paramountace.com/a703ffe8bcfe45f2d5a3dae2487ef14a2/?sid1=&sid2=&sid3=&sid4=
23.90.57.134 6.6 kB URL paramountace.com/a703ffe8bcfe45f2d5a3dae2487ef14a2/?sid1=&sid2=&sid3=&sid4=
IP 23.90.57.134:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash 110b7703235c455163757952ebc7abca
e9351c60b23d5645b1446391f84c4798d4b0f05b
4f68e6242aa8f8ced084d0afa9bb05b9a638d524f47178e49e4e8110bbdcfaed
GET /a703ffe8bcfe45f2d5a3dae2487ef14a2/?sid1=&sid2=&sid3=&sid4= HTTP/1.1
Host: paramountace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 16 May 2023 20:43:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.25
Set-Cookie: clkcheck28272=d9c63d25354736537eb79ad18178a10b_201060; expires=Thu, 15-Jun-2023 20:43:06 GMT; Max-Age=2592000; path=/; SameSite=Lax
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash e8fdea25bc2323a470a121a0b3b54f59
f42b557a65a26301f10ea977216834c27e4483d1
1d5120c898280ce8d8ea669ff7f0c48b99446f83174f1164844caec151fbcbcd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 16 May 2023 20:43:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-MB79N3N
142.250.74.168 43 kB URL www.googletagmanager.com/gtm.js?id=GTM-MB79N3N
IP 142.250.74.168:0
File type ASCII text, with very long lines (2271)
Hash 4efec4a1be0d3730c978c8e17247697a
918c4506c8549c0adf6d4b2e33569903c2d959f1
65cc755a49384e61c3685e40b703bedf1b6a1a9f3095e3aefa9efac165787b8f
GET /gtm.js?id=GTM-MB79N3N HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://paramountace.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 16 May 2023 20:43:06 GMT
expires: Tue, 16 May 2023 20:43:06 GMT
cache-control: private, max-age=900
last-modified: Tue, 16 May 2023 19:19:39 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42866
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash e8fdea25bc2323a470a121a0b3b54f59
f42b557a65a26301f10ea977216834c27e4483d1
1d5120c898280ce8d8ea669ff7f0c48b99446f83174f1164844caec151fbcbcd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 16 May 2023 20:43:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
paramountace.com/fp.php
23.90.57.134 0 B IP 23.90.57.134:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
POST /fp.php HTTP/1.1
Host: paramountace.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain;charset=UTF-8
Content-Length: 756
Origin: http://paramountace.com
DNT: 1
Connection: keep-alive
Referer: http://paramountace.com/a703ffe8bcfe45f2d5a3dae2487ef14a2/?sid1=&sid2=&sid3=&sid4=
Cookie: clkcheck28272=d9c63d25354736537eb79ad18178a10b_201060
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.10.3
Date: Tue, 16 May 2023 20:43:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/7.3.25
quotes.ecoverage.com/wp-content/uploads/2020/06/Logo.png
104.22.9.151200 OK 3.2 kB URL GET HTTP/2 quotes.ecoverage.com/wp-content/uploads/2020/06/Logo.png
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash c63a81a649603d7ece156cf86453a59f
ff643b23bd52a56b4b3400c88e13b87490d40551
476c9a5b18acb7c5b596789bb3eded31d9567d95ef811c9447b53b9f41ad5786
GET /wp-content/uploads/2020/06/Logo.png HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: image/webp
content-length: 3166
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=7340
content-disposition: inline; filename="Logo.webp"
etag: "5f7f694c-1cac"
last-modified: Thu, 08 Oct 2020 19:32:28 GMT
vary: Accept
cf-cache-status: HIT
age: 21100
accept-ranges: bytes
server: cloudflare
cf-ray: 7c86737c7a6eb523-OSL
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-content/uploads/2020/06/group-7@2x.png
104.22.9.151200 OK 2.5 kB URL GET HTTP/2 quotes.ecoverage.com/wp-content/uploads/2020/06/group-7@2x.png
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image\012- data
Hash 11df3bec803ee136ed65edda44a8ccc7
ac5043dcd0121b676b7e15e47b5f266cd2a4d9cf
c8baebafe9a35f65c93f02def3c31287cb3379679744ce18f4bc2e257c14c556
GET /wp-content/uploads/2020/06/group-7@2x.png HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: image/webp
content-length: 2532
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=6698
content-disposition: inline; filename="group-7@2x.webp"
etag: "5f7f694c-1a2a"
