac5394b04c363 6d161e98e47ae150b51211443eef37040fb6269dcf85ad2048548066dca99e6f Loading...

	a.omappapi.com/app/js/28.471a76a7.min.js	6.0 kB	2023-05-22	2023-06-20
Pretty URL a.omappapi.com/app/js/28.471a76a7.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:53:16 Last Seen2023-06-20 06:25:56 Times Seen128 Hash b9eca2ef20e1a23bb43ad0d25b9152a7 18175cb4e698bf0003cc35660ffe8e20575c4f68 9e1487afb9546c813f656f2c4e6c33bcadb2cd8b1ee7ea3ed2ee92ac2ebf0bbc Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-vendor.js	83 kB	2023-06-02	2024-03-07
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-vendor.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09:48 Last Seen2024-03-07 20:55:30 Times Seen38138 Hash ce3014b09c6dfbd6f92bc585fd840580 d17abb8d652929260df6a153814560dd5af54424 916c13b184fbc42c59463a47bf90611461bec9e17a10a37def3c751ade00dced Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	2.4 kB	2023-03-07	2024-05-01
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:03:59 Last Seen2024-05-01 03:48:05 Times Seen3811 Hash 49f89aeeb8e861051ed61fc00d636b9b 9077f9d9ebc3b661bb3a81161c6a4e2de2531231 4190f2c4f25f9a34cbbfdb92f91a25359570d773ef7cff97c924e224ad877759 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	227 B	2023-03-29	2024-05-01
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-29 22:52:25 Last Seen2024-05-01 20:31:56 Times Seen3670 Hash 37edbd87e0e3bd955e857e5708a84396 6cd340e477e928eb887bc1e106f8d5226830d2f4 f488626562fab24ee5469e697239245694de3716797188f2dc4c72463a32f9ab Loading...

	player.vimeo.com/video/783404154?dnt=1&app_id=122963	0 B	2023-03-07	2024-05-02
Pretty URL player.vimeo.com/video/783404154?dnt=1&app_id=122963 IP 162.159.128.61 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-02 00:01:26 Times Seen37258508 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	296 B	2023-06-06	2023-06-06
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-06 06:54:26 Last Seen2023-06-06 06:54:26 Times Seen1 Hash cddbe81694dc61ccb1069d5e1b46ca00 3cedaddf052354128a2bd04ec85693432dbb9053 5802d2688157bb18caf111d23c00e82c67b9c5bcf0d5211e04e93efa244a0d4a Loading...

	eliteextra.com/wp-content/plugins/wp-external-links/public/js/wpel-front.js?ver=6.2.2	4.8 kB	2023-03-12	2023-12-30
Pretty URL eliteextra.com/wp-content/plugins/wp-external-links/public/js/wpel-front.js?ver=6.2.2 IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 19:07:14 Last Seen2023-12-30 21:54:09 Times Seen17 Hash aae61ccf620068b8ced84c224dd52570 346500d7f3c1ed8d93e1365fbe6ab61830c75bfb 03d3fea0510800f91167ef49f288f4a571f6bd05a24b7bd92c4df6ef5cf2449f Loading...

	a.omappapi.com/app/js/16.9011206e.min.js	847 B	2023-05-22	2023-06-20
Pretty URL a.omappapi.com/app/js/16.9011206e.min.js IP 194.242.11.186 ASN #34989 ServeTheWorld AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-22 19:53:16 Last Seen2023-06-20 06:25:56 Times Seen127 Hash a9eaedb61de10e73ade2d372f97917bf aa4bc449f59b9f698b13d89759acd0e1edb79b16 bf628c81f952a8cb4713f04b9b2a78e4786e7c99addcfb3ec9599d3da89df89a Loading...

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-48f46bef.js	20 kB	2023-06-02	2023-10-20
Pretty URL embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-48f46bef.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-02 11:09:48 Last Seen2023-10-20 20:50:32 Times Seen10853 Hash cf46dbd8781936ac4cada7e90d8bd7d5 b9d821bc13a46c181ccc8b68b15a352d9e3a3cd6 fb3c890c14210dcec97b3e6dda3a28b4632a1a63a0bea29e421a18a612583031 Loading...

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	194 B	2023-06-06	2023-06-06
Pretty URL eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-06 06:54:26 Last Seen2023-06-06 06:54:26 Times Seen1 Hash af03f64eb01fbfa021b34cbbd25c69db a718c7eb5a2b654283b6ce7365a676d2deb0186a a387b47a2c2f19abbe388dfdcc0841313870c2a5fdce3b27d3db2793df0a196f Loading...

	eliteextra.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.21.0	274 kB	2023-04-28	2024-05-01
Pretty URL eliteextra.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.21.0 IP 173.245.130.198 ASN #11796 AIRSTREAMCOMM-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-28 08:55:30 Last Seen2024-05-01 12:57:55 Times Seen1817 Hash d01712dc614e43de021a98920dfb7208 fd6bef0ce9eccf622cc89736a211f7585fa48074 124999106b36b91138193de6ae365bc2e97ec51e122e2f967318ce3d662b561b Loading...

HTTP Transactions (131)

	URL	IP	Response	Size
	ocsp.r2m02.amazontrust.com/	54.230.80.227		471 B
URL ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 1e91ebdd1b41b9551eb7da87b87cee7b 94743676cff5fe12be12dfd548f2ecbac73157ed a1b8a89e6ddeaab57c96208ade417bc01d65fad591c105b9374cdefd00503c05 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Tue, 06 Jun 2023 04:53:59 GMT Last-Modified: Tue, 06 Jun 2023 04:07:01 GMT Server: ECAcc (dcb/7352) X-Cache: Miss from cloudfront Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 1VatuZ36re4-oTqenuk0MjmnNb-DTxS7fKsXk0yOyCYqbnxb31YSvg== Age: 2818`

	url.avanan.click/v2/___https:/protect-us.mimecast.com/s/dLqbCVOJm6cOr9Y2iGt0b5___.YXAzOm1hcnRlbjphOm86MzY0ZDQzMjFiZWVjNDdlZTI2NmExNmJlYjYwOTc4OTM6Njo0OTM4OmI1OTQ0OGEwODI2ZWQ4MWFkMDgwOWI4NmU1ZGY4MTI0NWFiODY2Y2E1ZGE5NGJmZTAyZDVlOGFiZWE4ODc0NWM6aDpU	3.89.1.23	302 Found	0 B
URL User Request GET HTTP/2 url.avanan.click/v2/___https:/protect-us.mimecast.com/s/dLqbCVOJm6cOr9Y2iGt0b5___.YXAzOm1hcnRlbjphOm86MzY0ZDQzMjFiZWVjNDdlZTI2NmExNmJlYjYwOTc4OTM6Njo0OTM4OmI1OTQ0OGEwODI2ZWQ4MWFkMDgwOWI4NmU1ZGY4MTI0NWFiODY2Y2E1ZGE5NGJmZTAyZDVlOGFiZWE4ODc0NWM6aDpU IP 3.89.1.23:443 ASN #14618 AMAZON-AES Certificate IssuerAmazon Subject.avanan.click Fingerprint92:AC:27:E7:73:6B:83:89:E7:C9:7F:95:38:7E:83:FC:59:02:E8:67 ValidityWed, 22 Feb 2023 00:00:00 GMT - Tue, 13 Feb 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /v2/___https:/protect-us.mimecast.com/s/dLqbCVOJm6cOr9Y2iGt0b5___.YXAzOm1hcnRlbjphOm86MzY0ZDQzMjFiZWVjNDdlZTI2NmExNmJlYjYwOTc4OTM6Njo0OTM4OmI1OTQ0OGEwODI2ZWQ4MWFkMDgwOWI4NmU1ZGY4MTI0NWFiODY2Y2E1ZGE5NGJmZTAyZDVlOGFiZWE4ODc0NWM6aDpU HTTP/1.1 Host: url.avanan.click User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 302 Found date: Tue, 06 Jun 2023 04:53:59 GMT content-length: 0 location: https://protect-us.mimecast.com/s/dLqbCVOJm6cOr9Y2iGt0b5 apigw-requestid: GFJMPh_foAMEJGw= set-cookie: x-cloud-sec-ctp = 556687b1-86ce-4040-b025-418a3ae58c59; Secure; HttpOnly; path=/; expires=05-Jun-2024 04:53:59 GMT X-Firefox-Spdy: h2`

	protect-us.mimecast.com/s/dLqbCVOJm6cOr9Y2iGt0b5	205.139.111.12	307 Temporary Redirect	0 B
URL User Request GET HTTP/1.1 protect-us.mimecast.com/s/dLqbCVOJm6cOr9Y2iGt0b5 IP 205.139.111.12:443 ASN #30031 MIMECAST Certificate IssuerDigiCert Inc Subject.mimecast.com FingerprintE4:2D:2A:92:C3:85:1A:6E:2A:4E:39:EF:1B:0E:C2:A4:BA:5B:CB:DE ValidityFri, 20 Jan 2023 00:00:00 GMT - Tue, 20 Feb 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /s/dLqbCVOJm6cOr9Y2iGt0b5 HTTP/1.1 Host: protect-us.mimecast.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 307 Temporary Redirect Date: Tue, 06 Jun 2023 04:54:00 GMT Content-Length: 0 Connection: keep-alive Location: https://protect-us.mimecast.com/r/ny6VcbTMfG6-li7NaC7GRtweGHQezW3ouVJIBP8q9et9MYq8uQHfXpmQuRMMd8UBFGt27p8Bhd9FQbAnVdRRiHH1zV7U_RmQF_SK0nJHwiKAaS0XHYxLHCwyGI8uBttuZsMCsXFchcAijnpClc0AnbJv5WtwV_77gdDMEBPq9odfy2lGAWMTXM0frti6QSSHsXvF6IHJk7d1NecjzXfDHwWzNvCcfGAGAC-dmpoVCDEr8DaSefJllDO_WRew_1yPakw6jXzmfXAXX4Rk67H5MwVJ9zv61a3xMRa_4tpMY-StFh7zhhAlChRfp0H7TKVKIjSInBlcbWvaP7J4klEfzH001lNgD8HioUwEzoNyqJXn6JoJKOSUcBQyEPu0W9bF9p9V19ZKOquOJZGRMe-uDw9rt82_6GgzmBwy8DUK7VSOQOAPCNMo2y7M_lflvVYpQFrtIZdERhQq0U-T0beuOMSzNxtbq4MIXeBTL0PHAwY4r_sIAdcGT0sgUOcvWZC6K0nkzHzfGW1wiupoDK6Z1MbehMjQvZmXzr53rjL6J03tE2Aaau5NPosbj44iig5Fz1HHRzAawch2U7MpFgyl4XSaXG3lltIep1UBUoL5YIkCuA8M8avvcvovvEPOah81sD5XbThtnoR16ypK0L7ZNVSScDPtS_TkwP4Cse3e3YI-8GuAe2hW8M91SoWs6d6TEq7vT9exHMIQ2UnTnTiyAOeFUU2SV_A4BnsI_8kVUtLegdDc2ZVzFH0WAlS81E6IY1jhwU66GiudG6o3TcVwvtYaqJrsVrmQRmQAyZ1FsImRlr_-wOzh54ql7InxjE9Zj2yN8Ryctw9T9nGFhk8HLvANgqEclhBbbObW2ZQ3ZP4USD0eDwOxrQ4DWwnQvZj74UtQmSQlBCs6F6Ks-fSR5P7knxo35hS_BB9VfNlEVjExJUL-zSqj8RkddPrAYwmoJWUDy0VmkVLX8rE8oV2eDluX0UzWeqAv3n2nQmajaBWKC5SNTyoWUSXkv-ezNaRebuhqsIIWg8qVU_bzBPYo5pXm-Rw2phy7qtFVjvIOYEcO4PhTC0WwL6yDoDdCJUlwTKZaMpj53_DpOA5QKw3oY38rib_H-Kv2KaAoQrnrgg2dKQba-stdXyrmhN0aB0w2vRP_Nl91aLSsD43wsucUgSRj6RMvzqd6Lro2BH0OKuVxjfkHAPblXlbJh5cVigHw9ppQyM50_U16hq9is_taRod1gBIeWwni9qkZij3yEPFtj9i3MHJcxFhxJjtft8ZciMhoCVRNyfHz0gKSOvJuX673F7iLX9aE3SWNhqGqZZkzfJFCL3SL9x9p6WGd6lzNTmmzfxBzVW2jq6IBBfycoXUhhR_7dRDNLmoH9ZiZfDns8dGrZeKtHe6l-o9P2zm-vEev43Do_vP3xyuFBKbpmkPPzaN8f1NOYrwvozyRTIfbv9TYZO0KMyX_WPpXgDss94YyLFtNLfT7fZ0ERKddrNmlfAY6ESC61t4d5izCSCfVgyX8v9hxRXNFu4o0HqlVmdmeIDNesC2u9q6mWihDMRXHqvY15OrJSFm-FLFWzaIie8S4vAFmI0DhSyIvKP3mefsBcXeKNHsVaIAwMPM3FLMNd9E8Cs3lSXyTthsYRFkUb4yx-ZvIw3RmKVkCwi4_cI8Yj1HLCxv_l6nJiSYDB3QWlFjCUPCkMDPaNWjdPCQ2y6VgTQOGY1SbE6l4KuPb87n55zLZSgrxpB_FTEqgY-DJZng0OQHobqpxmjt5urcw9PloNmbLy89jfnf8UTP0kuQiLqzORdEkpLx_rEfWTBZ_vvEzeDEg_DjAF3o8XyE2F2ybLesDvFOrQwlbVZALISGhZ8Un8RKbrHn7qE13q3kIqfS-e3YoXZd857V4fFEAahPrh3soJXcp9jwera2Lql8FQo6x1puk0C3zmUzm-9B-NfaKSJuJaKGpQ-1W_RMtxNA-F5qKgkMwveRpF_HYMGSCyB6Lb-xw18n_3bzH5g6eoxgEeOxMh9VUx1sEKWRS32G7kgGspcPIYWo0JcGc2pxz9XxYbY5RYavMEWM0UhJ2Zc7MF_zO85tZvfJfq3Cxiw6pKCHMmLVClWf4rgGOncV-W6WCmCEk2ds1i-ZQDwYvkS7SFuwmMSWt1EE1G7gtf-dSx2zl6b0N95w07Qifvg-5lPDpzLoElCn47THwti_QIWfmVJVRhiQVXe-_ZebKlnFjBpt8HqMxzhx-V83UGdD7QfcGjX7c48CeIwKcYxcbVvj7e2mnYF39p6TeNKKt2pcxVJQi7KmlvdhDdgnAKxDtdrDoVHankMVJ3BYzr9xGXzgGttSRCRikGFqGQTha9MBRN4kEvlYyvhxfrNUNkQs5yRs59q2vmcVzP0TQLzokZtrh_wdSr0hZbsE1MDk7i9FpK5BH2Oij5MPb5C-AA9IymJkX1xwf27cXlzfOtE2KlEfNhlhybD1-uuVdaM7VTddwerFSKZ3WP4dPw0v51gda-jUwAe2y2SfU-NoYMGmdW2WKGS8K8_D0k5KzUSNc7VrBhcxi9bojdINa6d2b612rKGz6b7Ha5Od8SuUyCutFeTOtSaZ4jW7-aiIQRYPXIoM7S-A5TEqQFM3o574moorMvGakF41g0p7ub52c8e39lqWmzTdyUre2RuQmBOi2qSPppaC4BLXVtyRRBbSCoQ84cMtPUx6ZfRLWdOJ7HPX4diYHzek6AAf7uqPtsG5v1jR6rGpUkJTSc2LvFFbH2t9FegPQAamO-ZQ9iHSXWswojiQmHhcsl8aeLBoWZNiVIPkoi2dOmGWGXX4Tt6KK46BBX1hXRwIPdlYVbLJJWeN5BtHkGCPsCFvjRMVa6E4EV_Vbmv_6X4uvd-7XXeueYUWGxGphx9ucWMIZaU9EH3IrjuwustsOEuNvLsqYydJVTqXkm03Mbu1vP4tNEETl2Mv8CE0tvh5v7gtRQO9I4fBIhfAPravJmCLUefC5VOZbU5T28DYjpR1wwzYLmv2-FsixlPZ1Q70UilJ40jUt2LqTPvxyiWH6tMi1zPHZC5E4aENjSFDQ_As5GFq04LJF7T5xO54aYYpgSYnU6U-OOln2uTvHFs8PUNUXZ8CGK6Zm7sepdjmNTtw9drvFTK4GLDIbeyjh3ajN4TSFqajqCvLcRaRxqsKk7tM6WuF7_HUn5o6oGcIhHc3aogQ8-vnBYTgPVPxTfRN8YcPsJd-4GSAbb2Bq64iKgR4xgkPVYGf_sJAzpGQUxhyQ2EMyQUfSo6AWQOM6lb5yTusjU5SE87F5BDhzJtf9oaPgiCFso36ba-00VYV2lP5cYcebEnKqjkEL5zz-xkEZ_Opn9xSvAZRDPtZIYqaSxanKlrp1n6BWXjKJPDyL_jpFGQu8bR-mLMJ5qvH9qDxZ7yk1ohj0sQn_23o7qSAKEZvYzW8D_5PkRGhu7GW1uPK0wBOrK5Z7pmSUVXf5Qe19XD_7-S74dxob2L-miuwtxFvZNE7cdLvfHq3frBulxIouyECrUpfC-mYhuzxIrZf8PZQB9SXIhll4jDh82hDN85hnhdLOiWaicUMPqCM7ufBPVJJIOLPBSrjKjZExrijGo6o9t02nv-Q-8GhG_U-wc3EZdyTB_h8 Cache-control: no-store Pragma: no-cache X-Robots-Tag: noindex, nofollow

	protect-us.mimecast.com/r/ny6VcbTMfG6-li7NaC7GRtweGHQezW3ouVJIBP8q9et9MYq8uQHfXpmQuRMMd8UBFGt27p8Bhd9FQbAnVdRRiHH1zV7U_RmQF_SK0nJHwiKAaS0XHYxLHCwyGI8uBttuZsMCsXFchcAijnpClc0AnbJv5WtwV_77gdDMEBPq9odfy2lGAWMTXM0frti6QSSHsXvF6IHJk7d1NecjzXfDHwWzNvCcfGAGAC-dmpoVCDEr8DaSefJllDO_WRew_1yPakw6jXzmfXAXX4Rk67H5MwVJ9zv61a3xMRa_4tpMY-StFh7zhhAlChRfp0H7TKVKIjSInBlcbWvaP7J4klEfzH001lNgD8HioUwEzoNyqJXn6JoJKOSUcBQyEPu0W9bF9p9V19ZKOquOJZGRMe-uDw9rt82_6GgzmBwy8DUK7VSOQOAPCNMo2y7M_lflvVYpQFrtIZdERhQq0U-T0beuOMSzNxtbq4MIXeBTL0PHAwY4r_sIAdcGT0sgUOcvWZC6K0nkzHzfGW1wiupoDK6Z1MbehMjQvZmXzr53rjL6J03tE2Aaau5NPosbj44iig5Fz1HHRzAawch2U7MpFgyl4XSaXG3lltIep1UBUoL5YIkCuA8M8avvcvovvEPOah81sD5XbThtnoR16ypK0L7ZNVSScDPtS_TkwP4Cse3e3YI-8GuAe2hW8M91SoWs6d6TEq7vT9exHMIQ2UnTnTiyAOeFUU2SV_A4BnsI_8kVUtLegdDc2ZVzFH0WAlS81E6IY1jhwU66GiudG6o3TcVwvtYaqJrsVrmQRmQAyZ1FsImRlr_-wOzh54ql7InxjE9Zj2yN8Ryctw9T9nGFhk8HLvANgqEclhBbbObW2ZQ3ZP4USD0eDwOxrQ4DWwnQvZj74UtQmSQlBCs6F6Ks-fSR5P7knxo35hS_BB9VfNlEVjExJUL-zSqj8RkddPrAYwmoJWUDy0VmkVLX8rE8oV2eDluX0UzWeqAv3n2nQmajaBWKC5SNTyoWUSXkv-ezNaRebuhqsIIWg8qVU_bzBPYo5pXm-Rw2phy7qtFVjvIOYEcO4PhTC0WwL6yDoDdCJUlwTKZaMpj53_DpOA5QKw3oY38rib_H-Kv2KaAoQrnrgg2dKQba-stdXyrmhN0aB0w2vRP_Nl91aLSsD43wsucUgSRj6RMvzqd6Lro2BH0OKuVxjfkHAPblXlbJh5cVigHw9ppQyM50_U16hq9is_taRod1gBIeWwni9qkZij3yEPFtj9i3MHJcxFhxJjtft8ZciMhoCVRNyfHz0gKSOvJuX673F7iLX9aE3SWNhqGqZZkzfJFCL3SL9x9p6WGd6lzNTmmzfxBzVW2jq6IBBfycoXUhhR_7dRDNLmoH9ZiZfDns8dGrZeKtHe6l-o9P2zm-vEev43Do_vP3xyuFBKbpmkPPzaN8f1NOYrwvozyRTIfbv9TYZO0KMyX_WPpXgDss94YyLFtNLfT7fZ0ERKddrNmlfAY6ESC61t4d5izCSCfVgyX8v9hxRXNFu4o0HqlVmdmeIDNesC2u9q6mWihDMRXHqvY15OrJSFm-FLFWzaIie8S4vAFmI0DhSyIvKP3mefsBcXeKNHsVaIAwMPM3FLMNd9E8Cs3lSXyTthsYRFkUb4yx-ZvIw3RmKVkCwi4_cI8Yj1HLCxv_l6nJiSYDB3QWlFjCUPCkMDPaNWjdPCQ2y6VgTQOGY1SbE6l4KuPb87n55zLZSgrxpB_FTEqgY-DJZng0OQHobqpxmjt5urcw9PloNmbLy89jfnf8UTP0kuQiLqzORdEkpLx_rEfWTBZ_vvEzeDEg_DjAF3o8XyE2F2ybLesDvFOrQwlbVZALISGhZ8Un8RKbrHn7qE13q3kIqfS-e3YoXZd857V4fFEAahPrh3soJXcp9jwera2Lql8FQo6x1puk0C3zmUzm-9B-NfaKSJuJaKGpQ-1W_RMtxNA-F5qKgkMwveRpF_HYMGSCyB6Lb-xw18n_3bzH5g6eoxgEeOxMh9VUx1sEKWRS32G7kgGspcPIYWo0JcGc2pxz9XxYbY5RYavMEWM0UhJ2Zc7MF_zO85tZvfJfq3Cxiw6pKCHMmLVClWf4rgGOncV-W6WCmCEk2ds1i-ZQDwYvkS7SFuwmMSWt1EE1G7gtf-dSx2zl6b0N95w07Qifvg-5lPDpzLoElCn47THwti_QIWfmVJVRhiQVXe-_ZebKlnFjBpt8HqMxzhx-V83UGdD7QfcGjX7c48CeIwKcYxcbVvj7e2mnYF39p6TeNKKt2pcxVJQi7KmlvdhDdgnAKxDtdrDoVHankMVJ3BYzr9xGXzgGttSRCRikGFqGQTha9MBRN4kEvlYyvhxfrNUNkQs5yRs59q2vmcVzP0TQLzokZtrh_wdSr0hZbsE1MDk7i9FpK5BH2Oij5MPb5C-AA9IymJkX1xwf27cXlzfOtE2KlEfNhlhybD1-uuVdaM7VTddwerFSKZ3WP4dPw0v51gda-jUwAe2y2SfU-NoYMGmdW2WKGS8K8_D0k5KzUSNc7VrBhcxi9bojdINa6d2b612rKGz6b7Ha5Od8SuUyCutFeTOtSaZ4jW7-aiIQRYPXIoM7S-A5TEqQFM3o574moorMvGakF41g0p7ub52c8e39lqWmzTdyUre2RuQmBOi2qSPppaC4BLXVtyRRBbSCoQ84cMtPUx6ZfRLWdOJ7HPX4diYHzek6AAf7uqPtsG5v1jR6rGpUkJTSc2LvFFbH2t9FegPQAamO-ZQ9iHSXWswojiQmHhcsl8aeLBoWZNiVIPkoi2dOmGWGXX4Tt6KK46BBX1hXRwIPdlYVbLJJWeN5BtHkGCPsCFvjRMVa6E4EV_Vbmv_6X4uvd-7XXeueYUWGxGphx9ucWMIZaU9EH3IrjuwustsOEuNvLsqYydJVTqXkm03Mbu1vP4tNEETl2Mv8CE0tvh5v7gtRQO9I4fBIhfAPravJmCLUefC5VOZbU5T28DYjpR1wwzYLmv2-FsixlPZ1Q70UilJ40jUt2LqTPvxyiWH6tMi1zPHZC5E4aENjSFDQ_As5GFq04LJF7T5xO54aYYpgSYnU6U-OOln2uTvHFs8PUNUXZ8CGK6Zm7sepdjmNTtw9drvFTK4GLDIbeyjh3ajN4TSFqajqCvLcRaRxqsKk7tM6WuF7_HUn5o6oGcIhHc3aogQ8-vnBYTgPVPxTfRN8YcPsJd-4GSAbb2Bq64iKgR4xgkPVYGf_sJAzpGQUxhyQ2EMyQUfSo6AWQOM6lb5yTusjU5SE87F5BDhzJtf9oaPgiCFso36ba-00VYV2lP5cYcebEnKqjkEL5zz-xkEZ_Opn9xSvAZRDPtZIYqaSxanKlrp1n6BWXjKJPDyL_jpFGQu8bR-mLMJ5qvH9qDxZ7yk1ohj0sQn_23o7qSAKEZvYzW8D_5PkRGhu7GW1uPK0wBOrK5Z7pmSUVXf5Qe19XD_7-S74dxob2L-miuwtxFvZNE7cdLvfHq3frBulxIouyECrUpfC-mYhuzxIrZf8PZQB9SXIhll4jDh82hDN85hnhdLOiWaicUMPqCM7ufBPVJJIOLPBSrjKjZExrijGo6o9t02nv-Q-8GhG_U-wc3EZdyTB_h8	205.139.111.12		0 B
URL protect-us.mimecast.com/r/ny6VcbTMfG6-li7NaC7GRtweGHQezW3ouVJIBP8q9et9MYq8uQHfXpmQuRMMd8UBFGt27p8Bhd9FQbAnVdRRiHH1zV7U_RmQF_SK0nJHwiKAaS0XHYxLHCwyGI8uBttuZsMCsXFchcAijnpClc0AnbJv5WtwV_77gdDMEBPq9odfy2lGAWMTXM0frti6QSSHsXvF6IHJk7d1NecjzXfDHwWzNvCcfGAGAC-dmpoVCDEr8DaSefJllDO_WRew_1yPakw6jXzmfXAXX4Rk67H5MwVJ9zv61a3xMRa_4tpMY-StFh7zhhAlChRfp0H7TKVKIjSInBlcbWvaP7J4klEfzH001lNgD8HioUwEzoNyqJXn6JoJKOSUcBQyEPu0W9bF9p9V19ZKOquOJZGRMe-uDw9rt82_6GgzmBwy8DUK7VSOQOAPCNMo2y7M_lflvVYpQFrtIZdERhQq0U-T0beuOMSzNxtbq4MIXeBTL0PHAwY4r_sIAdcGT0sgUOcvWZC6K0nkzHzfGW1wiupoDK6Z1MbehMjQvZmXzr53rjL6J03tE2Aaau5NPosbj44iig5Fz1HHRzAawch2U7MpFgyl4XSaXG3lltIep1UBUoL5YIkCuA8M8avvcvovvEPOah81sD5XbThtnoR16ypK0L7ZNVSScDPtS_TkwP4Cse3e3YI-8GuAe2hW8M91SoWs6d6TEq7vT9exHMIQ2UnTnTiyAOeFUU2SV_A4BnsI_8kVUtLegdDc2ZVzFH0WAlS81E6IY1jhwU66GiudG6o3TcVwvtYaqJrsVrmQRmQAyZ1FsImRlr_-wOzh54ql7InxjE9Zj2yN8Ryctw9T9nGFhk8HLvANgqEclhBbbObW2ZQ3ZP4USD0eDwOxrQ4DWwnQvZj74UtQmSQlBCs6F6Ks-fSR5P7knxo35hS_BB9VfNlEVjExJUL-zSqj8RkddPrAYwmoJWUDy0VmkVLX8rE8oV2eDluX0UzWeqAv3n2nQmajaBWKC5SNTyoWUSXkv-ezNaRebuhqsIIWg8qVU_bzBPYo5pXm-Rw2phy7qtFVjvIOYEcO4PhTC0WwL6yDoDdCJUlwTKZaMpj53_DpOA5QKw3oY38rib_H-Kv2KaAoQrnrgg2dKQba-stdXyrmhN0aB0w2vRP_Nl91aLSsD43wsucUgSRj6RMvzqd6Lro2BH0OKuVxjfkHAPblXlbJh5cVigHw9ppQyM50_U16hq9is_taRod1gBIeWwni9qkZij3yEPFtj9i3MHJcxFhxJjtft8ZciMhoCVRNyfHz0gKSOvJuX673F7iLX9aE3SWNhqGqZZkzfJFCL3SL9x9p6WGd6lzNTmmzfxBzVW2jq6IBBfycoXUhhR_7dRDNLmoH9ZiZfDns8dGrZeKtHe6l-o9P2zm-vEev43Do_vP3xyuFBKbpmkPPzaN8f1NOYrwvozyRTIfbv9TYZO0KMyX_WPpXgDss94YyLFtNLfT7fZ0ERKddrNmlfAY6ESC61t4d5izCSCfVgyX8v9hxRXNFu4o0HqlVmdmeIDNesC2u9q6mWihDMRXHqvY15OrJSFm-FLFWzaIie8S4vAFmI0DhSyIvKP3mefsBcXeKNHsVaIAwMPM3FLMNd9E8Cs3lSXyTthsYRFkUb4yx-ZvIw3RmKVkCwi4_cI8Yj1HLCxv_l6nJiSYDB3QWlFjCUPCkMDPaNWjdPCQ2y6VgTQOGY1SbE6l4KuPb87n55zLZSgrxpB_FTEqgY-DJZng0OQHobqpxmjt5urcw9PloNmbLy89jfnf8UTP0kuQiLqzORdEkpLx_rEfWTBZ_vvEzeDEg_DjAF3o8XyE2F2ybLesDvFOrQwlbVZALISGhZ8Un8RKbrHn7qE13q3kIqfS-e3YoXZd857V4fFEAahPrh3soJXcp9jwera2Lql8FQo6x1puk0C3zmUzm-9B-NfaKSJuJaKGpQ-1W_RMtxNA-F5qKgkMwveRpF_HYMGSCyB6Lb-xw18n_3bzH5g6eoxgEeOxMh9VUx1sEKWRS32G7kgGspcPIYWo0JcGc2pxz9XxYbY5RYavMEWM0UhJ2Zc7MF_zO85tZvfJfq3Cxiw6pKCHMmLVClWf4rgGOncV-W6WCmCEk2ds1i-ZQDwYvkS7SFuwmMSWt1EE1G7gtf-dSx2zl6b0N95w07Qifvg-5lPDpzLoElCn47THwti_QIWfmVJVRhiQVXe-_ZebKlnFjBpt8HqMxzhx-V83UGdD7QfcGjX7c48CeIwKcYxcbVvj7e2mnYF39p6TeNKKt2pcxVJQi7KmlvdhDdgnAKxDtdrDoVHankMVJ3BYzr9xGXzgGttSRCRikGFqGQTha9MBRN4kEvlYyvhxfrNUNkQs5yRs59q2vmcVzP0TQLzokZtrh_wdSr0hZbsE1MDk7i9FpK5BH2Oij5MPb5C-AA9IymJkX1xwf27cXlzfOtE2KlEfNhlhybD1-uuVdaM7VTddwerFSKZ3WP4dPw0v51gda-jUwAe2y2SfU-NoYMGmdW2WKGS8K8_D0k5KzUSNc7VrBhcxi9bojdINa6d2b612rKGz6b7Ha5Od8SuUyCutFeTOtSaZ4jW7-aiIQRYPXIoM7S-A5TEqQFM3o574moorMvGakF41g0p7ub52c8e39lqWmzTdyUre2RuQmBOi2qSPppaC4BLXVtyRRBbSCoQ84cMtPUx6ZfRLWdOJ7HPX4diYHzek6AAf7uqPtsG5v1jR6rGpUkJTSc2LvFFbH2t9FegPQAamO-ZQ9iHSXWswojiQmHhcsl8aeLBoWZNiVIPkoi2dOmGWGXX4Tt6KK46BBX1hXRwIPdlYVbLJJWeN5BtHkGCPsCFvjRMVa6E4EV_Vbmv_6X4uvd-7XXeueYUWGxGphx9ucWMIZaU9EH3IrjuwustsOEuNvLsqYydJVTqXkm03Mbu1vP4tNEETl2Mv8CE0tvh5v7gtRQO9I4fBIhfAPravJmCLUefC5VOZbU5T28DYjpR1wwzYLmv2-FsixlPZ1Q70UilJ40jUt2LqTPvxyiWH6tMi1zPHZC5E4aENjSFDQ_As5GFq04LJF7T5xO54aYYpgSYnU6U-OOln2uTvHFs8PUNUXZ8CGK6Zm7sepdjmNTtw9drvFTK4GLDIbeyjh3ajN4TSFqajqCvLcRaRxqsKk7tM6WuF7_HUn5o6oGcIhHc3aogQ8-vnBYTgPVPxTfRN8YcPsJd-4GSAbb2Bq64iKgR4xgkPVYGf_sJAzpGQUxhyQ2EMyQUfSo6AWQOM6lb5yTusjU5SE87F5BDhzJtf9oaPgiCFso36ba-00VYV2lP5cYcebEnKqjkEL5zz-xkEZ_Opn9xSvAZRDPtZIYqaSxanKlrp1n6BWXjKJPDyL_jpFGQu8bR-mLMJ5qvH9qDxZ7yk1ohj0sQn_23o7qSAKEZvYzW8D_5PkRGhu7GW1uPK0wBOrK5Z7pmSUVXf5Qe19XD_7-S74dxob2L-miuwtxFvZNE7cdLvfHq3frBulxIouyECrUpfC-mYhuzxIrZf8PZQB9SXIhll4jDh82hDN85hnhdLOiWaicUMPqCM7ufBPVJJIOLPBSrjKjZExrijGo6o9t02nv-Q-8GhG_U-wc3EZdyTB_h8 IP 205.139.111.12:0 ASN #30031 MIMECAST Certificate IssuerDigiCert Inc Subject.mimecast.com FingerprintE4:2D:2A:92:C3:85:1A:6E:2A:4E:39:EF:1B:0E:C2:A4:BA:5B:CB:DE ValidityFri, 20 Jan 2023 00:00:00 GMT - Tue, 20 Feb 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /r/ny6VcbTMfG6-li7NaC7GRtweGHQezW3ouVJIBP8q9et9MYq8uQHfXpmQuRMMd8UBFGt27p8Bhd9FQbAnVdRRiHH1zV7U_RmQF_SK0nJHwiKAaS0XHYxLHCwyGI8uBttuZsMCsXFchcAijnpClc0AnbJv5WtwV_77gdDMEBPq9odfy2lGAWMTXM0frti6QSSHsXvF6IHJk7d1NecjzXfDHwWzNvCcfGAGAC-dmpoVCDEr8DaSefJllDO_WRew_1yPakw6jXzmfXAXX4Rk67H5MwVJ9zv61a3xMRa_4tpMY-StFh7zhhAlChRfp0H7TKVKIjSInBlcbWvaP7J4klEfzH001lNgD8HioUwEzoNyqJXn6JoJKOSUcBQyEPu0W9bF9p9V19ZKOquOJZGRMe-uDw9rt82_6GgzmBwy8DUK7VSOQOAPCNMo2y7M_lflvVYpQFrtIZdERhQq0U-T0beuOMSzNxtbq4MIXeBTL0PHAwY4r_sIAdcGT0sgUOcvWZC6K0nkzHzfGW1wiupoDK6Z1MbehMjQvZmXzr53rjL6J03tE2Aaau5NPosbj44iig5Fz1HHRzAawch2U7MpFgyl4XSaXG3lltIep1UBUoL5YIkCuA8M8avvcvovvEPOah81sD5XbThtnoR16ypK0L7ZNVSScDPtS_TkwP4Cse3e3YI-8GuAe2hW8M91SoWs6d6TEq7vT9exHMIQ2UnTnTiyAOeFUU2SV_A4BnsI_8kVUtLegdDc2ZVzFH0WAlS81E6IY1jhwU66GiudG6o3TcVwvtYaqJrsVrmQRmQAyZ1FsImRlr_-wOzh54ql7InxjE9Zj2yN8Ryctw9T9nGFhk8HLvANgqEclhBbbObW2ZQ3ZP4USD0eDwOxrQ4DWwnQvZj74UtQmSQlBCs6F6Ks-fSR5P7knxo35hS_BB9VfNlEVjExJUL-zSqj8RkddPrAYwmoJWUDy0VmkVLX8rE8oV2eDluX0UzWeqAv3n2nQmajaBWKC5SNTyoWUSXkv-ezNaRebuhqsIIWg8qVU_bzBPYo5pXm-Rw2phy7qtFVjvIOYEcO4PhTC0WwL6yDoDdCJUlwTKZaMpj53_DpOA5QKw3oY38rib_H-Kv2KaAoQrnrgg2dKQba-stdXyrmhN0aB0w2vRP_Nl91aLSsD43wsucUgSRj6RMvzqd6Lro2BH0OKuVxjfkHAPblXlbJh5cVigHw9ppQyM50_U16hq9is_taRod1gBIeWwni9qkZij3yEPFtj9i3MHJcxFhxJjtft8ZciMhoCVRNyfHz0gKSOvJuX673F7iLX9aE3SWNhqGqZZkzfJFCL3SL9x9p6WGd6lzNTmmzfxBzVW2jq6IBBfycoXUhhR_7dRDNLmoH9ZiZfDns8dGrZeKtHe6l-o9P2zm-vEev43Do_vP3xyuFBKbpmkPPzaN8f1NOYrwvozyRTIfbv9TYZO0KMyX_WPpXgDss94YyLFtNLfT7fZ0ERKddrNmlfAY6ESC61t4d5izCSCfVgyX8v9hxRXNFu4o0HqlVmdmeIDNesC2u9q6mWihDMRXHqvY15OrJSFm-FLFWzaIie8S4vAFmI0DhSyIvKP3mefsBcXeKNHsVaIAwMPM3FLMNd9E8Cs3lSXyTthsYRFkUb4yx-ZvIw3RmKVkCwi4_cI8Yj1HLCxv_l6nJiSYDB3QWlFjCUPCkMDPaNWjdPCQ2y6VgTQOGY1SbE6l4KuPb87n55zLZSgrxpB_FTEqgY-DJZng0OQHobqpxmjt5urcw9PloNmbLy89jfnf8UTP0kuQiLqzORdEkpLx_rEfWTBZ_vvEzeDEg_DjAF3o8XyE2F2ybLesDvFOrQwlbVZALISGhZ8Un8RKbrHn7qE13q3kIqfS-e3YoXZd857V4fFEAahPrh3soJXcp9jwera2Lql8FQo6x1puk0C3zmUzm-9B-NfaKSJuJaKGpQ-1W_RMtxNA-F5qKgkMwveRpF_HYMGSCyB6Lb-xw18n_3bzH5g6eoxgEeOxMh9VUx1sEKWRS32G7kgGspcPIYWo0JcGc2pxz9XxYbY5RYavMEWM0UhJ2Zc7MF_zO85tZvfJfq3Cxiw6pKCHMmLVClWf4rgGOncV-W6WCmCEk2ds1i-ZQDwYvkS7SFuwmMSWt1EE1G7gtf-dSx2zl6b0N95w07Qifvg-5lPDpzLoElCn47THwti_QIWfmVJVRhiQVXe-_ZebKlnFjBpt8HqMxzhx-V83UGdD7QfcGjX7c48CeIwKcYxcbVvj7e2mnYF39p6TeNKKt2pcxVJQi7KmlvdhDdgnAKxDtdrDoVHankMVJ3BYzr9xGXzgGttSRCRikGFqGQTha9MBRN4kEvlYyvhxfrNUNkQs5yRs59q2vmcVzP0TQLzokZtrh_wdSr0hZbsE1MDk7i9FpK5BH2Oij5MPb5C-AA9IymJkX1xwf27cXlzfOtE2KlEfNhlhybD1-uuVdaM7VTddwerFSKZ3WP4dPw0v51gda-jUwAe2y2SfU-NoYMGmdW2WKGS8K8_D0k5KzUSNc7VrBhcxi9bojdINa6d2b612rKGz6b7Ha5Od8SuUyCutFeTOtSaZ4jW7-aiIQRYPXIoM7S-A5TEqQFM3o574moorMvGakF41g0p7ub52c8e39lqWmzTdyUre2RuQmBOi2qSPppaC4BLXVtyRRBbSCoQ84cMtPUx6ZfRLWdOJ7HPX4diYHzek6AAf7uqPtsG5v1jR6rGpUkJTSc2LvFFbH2t9FegPQAamO-ZQ9iHSXWswojiQmHhcsl8aeLBoWZNiVIPkoi2dOmGWGXX4Tt6KK46BBX1hXRwIPdlYVbLJJWeN5BtHkGCPsCFvjRMVa6E4EV_Vbmv_6X4uvd-7XXeueYUWGxGphx9ucWMIZaU9EH3IrjuwustsOEuNvLsqYydJVTqXkm03Mbu1vP4tNEETl2Mv8CE0tvh5v7gtRQO9I4fBIhfAPravJmCLUefC5VOZbU5T28DYjpR1wwzYLmv2-FsixlPZ1Q70UilJ40jUt2LqTPvxyiWH6tMi1zPHZC5E4aENjSFDQ_As5GFq04LJF7T5xO54aYYpgSYnU6U-OOln2uTvHFs8PUNUXZ8CGK6Zm7sepdjmNTtw9drvFTK4GLDIbeyjh3ajN4TSFqajqCvLcRaRxqsKk7tM6WuF7_HUn5o6oGcIhHc3aogQ8-vnBYTgPVPxTfRN8YcPsJd-4GSAbb2Bq64iKgR4xgkPVYGf_sJAzpGQUxhyQ2EMyQUfSo6AWQOM6lb5yTusjU5SE87F5BDhzJtf9oaPgiCFso36ba-00VYV2lP5cYcebEnKqjkEL5zz-xkEZ_Opn9xSvAZRDPtZIYqaSxanKlrp1n6BWXjKJPDyL_jpFGQu8bR-mLMJ5qvH9qDxZ7yk1ohj0sQn_23o7qSAKEZvYzW8D_5PkRGhu7GW1uPK0wBOrK5Z7pmSUVXf5Qe19XD_7-S74dxob2L-miuwtxFvZNE7cdLvfHq3frBulxIouyECrUpfC-mYhuzxIrZf8PZQB9SXIhll4jDh82hDN85hnhdLOiWaicUMPqCM7ufBPVJJIOLPBSrjKjZExrijGo6o9t02nv-Q-8GhG_U-wc3EZdyTB_h8 HTTP/1.1 Host: protect-us.mimecast.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 307 Temporary Redirect Date: Tue, 06 Jun 2023 04:54:00 GMT Content-Length: 0 Connection: keep-alive Location: https://u15333372.ct.sendgrid.net/ls/click?upn=tcjvwtgkajssLOnJZkrnQmKqyAYcOVZfmASusWAVXrjeTDfxF1LcO6-2BkKNSlBf6tOfQRjNPrOnSRV4iF4HyhHNJczl8DoOr7tdTbh3jIDpE-3D7E29_ghRD3AeEDcGlyADbqxA0fRBaw-2FkdoAPuP9-2FH57LiR8Z7XWCaFmnFqm4mobe4bFAikTaBY70evQS9Q1OYu2k30okngSLBdB3DBs3wuIqyhd2Yb66CpIp-2Bc5OzNjhvyQb93fj-2F1mstQMqOeUGA9pGi1MzNHM6BSg6WkdSofHThAbDg7J6dGa5hvu3STGRbD4ALtkfIoy18OYqemEYc-2F1vF8hwKqabKrgvJ8G-2FJvpj-2FqJ4xwRv80GTD-2BfqdP1LJRm-2FdKAs69LqWHXUw3DbhbMlpzzF-2B8RPmFhLZEN3Mgh2PZa3qLZaWuaLuAlvR6PDFEmM1S0MonQsGqqOiFUmr6LeElGZWfPndGoIen0wHjvMIOJ8-2Fnr1XUDe7LxQM4rVCMo1qbBEUsxr7R-2BQ3Do-2BWTXlXr-2BZj1DLXBNrojIPow0qTkL1gilkN5sURHscZW26bSZDExypV1ExZkDPeR2LjyqYe-2F-2FrKeQlk3opNBmXvaEJFz74773IViF82N6jK3-2BANAAUpicHJAH279qyO6mlzwTNrsFxPMUIMRDTifjAWu-2FpAALQjB3ltSumVa8FoBph5ME1Z0PWTixXpSi7Q8LZt-2FITlDBykUReVS45s7tW5hjzkjujyaZpBz0X-2Bv2HrZNFp4Ev5DQolOFlkcIUA4YXtPq8HVqhRToa2bZq86oEMZrHdkN5KrfeAoECt7WIZwBGCENasUqe8Da6SgCmR28vsTuN10RfUZDs6DP0eLBSvC7rTIU6tKYWfy4Rdvi5gmNjUwhWT61zFP0FLOwMHrkvepeG14mVeQMyIFnK4zVulTcrpqeI83sPapEHyh9PP6mrkMhsOdWHaKFHWfOSF6aphZ4Miq-2FeatvYDPx-2F44aa1jD7wSOC1kKKXAOA-2BsTnkm1Zs0u6VRF-2F5KMrNGeG3-2F-2B-2Fp03kG5-2BRhjDvCiZG9yaf4uxpso2Ds9g0f5FpvJTvPhSm2bjjtUcpEnhWq3tHYhzUd8sDNaQHZ6zf1o2aQxSjK7lxBNZ5ueDtkqbr7dXtRPQuqBHJ-2BNZVpgVQzph4GKuW-2BLCGG8XXBtucgJqPiMeqzs2hd-2FlI-3D Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Cache-control: no-store Pragma: no-cache X-Robots-Tag: noindex, nofollow