last-modified: Thu, 08 Oct 2020 19:32:28 GMT
vary: Accept
cf-cache-status: HIT
age: 21100
accept-ranges: bytes
server: cloudflare
cf-ray: 7c86737c7a6bb523-OSL
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/jquery.sumoselect/3.0.2/sumoselect.min.css
104.17.24.14200 OK 1.7 kB URL GET HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery.sumoselect/3.0.2/sumoselect.min.css
IP 104.17.24.14:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (6926), with no line terminators
Hash 0ee47eac53586622ae086a5d67bf7f9d
5dc07bb3f3e89265c36ab48bcf6ba0a662ca3cd0
d31bc925a88effb32e2052100f258d2b20f7e3b2955a6772b965ad31da8df139
GET /ajax/libs/jquery.sumoselect/3.0.2/sumoselect.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: text/css; charset=utf-8
content-length: 1742
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec3-1b0e"
last-modified: Mon, 04 May 2020 16:11:47 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1050191
expires: Sun, 05 May 2024 20:43:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K6G5lzo9aSDPO85JbYMt0m4LnJzgFx2v2kGBeIu%2FcwatLGFC%2FbOBHvSXEemHyftl6dgpZviCoCkSjSfZetGvnerYDgypBocCsFMlCj87%2BmH3V9S1YWirRZDwqc4rL3%2BdWtUI6T7E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7c86737c8fdfb512-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash e56964bba641880b30c1fc461f87e286
e738d75b4803ebe66ce3db653772f8c684d19841
d9cf440143803afbbf8843ddf96dd18d3547e2207984459b5dbf31a3f87777a2
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=108836
Date: Tue, 16 May 2023 20:43:07 GMT
Etag: "6462ec73-1d7"
Expires: Thu, 18 May 2023 02:57:03 GMT
Last-Modified: Tue, 16 May 2023 02:37:39 GMT
Server: ECAcc (nya/799C)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: UWuxBuPJvgBKfSB6wJeZsoB0UjkVaeoPLSIcFFu_shtwHhzuHj7lsQ==
Age: 1164
insurance.mediaalpha.com/js/serve.js
54.91.11.147200 OK 5.5 kB URL GET HTTP/2 insurance.mediaalpha.com/js/serve.js
IP 54.91.11.147:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerAmazon
Subjectmediaalpha.com
Fingerprint46:61:17:08:FB:4A:D4:94:76:26:C8:CD:0F:FA:F2:6B:87:D2:B8:4D
ValidityThu, 06 Apr 2023 00:00:00 GMT - Wed, 09 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (556)
Hash 806c9463f4234dff588c089442cba7bf
e2099ce0a84df2ca06ca16c833db369c9f8a92b0
141a922b83cc6707d19885ed7aec59ed8331771664e38e57277ed5eb5636650f
GET /js/serve.js HTTP/1.1
Host: insurance.mediaalpha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: application/javascript; charset=UTF-8
content-length: 5516
server: Apache
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131 471 B IP 142.250.74.131:0
Hash e8fdea25bc2323a470a121a0b3b54f59
f42b557a65a26301f10ea977216834c27e4483d1
1d5120c898280ce8d8ea669ff7f0c48b99446f83174f1164844caec151fbcbcd
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 16 May 2023 20:43:08 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/style.min.css?ver=1
104.22.9.151200 OK 65 kB URL GET HTTP/2 quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/style.min.css?ver=1
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (8432), with CRLF, LF line terminators
Hash fb886f8404e73a0daec109e76b17e720
d64508e49c374a6e405df3382ae4814f417ac151
da8a3ca19c9353c7dbcbe48570bf6ba061fb1029f7907b7ba04799cad8ab0e6e
GET /wp-content/themes/rise-ecoverage/public/style.min.css?ver=1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 04 Nov 2021 15:15:35 GMT
etag: W/"6183f917-253b"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 21100
server: cloudflare
cf-ray: 7c86737c6a4cb523-OSL
content-encoding: br
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
104.22.9.151200 OK 238 kB URL GET HTTP/2 quotes.ecoverage.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (15660)
Size 238 kB (237685 bytes)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 12 Apr 2022 05:56:23 GMT
etag: W/"62551487-48b9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 21101
server: cloudflare
cf-ray: 7c86737f9ff7b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-content/uploads/2020/06/png-item-1777666@2x.jpg
104.22.9.151200 OK 12 kB URL GET HTTP/2 quotes.ecoverage.com/wp-content/uploads/2020/06/png-item-1777666@2x.jpg