	ocsp.godaddy.com/	192.124.249.41		1.8 kB
URL ocsp.godaddy.com/ IP 192.124.249.41:0 ASN #30148 SUCURI-SEC File type data Size 1.8 kB (1778 bytes) Hash b42842ad2d3522fffaf5ec0e2589ef4e f6fff4a5f162c07a3aa07d2c6dafd4864b20b3a2 4ba6abad79d5de99b6226bfa6ed7a52ba8141704b9cdfc4f2cb836a55a2eb6b1 HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 76 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Tue, 06 Jun 2023 04:54:00 GMT Content-Type: application/ocsp-response Content-Length: 1778 Connection: keep-alive X-Sucuri-ID: 19041 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Mon, 05 Jun 2023 21:17:08 GMT Expires: Tue, 06 Jun 2023 21:17:08 GMT ETag: "f6fff4a5f162c07a3aa07d2c6dafd4864b20b3a2" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	u15333372.ct.sendgrid.net/ls/click?upn=tcjvwtgkajssLOnJZkrnQmKqyAYcOVZfmASusWAVXrjeTDfxF1LcO6-2BkKNSlBf6tOfQRjNPrOnSRV4iF4HyhHNJczl8DoOr7tdTbh3jIDpE-3D7E29_ghRD3AeEDcGlyADbqxA0fRBaw-2FkdoAPuP9-2FH57LiR8Z7XWCaFmnFqm4mobe4bFAikTaBY70evQS9Q1OYu2k30okngSLBdB3DBs3wuIqyhd2Yb66CpIp-2Bc5OzNjhvyQb93fj-2F1mstQMqOeUGA9pGi1MzNHM6BSg6WkdSofHThAbDg7J6dGa5hvu3STGRbD4ALtkfIoy18OYqemEYc-2F1vF8hwKqabKrgvJ8G-2FJvpj-2FqJ4xwRv80GTD-2BfqdP1LJRm-2FdKAs69LqWHXUw3DbhbMlpzzF-2B8RPmFhLZEN3Mgh2PZa3qLZaWuaLuAlvR6PDFEmM1S0MonQsGqqOiFUmr6LeElGZWfPndGoIen0wHjvMIOJ8-2Fnr1XUDe7LxQM4rVCMo1qbBEUsxr7R-2BQ3Do-2BWTXlXr-2BZj1DLXBNrojIPow0qTkL1gilkN5sURHscZW26bSZDExypV1ExZkDPeR2LjyqYe-2F-2FrKeQlk3opNBmXvaEJFz74773IViF82N6jK3-2BANAAUpicHJAH279qyO6mlzwTNrsFxPMUIMRDTifjAWu-2FpAALQjB3ltSumVa8FoBph5ME1Z0PWTixXpSi7Q8LZt-2FITlDBykUReVS45s7tW5hjzkjujyaZpBz0X-2Bv2HrZNFp4Ev5DQolOFlkcIUA4YXtPq8HVqhRToa2bZq86oEMZrHdkN5KrfeAoECt7WIZwBGCENasUqe8Da6SgCmR28vsTuN10RfUZDs6DP0eLBSvC7rTIU6tKYWfy4Rdvi5gmNjUwhWT61zFP0FLOwMHrkvepeG14mVeQMyIFnK4zVulTcrpqeI83sPapEHyh9PP6mrkMhsOdWHaKFHWfOSF6aphZ4Miq-2FeatvYDPx-2F44aa1jD7wSOC1kKKXAOA-2BsTnkm1Zs0u6VRF-2F5KMrNGeG3-2F-2B-2Fp03kG5-2BRhjDvCiZG9yaf4uxpso2Ds9g0f5FpvJTvPhSm2bjjtUcpEnhWq3tHYhzUd8sDNaQHZ6zf1o2aQxSjK7lxBNZ5ueDtkqbr7dXtRPQuqBHJ-2BNZVpgVQzph4GKuW-2BLCGG8XXBtucgJqPiMeqzs2hd-2FlI-3D	167.89.123.16	302 Found	90 B
URL User Request GET HTTP/1.1 u15333372.ct.sendgrid.net/ls/click?upn=tcjvwtgkajssLOnJZkrnQmKqyAYcOVZfmASusWAVXrjeTDfxF1LcO6-2BkKNSlBf6tOfQRjNPrOnSRV4iF4HyhHNJczl8DoOr7tdTbh3jIDpE-3D7E29_ghRD3AeEDcGlyADbqxA0fRBaw-2FkdoAPuP9-2FH57LiR8Z7XWCaFmnFqm4mobe4bFAikTaBY70evQS9Q1OYu2k30okngSLBdB3DBs3wuIqyhd2Yb66CpIp-2Bc5OzNjhvyQb93fj-2F1mstQMqOeUGA9pGi1MzNHM6BSg6WkdSofHThAbDg7J6dGa5hvu3STGRbD4ALtkfIoy18OYqemEYc-2F1vF8hwKqabKrgvJ8G-2FJvpj-2FqJ4xwRv80GTD-2BfqdP1LJRm-2FdKAs69LqWHXUw3DbhbMlpzzF-2B8RPmFhLZEN3Mgh2PZa3qLZaWuaLuAlvR6PDFEmM1S0MonQsGqqOiFUmr6LeElGZWfPndGoIen0wHjvMIOJ8-2Fnr1XUDe7LxQM4rVCMo1qbBEUsxr7R-2BQ3Do-2BWTXlXr-2BZj1DLXBNrojIPow0qTkL1gilkN5sURHscZW26bSZDExypV1ExZkDPeR2LjyqYe-2F-2FrKeQlk3opNBmXvaEJFz74773IViF82N6jK3-2BANAAUpicHJAH279qyO6mlzwTNrsFxPMUIMRDTifjAWu-2FpAALQjB3ltSumVa8FoBph5ME1Z0PWTixXpSi7Q8LZt-2FITlDBykUReVS45s7tW5hjzkjujyaZpBz0X-2Bv2HrZNFp4Ev5DQolOFlkcIUA4YXtPq8HVqhRToa2bZq86oEMZrHdkN5KrfeAoECt7WIZwBGCENasUqe8Da6SgCmR28vsTuN10RfUZDs6DP0eLBSvC7rTIU6tKYWfy4Rdvi5gmNjUwhWT61zFP0FLOwMHrkvepeG14mVeQMyIFnK4zVulTcrpqeI83sPapEHyh9PP6mrkMhsOdWHaKFHWfOSF6aphZ4Miq-2FeatvYDPx-2F44aa1jD7wSOC1kKKXAOA-2BsTnkm1Zs0u6VRF-2F5KMrNGeG3-2F-2B-2Fp03kG5-2BRhjDvCiZG9yaf4uxpso2Ds9g0f5FpvJTvPhSm2bjjtUcpEnhWq3tHYhzUd8sDNaQHZ6zf1o2aQxSjK7lxBNZ5ueDtkqbr7dXtRPQuqBHJ-2BNZVpgVQzph4GKuW-2BLCGG8XXBtucgJqPiMeqzs2hd-2FlI-3D IP 167.89.123.16:443 ASN #11377 SENDGRID Certificate IssuerGoDaddy.com, Inc. Subject.ct.sendgrid.net FingerprintFA:62:11:65:55:5A:5A:54:C9:8B:E1:AD:1C:F2:61:78:A5:CF:60:86 ValidityMon, 17 Apr 2023 08:37:24 GMT - Wed, 15 May 2024 07:15:31 GMT File type HTML document, ASCII text Size 90 B (90 bytes) Hash 143913866443101d33400d26ad345039 2d4b0a6c2186bdce68df58cb87e51d8431037427 6572606ee86750503e30eaac16b0efedaaf045d92a751b577e4542d23e2836e2 HTTP Headers GET /ls/click?upn=tcjvwtgkajssLOnJZkrnQmKqyAYcOVZfmASusWAVXrjeTDfxF1LcO6-2BkKNSlBf6tOfQRjNPrOnSRV4iF4HyhHNJczl8DoOr7tdTbh3jIDpE-3D7E29_ghRD3AeEDcGlyADbqxA0fRBaw-2FkdoAPuP9-2FH57LiR8Z7XWCaFmnFqm4mobe4bFAikTaBY70evQS9Q1OYu2k30okngSLBdB3DBs3wuIqyhd2Yb66CpIp-2Bc5OzNjhvyQb93fj-2F1mstQMqOeUGA9pGi1MzNHM6BSg6WkdSofHThAbDg7J6dGa5hvu3STGRbD4ALtkfIoy18OYqemEYc-2F1vF8hwKqabKrgvJ8G-2FJvpj-2FqJ4xwRv80GTD-2BfqdP1LJRm-2FdKAs69LqWHXUw3DbhbMlpzzF-2B8RPmFhLZEN3Mgh2PZa3qLZaWuaLuAlvR6PDFEmM1S0MonQsGqqOiFUmr6LeElGZWfPndGoIen0wHjvMIOJ8-2Fnr1XUDe7LxQM4rVCMo1qbBEUsxr7R-2BQ3Do-2BWTXlXr-2BZj1DLXBNrojIPow0qTkL1gilkN5sURHscZW26bSZDExypV1ExZkDPeR2LjyqYe-2F-2FrKeQlk3opNBmXvaEJFz74773IViF82N6jK3-2BANAAUpicHJAH279qyO6mlzwTNrsFxPMUIMRDTifjAWu-2FpAALQjB3ltSumVa8FoBph5ME1Z0PWTixXpSi7Q8LZt-2FITlDBykUReVS45s7tW5hjzkjujyaZpBz0X-2Bv2HrZNFp4Ev5DQolOFlkcIUA4YXtPq8HVqhRToa2bZq86oEMZrHdkN5KrfeAoECt7WIZwBGCENasUqe8Da6SgCmR28vsTuN10RfUZDs6DP0eLBSvC7rTIU6tKYWfy4Rdvi5gmNjUwhWT61zFP0FLOwMHrkvepeG14mVeQMyIFnK4zVulTcrpqeI83sPapEHyh9PP6mrkMhsOdWHaKFHWfOSF6aphZ4Miq-2FeatvYDPx-2F44aa1jD7wSOC1kKKXAOA-2BsTnkm1Zs0u6VRF-2F5KMrNGeG3-2F-2B-2Fp03kG5-2BRhjDvCiZG9yaf4uxpso2Ds9g0f5FpvJTvPhSm2bjjtUcpEnhWq3tHYhzUd8sDNaQHZ6zf1o2aQxSjK7lxBNZ5ueDtkqbr7dXtRPQuqBHJ-2BNZVpgVQzph4GKuW-2BLCGG8XXBtucgJqPiMeqzs2hd-2FlI-3D HTTP/1.1 Host: u15333372.ct.sendgrid.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/1.1 302 Found Server: nginx Date: Tue, 06 Jun 2023 04:54:01 GMT Content-Type: text/html; charset=utf-8 Content-Length: 90 Connection: keep-alive Location: https://www.eliteextra.com/?e=weslie.loomis@marten.com&c=pmails X-Robots-Tag: noindex, nofollow`

	www.eliteextra.com/?e=weslie.loomis@marten.com&c=pmails	173.245.130.198	301 Moved Permanently	0 B
URL User Request GET HTTP/2 www.eliteextra.com/?e=weslie.loomis@marten.com&c=pmails IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /?e=weslie.loomis@marten.com&c=pmails HTTP/1.1 Host: www.eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 301 Moved Permanently content-length: 0 location: https://eliteextra.com/?e=weslie.loomis@marten.com&c=pmails X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash ce0ebcb6eab1a7dd3eab3a8147da0859 8164473145746d55203f9505ae8a1643350a79e3 b8771619cd596cd7015fdf1ff5e21e989535b3ba3d90f5efcd5867d85b98adcc HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:54:04 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82d60e5c89d861bf88494c1b30123a7d 696454de610c86434fca82187d45b770aa712b74 1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:54:04 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash ce0ebcb6eab1a7dd3eab3a8147da0859 8164473145746d55203f9505ae8a1643350a79e3 b8771619cd596cd7015fdf1ff5e21e989535b3ba3d90f5efcd5867d85b98adcc HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:54:04 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82d60e5c89d861bf88494c1b30123a7d 696454de610c86434fca82187d45b770aa712b74 1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:54:04 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	extend.vimeocdn.com/ga/18803845.js	151.101.246.109	200 OK	5.6 kB
URL GET HTTP/2 extend.vimeocdn.com/ga/18803845.js IP 151.101.246.109:443 ASN #54113 FASTLY Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGlobalSign nv-sa Subject.vimeocdn.com FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT File type Unicode text, UTF-8 text, with very long lines (16858) Size 5.6 kB (5579 bytes) Hash 377b77886b8f14f7c30f202b4afedde9 d8ffa187f74c7b4295240038349937f7b57c2b42 6c649cc3d4aee7683250622541a6045ad4ac3beb93df1fcdd3ec1f7f12a1ff44 HTTP Headers `GET /ga/18803845.js HTTP/1.1 Host: extend.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK server: Apache last-modified: Thu, 01 Sep 2022 18:23:26 GMT etag: "421e-5e7a1b598e380-gzip" expires: Sun, 29 Aug 2032 19:32:02 GMT content-encoding: gzip x-bapp-server: assets-67ff759c65-v5tqh x-vimeo-dc: ge timing-allow-origin: * content-type: text/javascript; charset=utf-8 accept-ranges: bytes date: Tue, 06 Jun 2023 04:54:04 GMT via: 1.1 varnish age: 23966523 x-served-by: cache-hel1410025-HEL x-cache: HIT x-cache-hits: 904 x-timer: S1686027244.368634,VS0,VE0 vary: Accept-Encoding cache-control: max-age=86400 content-length: 5579 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2	216.58.207.227		22 kB
URL fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 22084, version 1.0\012- data Size 22 kB (22084 bytes) Hash bab4daa6bec06781aa7262eca0be0ed4 b896fcea50433114a0433c9c8117677a875f1116 ee901a5f44fcc6ea6ab97fb2751ce51af915d16dd99995a29a5905d2ce4b0831 HTTP Headers GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://eliteextra.com/ Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 22084 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 31 May 2023 21:58:16 GMT expires: Thu, 30 May 2024 21:58:16 GMT cache-control: public, max-age=31536000 age: 456948 last-modified: Mon, 15 Aug 2022 18:14:59 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2	216.58.207.227	200 OK	22 kB
URL GET HTTP/2 fonts.gstatic.com/s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 21516, version 1.0\012- data Size 22 kB (21516 bytes) Hash 90135ea44811b2d9610c33e07068fdb0 84ef1a8343877a598f1c7cbae56f35ded54a1787 bd067b886f4a67dd25c08fe73777bce7f506beb4c09d17d9f036f8a90901efd2 HTTP Headers GET /s/opensans/v34/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://eliteextra.com/ Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 21516 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 30 May 2023 14:06:32 GMT expires: Wed, 29 May 2024 14:06:32 GMT cache-control: public, max-age=31536000 age: 571652 last-modified: Mon, 15 Aug 2022 18:12:10 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtag/js?id=UA-8098030-1	142.250.74.168	200 OK	48 kB
URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-8098030-1 IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT File type ASCII text, with very long lines (2271) Size 48 kB (48405 bytes) Hash 9979d6a55bab5315178b8b0afb697db6 647fc007ccd7429cb097a0a51139689ee19255c8 5d969b53c2c837777eed33ca0aa76320942da27ae284580315b2ae18b52c786a HTTP Headers `GET /gtag/js?id=UA-8098030-1 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 06 Jun 2023 04:54:04 GMT expires: Tue, 06 Jun 2023 04:54:04 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 48405 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	www.googletagmanager.com/gtag/js?id=G-XHGWF8PBVN	142.250.74.168	200 OK	84 kB
URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=G-XHGWF8PBVN IP 142.250.74.168:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT File type ASCII text, with very long lines (6408) Size 84 kB (83510 bytes) Hash 16d3ef4daa39694d3b03d11a8fbac6f4 fe1667aa5c802603ae186d5082f6c60e10c36726 049aad4dddfb3bc1d9db997f45691afd9b8a1228b68eea8d4279748d56ffd66e HTTP Headers `GET /gtag/js?id=G-XHGWF8PBVN HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Tue, 06 Jun 2023 04:54:04 GMT expires: Tue, 06 Jun 2023 04:54:04 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 83510 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 82d60e5c89d861bf88494c1b30123a7d 696454de610c86434fca82187d45b770aa712b74 1c270911b4dc1e66edab7b962f92245d40a0725385601f27a4532f216161aa6f HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:54:04 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	eliteextra.com/wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=6.10	173.245.130.198	200 OK	1.0 kB
URL GET HTTP/2 eliteextra.com/wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=6.10 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type gzip compressed data, from Unix\012- data Size 1.0 kB (1019 bytes) Hash 95af16b71667c4245d5ba494c00267b6 21de7d3160a358512f1f21c5eae7630b478c2651 f4258dcd3085064f15836d6001baa69df1a1d0af547f06572ee0a06d5b4c29a7 HTTP Headers GET /wp-content/plugins/cleantalk-spam-protect/css/cleantalk-public.min.css?ver=6.10 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: text/css last-modified: Thu, 25 May 2023 04:30:04 GMT etag: W/"646ee44c-4f4" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2022/04/Elite-EXTRA-Logo-sm.png	173.245.130.198	200 OK	7.2 kB
URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/04/Elite-EXTRA-Logo-sm.png IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 7.2 kB (7150 bytes) Hash 12ed93081606d34a84f7d5ba777c02af eb84a4e77fcd1b02ec4313e5c6b81787dd60b2c2 34fe3b0d6a7cfb7879d46f987a8defe7fb4be67972575d85fafbe6728d6f8495 HTTP Headers `GET /wp-content/uploads/2022/04/Elite-EXTRA-Logo-sm.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 7150 last-modified: Fri, 29 Apr 2022 15:16:24 GMT etag: "626c0148-1bee" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2022/05/Elite_EXTRA_Devices_Banner-300x197.png	173.245.130.198	200 OK	34 kB
URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/05/Elite_EXTRA_Devices_Banner-300x197.png IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 34 kB (34298 bytes) Hash 9b970c0521ecf26011017b6e2e14232f 947bfe8c1acbcb1811fc69892ab1bd7ac150c921 8609931212253f476b98ffa580e1c1945af95078473fd9133158f0693dae479d HTTP Headers GET /wp-content/uploads/2022/05/Elite_EXTRA_Devices_Banner-300x197.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 34298 last-modified: Fri, 20 May 2022 16:19:32 GMT etag: "6287bf94-85fa" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2022/04/RTx.png	173.245.130.198	200 OK	2.1 kB
URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/04/RTx.png IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 2.1 kB (2052 bytes) Hash 43b1ca310c669f85cd394df1e8634284 6f4c475f3ee13c5139c673ddf305b07d847d4bf7 0e362e61f4074c538093623993bf917f98706fe269a3dcbb73283e546a4cc184 HTTP Headers `GET /wp-content/uploads/2022/04/RTx.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 2052 last-modified: Fri, 01 Apr 2022 17:53:53 GMT etag: "62473c31-804" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2022/06/elite-extra-delivery-network-logo.png	173.245.130.198		1.2 kB
URL eliteextra.com/wp-content/uploads/2022/06/elite-extra-delivery-network-logo.png IP 173.245.130.198:0 ASN #11796 AIRSTREAMCOMM-NET Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 1.2 kB (1232 bytes) Hash f7401f37242879df8029b1b5437ec50c 08c01d8bbc014a22d2ea6828ce0dd00cbb349023 522d996e91ed0fd2a2d085c424f994866a765e1b8a6e75dd6b3b317c75b2ccc7 HTTP Headers GET /wp-content/uploads/2022/06/elite-extra-delivery-network-logo.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 1232 last-modified: Thu, 16 Jun 2022 16:36:05 GMT etag: "62ab5bf5-4d0" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2022/04/RAx.png	173.245.130.198	200 OK	1.5 kB
URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/04/RAx.png IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 1.5 kB (1536 bytes) Hash bc54d577385e39e7f409575c1444e6c0 5dc8b152d9afbd80519665622651d5a0d33beea7 050f43b55ddacbf3b338bd0ed21639ce1023979ecd6bc106f763fa684edf9f9e HTTP Headers `GET /wp-content/uploads/2022/04/RAx.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 1536 last-modified: Fri, 01 Apr 2022 17:53:53 GMT etag: "62473c31-600" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2022/02/Capterra_User_5_Star_Rating-Image.png	173.245.130.198	200 OK	1.3 kB
URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/02/Capterra_User_5_Star_Rating-Image.png IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 1.3 kB (1270 bytes) Hash 70893321e927b8c2c48c4878268aacfc e92fce263ef7468df92c171b2f863397cc745cf5 8a8cc631ea0ebf7ccb15e8086a40f27209f4e77e355e54d1c57fbe54fec93e51 HTTP Headers GET /wp-content/uploads/2022/02/Capterra_User_5_Star_Rating-Image.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 1270 last-modified: Tue, 01 Mar 2022 21:49:52 GMT etag: "621e9500-4f6" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2022/02/Capterra_Best_Value_Image.png	173.245.130.198	200 OK	7.2 kB
URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/02/Capterra_Best_Value_Image.png IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 7.2 kB (7154 bytes) Hash 218dae7cc5e1a380199422bd609b57ab fbe00e062a655bf8471a1f4675e830c4597f58db c634af95780373189b06d0e01361da1a88bbb63f7e38a3e0bf0ecbb140d46cba HTTP Headers GET /wp-content/uploads/2022/02/Capterra_Best_Value_Image.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 7154 last-modified: Tue, 01 Mar 2022 21:49:17 GMT etag: "621e94dd-1bf2" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2022/02/Capterra_Best_Ease_of_Use_Image.png	173.245.130.198		7.0 kB
URL eliteextra.com/wp-content/uploads/2022/02/Capterra_Best_Ease_of_Use_Image.png IP 173.245.130.198:0 ASN #11796 AIRSTREAMCOMM-NET Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 7.0 kB (6974 bytes) Hash b17d38b1b6ca95342fe713c74dd992f5 7143b504059caed38a5da0a7cd1765480230dccd 5ed7b778b7978b7090727c1696082014d46ff4cbecc90723acd31a5d21791a90 HTTP Headers GET /wp-content/uploads/2022/02/Capterra_Best_Ease_of_Use_Image.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 6974 last-modified: Tue, 01 Mar 2022 21:49:16 GMT etag: "621e94dc-1b3e" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2022/02/GetApp_User_Reviews_Image.png	173.245.130.198		1.7 kB
URL eliteextra.com/wp-content/uploads/2022/02/GetApp_User_Reviews_Image.png IP 173.245.130.198:0 ASN #11796 AIRSTREAMCOMM-NET Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 1.7 kB (1650 bytes) Hash d3bcfdc18303d4746994f3c25948f6e4 3758fe080452f9376f075d63223da0ad3fab9e40 85021778d54c473f5b0e19e44b23944e7b1b64bc918705db817107c1d78fb41c HTTP Headers GET /wp-content/uploads/2022/02/GetApp_User_Reviews_Image.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 1650 last-modified: Tue, 01 Mar 2022 21:49:19 GMT etag: "621e94df-672" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2022/02/GetApp_Best_Functionality_and_Features_Image.png	173.245.130.198	200 OK	7.9 kB
URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/02/GetApp_Best_Functionality_and_Features_Image.png IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 7.9 kB (7876 bytes) Hash 0b623b3b64d21023e990cd2b114d9c64 5193a9bfc8c87339377db45e3dc768d8a9755d87 194a4a6f810b56b3e9dbfd6325f623cab85c7865bd17311b485dc3e01ab098df HTTP Headers GET /wp-content/uploads/2022/02/GetApp_Best_Functionality_and_Features_Image.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 7876 last-modified: Tue, 01 Mar 2022 21:49:18 GMT etag: "621e94de-1ec4" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2022/04/SoftwareConnect_5_Stars_Small.png	173.245.130.198	200 OK	9.9 kB
URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/04/SoftwareConnect_5_Stars_Small.png IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 9.9 kB (9868 bytes) Hash c0398fd359c4c7746119a18ca9581970 b3c5e45c131085f58c8810eb8a7a709e93a76c9b e64c59dd6789c777879dcf18e18940262b32b57e0e1ae4510d14c07ff8ae8f34 HTTP Headers GET /wp-content/uploads/2022/04/SoftwareConnect_5_Stars_Small.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 9868 last-modified: Tue, 05 Apr 2022 14:37:35 GMT etag: "624c542f-268c" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2022/05/Elite_EXTRA_Devices_Banner.png	173.245.130.198		246 kB
URL eliteextra.com/wp-content/uploads/2022/05/Elite_EXTRA_Devices_Banner.png IP 173.245.130.198:0 ASN #11796 AIRSTREAMCOMM-NET Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 246 kB (245834 bytes) Hash 7a37303a3a8d427be4e0d56332a865a1 98bbeeeb132f9eca8d17a2f9dac14bcc03c040b9 5b724341c247b83534b507c75469bd656f4f370ec467e5fab6264c7223e1b6ff HTTP Headers GET /wp-content/uploads/2022/05/Elite_EXTRA_Devices_Banner.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 245834 last-modified: Fri, 20 May 2022 16:19:42 GMT etag: "6287bf9e-3c04a" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2022/04/Customer_Reviews_Crests_Image_sm.png	173.245.130.198	200 OK	18 kB
URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/04/Customer_Reviews_Crests_Image_sm.png IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 18 kB (18436 bytes) Hash 013d0d3c91e8080984fa3c514d7e3f4b 8410d1ce894935fd316fc8b9ee237e450bd167d7 314353f809b26f06f589779c4a152467b66c4714762e38390fe28cfb278b485f HTTP Headers GET /wp-content/uploads/2022/04/Customer_Reviews_Crests_Image_sm.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 18436 last-modified: Fri, 08 Apr 2022 16:49:18 GMT etag: "6250678e-4804" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2023/06/outsourcing-logistics-best-practices-for-success-400x250.jpg	173.245.130.198		13 kB
URL eliteextra.com/wp-content/uploads/2023/06/outsourcing-logistics-best-practices-for-success-400x250.jpg IP 173.245.130.198:0 ASN #11796 AIRSTREAMCOMM-NET Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 13 kB (12626 bytes) Hash ac5b1620cc8f97917e81a513f2e6ecaa d7698bb6585308f746ca6a9659f2651c3c9e21d5 ae7c3258569c6441608261f394c53118efa9b8a154301f93cd804ad6c888322f HTTP Headers GET /wp-content/uploads/2023/06/outsourcing-logistics-best-practices-for-success-400x250.jpg HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 12626 last-modified: Thu, 01 Jun 2023 19:03:23 GMT etag: "6478eb7b-3152" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2023/04/what-is-rma-400x250.jpg	173.245.130.198	200 OK	6.8 kB
URL GET HTTP/2 eliteextra.com/wp-content/uploads/2023/04/what-is-rma-400x250.jpg IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 6.8 kB (6844 bytes) Hash 691f35f3b81afa4cc28b1d03bb96efbc 13566b6c018b8626560008e393ee532b341016f6 64092c704d8be92045eee2b4e319e6a095693f9906ddf3613d45b2968809f28a HTTP Headers `GET /wp-content/uploads/2023/04/what-is-rma-400x250.jpg HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 6844 last-modified: Mon, 17 Apr 2023 15:13:46 GMT etag: "643d622a-1abc" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2023/04/out-for-delivery-when-to-expect-your-package-400x250.jpg	173.245.130.198		8.4 kB
URL eliteextra.com/wp-content/uploads/2023/04/out-for-delivery-when-to-expect-your-package-400x250.jpg IP 173.245.130.198:0 ASN #11796 AIRSTREAMCOMM-NET Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 400x250, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 8.4 kB (8370 bytes) Hash 54c6326e3c38f274a9b84d5dd053d07f 44f63f9134b495756d011639e45fae968ff241c0 94ea10705df700f109a587db1c2e0d6da570d921b6c1f853700284b41b753fed HTTP Headers GET /wp-content/uploads/2023/04/out-for-delivery-when-to-expect-your-package-400x250.jpg HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 8370 last-modified: Fri, 14 Apr 2023 19:13:09 GMT etag: "6439a5c5-20b2" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2022/04/Contact-us-bubble-graphic-980x551.png	173.245.130.198		165 kB
URL eliteextra.com/wp-content/uploads/2022/04/Contact-us-bubble-graphic-980x551.png IP 173.245.130.198:0 ASN #11796 AIRSTREAMCOMM-NET Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 165 kB (164870 bytes) Hash 783317b5c52bc6a943f9d627851d7812 55ce83f65a526089f00850c3b24b193647c663d5 463f7d7604043d9a6556ee5254551eefa42c7ba7aca0fc6d038a2fe89123b513 HTTP Headers GET /wp-content/uploads/2022/04/Contact-us-bubble-graphic-980x551.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: image/webp content-length: 164870 last-modified: Fri, 22 Apr 2022 15:09:24 GMT etag: "6262c524-28406" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	fonts.gstatic.com/s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2	216.58.207.227		26 kB
URL fonts.gstatic.com/s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 25456, version 1.0\012- data Size 26 kB (25456 bytes) Hash 4065d61a7ba7eb2602d2cbb54723e3de 7c6f159e263b1c1e88de91d6b745853fc7e46683 ce4714944663ab66446464e544e69808450bee9d0332659795eacea5751fc4f2 HTTP Headers GET /s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVI.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 25456 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 30 May 2023 19:42:58 GMT expires: Wed, 29 May 2024 19:42:58 GMT cache-control: public, max-age=31536000 age: 551466 last-modified: Tue, 02 May 2023 15:15:41 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2	216.58.207.227	200 OK	25 kB
URL GET HTTP/2 fonts.gstatic.com/s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 24712, version 1.0\012- data Size 25 kB (24712 bytes) Hash 6426d7c7cf628698f2693c345e78f3ed ba5c3dc9e202a5a6fa582ec90e94449e88c65d60 607eb42162512af73de673e5529e0f752efc846afd3cd75ca794af1ddc2f3d00 HTTP Headers GET /s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsg-1x4uaVI.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 24712 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 30 May 2023 20:14:29 GMT expires: Wed, 29 May 2024 20:14:29 GMT cache-control: public, max-age=31536000 age: 549575 last-modified: Tue, 02 May 2023 15:15:47 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.gstatic.com/s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff	216.58.207.227		31 kB
URL fonts.gstatic.com/s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff IP 216.58.207.227:0 ASN #15169 GOOGLE File type Web Open Font Format, TrueType, length 31292, version 1.1\012- data Size 31 kB (31292 bytes) Hash 76c7375392099b93fa48759263c8f6de 23fbe71952b68172db99e71b9b2cdf86ff59f4b3 8035ec9cc1f2f4b2277e10ae36ac529e58c06cf7688e29960b792ef492fa689c HTTP Headers GET /s/opensans/v35/memSYaGs126MiZpBA-UvWbX2vVnXBbObj2OVZyOOSr4dVJWUgsjZ0B4uaVQ.woff HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 31292 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Jun 2023 05:04:48 GMT expires: Fri, 31 May 2024 05:04:48 GMT cache-control: public, max-age=31536000 age: 431356 last-modified: Tue, 02 May 2023 15:15:41 GMT content-type: font/woff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	eliteextra.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.21.0	173.245.130.198	200 OK	28 kB
URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.21.0 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type gzip compressed data, from Unix\012- data Size 28 kB (28513 bytes) Hash 82ae66485b457eda975b678187e9ae60 3c5421b91b13ecd20a162b7346f00127a0a32b75 0b8e61bd49d436f9e49ed8ad72a0cffc6992d08201179e278d551b0f6c1d349f HTTP Headers GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/easypiechart.js?ver=4.21.0 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: application/javascript last-modified: Fri, 28 Apr 2023 04:33:39 GMT etag: W/"644b4ca3-2466" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/uploads/2023/01/2welcome_to_elite_extra_thumbnail-1200x675.jpg	173.245.130.198		64 kB
URL eliteextra.com/wp-content/uploads/2023/01/2welcome_to_elite_extra_thumbnail-1200x675.jpg IP 173.245.130.198:0 ASN #11796 AIRSTREAMCOMM-NET Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x675, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 64 kB (63966 bytes) Hash 3455a70ba13d1844d8ddc36c16576c9c 2a18e740c71b154dccbb3f7530c4cb195c719cff 6f07cd124b4f6268d8c84c744932262ae750358ce90093798843ed5bd874b23c HTTP Headers GET /wp-content/uploads/2023/01/2welcome_to_elite_extra_thumbnail-1200x675.jpg HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:05 GMT content-type: image/webp content-length: 63966 last-modified: Fri, 06 Jan 2023 23:07:54 GMT etag: "63b8a9ca-f9de" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff	173.245.130.198	200 OK	92 kB
URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type Web Open Font Format, TrueType, length 92476, version 2.4\012- data Size 92 kB (92476 bytes) Hash 7d04c782e3ec7b655cb15e50245c4c49 6ac6c03ebcebc29f36f09525ae9564f12240776d 88795f28bb66a45f9c32245dd21d6319ed5d26a45bf5afa31d91a0f83ee855f7 HTTP Headers GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/wp-content/themes/Divi/style-static.min.css?ver=4.21.0 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:05 GMT content-type: application/font-woff content-length: 92476 last-modified: Fri, 28 Apr 2023 04:33:39 GMT etag: "644b4ca3-1693c" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 accept-ranges: bytes X-Firefox-Spdy: h2`

	forms.hsforms.com/embed/v3/form/22644969/7bbc8f9c-9c64-4e97-8b09-69dad2f29f48/json?hs_static_app=forms-embed&hs_static_app_version=1.3243&X-HubSpot-Static-App-Info=forms-embed-1.3243	104.17.211.243		3.1 kB
URL forms.hsforms.com/embed/v3/form/22644969/7bbc8f9c-9c64-4e97-8b09-69dad2f29f48/json?hs_static_app=forms-embed&hs_static_app_version=1.3243&X-HubSpot-Static-App-Info=forms-embed-1.3243 IP 104.17.211.243:0 ASN #13335 CLOUDFLARENET File type JSON data\012- , ASCII text, with very long lines (13336), with no line terminators Size 3.1 kB (3053 bytes) Hash a0c989a355b6910c0fc9977566423c6d 9c10ef2987fefd15646b5b56b63afc9706f97b0f 77e3934a0566233c64bb51d6ef51e61ebfd8e01245d52e3aeab2e194a22af778 HTTP Headers GET /embed/v3/form/22644969/7bbc8f9c-9c64-4e97-8b09-69dad2f29f48/json?hs_static_app=forms-embed&hs_static_app_version=1.3243&X-HubSpot-Static-App-Info=forms-embed-1.3243 HTTP/1.1 Host: forms.hsforms.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Tue, 06 Jun 2023 04:54:05 GMT Content-Type: application/json;charset=utf-8 Transfer-Encoding: chunked Connection: keep-alive X-Trace: 2BCECFDAD51E387AB16104BDBD20424D449994F8DC000000000000000000 X-Origin-Hublet: na1 Vary: origin X-HubSpot-Correlation-Id: 6e4c0ed0-56c3-4e2b-ab20-d9f1a3c88734 Access-Control-Allow-Origin: https://eliteextra.com Access-Control-Allow-Methods: OPTIONS, GET Access-Control-Allow-Headers: * Access-Control-Allow-Credentials: false Access-Control-Max-Age: 180 Access-Control-Expose-Headers: X-Origin-Hublet Cache-Control: max-age=0, no-cache, no-store X-Robots-Tag: none x-envoy-upstream-service-time: 17 x-evy-trace-route-service-name: envoyset-translator x-evy-trace-virtual-host: all x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-759c64d45c-c6p2z x-evy-trace-listener: listener_https x-evy-trace-route-configuration: listener_https/all x-request-id: 7a04376e-be03-4921-8fe8-28ad88a442f4 CF-Cache-Status: DYNAMIC Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Server: cloudflare CF-RAY: 7d2e0e295849b4ed-OSL Content-Encoding: br alt-svc: h3=":443"; ma=86400

	js.hsforms.net/forms/embed/v2.js	104.16.186.65	200 OK	247 kB
URL GET HTTP/3 js.hsforms.net/forms/embed/v2.js IP 104.16.186.65:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint16:1A:D5:A1:BC:62:B5:09:33:E2:A8:32:88:88:60:DE:BD:00:B5:F3 ValidityTue, 16 May 2023 00:00:00 GMT - Wed, 15 May 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 247 kB (247255 bytes) Hash a5301b6f08ed64649a3390f949aa4175 32c03d85e0ae4e4152ec18c1f4b9f4074cc84a59 6068122af5aaf3871c283132bb19ddafc391f4cb78126882ca18a7c5f4c03611 HTTP Headers `GET /forms/embed/v2.js HTTP/1.1 Host: js.hsforms.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:04 GMT content-type: application/javascript; charset=utf-8 x-amz-replication-status: COMPLETED last-modified: Tue, 23 May 2023 10:19:29 UTC x-amz-server-side-encryption: AES256 x-amz-version-id: l7bHRIBQ6TE8MnbN5jsE1ccMSwu0_dqN etag: W/"a5301b6f08ed64649a3390f949aa4175" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 73c5607bdb5db0d651e25c848846d554.cloudfront.net (CloudFront) x-amz-cf-pop: IAD12-P3 x-amz-cf-id: KrMk-MZEBhx0DuoOoEVMcqoQCNfZhwLuyv1WrR7Ls14lYCQKNa1t8Q== content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=forms-embed/static-1.3243/bundles/project-v2.js&cfRay=7cbca014de4fabda-IAD cache-control: s-maxage=600, max-age=300 x-hs-target-asset: forms-embed/static-1.3243/bundles/project-v2.js access-control-allow-origin: * x-hs-cache-status: HIT x-envoy-upstream-service-time: 1 x-evy-trace-route-service-name: envoyset-translator x-evy-trace-virtual-host: all x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-57ff77fcd-nnm64 x-evy-trace-listener: listener_https x-evy-trace-route-configuration: listener_https/all x-request-id: e785ba16-43a2-424a-b279-70d74c967891 cache-tag: staticjsapp-forms-embed-v2-web-prod,staticjsapp-prod cf-cache-status: HIT age: 0 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P3g1F6jG8Tws2XS4vXP%2Bd%2FqwTocIyZ9Si2J0kA4EODRWnlh%2F0tkAvDK%2BdgfVsOBeOz4iPx8VkK5WGzFfLW9CFPDiNzkWS5D3JdjiOO4ClBwc1%2BeytuMPlx6VyIeDZ1Y2"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7d2e0e292e90fab4-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	eliteextra.com/wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=6.10	173.245.130.198	200 OK	21 kB
URL GET HTTP/2 eliteextra.com/wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=6.10 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type ASCII text, with very long lines (57249) Size 21 kB (21171 bytes) Hash b714f42f98ac85d63a4fa95c8f6307a7 81fa06eebe2c8a0fc5984602e6e8b7f2b9f35181 73dc9d5456426eda4ab7e977d625736c6f8d6585b32bc5d7fa37ce2d33dd37c0 HTTP Headers GET /wp-content/plugins/cleantalk-spam-protect/js/apbct-public-bundle.min.js?ver=6.10 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: application/javascript last-modified: Thu, 25 May 2023 04:30:04 GMT etag: W/"646ee44c-df92" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	f.vimeocdn.com/p/4.23.28/css/player.css	151.101.246.109	200 OK	21 kB
URL GET HTTP/2 f.vimeocdn.com/p/4.23.28/css/player.css IP 151.101.246.109:443 ASN #54113 FASTLY Requested by https://player.vimeo.com/video/783404154?dnt=1&app_id=122963 Certificate IssuerGlobalSign nv-sa Subject.vimeocdn.com FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT File type ASCII text, with very long lines (65494) Size 21 kB (21433 bytes) Hash 1f1c1626ba04385953bc763b6d9b75fa 241f3dcd0fbddab8d340a20eded3039b16045c0f deb9241df937a3babc723df492b82a7be017252b5395360b8c1d905cc28685a7 HTTP Headers `GET /p/4.23.28/css/player.css HTTP/1.1 Host: f.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Tue, 06 Jun 2023 04:54:05 GMT age: 382484 x-served-by: cache-iad-kiad7000054-IAD, cache-hel1410025-HEL x-cache: HIT, HIT x-cache-hits: 46, 4377 x-timer: S1686027245.315989,VS0,VE0 vary: Accept-Encoding,x-http-method-override cache-control: max-age=1209600 access-control-allow-origin: content-length: 21433 X-Firefox-Spdy: h2`

	f.vimeocdn.com/p/4.23.28/js/player.module.js	151.101.246.109	200 OK	123 kB
URL GET HTTP/2 f.vimeocdn.com/p/4.23.28/js/player.module.js IP 151.101.246.109:443 ASN #54113 FASTLY Requested by https://player.vimeo.com/video/783404154?dnt=1&app_id=122963 Certificate IssuerGlobalSign nv-sa Subject.vimeocdn.com FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT File type Unicode text, UTF-8 text, with very long lines (65444) Size 123 kB (122957 bytes) Hash d26e3d4b73b45f1b8faa992cfb65f368 13f74a0def7803c8cd5cd93615aa716976722a8a cd5e850d53ff90bebe198e5a6be51ecfbcb380104c50404ef34d2958e1893f0b HTTP Headers `GET /p/4.23.28/js/player.module.js HTTP/1.1 Host: f.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://player.vimeo.com DNT: 1 Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/javascript content-encoding: br via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Tue, 06 Jun 2023 04:54:05 GMT age: 382484 x-served-by: cache-iad-kiad7000113-IAD, cache-hel1410025-HEL x-cache: HIT, HIT x-cache-hits: 46, 3788 x-timer: S1686027245.339149,VS0,VE0 vary: Accept-Encoding,x-http-method-override cache-control: max-age=1209600 access-control-allow-origin: * content-length: 122957 X-Firefox-Spdy: h2`

	i.vimeocdn.com/video/1582276959-4f87e93cefeac3aee6c9ffb97035a10141c5363ba5d49d5ec2b6be08dcf1297c-d.jpg?mw=80&q=85	151.101.246.109	200 OK	1.7 kB
URL GET HTTP/2 i.vimeocdn.com/video/1582276959-4f87e93cefeac3aee6c9ffb97035a10141c5363ba5d49d5ec2b6be08dcf1297c-d.jpg?mw=80&q=85 IP 151.101.246.109:443 ASN #54113 FASTLY Requested by https://player.vimeo.com/video/783404154?dnt=1&app_id=122963 Certificate IssuerGlobalSign nv-sa Subject.vimeocdn.com FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3\012- data Size 1.7 kB (1694 bytes) Hash 619fe01b93a090b953706ed11b97de79 862683fc141c876041b65e00909deff151fcf81e 380078c5496479627e791910477eda71f97f2b37a9fd0e607423265349cd1b5f HTTP Headers GET /video/1582276959-4f87e93cefeac3aee6c9ffb97035a10141c5363ba5d49d5ec2b6be08dcf1297c-d.jpg?mw=80&q=85 HTTP/1.1 Host: i.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/jpeg etag: 619fe01b93a090b953706ed11b97de79 x-viewmaster-lossless-format: lossy viewmaster-server: viewmaster-us-central1-mqjc cache-control: public, max-age=2592000 via: vvarnish, 1.1 varnish, 1.1 varnish x-backend-server: varnish access-control-allow-origin: * access-control-expose-headers: X-Viewmaster-Status access-control-max-age: 86400 accept-ranges: bytes date: Tue, 06 Jun 2023 04:54:05 GMT age: 1167383 x-served-by: cache-dfw-kdfw8210138-DFW, cache-hel1410025-HEL x-cache: miss, HIT, MISS x-cache-hits: 132, 0 x-timer: S1686027245.340676,VS0,VE126 content-length: 1694 X-Firefox-Spdy: h2