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 316x120, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9263f63c2e320ad4c950fd90c0ff62d6
12510604f2ab5236d35bbf0eb514246077a42781
076ed2d9b4f0d8598d10b76882cfd10b9db67498a948782e7dcc0474e3128625
GET /wp-content/uploads/2020/06/png-item-1777666@2x.jpg HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: image/webp
content-length: 11946
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=jpeg, origSize=16824
content-disposition: inline; filename="png-item-1777666@2x.webp"
etag: "5f7f694c-41b8"
last-modified: Thu, 08 Oct 2020 19:32:28 GMT
vary: Accept
cf-cache-status: HIT
age: 21100
accept-ranges: bytes
server: cloudflare
cf-ray: 7c86738099d2b523-OSL
X-Firefox-Spdy: h2
insurance.mediaalpha.com/js/serve_.js?z=N{QH}I~9NjK_LOs9Z76qdflv2MfFcK7Ma3S3g~K~null_null_null~L0M~null_null_null~BDJ17zl20~ua_language~~en-US~&d=mediaalpha_placeholder&_=308879131
54.91.11.147200 OK 14 kB URL GET HTTP/2 insurance.mediaalpha.com/js/serve_.js?z=N{QH}I~9NjK_LOs9Z76qdflv2MfFcK7Ma3S3g~K~null_null_null~L0M~null_null_null~BDJ17zl20~ua_language~~en-US~&d=mediaalpha_placeholder&_=308879131
IP 54.91.11.147:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerAmazon
Subjectmediaalpha.com
Fingerprint46:61:17:08:FB:4A:D4:94:76:26:C8:CD:0F:FA:F2:6B:87:D2:B8:4D
ValidityThu, 06 Apr 2023 00:00:00 GMT - Wed, 09 Aug 2023 23:59:59 GMT
File type HTML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (19419), with LF, NEL line terminators
Hash 3062cddd255ab6d73dfc58205e67564d
334917907b6b8f6f3abad23046ae2fde6b21f9e4
b1d331f06361bee9f70de7a1828b784aaf1cb3f780f304192265098615e7ff97
GET /js/serve_.js?z=N{QH}I~9NjK_LOs9Z76qdflv2MfFcK7Ma3S3g~K~null_null_null~L0M~null_null_null~BDJ17zl20~ua_language~~en-US~&d=mediaalpha_placeholder&_=308879131 HTTP/1.1
Host: insurance.mediaalpha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: text/javascript
content-length: 13947
server: Apache
set-cookie: r2=kR7sD3HCOgdxjFQ4OADJPtHH7NNLOw; domain=insurance.mediaalpha.com; path=/; expires=Fri, 13-May-2033 20:43:08 GMT; HttpOnly
~u=j2Z2kA---phtP41zp-0EzMX5sb_6RjvljnUAEqPG_nc5NSHyk80; domain=insurance.mediaalpha.com; path=/; expires=Sat, 01-Oct-2050 20:43:08 GMT; HttpOnly
~=NqAgD5MJEdR_XRd2YL_B8S663U19qto5IXV6cGuNGee_YTEoBBGXhMy_MuIrNnF7hbIZFS7XsuwYNwrOSoRq84y-PpKUdvni4CMxubtm_S7il52366qO_kX_I50RuTy7sK9lrSqs0Fu68fPZlAKq4RywGlRttg; domain=insurance.mediaalpha.com; path=/; expires=Sat, 15-Jul-2023 20:43:08 GMT; HttpOnly
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
104.19.188.97200 OK 6.8 kB URL GET HTTP/2 cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP 104.19.188.97:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type ASCII text, with very long lines (21409)
Hash 99a3d4685ad70c913d4944000573137e
37e003f83b3e3eecc739b119ba97ace2c1053a8b
0c756b0b024a435129eca9014e98cc955dd97481285d9191b8d6c0a5749982d1
GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: application/javascript
content-length: 6766
content-encoding: gzip
content-md5: JYwMFRCSwBZdNsd6Nb17qg==
last-modified: Mon, 15 May 2023 05:31:33 GMT
etag: 0x8DB5505A539041E
x-ms-request-id: 9bb37d11-701e-0119-5b60-87b2db000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 84874
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7c86738129b7b51d-OSL
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css
104.18.10.207200 OK 26 kB URL GET HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.3.1/css/bootstrap.min.css
IP 104.18.10.207:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5B:F7:8F:50:AD:E5:5B:5E:8C:4A:39:3D:0C:98:E8:8C:18:4B:3D:8A
ValidityFri, 30 Dec 2022 00:00:00 GMT - Sat, 30 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (65324)
Hash a15c2ac3234aa8f6064ef9c1f7383c37
6e10354828454898fda80f55f3decb347fd9ed21
60b19e5da6a9234ff9220668a5ec1125c157a268513256188ee80f2d2c8d8d36
GET /bootstrap/4.3.1/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"a15c2ac3234aa8f6064ef9c1f7383c37"
last-modified: Mon, 25 Jan 2021 22:04:08 GMT
cdn-cachedat: 01/04/2023 11:35:40
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1078