	f.vimeocdn.com/p/4.23.28/js/vendor.module.js	151.101.246.109	200 OK	96 kB
URL GET HTTP/2 f.vimeocdn.com/p/4.23.28/js/vendor.module.js IP 151.101.246.109:443 ASN #54113 FASTLY Requested by https://player.vimeo.com/video/783404154?dnt=1&app_id=122963 Certificate IssuerGlobalSign nv-sa Subject.vimeocdn.com FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT File type ASCII text, with very long lines (65456) Size 96 kB (96482 bytes) Hash 729ac031eec1128b61864c241f995f9d c9c6b8bb97e79bef90539f0fbf45e453f55f2484 4ed3659bb3b52dd3f04ee2b7dcdbc698180a08884ac2bccc692f447c5124a386 HTTP Headers `GET /p/4.23.28/js/vendor.module.js HTTP/1.1 Host: f.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://player.vimeo.com DNT: 1 Connection: keep-alive Referer: https://f.vimeocdn.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/javascript content-encoding: br via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Tue, 06 Jun 2023 04:54:05 GMT age: 382484 x-served-by: cache-iad-kjyo7100158-IAD, cache-hel1410025-HEL x-cache: HIT, HIT x-cache-hits: 45, 4121 x-timer: S1686027245.472033,VS0,VE0 vary: Accept-Encoding,x-http-method-override cache-control: max-age=1209600 access-control-allow-origin: * content-length: 96482 X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-solid-900.woff2	173.245.130.198	200 OK	80 kB
URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-solid-900.woff2 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type Web Open Font Format (Version 2), TrueType, length 80300, version 331.-31392\012- data Size 80 kB (80300 bytes) Hash 8e1ed89b6ccb8ce41faf5cb672677105 9b592048b9062b00f0b2dd782d70a95b7dc69b83 6b555920e358f8a25a422988b448615c33bcccb4f932e8331cebfc8e2a737fc7 HTTP Headers GET /wp-content/themes/Divi/core/admin/fonts/fontawesome/fa-solid-900.woff2 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/wp-content/themes/Divi/style-static.min.css?ver=4.21.0 Cookie: _pk_id.95407.f05f=f81fa9d271f0ccb0.1686027245.1.1686027245.1686027245.; _pk_ses.95407.f05f=1; _omappvp=h0qCPvIKGcjbM77maNNdFMkWLovqrCWLcGVt7qMn8zFLMQiJSG5yXkTdUGFPzBmqnh1f9M7OuKEpTNJZZ4SK5dBf8Db9C0zV; _omappvs=1686027245079 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:05 GMT content-type: application/octet-stream content-length: 80300 last-modified: Fri, 28 Apr 2023 04:33:39 GMT etag: "644b4ca3-139ac" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 accept-ranges: bytes X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff	173.245.130.198	200 OK	92 kB
URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type Web Open Font Format, TrueType, length 92476, version 2.4\012- data Size 92 kB (92476 bytes) Hash 7d04c782e3ec7b655cb15e50245c4c49 6ac6c03ebcebc29f36f09525ae9564f12240776d 88795f28bb66a45f9c32245dd21d6319ed5d26a45bf5afa31d91a0f83ee855f7 HTTP Headers GET /wp-content/themes/Divi/core/admin/fonts/modules/all/modules.woff HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/wp-content/themes/Divi/style-static.min.css?ver=4.21.0 Cookie: _pk_id.95407.f05f=f81fa9d271f0ccb0.1686027245.1.1686027245.1686027245.; _pk_ses.95407.f05f=1; _omappvp=h0qCPvIKGcjbM77maNNdFMkWLovqrCWLcGVt7qMn8zFLMQiJSG5yXkTdUGFPzBmqnh1f9M7OuKEpTNJZZ4SK5dBf8Db9C0zV; _omappvs=1686027245079 Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:05 GMT content-type: application/font-woff content-length: 92476 last-modified: Fri, 28 Apr 2023 04:33:39 GMT etag: "644b4ca3-1693c" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 accept-ranges: bytes X-Firefox-Spdy: h2`

	stats.wpmucdn.com/analytics.js	194.242.11.186	200 OK	32 kB
URL GET HTTP/2 stats.wpmucdn.com/analytics.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjectstats.wpmucdn.com FingerprintD6:A0:81:63:2A:60:B0:96:B4:FD:0A:A1:12:2E:D9:B9:95:B0:CB:F1 ValidityFri, 12 May 2023 01:08:29 GMT - Thu, 10 Aug 2023 01:08:28 GMT File type ASCII text, with very long lines (1925) Size 32 kB (31712 bytes) Hash 434f3d0418b4425917954bf073f4d262 1119ad5f14fe6a7ce2cc7bdaea72245d5e05c71a 0995371a359a4a701d66f8b183de6144de9a042e5bac84b6f920968f51567742 HTTP Headers `GET /analytics.js HTTP/1.1 Host: stats.wpmucdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:05 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 1121147 cdn-uid: 778bbc1f-fc99-4e43-843d-a54ddaa69624 cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding cache-control: public, max-age=86400 etag: W/"620551e5-1131c" last-modified: Thu, 10 Feb 2022 17:56:53 GMT cdn-proxyver: 1.03 cdn-requestpullsuccess: True cdn-requestpullcode: 200 cdn-cachedat: 12/30/2022 23:33:58 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: 5a1455decf97da03d2625dc9348748fa cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	ocsp.r2m02.amazontrust.com/	54.230.80.227		471 B
URL ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 84647b2d91394bd1187fa265ffe57dff da2bf209975689eba98dc3879a3d3806a0d8e94f 482cfbaa842d121986e2cdae6933fc6453c34b7672b5e57db76209ee633bd08e HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=7200 Date: Tue, 06 Jun 2023 04:54:05 GMT Last-Modified: Tue, 06 Jun 2023 04:21:42 GMT Server: ECAcc (nya/7946) X-Cache: Miss from cloudfront Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: P9fH8bhhABtWauUL40j8e9CMW-JjwD9uBlcDhqfqCd7mln6Bz4CgJQ== Age: 1944`

	f.vimeocdn.com/p/4.23.28/css/player.css	151.101.246.109	200 OK	21 kB
URL GET HTTP/2 f.vimeocdn.com/p/4.23.28/css/player.css IP 151.101.246.109:443 ASN #54113 FASTLY Requested by https://player.vimeo.com/video/783404154?dnt=1&app_id=122963 Certificate IssuerGlobalSign nv-sa Subject.vimeocdn.com FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT File type ASCII text, with very long lines (65494) Size 21 kB (21433 bytes) Hash 1f1c1626ba04385953bc763b6d9b75fa 241f3dcd0fbddab8d340a20eded3039b16045c0f deb9241df937a3babc723df492b82a7be017252b5395360b8c1d905cc28685a7 HTTP Headers `GET /p/4.23.28/css/player.css HTTP/1.1 Host: f.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: text/css content-encoding: br via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Tue, 06 Jun 2023 04:54:06 GMT age: 382485 x-served-by: cache-iad-kiad7000054-IAD, cache-hel1410025-HEL x-cache: HIT, HIT x-cache-hits: 46, 4378 x-timer: S1686027246.117021,VS0,VE0 vary: Accept-Encoding,x-http-method-override cache-control: max-age=1209600 access-control-allow-origin: content-length: 21433 X-Firefox-Spdy: h2`

	a.omappapi.com/app/js/1.8f37474e.min.js	194.242.11.186	200 OK	4.1 kB
URL GET HTTP/2 a.omappapi.com/app/js/1.8f37474e.min.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type ASCII text, with very long lines (8953) Size 4.1 kB (4077 bytes) Hash c31dbe57c383ab8a0ef7712d9561ad7e ecfb71a6d8c1d4afd3038f73f6940b9d1489a46e 329c83d2ba414969cd627bcf5b53ff518cafcb1862e7114218498b8691e839de HTTP Headers `GET /app/js/1.8f37474e.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"647e6abf-2330" last-modified: Mon, 05 Jun 2023 23:07:43 GMT cdn-storagebalancer: SE-344 cdn-storageserver: DE-571 cdn-requestpullsuccess: True cdn-fileserver: 588 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 23:07:43 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: 7a81e48421d760067f85e40adb50e98d cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	a.omappapi.com/app/js/7.46bf2ce0.min.js	194.242.11.186	200 OK	124 kB
URL GET HTTP/2 a.omappapi.com/app/js/7.46bf2ce0.min.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type ASCII text, with very long lines (2894) Size 124 kB (124372 bytes) Hash fd1141f4f9680689b6e4a2e52e1ebdc4 b48c76fcbe81c15159e56b888e183cc43b073e40 d5d62f06936d9ec891eb7fc37b88e98e3eda0b386684fafccc9c5746e6fae7fc HTTP Headers `GET /app/js/7.46bf2ce0.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"646b8488-b85" last-modified: Mon, 22 May 2023 15:04:40 GMT cdn-storageserver: SE-344 cdn-requestpullsuccess: True cdn-fileserver: 385 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 18:44:38 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: 1369348a00c20733d5d84a4c812b86d4 cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1	104.17.211.243		35 B
URL forms.hsforms.com/embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1 IP 104.17.211.243:0 ASN #13335 CLOUDFLARENET File type GIF image data, version 89a, 1 x 1\012- data Size 35 B (35 bytes) Hash c2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992 HTTP Headers `GET /embed/v3/counters.gif?key=collected-forms-embed-js-form-bind&count=1 HTTP/1.1 Host: forms.hsforms.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: image/gif content-length: 35 x-trace: 2B975E6BC1A6B2D36AFD72DEB945908A74A30E3191000000000000000000 cache-control: max-age=0, no-cache, no-store vary: origin x-hubspot-correlation-id: 4936d0b3-cc8c-4864-90ce-555c3a364595 access-control-allow-credentials: false access-control-expose-headers: X-Origin-Hublet x-robots-tag: none x-envoy-upstream-service-time: 1 x-evy-trace-route-service-name: envoyset-translator x-evy-trace-virtual-host: all x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-759c64d45c-cxrpn x-evy-trace-listener: listener_https x-evy-trace-route-configuration: listener_https/all x-request-id: e01ef90e-9389-4dae-9ac8-0b1dbb80939f cf-cache-status: DYNAMIC strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7d2e0e2fe801b4fa-OSL alt-svc: h3=":443"; ma=86400

	ocsp.pki.goog/gts1c3	142.250.74.131		471 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash e658f45faae0edd26f5908c922167f73 33e4e65ccf9cb9b15a7a9f5fd0083f1cebfa7064 5cc8bb25c78320b6cafdc4a6a017081a2c953cb86e1a1dc45c8f8811798adbc5 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:54:06 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	a.omappapi.com/app/js/16.9011206e.min.js	194.242.11.186		567 B
URL a.omappapi.com/app/js/16.9011206e.min.js IP 194.242.11.186:0 ASN #34989 ServeTheWorld AS Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type ASCII text, with very long lines (794) Size 567 B (567 bytes) Hash a9eaedb61de10e73ade2d372f97917bf aa4bc449f59b9f698b13d89759acd0e1edb79b16 bf628c81f952a8cb4713f04b9b2a78e4786e7c99addcfb3ec9599d3da89df89a HTTP Headers `GET /app/js/16.9011206e.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"646b848a-34f" last-modified: Mon, 22 May 2023 15:04:42 GMT cdn-storageserver: SE-344 cdn-requestpullsuccess: True cdn-fileserver: 584 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 18:44:24 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: a25f9f161a3abca2e782f820ddbaa071 cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	stats1.wpmudev.com/track/?action_name=Elite%20EXTRA%20%7C%20Last%20Mile%20Software%20Solutions&idsite=95407&rec=1&r=149159&h=4&m=54&s=5&url=https%3A%2F%2Feliteextra.com%2F%3Fe%3Dweslie.loomis%40marten.com%26c%3Dpmails&_id=f81fa9d271f0ccb0&_idts=1686027245&_idvc=1&_idn=1&_refts=0&_viewts=1686027245&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024&gt_ms=1487&pv_id=BRpxPA	3.13.103.82	200 OK	43 B
URL GET HTTP/2 stats1.wpmudev.com/track/?action_name=Elite%20EXTRA%20%7C%20Last%20Mile%20Software%20Solutions&idsite=95407&rec=1&r=149159&h=4&m=54&s=5&url=https%3A%2F%2Feliteextra.com%2F%3Fe%3Dweslie.loomis%40marten.com%26c%3Dpmails&_id=f81fa9d271f0ccb0&_idts=1686027245&_idvc=1&_idn=1&_refts=0&_viewts=1686027245&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024&gt_ms=1487&pv_id=BRpxPA IP 3.13.103.82:443 ASN #16509 AMAZON-02 Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerAmazon Subjectstats1.wpmudev.com Fingerprint41:CF:24:4A:1D:14:F9:34:CC:FD:CA:17:CF:C7:EB:DD:94:92:92:56 ValidityFri, 17 Mar 2023 00:00:00 GMT - Sun, 14 Apr 2024 23:59:59 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash df3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87 HTTP Headers GET /track/?action_name=Elite%20EXTRA%20%7C%20Last%20Mile%20Software%20Solutions&idsite=95407&rec=1&r=149159&h=4&m=54&s=5&url=https%3A%2F%2Feliteextra.com%2F%3Fe%3Dweslie.loomis%40marten.com%26c%3Dpmails&_id=f81fa9d271f0ccb0&_idts=1686027245&_idvc=1&_idn=1&_refts=0&_viewts=1686027245&send_image=1&pdf=1&qt=0&realp=0&wma=0&dir=0&fla=0&java=0&gears=0&ag=0&cookie=1&res=1280x1024&gt_ms=1487&pv_id=BRpxPA HTTP/1.1 Host: stats1.wpmudev.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: image/gif content-length: 43 server: nginx cache-control: no-store content-encoding: none X-Firefox-Spdy: h2`

	a.omappapi.com/app/js/21.bece25d8.min.js	194.242.11.186		1.3 kB
URL a.omappapi.com/app/js/21.bece25d8.min.js IP 194.242.11.186:0 ASN #34989 ServeTheWorld AS Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type ASCII text, with very long lines (3159) Size 1.3 kB (1330 bytes) Hash 36484c0e40cd281c9d29fca993f499eb 24e74976f7132e89fbf0a3e132308c3424dc3759 6a65e9178c10b160327725b3b10f6ba63a2fbf4f33bcfd566d75987175fa98d1 HTTP Headers `GET /app/js/21.bece25d8.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"646b8494-c8a" last-modified: Mon, 22 May 2023 15:04:52 GMT cdn-storageserver: SE-318 cdn-requestpullsuccess: True cdn-fileserver: 385 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 18:44:24 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: a166f45fdf1072eafc3d0641ee808134 cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	fonts.googleapis.com/css2?family=Open%20Sans:wght@400;500;700&display=swap	142.250.74.106	200 OK	1.2 kB
URL GET HTTP/2 fonts.googleapis.com/css2?family=Open%20Sans:wght@400;500;700&display=swap IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type gzip compressed data, max compression\012- data Size 1.2 kB (1205 bytes) Hash cc9b4cbae6bbcb51588d302247d3ce55 75123a5ccfa0fb3436de9f6d97a6fcd145134a28 9c6be6a2a5b7d0a30d24e0c09894af1ced56b3d1284739fd58412e6d8f7ff465 HTTP Headers `GET /css2?family=Open%20Sans:wght@400;500;700&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 06 Jun 2023 04:54:06 GMT date: Tue, 06 Jun 2023 04:54:06 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	f.vimeocdn.com/p/4.23.28/js/vendor.module.js	151.101.246.109	200 OK	96 kB
URL GET HTTP/2 f.vimeocdn.com/p/4.23.28/js/vendor.module.js IP 151.101.246.109:443 ASN #54113 FASTLY Requested by https://player.vimeo.com/video/783404154?dnt=1&app_id=122963 Certificate IssuerGlobalSign nv-sa Subject.vimeocdn.com FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT File type ASCII text, with very long lines (65456) Size 96 kB (96482 bytes) Hash 729ac031eec1128b61864c241f995f9d c9c6b8bb97e79bef90539f0fbf45e453f55f2484 4ed3659bb3b52dd3f04ee2b7dcdbc698180a08884ac2bccc692f447c5124a386 HTTP Headers `GET /p/4.23.28/js/vendor.module.js HTTP/1.1 Host: f.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://player.vimeo.com DNT: 1 Connection: keep-alive Referer: https://f.vimeocdn.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` `HTTP/2 200 OK content-type: application/javascript content-encoding: br via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Tue, 06 Jun 2023 04:54:06 GMT age: 382485 x-served-by: cache-iad-kjyo7100158-IAD, cache-hel1410025-HEL x-cache: HIT, HIT x-cache-hits: 45, 4123 x-timer: S1686027246.373087,VS0,VE0 vary: Accept-Encoding,x-http-method-override cache-control: max-age=1209600 access-control-allow-origin: * content-length: 96482 X-Firefox-Spdy: h2`

	a.omappapi.com/users/044e7e4e791f/images/a8b22d80b2d31655968873-page0001.jpg	194.242.11.186	200 OK	20 kB
URL GET HTTP/2 a.omappapi.com/users/044e7e4e791f/images/a8b22d80b2d31655968873-page0001.jpg IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type RIFF (little-endian) data, Web/P image, VP8 encoding, 600x338, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size 20 kB (20224 bytes) Hash 14a303069601633934c72cfe720b3a97 8a0d3fd69ef88266db9b277444a37bb60c00e66d e3e72823513ff9495233f7f962d19a1b0063b14e3b190859495810f79e0eae57 HTTP Headers `GET /users/044e7e4e791f/images/a8b22d80b2d31655968873-page0001.jpg HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: image/webp content-length: 20224 server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: "646818e3-4f00" last-modified: Sat, 20 May 2023 00:48:35 GMT cdn-storageserver: SE-318 cdn-requestpullsuccess: True cdn-fileserver: 385 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/06/2023 04:54:06 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: 4084b87b2e6527ad007169b0c31c8788 cdn-cache: MISS accept-ranges: bytes X-Firefox-Spdy: h2

	fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Size 48 kB (48412 bytes) Hash 31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5 HTTP Headers GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48412 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Jun 2023 11:49:35 GMT expires: Fri, 31 May 2024 11:49:35 GMT cache-control: public, max-age=31536000 age: 407071 last-modified: Tue, 02 May 2023 15:08:53 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Size 48 kB (48412 bytes) Hash 31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5 HTTP Headers GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48412 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Jun 2023 11:49:35 GMT expires: Fri, 31 May 2024 11:49:35 GMT cache-control: public, max-age=31536000 age: 407071 last-modified: Tue, 02 May 2023 15:08:53 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Size 48 kB (48412 bytes) Hash 31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5 HTTP Headers GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48412 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Jun 2023 11:49:35 GMT expires: Fri, 31 May 2024 11:49:35 GMT cache-control: public, max-age=31536000 age: 407071 last-modified: Tue, 02 May 2023 15:08:53 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Size 48 kB (48412 bytes) Hash 31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5 HTTP Headers GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48412 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Jun 2023 11:49:35 GMT expires: Fri, 31 May 2024 11:49:35 GMT cache-control: public, max-age=31536000 age: 407071 last-modified: Tue, 02 May 2023 15:08:53 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	js.hs-banner.com/v2/22644969/banner.js	104.18.25.196	200 OK	64 kB
URL GET HTTP/2 js.hs-banner.com/v2/22644969/banner.js IP 104.18.25.196:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint2C:9C:DC:70:87:29:18:51:70:06:6E:2F:4B:4D:E0:23:1F:30:84:18 ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT File type ASCII text, with very long lines (65041) Size 64 kB (63974 bytes) Hash 7c646340ca8b2e29baa15a59c527b9bf f3a2d7aa16b787f69daa2bf0b1f9c9464c0c7d7e 03437fff07fca0ab44c853c3997317dc68b26b24c488fd5fab6e88541d77befb HTTP Headers `GET /v2/22644969/banner.js HTTP/1.1 Host: js.hs-banner.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: text/javascript; charset=UTF-8 x-amz-id-2: jGuyScVyt2C/tyuOxVtUWO6iTRd2fwE3Ff97mTjirDkNlG98CsrhuydaD+t9cpVpru6D4B0AY5U= x-amz-request-id: XWC2R7TWZ94N27EM last-modified: Mon, 05 Jun 2023 21:10:36 GMT etag: W/"7c646340ca8b2e29baa15a59c527b9bf" x-amz-server-side-encryption: AES256 cache-control: max-age=300,public x-amz-version-id: Qys7E0LEcG9OARU1TBqaUxoxg7DbbwEq access-control-allow-origin: https://eliteextra.com access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing access-control-allow-credentials: true access-control-max-age: 604800 timing-allow-origin: * vary: origin, Accept-Encoding expires: Tue, 06 Jun 2023 04:59:05 GMT x-envoy-upstream-service-time: 62 x-evy-trace-route-service-name: envoyset-translator x-evy-trace-virtual-host: all x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-7dbb6c8f49-f4w7q x-evy-trace-listener: listener_https x-evy-trace-route-configuration: listener_https/all x-request-id: 6571835e-e3d5-4d86-bd8f-07e118aaf4c3 cf-cache-status: EXPIRED server: cloudflare cf-ray: 7d2e0e2cbba9b4f9-OSL content-encoding: br X-Firefox-Spdy: h2

	fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Size 48 kB (48412 bytes) Hash 31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5 HTTP Headers GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48412 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Jun 2023 11:49:35 GMT expires: Fri, 31 May 2024 11:49:35 GMT cache-control: public, max-age=31536000 age: 407071 last-modified: Tue, 02 May 2023 15:08:53 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Size 48 kB (48412 bytes) Hash 31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5 HTTP Headers GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48412 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Jun 2023 11:49:35 GMT expires: Fri, 31 May 2024 11:49:35 GMT cache-control: public, max-age=31536000 age: 407071 last-modified: Tue, 02 May 2023 15:08:53 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	eliteextra.com/wp-json/cleantalk-antispam/v1/apbct_get_pixel_url	173.245.130.198	200 OK	31 kB
URL POST HTTP/2 eliteextra.com/wp-json/cleantalk-antispam/v1/apbct_get_pixel_url IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type gzip compressed data, from Unix\012- data Size 31 kB (31025 bytes) Hash 194501d0eaf686a9331b77bdddece68c 49cc3c11ba78e94f8f401133e1918c2cc866ad46 7050688e6d2bb38ff6502deffb1211d6941fec52706f35834365f2243b64926b HTTP Headers POST /wp-json/cleantalk-antispam/v1/apbct_get_pixel_url HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br X-WP-Nonce: 9537a8cbfa Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache Content-Length: 0 TE: trailers HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:06 GMT content-type: application/json; charset=UTF-8 x-robots-tag: noindex link: <https://eliteextra.com/wp-json/>; rel="https://api.w.org/" x-content-type-options: nosniff access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type, X-OptinMonster-ApiKey x-wp-nonce: 9537a8cbfa allow: POST access-control-allow-origin: https://eliteextra.com access-control-allow-methods: OPTIONS, GET, POST, PUT, PATCH, DELETE access-control-allow-credentials: true vary: Origin content-encoding: gzip X-Firefox-Spdy: h2

	fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2	216.58.207.227	200 OK	31 kB
URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Size 31 kB (30928 bytes) Hash ac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780 HTTP Headers GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 30928 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 31 May 2023 00:25:28 GMT expires: Thu, 30 May 2024 00:25:28 GMT cache-control: public, max-age=31536000 age: 534518 last-modified: Mon, 11 Jul 2022 18:57:39 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Size 48 kB (48412 bytes) Hash 31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5 HTTP Headers GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48412 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Jun 2023 11:49:35 GMT expires: Fri, 31 May 2024 11:49:35 GMT cache-control: public, max-age=31536000 age: 407071 last-modified: Tue, 02 May 2023 15:08:53 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2	216.58.207.227	200 OK	31 kB
URL GET HTTP/3 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Size 31 kB (30928 bytes) Hash ac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780 HTTP Headers GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 30928 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 31 May 2023 00:25:28 GMT expires: Thu, 30 May 2024 00:25:28 GMT cache-control: public, max-age=31536000 age: 534518 last-modified: Mon, 11 Jul 2022 18:57:39 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	i.vimeocdn.com/video/1582276959-4f87e93cefeac3aee6c9ffb97035a10141c5363ba5d49d5ec2b6be08dcf1297c-d?mw=900&mh=507	151.101.246.109		51 kB
URL i.vimeocdn.com/video/1582276959-4f87e93cefeac3aee6c9ffb97035a10141c5363ba5d49d5ec2b6be08dcf1297c-d?mw=900&mh=507 IP 151.101.246.109:0 ASN #54113 FASTLY Certificate IssuerGlobalSign nv-sa Subject.vimeocdn.com FingerprintBC:0E:AF:AE:76:C2:F1:A2:D8:14:DA:93:9B:BD:E4:4A:95:1D:41:5F ValiditySat, 18 Feb 2023 22:45:19 GMT - Thu, 21 Mar 2024 22:45:18 GMT File type ISO Media, AVIF Image\012- data Size 51 kB (50630 bytes) Hash 512fc722decce56e178eaa57a1c8cff0 a53bf72cb867c313cfdfb54636cce6174634975d 14bd0330d004a50b9e9e9554a11ed7002fd356bdbebc1ffe5a57731ae81092c6 HTTP Headers GET /video/1582276959-4f87e93cefeac3aee6c9ffb97035a10141c5363ba5d49d5ec2b6be08dcf1297c-d?mw=900&mh=507 HTTP/1.1 Host: i.vimeocdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://player.vimeo.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK content-type: image/avif etag: 512fc722decce56e178eaa57a1c8cff0 x-viewmaster-lossless-format: automatic viewmaster-server: viewmaster-us-east1-20c4 cache-control: public, max-age=2592000 via: vvarnish, 1.1 varnish, 1.1 varnish x-backend-server: varnish access-control-allow-origin: * access-control-expose-headers: X-Viewmaster-Status access-control-max-age: 86400 accept-ranges: bytes date: Tue, 06 Jun 2023 04:54:06 GMT age: 1921712 x-served-by: cache-dfw-kdfw8210063-DFW, cache-hel1410025-HEL x-cache: miss, HIT, MISS x-cache-hits: 30, 0 x-timer: S1686027247.587709,VS0,VE127 vary: Accept content-length: 50630 X-Firefox-Spdy: h2

	a.omappapi.com/app/js/34.a4153577.min.js	194.242.11.186	200 OK	3.0 kB
URL GET HTTP/2 a.omappapi.com/app/js/34.a4153577.min.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type Unicode text, UTF-8 text, with very long lines (7857) Size 3.0 kB (3030 bytes) Hash c73e74f1f85dbe25c82d8ce966ef58a1 f00ac8ccc2f8faee1654255c2aefd2e8db25e36e 6e1d0902f6625b2354dcee9e39853e1eba710efb962eff32d6fc854740c6a522 HTTP Headers `GET /app/js/34.a4153577.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"646b8488-2071" last-modified: Mon, 22 May 2023 15:04:40 GMT cdn-storageserver: SE-344 cdn-requestpullsuccess: True cdn-fileserver: 584 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 18:44:24 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: 6cc543671bd66442bf39b79b68d3cb82 cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	eliteextra.com/wp-content/uploads/2022/02/Small-Logo.png	173.245.130.198	200 OK	14 kB
URL GET HTTP/2 eliteextra.com/wp-content/uploads/2022/02/Small-Logo.png IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type RIFF (little-endian) data, Web/P image\012- data Size 14 kB (14520 bytes) Hash ab04a03e86fb4bbe7b223de1d77179af 007fe9974af8ba59ec0aae61851c97d8bf1aad39 fa19cfe1129696e5dd51f76da6cb289d45372bb345faf22b2d5431bb74741153 HTTP Headers GET /wp-content/uploads/2022/02/Small-Logo.png HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Cookie: _pk_id.95407.f05f=f81fa9d271f0ccb0.1686027245.1.1686027245.1686027245.; _pk_ses.95407.f05f=1; _omappvp=h0qCPvIKGcjbM77maNNdFMkWLovqrCWLcGVt7qMn8zFLMQiJSG5yXkTdUGFPzBmqnh1f9M7OuKEpTNJZZ4SK5dBf8Db9C0zV; _omappvs=1686027245079; _ga_XHGWF8PBVN=GS1.1.1686027245.1.0.1686027245.60.0.0; _ga=GA1.1.1188448344.1686027245 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:06 GMT content-type: image/webp content-length: 14520 last-modified: Tue, 01 Mar 2022 21:50:12 GMT etag: "621e9514-38b8" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 vary: Accept accept-ranges: bytes X-Firefox-Spdy: h2`

	forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=22644969&utk=	104.17.106.199	200 OK	16 kB
URL GET HTTP/2 forms.hscollectedforms.net/collected-forms/v1/config/json?portalId=22644969&utk= IP 104.17.106.199:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintA5:D1:D2:E1:EA:8D:D7:F7:79:F2:ED:55:66:75:F5:52:07:A7:F4:B3 ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with no line terminators Size 16 kB (15738 bytes) Hash f582e2d85c80484b8b176e1fcfcc88d0 dc95db41282a97386bb9f4b3056e0ca25defe951 876f752496964dfda20d767b7bd2db64e47ffbf56e2b20a291bf6395902980e7 HTTP Headers GET /collected-forms/v1/config/json?portalId=22644969&utk= HTTP/1.1 Host: forms.hscollectedforms.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:05 GMT content-type: application/json;charset=utf-8 vary: Accept-Encoding x-hubspot-correlation-id: 426d4488-8919-468b-8be4-3032f2d223d4 cache-control: max-age=0 access-control-allow-origin: https://eliteextra.com access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD access-control-allow-headers: * access-control-max-age: 180 x-robots-tag: none x-envoy-upstream-service-time: 8 x-evy-trace-route-service-name: envoyset-translator x-evy-trace-virtual-host: all x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-57ff77fcd-x5fmx x-evy-trace-listener: listener_https x-evy-trace-route-configuration: listener_https/all x-request-id: a5c8aba4-5ebb-40b3-b9a3-98b99f8e7a3f cf-cache-status: DYNAMIC server: cloudflare cf-ray: 7d2e0e2e7c04b4ed-OSL content-encoding: br X-Firefox-Spdy: h2

	www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-XHGWF8PBVN&cid=1188448344.1686027245&gtm=45je35v0&aip=1&z=1654791884	216.58.211.3		42 B
URL www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-XHGWF8PBVN&cid=1188448344.1686027245&gtm=45je35v0&aip=1&z=1654791884 IP 216.58.211.3:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 42 B (42 bytes) Hash d89746888da2d9510b64a9f031eaecd5 d5fceb6532643d0d84ffe09c40c481ecdf59e15a ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629 HTTP Headers GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-XHGWF8PBVN&cid=1188448344.1686027245&gtm=45je35v0&aip=1&z=1654791884 HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Tue, 06 Jun 2023 04:54:06 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	a.omappapi.com/app/js/10.1224bb49.min.js	194.242.11.186	200 OK	6.8 kB
URL GET HTTP/2 a.omappapi.com/app/js/10.1224bb49.min.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type ASCII text, with very long lines (20130) Size 6.8 kB (6816 bytes) Hash b55bf398edbae4634409eb26a56a991f 0b689037c37bec91d231490c3b32102d8db33778 2394e70e9e554b5a405d343d73242bb59351f5039ecf19bf5993e592580ed729 HTTP Headers `GET /app/js/10.1224bb49.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"646b8488-4edc" last-modified: Mon, 22 May 2023 15:04:40 GMT cdn-storageserver: SE-318 cdn-requestpullsuccess: True cdn-fileserver: 385 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 18:44:24 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: e785545b40c0a5a6503b370775e56733 cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131		472 B
URL ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 35986eefb8831c2da0701e8c3a895c44 0773dc9f6f5c4aaeb511f4ec826aa628b47a6dc9 0c2cd3045859b0fc9a00eee2a486f946d11a84d4045cf8bfb46d3b5455b15dc8 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 06 Jun 2023 04:54:06 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	moderate9-v4.cleantalk.org/pixel/7855574afcebefe3196fc60ec2efd1a3.gif	51.81.55.251		43 B
URL moderate9-v4.cleantalk.org/pixel/7855574afcebefe3196fc60ec2efd1a3.gif IP 51.81.55.251:0 ASN #16276 OVH SAS File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash ad4b0f606e0f8465bc4c4c170b37e1a3 50b30fd5f87c85fe5cba2635cb83316ca71250d7 cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda HTTP Headers `GET /pixel/7855574afcebefe3196fc60ec2efd1a3.gif HTTP/1.1 Host: moderate9-v4.cleantalk.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Date: Tue, 06 Jun 2023 04:54:06 GMT Content-Type: image/gif Content-Length: 43 Last-Modified: Mon, 28 Sep 1970 06:00:00 GMT Connection: keep-alive X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubdomains; preload X-Frame-Options: SAMEORIGIN`

	embed.tawk.to/_s/v4/app/64795e77f7f/languages/en.js	172.67.38.66		6.3 kB
URL embed.tawk.to/_s/v4/app/64795e77f7f/languages/en.js IP 172.67.38.66:0 ASN #13335 CLOUDFLARENET File type ASCII text, with CRLF, LF line terminators Size 6.3 kB (6343 bytes) Hash 585ba00b2c167b90c210161454f843b5 89ee8372cc6d5eb307cf5840b70d8f3dab3c57f2 e924ffe8bcc65483510a22a7286bd6d4d204e72ffe5927eec50158f7a7be50c0 HTTP Headers `GET /_s/v4/app/64795e77f7f/languages/en.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:08 GMT content-type: application/javascript last-modified: Fri, 02 Jun 2023 03:15:39 GMT etag: W/"585ba00b2c167b90c210161454f843b5" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 348504 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e3ceaacb4f1-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b383d.js	172.67.38.66	200 OK	49 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b383d.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (689), with no line terminators Size 49 kB (48831 bytes) Hash a6432972b93f7d0476635e7ac224d718 982170daa2061994afe4c414adfbf32596ab3cca 72deb01333692d6942fe77383825537b0dac6653af9b50312a53fdf3b31efa09 HTTP Headers `GET /_s/v4/app/64795e77f7f/js/twk-chunk-2d0b383d.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:08 GMT content-type: application/javascript last-modified: Fri, 02 Jun 2023 03:15:39 GMT etag: W/"a6432972b93f7d0476635e7ac224d718" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 348503 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e3d2af0b4f1-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.227	200 OK	48 kB
URL GET HTTP/3 fonts.gstatic.com/s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.227:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.gstatic.com FingerprintC8:5A:9A:D9:6A:F5:00:15:5B:5D:99:FE:FE:CA:1D:7C:19:4D:F8:D5 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type Web Open Font Format (Version 2), TrueType, length 48412, version 1.0\012- data Size 48 kB (48412 bytes) Hash 31a8297826cdcea344698ff952694a7f 4fa1ee4c471d1c05e9141855eec5ee09b898d594 7c7818c25a18e8a38553fcbcbc2ad0b5e964103a7d2e494f82815e3f70bf3fc5 HTTP Headers GET /s/opensans/v35/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers HTTP/3 200 OK accept-ranges: bytes access-control-allow-origin: content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 48412 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 01 Jun 2023 11:49:35 GMT expires: Fri, 31 May 2024 11:49:35 GMT cache-control: public, max-age=31536000 age: 407080 last-modified: Tue, 02 May 2023 15:08:53 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-main.js	172.67.38.66	200 OK	14 kB
URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-main.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with no line terminators Size 14 kB (14194 bytes) Hash da5bb1dc647470204df0e49f5afac2de f5cbf596ca5e4fe208e4c55af6e45b71f9febbe8 705186becc9e0a306a6b4867ae2768aa9dd3b8c12393d9f9c52029e9a6fcf31c HTTP Headers `GET /_s/v4/app/64795e77f7f/js/twk-main.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:07 GMT content-type: application/javascript last-modified: Fri, 02 Jun 2023 03:15:39 GMT etag: W/"da5bb1dc647470204df0e49f5afac2de" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 73375 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e35b8130b69-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	embed.tawk.to/_s/v4/app/64795e77f7f/css/min-widget.css	172.67.38.66	200 OK	30 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/css/min-widget.css IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (24760), with no line terminators Size 30 kB (30183 bytes) Hash b0b0abe33d92f7a199e2e71fd516ff27 bf6af864e9e26100ae865904a5f5e9c270a63eb5 51e73fb66e2b18f262f86ba2880f9369b6a66d7411a3c8daa1146aaafc2690e6 HTTP Headers `GET /_s/v4/app/64795e77f7f/css/min-widget.css HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:08 GMT content-type: text/css cache-control: public, max-age=2592000, immutable cf-bgj: minify cf-polished: origSize=24840 access-control-allow-origin: * etag: W/"3d22e9f29d90d6fd0e66aebbeadc0ca2" last-modified: Fri, 02 Jun 2023 03:15:38 GMT strict-transport-security: max-age=0; includeSubDomains; preload x-cache-status: HIT cf-cache-status: HIT age: 348503 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e3e0b94b4f1-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	va.tawk.to/v1/session/start	172.67.38.66	200 OK	911 B
URL POST HTTP/3 va.tawk.to/v1/session/start IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type data Size 911 B (911 bytes) Hash b3e4a82e5f2834a976481c34620e5845 282223833a9ed0aceec56eabf81f4472a2957aaf 5e3c09a7aa37a7a2d283f36555e3d4446f602b113d0ceeab16f4da04a7ecfb25 HTTP Headers OPTIONS /v1/session/start HTTP/1.1 Host: va.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://eliteextra.com/ Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:07 GMT x-served-by: visitor-application-preemptive-3fxt access-control-allow-origin: https://eliteextra.com access-control-allow-credentials: true access-control-allow-methods: POST,OPTIONS access-control-allow-headers: content-type,x-tawk-token strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: DYNAMIC x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e391f93fabc-OSL alt-svc: h3=":443"; ma=86400`

	embed.tawk.to/_s/v4/app/64795e77f7f/css/message-preview.css	172.67.38.66	200 OK	7.6 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/css/message-preview.css IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (38236), with no line terminators Size 7.6 kB (7577 bytes) Hash 525e595977273d758b1f8b4b5b45eaff 82823b09d4b64e4e0ead74180c3021937701edfc 788855d7239de368ab83b2a1d743be8504c68659912d8f9aaf67a5a6aac463ed HTTP Headers `GET /_s/v4/app/64795e77f7f/css/message-preview.css HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:08 GMT content-type: text/css cache-control: public, max-age=2592000, immutable cf-bgj: minify cf-polished: origSize=38369 access-control-allow-origin: * etag: W/"4ad3afbed0c84d07cd50f865330d4a82" last-modified: Fri, 02 Jun 2023 03:15:38 GMT strict-transport-security: max-age=0; includeSubDomains; preload x-cache-status: HIT cf-cache-status: HIT age: 348502 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e3e1bb9b4f1-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	a.omappapi.com/app/js/4.a4362913.min.js	194.242.11.186	200 OK	42 kB
URL GET HTTP/2 a.omappapi.com/app/js/4.a4362913.min.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type ASCII text, with very long lines (42298) Size 42 kB (42352 bytes) Hash e27cb1079566140ba165830dd3818a69 ef09073b8473776d2861b27bf134f6c15eb688a9 7dbf257b712c17d642968848baba0d6ece76863dba4437b0192e2b96b2fe922d HTTP Headers `GET /app/js/4.a4362913.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:05 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"646b8488-a570" last-modified: Mon, 22 May 2023 15:04:40 GMT cdn-storageserver: SE-344 cdn-requestpullsuccess: True cdn-fileserver: 385 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 18:44:24 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: 9f88f8cd4f27e47656731c321b73fffd cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	eliteextra.com/wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.5.1	173.245.130.198	200 OK	6.8 kB
URL GET HTTP/2 eliteextra.com/wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.5.1 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type ASCII text, with very long lines (6817), with no line terminators Size 6.8 kB (6811 bytes) Hash f7fdc7752b96f5529f374e62b68c9f14 cfed641322a2aca3789cfa95d8dda603880396fd 81e3ed5dd78281c21cff51e7700c54b0faa89fc7ab7b1a99e255d725e95d8d33 HTTP Headers GET /wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.5.1 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: text/css last-modified: Thu, 30 Mar 2023 14:10:59 GMT etag: W/"64259873-1a9b" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	a.omappapi.com/app/js/11.0485dfca.min.js	194.242.11.186	200 OK	2.0 kB
URL GET HTTP/2 a.omappapi.com/app/js/11.0485dfca.min.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type ASCII text, with very long lines (2049), with no line terminators Size 2.0 kB (1988 bytes) Hash 2043941cb97f440527a44def5b3eb850 754928c545acd7ac7057177283e3afe6edeb8f40 667cc5eeef7e260125e5199f1aa7b3e397aec094fc2fc43b901621f9213e61ee HTTP Headers `GET /app/js/11.0485dfca.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"646b8488-7c4" last-modified: Mon, 22 May 2023 15:04:40 GMT cdn-storageserver: SE-318 cdn-requestpullsuccess: True cdn-fileserver: 584 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 18:44:24 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: a86d16721b26a4f25a5c5e003cb70dbf cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	region1.analytics.google.com/g/collect?v=2&tid=G-XHGWF8PBVN&gtm=45je35v0&_p=1144586236&_gaz=1&cid=1188448344.1686027245&ul=en-us&sr=1280x1024&_s=1&sid=1686027245&sct=1&seg=0&dl=https%3A%2F%2Feliteextra.com%2F%3Fe%3Dweslie.loomis%2540marten.com%26c%3Dpmails&dt=Elite%20EXTRA%20%7C%20Last%20Mile%20Software%20Solutions&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1	216.239.32.36	204 No Content	0 B
URL POST HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-XHGWF8PBVN&gtm=45je35v0&_p=1144586236&_gaz=1&cid=1188448344.1686027245&ul=en-us&sr=1280x1024&_s=1&sid=1686027245&sct=1&seg=0&dl=https%3A%2F%2Feliteextra.com%2F%3Fe%3Dweslie.loomis%2540marten.com%26c%3Dpmails&dt=Elite%20EXTRA%20%7C%20Last%20Mile%20Software%20Solutions&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 IP 216.239.32.36:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subject.google-analytics.com Fingerprint73:BF:B0:D4:62:48:8E:EF:09:5F:00:57:95:98:82:16:BB:07:35:0C ValidityFri, 19 May 2023 12:53:06 GMT - Fri, 11 Aug 2023 12:53:05 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-XHGWF8PBVN&gtm=45je35v0&_p=1144586236&_gaz=1&cid=1188448344.1686027245&ul=en-us&sr=1280x1024&_s=1&sid=1686027245&sct=1&seg=0&dl=https%3A%2F%2Feliteextra.com%2F%3Fe%3Dweslie.loomis%2540marten.com%26c%3Dpmails&dt=Elite%20EXTRA%20%7C%20Last%20Mile%20Software%20Solutions&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1 Host: region1.analytics.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 `HTTP/2 204 No Content access-control-allow-origin: https://eliteextra.com date: Tue, 06 Jun 2023 04:54:06 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