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 8d0e4f816df928b0ebf4e96f25728661
cdn-cache: HIT
cf-cache-status: HIT
age: 21101
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7c86737c9ead0b55-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
104.18.43.158200 OK 94 kB URL GET HTTP/2 geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP 104.18.43.158:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectonetrust.com
Fingerprint9E:F3:57:7F:94:76:6C:42:96:83:B5:15:57:B4:17:C4:0A:90:F6:3D
ValidityTue, 13 Dec 2022 00:00:00 GMT - Wed, 13 Dec 2023 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (65379)
Hash 7e4188a6ca49d2eaa71da34b4dce1635
0a2dcd79075fb47ef4a00e9d4aef24a4e538ef78
aeda7b7e8c3133427d85f4650c9e0ee816371b8a6ba5d4c8775dc0ff8a91cbd9
GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7c867383af6cb51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
quotes.ecoverage.com/cdn-cgi/challenge-platform/h/b/cv/result/7c86737a2e7fb523
104.22.9.151200 OK 477 B URL POST HTTP/2 quotes.ecoverage.com/cdn-cgi/challenge-platform/h/b/cv/result/7c86737a2e7fb523
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /cdn-cgi/challenge-platform/h/b/cv/result/7c86737a2e7fb523 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12371
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: text/plain; charset=UTF-8
set-cookie: __cf_bm=WYDgRbJGBnn6BRceakvV2BKq5MDibg..ySyVmyfo17w-1684269788-0-AaVuyOuYSsdNm8kkqB1KiLJpe30jZ58ujIq2Vx8VAwBg8sylK89aKhd5FOhxab1Aj3r5bTWDmaSE6xDz8EoVxhxTrEvoJEYFb9mxOc/ghca3cikRPNcpzI1GEl6oAvuwkeQojGXQADYAZpVx9TvL9Xg=; path=/; expires=Tue, 16-May-23 21:13:08 GMT; domain=.ecoverage.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7c8673838f2fb523-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/24251304-3d3e-43bd-bc99-e50d72329f4a/c7a2bb97-ca3d-402d-8a7e-c143e3cf44f9/en.json
104.19.188.97200 OK 8.4 kB URL GET HTTP/2 cdn.cookielaw.org/consent/24251304-3d3e-43bd-bc99-e50d72329f4a/c7a2bb97-ca3d-402d-8a7e-c143e3cf44f9/en.json
IP 104.19.188.97:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (31876), with no line terminators
Hash 3c1aa7f69063284785a5bb31ffdd4147
dc8fa4afc5c14548361028fa5a0e7ef1df34d63b
9095de2151c70f88675cb31fab206258f54ec1f877c0fd6411f13551cc98d4c7
GET /consent/24251304-3d3e-43bd-bc99-e50d72329f4a/c7a2bb97-ca3d-402d-8a7e-c143e3cf44f9/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: application/x-javascript
content-length: 8449
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: d5zn6kadj27dP8xrFHnSTQ==
last-modified: Thu, 05 Jan 2023 16:10:34 GMT
etag: 0x8DAEF376036B4B1
x-ms-request-id: a4656c58-d01e-0179-64e1-5af7f9000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 21100
expires: Wed, 17 May 2023 20:43:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7c867384c93db511-OSL
X-Firefox-Spdy: h2
quotes.ecoverage.com/cdn-cgi/challenge-platform/h/b/scripts/pica.js
104.22.9.151200 OK 3.1 kB URL GET HTTP/2 quotes.ecoverage.com/cdn-cgi/challenge-platform/h/b/scripts/pica.js
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (5734), with no line terminators
Hash e72a6ba96e97a7656891efe385404eab
c5184072c12eaacf0eb5f36727574ee1433687a8
e7abe8cd87b20855b1bf9524fb8062a310becc1d25d0a0b37be11d125a5fdfaa
GET /cdn-cgi/challenge-platform/h/b/scripts/pica.js HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
vary: accept-encoding
server: cloudflare
cf-ray: 7c867381cbf2b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otFloatingFlat.json
104.19.188.97200 OK 2.7 kB URL GET HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otFloatingFlat.json
IP 104.19.188.97:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (8048)
Hash f95967c79a82da062e9aec795ffb9175
ebf4695bc8171a4935083d24583d1ee66f352224
179a0ba55c3bbf759340ba2a57846f81a7de249ed7e502b5e8814af2ef964533
GET /scripttemplates/202211.2.0/assets/otFloatingFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:09 GMT
content-type: application/json
content-length: 2702
content-encoding: gzip
content-md5: 4gbPnPQn84XYtAfamjWQ2g==
last-modified: Mon, 12 Dec 2022 17:31:35 GMT
etag: 0x8DADC66B81B30E6
x-ms-request-id: 6858968e-b01e-00ee-3