	embed.tawk.to/_s/v4/app/64795e77f7f/css/max-widget.css	172.67.38.66	200 OK	74 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/css/max-widget.css IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 74 kB (74419 bytes) Hash ebb53d03ee18dec4b394c3db6d7292d3 29ff00d5ff9045bddf07fe99e265a3420c3fbf75 a374cd80761045b46086558d2a9449f98c578d9f9bd68cc435ae780a845770c6 HTTP Headers `GET /_s/v4/app/64795e77f7f/css/max-widget.css HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:08 GMT content-type: text/css cache-control: public, max-age=2592000, immutable cf-bgj: minify cf-polished: origSize=74548 access-control-allow-origin: * etag: W/"f335908186585c187eea3163811286d9" last-modified: Fri, 02 Jun 2023 03:15:38 GMT strict-transport-security: max-age=0; includeSubDomains; preload x-cache-status: HIT cf-cache-status: HIT age: 348502 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e3e1bb8b4f1-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	a.omappapi.com/app/js/webfont/1.5.18/webfont.js	194.242.11.186	200 OK	17 kB
URL GET HTTP/2 a.omappapi.com/app/js/webfont/1.5.18/webfont.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type ASCII text, with very long lines (1190) Size 17 kB (16587 bytes) Hash 593e60ad549e46f8ca9a60755336c7df 9c030800712c832f2a15040cf02f546884a99808 ce261eb163fcaee6953cedc35059732a133766ab824dc512bbdf9424d48601e4 HTTP Headers `GET /app/js/webfont/1.5.18/webfont.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:05 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"64680524-40cb" last-modified: Fri, 19 May 2023 23:24:20 GMT cdn-storageserver: SE-318 cdn-requestpullsuccess: True cdn-fileserver: 584 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 18:44:24 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: 2a77467d37abecb34f382373be2355aa cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-app.js	172.67.38.66	200 OK	151 B
URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-app.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with no line terminators Size 151 B (151 bytes) Hash 04a9862af6efaf787bc8fb8e99ba6987 a57bb8f258eb1a60dc3b288a608ad8ef9fbecef3 ecc74c329a700e3e6ca29aed5ffe3c166cf39670c8b11573fa7f837f79a71b5c HTTP Headers `GET /_s/v4/app/64795e77f7f/js/twk-app.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:07 GMT content-type: application/javascript last-modified: Fri, 02 Jun 2023 03:15:39 GMT etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 73375 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e35c8220b69-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	eliteextra.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.5.1	173.245.130.198	200 OK	4.6 kB
URL GET HTTP/2 eliteextra.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.5.1 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type ASCII text, with very long lines (4857), with no line terminators Size 4.6 kB (4591 bytes) Hash 3c05b4818fda400788cc5c2f60d87ea4 01e544e8461be8bb14a13fb8be13cc1e8259858e db8170cdde3c954a075a4c1cfe836be73fc450ee8a298978470ca6a110284a08 HTTP Headers `GET /wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.5.1 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: application/javascript last-modified: Thu, 30 Mar 2023 14:10:59 GMT etag: W/"64259873-11ef" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	a.omappapi.com/app/js/api.min.js	194.242.11.186	200 OK	51 kB
URL GET HTTP/2 a.omappapi.com/app/js/api.min.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type C source, ASCII text, with very long lines (51351), with no line terminators Size 51 kB (51351 bytes) Hash eed2ddb2c4c4b3dccf08f52a343cd8e9 c22a678a70a08eb2a15752e9ce8864c44e5dedb8 feebfcd767aba4a271e38f94282fbe863ba0e393e21b92a5bc367d36ecade0c2 HTTP Headers `GET /app/js/api.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:05 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"eed2ddb2c4c4b3dccf08f52a343cd8e9" last-modified: Mon, 05 Jun 2023 23:07:35 GMT cdn-storagebalancer: SE-344 perma-cache: MISS x-amz-id-2: dI4f5PiM1b9R7575Qe5wnkV0Uf/scd3zbJHWxnuKYNIhjcUecEWrzE0tKMCGEBARLrtQ8HGHZ00= x-amz-request-id: 35TFP39G43EJ0FWZ x-amz-server-side-encryption: AES256 cdn-proxyver: 1.03 cdn-requestpullsuccess: True cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 23:07:42 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: 61bba6e07065b16c90f11341b22adb33 cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-common.js	172.67.38.66	200 OK	210 kB
URL GET HTTP/2 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-common.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (65466) Size 210 kB (210377 bytes) Hash 00aa43670bf94cf802dd5797a4416a00 321252add669266027cadb78a82f94d51e3f469e b9e3acc3ea33954ac74406b8bbd9489bba42631dda3b1ebfa20bb8874226a95a HTTP Headers `GET /_s/v4/app/64795e77f7f/js/twk-chunk-common.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:07 GMT content-type: application/javascript last-modified: Fri, 02 Jun 2023 03:15:39 GMT etag: W/"00aa43670bf94cf802dd5797a4416a00" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: MISS vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e35b8190b69-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	forms.hsforms.com/embed/v3/form/22644969/d7d881e0-97d4-4f4f-be3c-b6999fd60a5e/json?hs_static_app=forms-embed&hs_static_app_version=1.3243&X-HubSpot-Static-App-Info=forms-embed-1.3243	104.17.211.243	200 OK	10 kB
URL GET HTTP/3 forms.hsforms.com/embed/v3/form/22644969/d7d881e0-97d4-4f4f-be3c-b6999fd60a5e/json?hs_static_app=forms-embed&hs_static_app_version=1.3243&X-HubSpot-Static-App-Info=forms-embed-1.3243 IP 104.17.211.243:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT File type JSON data\012- , ASCII text, with very long lines (10432), with no line terminators Size 10 kB (10432 bytes) Hash 35523ebf0743c3fcb76d39107d6b5bf3 d7a024dda98ebfc12af857a5d5f30968f68b0b1a bdde05eda0247ff6cfe5d01cb836fbcc974afe4e34c7536a77ed7990722b4421 HTTP Headers GET /embed/v3/form/22644969/d7d881e0-97d4-4f4f-be3c-b6999fd60a5e/json?hs_static_app=forms-embed&hs_static_app_version=1.3243&X-HubSpot-Static-App-Info=forms-embed-1.3243 HTTP/1.1 Host: forms.hsforms.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:05 GMT content-type: application/json;charset=utf-8 x-trace: 2BAD7F460027E5781766E0B3A19A55B2E01B6BECC4000000000000000000 x-origin-hublet: na1 vary: origin x-hubspot-correlation-id: 2669c782-e470-4dfc-85fb-c2ed05c699c8 access-control-allow-origin: https://eliteextra.com access-control-allow-methods: OPTIONS, GET access-control-allow-headers: * access-control-allow-credentials: false access-control-max-age: 180 access-control-expose-headers: X-Origin-Hublet cache-control: max-age=0, no-cache, no-store x-robots-tag: none x-envoy-upstream-service-time: 22 x-evy-trace-route-service-name: envoyset-translator x-evy-trace-virtual-host: all x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-759c64d45c-j4dtm x-evy-trace-listener: listener_https x-evy-trace-route-configuration: listener_https/all x-request-id: e08afc6c-49e9-4966-a3d9-705ae3af8cc1 cf-cache-status: DYNAMIC strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7d2e0e2b396cb523-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	a.omappapi.com/app/js/28.471a76a7.min.js	194.242.11.186	200 OK	6.0 kB
URL GET HTTP/2 a.omappapi.com/app/js/28.471a76a7.min.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type ASCII text, with very long lines (6160), with no line terminators Size 6.0 kB (5977 bytes) Hash 39f163c2dbb0d0379e3ec8096122925f 40c60f60991f5e8feef4d4791a998f06ccbe2540 c9a8b28ef91cad05161507df4d4b820b348d6550c552ee06876a269dd2f62ad0 HTTP Headers `GET /app/js/28.471a76a7.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"646b8489-1759" last-modified: Mon, 22 May 2023 15:04:41 GMT cdn-storageserver: SE-344 cdn-requestpullsuccess: True cdn-fileserver: 385 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 18:44:24 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: 41e792c2a8f55b9406b0ba7b80928295 cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	a.omappapi.com/app/js/27.f35a62ac.min.js	194.242.11.186	200 OK	1.3 kB
URL GET HTTP/2 a.omappapi.com/app/js/27.f35a62ac.min.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type ASCII text, with very long lines (1286), with no line terminators Size 1.3 kB (1261 bytes) Hash d945a71d887c69e5d3c4cad3076e4af2 797dcefcc3dcfdeef7732c3c9da444aa6dae37d7 bb688506d9252080760af345ca5e3f7ec2568ecd706191c5aceb5428a5813a21 HTTP Headers `GET /app/js/27.f35a62ac.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"646b8487-4ed" last-modified: Mon, 22 May 2023 15:04:39 GMT cdn-storageserver: SE-344 cdn-requestpullsuccess: True cdn-fileserver: 584 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 18:44:24 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: 41a90b89fff1e14d5f149e24e6645d29 cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	va.tawk.to/log-performance/v3	172.67.38.66	200 OK	0 B
URL OPTIONS HTTP/3 va.tawk.to/log-performance/v3 IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /log-performance/v3 HTTP/1.1 Host: va.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://eliteextra.com/ Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache `HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:09 GMT x-served-by: visitor-application-preemptive-3fxt access-control-allow-origin: https://eliteextra.com access-control-allow-credentials: true access-control-allow-methods: POST,OPTIONS access-control-allow-headers: content-type,x-tawk-token strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: DYNAMIC x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e41be43b4f1-OSL alt-svc: h3=":443"; ma=86400`

	a.omappapi.com/app/js/api.min.js	194.242.11.186	200 OK	51 kB
URL GET HTTP/2 a.omappapi.com/app/js/api.min.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type C source, ASCII text, with very long lines (51351), with no line terminators Size 51 kB (51351 bytes) Hash eed2ddb2c4c4b3dccf08f52a343cd8e9 c22a678a70a08eb2a15752e9ce8864c44e5dedb8 feebfcd767aba4a271e38f94282fbe863ba0e393e21b92a5bc367d36ecade0c2 HTTP Headers `GET /app/js/api.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:05 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"eed2ddb2c4c4b3dccf08f52a343cd8e9" last-modified: Mon, 05 Jun 2023 23:07:35 GMT cdn-storagebalancer: SE-344 perma-cache: MISS x-amz-id-2: dI4f5PiM1b9R7575Qe5wnkV0Uf/scd3zbJHWxnuKYNIhjcUecEWrzE0tKMCGEBARLrtQ8HGHZ00= x-amz-request-id: 35TFP39G43EJ0FWZ x-amz-server-side-encryption: AES256 cdn-proxyver: 1.03 cdn-requestpullsuccess: True cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 23:07:42 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: fe8df7fa4737bb02c28236f23e30e168 cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	api.omappapi.com/v2/embed/185461/ksiwffe9u6uwlfekznw3	54.230.111.56	200 OK	6.0 kB
URL GET HTTP/2 api.omappapi.com/v2/embed/185461/ksiwffe9u6uwlfekznw3 IP 54.230.111.56:443 ASN #16509 AMAZON-02 Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerAmazon Subjectapi.opmnstr.com Fingerprint34:6F:11:EF:D5:CB:E0:6D:60:61:6B:1C:48:AC:44:A4:64:29:61:F9 ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 08 Feb 2024 23:59:59 GMT File type ASCII text, with very long lines (6604), with no line terminators Size 6.0 kB (5980 bytes) Hash 9890f0d65ad3becca552f1b314ed8693 310b2025573e7d8bf194f46d1c50b27b642ce01e 37e3ea6d709b7198379f3968a9b08bb211ec8c0babb2abfd9ad88daaa95656bf HTTP Headers `GET /v2/embed/185461/ksiwffe9u6uwlfekznw3 HTTP/1.1 Host: api.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: application/json date: Tue, 06 Jun 2023 04:54:05 GMT access-control-allow-origin: * access-control-allow-headers: X-CSRF-Token expires: Tue, 06 Jun 2023 04:54:35 GMT cache-control: public, max-age=30, stale-while-revalidate=1800 last-modified: Thu, 01 Jun 2023 20:26:26 GMT etag: W/"11572fd4e6a15fba489887a4383c14ab" x-optinmonster-campaign: ksiwffe9u6uwlfekznw3 access-control-expose-headers: X-OptinMonster-Campaign, X-User-Agent x-user-agent: standard-- x-cache-config: 0 0 vary: Accept-Encoding, User-Agent x-cache-status: EXPIRED content-encoding: gzip server: Pagely Gateway/1.5.1 x-cache: Miss from cloudfront via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: VXvQX0qCQgMi4_LlTmDdf4hbboS2IG22R0raMgE41fSMnIS3SfuAng== X-Firefox-Spdy: h2

	js.hs-scripts.com/22644969.js?integration=WordPress&ver=10.1.24	104.18.135.59	200 OK	1.5 kB
URL GET HTTP/2 js.hs-scripts.com/22644969.js?integration=WordPress&ver=10.1.24 IP 104.18.135.59:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint5A:DE:00:16:F4:3C:EB:0D:2A:0C:6E:27:59:94:38:E3:D9:B1:20:3E ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT File type ASCII text, with very long lines (1601), with no line terminators Size 1.5 kB (1521 bytes) Hash fc22e08ad7b069da3ff4872378fea296 a0f81924347ca94778a527c611724f2e999e1dc5 04d61f16c613c3a731ebf4ca60c5813d80d63fcf88a169d5b8f92892b1f85c0a HTTP Headers `GET /22644969.js?integration=WordPress&ver=10.1.24 HTTP/1.1 Host: js.hs-scripts.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:04 GMT content-type: application/javascript;charset=utf-8 x-trace: 2B2A773212B5AC6ADBE4A2C596DF616F1BF5263532000000000000000000 cache-control: public, max-age=60 vary: origin, Accept-Encoding x-hubspot-correlation-id: 29d0a665-c1c9-4464-8224-2439473ebe4a access-control-allow-credentials: true access-control-max-age: 3600 access-control-allow-origin: https://eliteextra.com x-envoy-upstream-service-time: 14 x-evy-trace-route-service-name: envoyset-translator x-evy-trace-virtual-host: all x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-598c95b5b7-ltr78 x-evy-trace-listener: listener_https x-evy-trace-route-configuration: listener_https/all x-request-id: f539ac66-113d-45ea-91f7-cd7c370b9e2c last-modified: Mon, 05 Jun 2023 19:55:02 GMT cf-cache-status: EXPIRED expires: Tue, 06 Jun 2023 04:55:04 GMT server: cloudflare cf-ray: 7d2e0e251ae10b65-OSL content-encoding: br X-Firefox-Spdy: h2

	embed.tawk.to/5f0776eb67771f3813c0c0b5/default	172.67.38.66	200 OK	2.1 kB
URL GET HTTP/2 embed.tawk.to/5f0776eb67771f3813c0c0b5/default IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (2308), with no line terminators Size 2.1 kB (2121 bytes) Hash 01f204bc784e77984e25c943dbd877dd b8c1a70ac57a2d54435db6dbc34c3bba8006ead3 1cadfb6f0a4019534416fbe471511ade2d94ec3c3a7a6623b5c37414db6acd4e HTTP Headers `GET /5f0776eb67771f3813c0c0b5/default HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:05 GMT content-type: application/x-javascript access-control-allow-origin: * cache-control: public, max-age=7200, s-maxage=3600 etag: W/"stable-v4-64795e77f7f" vary: Accept-Encoding strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: REVALIDATED x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e2b697b0b69-OSL content-encoding: br alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2`

	a.omappapi.com/app/js/5.58816c65.min.js	194.242.11.186	200 OK	16 kB
URL GET HTTP/2 a.omappapi.com/app/js/5.58816c65.min.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type ASCII text, with very long lines (16201) Size 16 kB (16256 bytes) Hash c85fcdea911b7576d241820317427db7 9f226e066230b1b92b354d0f46c239776899447b 59fd27868af28f0432fefa2051b852b00011cdfda0c18d4e40c5adb48ef7a85b HTTP Headers `GET /app/js/5.58816c65.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:05 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"646b8488-3f80" last-modified: Mon, 22 May 2023 15:04:40 GMT cdn-storageserver: SE-318 cdn-requestpullsuccess: True cdn-fileserver: 385 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 18:44:24 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: d1fffd767b4d07b34d6d5dd72ac2a0ab cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	eliteextra.com/wp-content/themes/Divi/style-static.min.css?ver=4.21.0	173.245.130.198	200 OK	825 kB
URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/style-static.min.css?ver=4.21.0 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type ASCII text, with very long lines (65192) Size 825 kB (824656 bytes) Hash fc5209413ba5559d727da540892fce96 2be81df594cf7a107d7189c5a2bb5900e114e017 fc88a81a336eb3688e71561dc45c60ecda0179b7baea8c51be5b54666e8bb077 HTTP Headers `GET /wp-content/themes/Divi/style-static.min.css?ver=4.21.0 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: text/css last-modified: Fri, 28 Apr 2023 04:33:39 GMT etag: W/"644b4ca3-c9550" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.21.0	173.245.130.198	200 OK	274 kB
URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/js/scripts.min.js?ver=4.21.0 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type ASCII text, with very long lines (65467) Size 274 kB (274266 bytes) Hash d01712dc614e43de021a98920dfb7208 fd6bef0ce9eccf622cc89736a211f7585fa48074 124999106b36b91138193de6ae365bc2e97ec51e122e2f967318ce3d662b561b HTTP Headers `GET /wp-content/themes/Divi/js/scripts.min.js?ver=4.21.0 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: application/javascript last-modified: Fri, 28 Apr 2023 04:33:39 GMT etag: W/"644b4ca3-42f5a" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/plugins/optinmonster/assets/dist/js/helper.min.js?ver=2.13.2	173.245.130.198	200 OK	2.5 kB
URL GET HTTP/2 eliteextra.com/wp-content/plugins/optinmonster/assets/dist/js/helper.min.js?ver=2.13.2 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type ASCII text, with very long lines (2578), with no line terminators Size 2.5 kB (2516 bytes) Hash 21fc3fbc097a8c9e49dcfa9af02f4a4f e47d3bd1f449bfb80e8401634c96b024a33ab58d 5f077bcc1164e773a4aee7872202dcaecab96be402b40ab11563aa73078e03a3 HTTP Headers `GET /wp-content/plugins/optinmonster/assets/dist/js/helper.min.js?ver=2.13.2 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: application/javascript last-modified: Thu, 27 Apr 2023 14:26:55 GMT etag: W/"644a862f-9d4" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	player.vimeo.com/video/783404154?dnt=1&app_id=122963	162.159.128.61	200 OK	22 kB
URL GET HTTP/1.1 player.vimeo.com/video/783404154?dnt=1&app_id=122963 IP 162.159.128.61:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:91:E3:66:C8:AB:7B:DB:A8:E4:58:1B:25:C3:EF:38:4C:8E:CE:21 ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT File type Size 22 kB (22250 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /video/783404154?dnt=1&app_id=122963 HTTP/1.1 Host: player.vimeo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Tue, 06 Jun 2023 04:54:05 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 content-security-policy: default-src 'none'; script-src 'self' 'unsafe-inline' https://.vimeocdn.com 'unsafe-eval' blob: resource: https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv; style-src 'self' 'unsafe-inline' https://.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com; connect-src 'self' ws: wss: https://vimeo.com https://api.vimeo.com https://csi.gstatic.com https://player-telemetry.vimeo.com https://.akamaized.net https://.akamaized-staging.net https://.vimeocdn.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://.dna-delivery.com https://.kollective.app/ https://.hivestreaming.com/ https://mimir.cloud.vimeo.com https://.wirewax.com https://.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; font-src https://edge-assets.wirewax.com https://fonts.gstatic.com https://player.vimeo.com; img-src 'self' data: https://player.vimeo.com https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://.ci.vimeows.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com; object-src 'self' https://.vimeocdn.com https://.akamaized.net https://.akamaized-staging.net; media-src 'self' blob: https://.vimeocdn.com https://.akamaized.net https://.akamaized-staging.net https://.gvt1.com https://live-api.cloud.vimeo.com; frame-src 'self' https://* expires: Fri, 15 Dec 1985 19:30:00 GMT link: <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin, <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff x-host: player-backend-6dc57d49ff-dcdkv x-player-backend: g x-xss-protection: 1; mode=block x-backend-server: player-backend-edge-entry x-bapp-server: player-backend-6dc57d49ff-dcdkv Via: 1.1 varnish Age: 0 X-Served-By: cache-bma1673-BMA X-Cache: MISS X-Cache-Hits: 0 X-Timer: S1686027246.774437,VS0,VE157 Vary: Accept-Encoding CF-Cache-Status: DYNAMIC Set-Cookie: __cf_bm=ITeFjVuT9r3OsCTD5xHoVX42t3an92J_mP3OXA_kYXU-1686027245-0-ARU02UrLtnBR6MfFiScnLMYnJENDS3I5o43al3gxpIpDzyPKLJCq/bIKNtyjpqJ55DkiaqHZFLbsZ6k68NfCPbM=; path=/; expires=Tue, 06-Jun-23 05:24:05 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None Server: cloudflare CF-RAY: 7d2e0e2e0866b518-OSL Content-Encoding: gzip

	eliteextra.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.21.0	173.245.130.198	200 OK	8.6 kB
URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.21.0 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type ASCII text, with very long lines (8723), with no line terminators Size 8.6 kB (8574 bytes) Hash 1dc4733800bde9331c0d7b251b3c1e38 483737590462acbf6c93b062e3ad201c999d8773 37dd6d46eefe87d64e19be56bea0dfe297b99a595ac840a03ceb220b9d50f9b4 HTTP Headers GET /wp-content/themes/Divi/includes/builder/feature/dynamic-assets/assets/js/salvattore.js?ver=4.21.0 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: application/javascript last-modified: Fri, 28 Apr 2023 04:33:39 GMT etag: W/"644b4ca3-217e" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	fonts.googleapis.com/css?family=Open+Sans:400,700,500%7CMontserrat:400,600,600,700	142.250.74.106	200 OK	13 kB
URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700,500%7CMontserrat:400,600,600,700 IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint3F:94:23:08:F7:DB:8B:36:93:90:93:F4:9E:46:A6:6A:93:75:15:C0 ValidityFri, 19 May 2023 12:57:42 GMT - Fri, 11 Aug 2023 12:57:41 GMT File type ASCII text Size 13 kB (13416 bytes) Hash 4ed038e61a2d5baad26be7b28611a2a0 b9a4f43082589c94b7bff290e562d1fb2d13a98c 77fb65d75c824e7c11cd7b055cb1a2752ee4cdb5426c1cc6f9d024ee386f48ae HTTP Headers `GET /css?family=Open+Sans:400,700,500%7CMontserrat:400,600,600,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 06 Jun 2023 04:54:06 GMT date: Tue, 06 Jun 2023 04:54:06 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	eliteextra.com/wp-content/et-cache/777/et-core-unified-deferred-777.min.css?ver=1685993212	173.245.130.198	200 OK	36 kB
URL GET HTTP/2 eliteextra.com/wp-content/et-cache/777/et-core-unified-deferred-777.min.css?ver=1685993212 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type ASCII text, with very long lines (36360), with no line terminators Size 36 kB (36360 bytes) Hash 69dccc07883373e0078dc6ad70597161 08fa65313f5298f0dff04e9f902057e752b69c10 63a66eb969d9da67ca442a086936fca6c8f9b247bc6b3257125bd8c49fa8e11c HTTP Headers GET /wp-content/et-cache/777/et-core-unified-deferred-777.min.css?ver=1685993212 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: text/css last-modified: Mon, 05 Jun 2023 19:26:52 GMT etag: W/"647e36fc-8e08" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	eliteextra.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17	173.245.130.198	200 OK	158 kB
URL GET HTTP/2 eliteextra.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type ASCII text, with very long lines (65266) Size 158 kB (158005 bytes) Hash e53ec3d6e21be78115810135f5e956fe 523892839b88351523e0498ba881c4431197b54e b15c3ea03d50c2430490e7416733a254feea4237bb60b54181bd3473ebe4149f HTTP Headers `GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: application/javascript last-modified: Wed, 02 Nov 2022 04:30:11 GMT etag: W/"6361f253-26935" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	eliteextra.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0	173.245.130.198	200 OK	13 kB
URL GET HTTP/2 eliteextra.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type ASCII text, with very long lines (13326) Size 13 kB (13424 bytes) Hash 5cfa2b481de6e87c2190a0e3538515d8 0fccf3c8ab2c10b4dcc7970e64ce997ab1622f68 9810aee7e6d57d8cceaa96322b88e6df46710194689ae12b284149148cabc2f3 HTTP Headers `GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.0 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: application/javascript last-modified: Thu, 30 Mar 2023 04:30:01 GMT etag: W/"64251049-3470" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	eliteextra.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.21.0	173.245.130.198	200 OK	1.3 kB
URL GET HTTP/2 eliteextra.com/wp-content/themes/Divi/core/admin/js/common.js?ver=4.21.0 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type ASCII text, with very long lines (1504), with no line terminators Size 1.3 kB (1343 bytes) Hash 7bc5428fa6437f2a1b20b414aae17df4 7856b096ba35f489bdc69190bdd86b6790e661af 1331301ce99cbb52f3a8e865c343d84ebb43664acb79339230e008ba4488f1da HTTP Headers `GET /wp-content/themes/Divi/core/admin/js/common.js?ver=4.21.0 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: application/javascript last-modified: Fri, 28 Apr 2023 04:33:39 GMT etag: W/"644b4ca3-53f" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	va.tawk.to/v1/widget-settings?propertyId=5f0776eb67771f3813c0c0b5&widgetId=default&sv=undefined	172.67.38.66	200 OK	3.0 kB
URL GET HTTP/3 va.tawk.to/v1/widget-settings?propertyId=5f0776eb67771f3813c0c0b5&widgetId=default&sv=undefined IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type troff or preprocessor input, ASCII text, with very long lines (3425), with no line terminators Size 3.0 kB (2975 bytes) Hash 25b8f6a309c4ed140fd8419b87a57e7f 9bab989c6cd39c3b40fac11f14c4c08e469ee774 e51f48ae096a478e77d4344c5d55e666298a59899a8eeb171130b4cadcf638a1 HTTP Headers `GET /v1/widget-settings?propertyId=5f0776eb67771f3813c0c0b5&widgetId=default&sv=undefined HTTP/1.1 Host: va.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://eliteextra.com/ Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:08 GMT content-type: application/json x-served-by: visitor-application-preemptive-91z5 access-control-allow-origin: * access-control-allow-methods: GET,OPTIONS access-control-allow-headers: content-type,x-tawk-token cache-control: public, max-age=7200, s-maxage=1800 etag: W/"2-52-0" vary: Accept-Encoding strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: MISS x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e391f94fabc-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-07cad36d.js	172.67.38.66	200 OK	94 kB
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-07cad36d.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (65536), with no line terminators Size 94 kB (93981 bytes) Hash c1f0a7a7efb96bfdcdc443a0d6dfd1ca 2fad289307a1e188576c8a9e3103157239c147dd c55670ad77526b0eb69b7fab93da3bf979e4197bafffb5e6802d36aed72249fb HTTP Headers `GET /_s/v4/app/64795e77f7f/js/twk-chunk-07cad36d.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:08 GMT content-type: application/javascript last-modified: Fri, 02 Jun 2023 03:15:39 GMT etag: W/"c1f0a7a7efb96bfdcdc443a0d6dfd1ca" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 348502 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e3d3afab4f1-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails	173.245.130.198	200 OK	129 kB
URL User Request GET HTTP/2 eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type Size 129 kB (128941 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /?e=weslie.loomis%40marten.com&c=pmails HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:03 GMT content-type: text/html; charset=UTF-8 x-frame-options: SAMEORIGIN link: <https://eliteextra.com/wp-json/>; rel="https://api.w.org/", <https://eliteextra.com/wp-json/wp/v2/pages/777>; rel="alternate"; type="application/json", <https://eliteextra.com/>; rel=shortlink content-encoding: gzip X-Firefox-Spdy: h2`

	eliteextra.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17	173.245.130.198	200 OK	11 kB
URL GET HTTP/2 eliteextra.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type ASCII text, with very long lines (11256), with no line terminators Size 11 kB (11256 bytes) Hash 2b0dd7eecea03b4bdedb94ba622fdb03 703becba85161118dd6fc66af465428ef43f561c b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646 HTTP Headers `GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: text/css last-modified: Tue, 29 Sep 2020 15:53:06 GMT etag: W/"5f735862-2bf8" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	a.omappapi.com/app/js/api.min.js	194.242.11.186	200 OK	51 kB
URL GET HTTP/2 a.omappapi.com/app/js/api.min.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type C source, ASCII text, with very long lines (51351), with no line terminators Size 51 kB (51351 bytes) Hash eed2ddb2c4c4b3dccf08f52a343cd8e9 c22a678a70a08eb2a15752e9ce8864c44e5dedb8 feebfcd767aba4a271e38f94282fbe863ba0e393e21b92a5bc367d36ecade0c2 HTTP Headers `GET /app/js/api.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:05 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"eed2ddb2c4c4b3dccf08f52a343cd8e9" last-modified: Mon, 05 Jun 2023 23:07:35 GMT cdn-storagebalancer: SE-344 perma-cache: MISS x-amz-id-2: dI4f5PiM1b9R7575Qe5wnkV0Uf/scd3zbJHWxnuKYNIhjcUecEWrzE0tKMCGEBARLrtQ8HGHZ00= x-amz-request-id: 35TFP39G43EJ0FWZ x-amz-server-side-encryption: AES256 cdn-proxyver: 1.03 cdn-requestpullsuccess: True cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 23:07:42 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: 779a867dade00a9d8e361ab56b1c1f9f cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	a.omappapi.com/app/js/20.30ad6480.min.js	194.242.11.186	200 OK	3.8 kB
URL GET HTTP/2 a.omappapi.com/app/js/20.30ad6480.min.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type ASCII text, with very long lines (3871), with no line terminators Size 3.8 kB (3801 bytes) Hash 6fad2bd8bad5697d9476cf90a8c9e9f5 2c55e1b8226449665fcfeede6051f461d920b11c 47c30b99fb5157e4cd072f122effe416aaef3ceea5a7f9e8aaf7e209b85243bf HTTP Headers `GET /app/js/20.30ad6480.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"646b8488-ed9" last-modified: Mon, 22 May 2023 15:04:40 GMT cdn-storageserver: SE-318 cdn-requestpullsuccess: True cdn-fileserver: 585 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 18:44:24 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: 4dd16c6e22a0d27b51ad95c1c78273ba cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	forms-na1.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1	104.17.211.243	200 OK	35 B
URL GET HTTP/3 forms-na1.hsforms.com/embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1 IP 104.17.211.243:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint1E:9D:91:27:86:63:DC:7B:9D:15:4E:99:31:FC:AA:1D:DC:9E:06:3B ValidityThu, 18 May 2023 00:00:00 GMT - Fri, 17 May 2024 23:59:59 GMT File type GIF image data, version 89a, 1 x 1\012- data Size 35 B (35 bytes) Hash c2196de8ba412c60c22ab491af7b1409 5fbd472222feb8a22cf5b8aa5dc5b8e13af88e2b 6adc3d4c1056996e4e8b765a62604c78b1f867cceb3b15d0b9bedb7c4857f992 HTTP Headers `GET /embed/v3/counters.gif?key=forms-embed-v2-RENDER_SUCCESS&count=1 HTTP/1.1 Host: forms-na1.hsforms.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: image/gif content-length: 35 x-trace: 2B2214EC84C85F8CE7C89E2671C1B3B3752A5A90E9000000000000000000 cache-control: max-age=0, no-cache, no-store vary: origin x-hubspot-correlation-id: 0c12af17-f558-48d3-823f-9115f4764a7d access-control-allow-credentials: false access-control-expose-headers: X-Origin-Hublet x-robots-tag: none x-envoy-upstream-service-time: 1 x-evy-trace-route-service-name: envoyset-translator x-evy-trace-virtual-host: all x-evy-trace-served-by-pod: iad02/star-hubspot-td/envoy-proxy-759c64d45c-jkmcj x-evy-trace-listener: listener_https x-evy-trace-route-configuration: listener_https/all x-request-id: e8c652f6-f91d-47b7-a010-e42b36eaf8e0 cf-cache-status: DYNAMIC strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 7d2e0e320983b4fa-OSL alt-svc: h3=":443"; ma=86400

	js.hscollectedforms.net/collectedforms.js	104.17.106.199	200 OK	70 kB
URL GET HTTP/2 js.hscollectedforms.net/collectedforms.js IP 104.17.106.199:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com FingerprintA5:D1:D2:E1:EA:8D:D7:F7:79:F2:ED:55:66:75:F5:52:07:A7:F4:B3 ValiditySat, 29 Apr 2023 00:00:00 GMT - Sun, 28 Apr 2024 23:59:59 GMT File type Size 70 kB (70352 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /collectedforms.js HTTP/1.1 Host: js.hscollectedforms.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:05 GMT content-type: application/javascript; charset=utf-8 x-amz-replication-status: COMPLETED last-modified: Tue, 09 May 2023 08:44:18 UTC x-amz-server-side-encryption: AES256 x-amz-version-id: SGo7xq5b6d1kUu6c8SU5YR.mobmUICUY etag: W/"d1b16df440198d59c993c4956b7fded6" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 f01dafb3bec9893b47152910d47900a4.cloudfront.net (CloudFront) x-amz-cf-pop: IAD12-P3 x-amz-cf-id: I1Ejl0J4VuCw1GH1popC9kfQkYD91L8Gql3wS_L8O4ts0qJOrKuUOg== content-security-policy-report-only: frame-ancestors 'self'; report-uri https://send.hsbrowserreports.com/csp/report?resource=collected-forms-embed-js/static-1.370/bundles/project.js&cfRay=7d2e0e2cbab1b4ed-ARN cache-control: s-maxage=600, max-age=300 x-hs-target-asset: collected-forms-embed-js/static-1.370/bundles/project.js access-control-allow-origin: * x-hs-cache-status: HIT x-envoy-upstream-service-time: 1 x-evy-trace-route-service-name: envoyset-translator x-evy-trace-virtual-host: all x-evy-trace-served-by-pod: iad02/app-td/envoy-proxy-57ff77fcd-xhv87 x-evy-trace-listener: listener_https x-evy-trace-route-configuration: listener_https/all x-request-id: ca12372e-2131-4a66-8d07-221cd8f6c2d8 cache-tag: staticjsapp-collected-forms-embed-js-web-prod,staticjsapp-prod cf-cache-status: EXPIRED server: cloudflare cf-ray: 7d2e0e2cbab1b4ed-OSL content-encoding: br X-Firefox-Spdy: h2

	a.omappapi.com/app/js/29.739a6460.min.js	194.242.11.186	200 OK	2.8 kB
URL GET HTTP/2 a.omappapi.com/app/js/29.739a6460.min.js IP 194.242.11.186:443 ASN #34989 ServeTheWorld AS Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecta.omappapi.com Fingerprint89:FA:27:BF:8F:6C:82:8F:26:F0:66:18:0A:3E:51:CA:80:7E:CE:F2 ValidityFri, 26 May 2023 10:15:30 GMT - Thu, 24 Aug 2023 10:15:29 GMT File type ASCII text, with very long lines (2907), with no line terminators Size 2.8 kB (2775 bytes) Hash e95eac4b7678f6b80b1cf1e0b56f9e37 9f00aeaf6ae5461d3c723c3247f1aaab68b998f7 6715bf6a0a8b46e3718c1f2354ebfe360f08c9c0f5404aeef4bb391615eec4b3 HTTP Headers `GET /app/js/29.739a6460.min.js HTTP/1.1 Host: a.omappapi.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 200 OK date: Tue, 06 Jun 2023 04:54:06 GMT content-type: application/javascript server: BunnyCDN-NO1-830 cdn-pullzone: 293267 cdn-uid: efcab737-66db-4b75-ab55-ed485d5a01dd cdn-requestcountrycode: NO vary: Accept-Encoding, Accept-Encoding access-control-allow-origin: * access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match cache-control: public, max-age=31919000 etag: W/"646b8495-ad7" last-modified: Mon, 22 May 2023 15:04:53 GMT cdn-storageserver: SE-318 cdn-requestpullsuccess: True cdn-fileserver: 385 perma-cache: HIT cdn-proxyver: 1.03 cdn-requestpullcode: 200 cdn-cachedat: 06/05/2023 18:44:24 cdn-edgestorageid: 830 cdn-status: 200 cdn-requestid: c499114ae4caa11be8a05b9f7c2d0a50 cdn-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	va.tawk.to/log-performance/v3	172.67.38.66	200 OK	5 B
URL POST HTTP/3 va.tawk.to/log-performance/v3 IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with no line terminators Size 5 B (5 bytes) Hash 38a8a3e3b4b6a6e4f295b2e0f899b1f0 474f5fac3d23afbaf16c5a31c98dfcd956e4c186 7652c7891ed06bce4174ab00a6ee9721daf6a4286929213ecb7daf42cd866615 HTTP Headers `POST /log-performance/v3 HTTP/1.1 Host: va.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://eliteextra.com/ Content-Type: application/json; charset=utf-8 Content-Length: 95 Origin: https://eliteextra.com DNT: 1 Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:09 GMT content-type: text/html; charset=utf-8 x-served-by: visitor-application-preemptive-k0rt access-control-allow-origin: https://eliteextra.com access-control-allow-credentials: true access-control-allow-methods: POST,OPTIONS access-control-allow-headers: content-type,x-tawk-token vary: Accept-Encoding strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: DYNAMIC x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e42bf15b4f1-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

	eliteextra.com/wp-content/plugins/wp-external-links/public/js/wpel-front.js?ver=6.2.2	173.245.130.198	200 OK	4.8 kB
URL GET HTTP/2 eliteextra.com/wp-content/plugins/wp-external-links/public/js/wpel-front.js?ver=6.2.2 IP 173.245.130.198:443 ASN #11796 AIRSTREAMCOMM-NET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerLet's Encrypt Subjecteliteextra.com Fingerprint55:78:AA:7D:14:96:72:AE:54:69:E4:55:26:68:1D:70:4D:C1:2C:B4 ValidityMon, 08 May 2023 02:50:33 GMT - Sun, 06 Aug 2023 02:50:32 GMT File type HTML document, ASCII text, with very long lines (5005), with no line terminators Size 4.8 kB (4813 bytes) Hash 717c8cfea5c3101c2cc884fbf38b7595 a787def500cbfe58561aa5982a3d80180ee92746 45125813d38a78cd6dc48110b3f7e5bc82db81faa704dad08287aaa0b41070f8 HTTP Headers `GET /wp-content/plugins/wp-external-links/public/js/wpel-front.js?ver=6.2.2 HTTP/1.1 Host: eliteextra.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK server: nginx/1.18.0 (Ubuntu) date: Tue, 06 Jun 2023 04:54:04 GMT content-type: application/javascript last-modified: Mon, 15 May 2023 16:31:12 GMT etag: W/"64625e50-12cd" expires: Thu, 31 Dec 2037 23:55:55 GMT cache-control: max-age=315360000 content-encoding: gzip X-Firefox-Spdy: h2`

	player.vimeo.com/video/783404154?dnt=1&app_id=122963	162.159.128.61	200 OK	22 kB
URL GET HTTP/1.1 player.vimeo.com/video/783404154?dnt=1&app_id=122963 IP 162.159.128.61:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint4B:91:E3:66:C8:AB:7B:DB:A8:E4:58:1B:25:C3:EF:38:4C:8E:CE:21 ValidityWed, 01 Mar 2023 00:00:00 GMT - Thu, 29 Feb 2024 23:59:59 GMT File type Size 22 kB (22250 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /video/783404154?dnt=1&app_id=122963 HTTP/1.1 Host: player.vimeo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/1.1 200 OK Date: Tue, 06 Jun 2023 04:54:05 GMT Content-Type: text/html; charset=UTF-8 Transfer-Encoding: chunked Connection: keep-alive cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 content-security-policy: default-src 'none'; script-src 'self' 'unsafe-inline' https://.vimeocdn.com 'unsafe-eval' blob: resource: https://vimeo.com https://js-agent.newrelic.com https://imasdk.googleapis.com/ https://adservice.google.com/ https://s0.2mdn.net/instream/video/ https://bam.nr-data.net https://src.litix.io https://www.gstatic.com https://cdn.streamroot.io https://cdn.kollective.app/ https://wirewax.s3.eu-west-1.amazonaws.com https://edge-assets.wirewax.com https://embedder-sdk.wirewax.com https://embedder-sdk.wirewax.tv; style-src 'self' 'unsafe-inline' https://.vimeocdn.com https://fonts.googleapis.com https://edge-assets.wirewax.com; connect-src 'self' ws: wss: https://vimeo.com https://api.vimeo.com https://csi.gstatic.com https://player-telemetry.vimeo.com https://.akamaized.net https://.akamaized-staging.net https://.vimeocdn.com https://lic.staging.drmtoday.com https://lic.drmtoday.com https://wv.service.expressplay.com https://fp.service.expressplay.com https://pr.service.expressplay.com https://storage.googleapis.com https://bam.nr-data.net https://live-api.cloud.vimeo.com https://.litix.io/ https://collector.vhx.tv https://collector.vhxstaging.com https://.dna-delivery.com https://.kollective.app/ https://.hivestreaming.com/ https://mimir.cloud.vimeo.com https://.wirewax.com https://.wirewax.tv https://wirewax.s3.eu-west-1.amazonaws.com https://sqs.us-east-1.amazonaws.com https://sqs.eu-west-1.amazonaws.com https://s3-eu-west-1.amazonaws.com https://cognito-identity.us-east-1.amazonaws.com https://cognito-identity.eu-west-1.amazonaws.com; font-src https://edge-assets.wirewax.com https://fonts.gstatic.com https://player.vimeo.com; img-src 'self' data: https://player.vimeo.com https://i.vimeocdn.com https://secure-b.vimeocdn.com https://f.vimeocdn.com https://.vimeocdn.com https://vimeo.com https://secure.gravatar.com https://i0.wp.com https://i1.wp.com https://i2.wp.com https://pagead2.googlesyndication.com https://.ci.vimeows.com https://i.vimeocdn.com https://wirewax.s3.eu-west-1.amazonaws.com https://studio-media.wirewax.com https://edge-assets.wirewax.com https://maps.googleapis.com; object-src 'self' https://.vimeocdn.com https://.akamaized.net https://.akamaized-staging.net; media-src 'self' blob: https://.vimeocdn.com https://.akamaized.net https://.akamaized-staging.net https://.gvt1.com https://live-api.cloud.vimeo.com; frame-src 'self' https://* expires: Fri, 15 Dec 1985 19:30:00 GMT link: <https://fresnel.vimeocdn.com>; rel=preconnect; crossorigin, <https://i.vimeocdn.com>; rel=preconnect; crossorigin, <https://f.vimeocdn.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000; includeSubDomains; preload x-content-type-options: nosniff x-host: player-backend-6dc57d49ff-zlj79 x-player-backend: g x-xss-protection: 1; mode=block x-backend-server: player-backend-edge-entry x-bapp-server: player-backend-6dc57d49ff-zlj79 Via: 1.1 varnish Age: 0 X-Served-By: cache-bma1644-BMA X-Cache: MISS X-Cache-Hits: 0 X-Timer: S1686027245.950795,VS0,VE253 Vary: Accept-Encoding CF-Cache-Status: DYNAMIC Set-Cookie: __cf_bm=oNw8jxePT5X5Zn517tHcUgyENMrjkBmpaunaOD1TdnE-1686027245-0-ASgnRx9xd2efTdy1yTfRnzXb010qeQOs7UZLMcBH5QHtNhv4QtgyByUnoceTD6dVDNfJMaV46jSW3EOGVM5qPFU=; path=/; expires=Tue, 06-Jun-23 05:24:05 GMT; domain=.vimeo.com; HttpOnly; Secure; SameSite=None Server: cloudflare CF-RAY: 7d2e0e28cc0cb518-OSL Content-Encoding: gzip

	embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b9454.js	172.67.38.66	200 OK	535 B
URL GET HTTP/3 embed.tawk.to/_s/v4/app/64795e77f7f/js/twk-chunk-2d0b9454.js IP 172.67.38.66:443 ASN #13335 CLOUDFLARENET Requested by https://eliteextra.com/?e=weslie.loomis%40marten.com&c=pmails Certificate IssuerCloudflare, Inc. Subjectsni.cloudflaressl.com Fingerprint61:E8:BF:90:FC:F6:AA:AD:96:84:8C:EE:A7:5A:5E:1A:AA:60:57:E3 ValidityFri, 28 Apr 2023 00:00:00 GMT - Sat, 27 Apr 2024 23:59:59 GMT File type ASCII text, with very long lines (557), with no line terminators Size 535 B (535 bytes) Hash 3f4a6312d60391bda06462d7321ffcdc 9f09295297840a36d2ac95344b39b0af1a729f82 28d61df22c079e51c45b6f87db516f03cb85cf3f2c3a970be369944c3f91bcf1 HTTP Headers `GET /_s/v4/app/64795e77f7f/js/twk-chunk-2d0b9454.js HTTP/1.1 Host: embed.tawk.to User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://eliteextra.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/3 200 OK date: Tue, 06 Jun 2023 04:54:08 GMT content-type: application/javascript last-modified: Fri, 02 Jun 2023 03:15:39 GMT etag: W/"c506281367048d4a134c9affbc68c8c6" access-control-allow-origin: * cache-control: public, max-age=2592000, immutable x-cache-status: HIT strict-transport-security: max-age=0; includeSubDomains; preload cf-cache-status: HIT age: 348503 vary: Accept-Encoding x-content-type-options: nosniff server: cloudflare cf-ray: 7d2e0e3d3afbb4f1-OSL content-encoding: br alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (99)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML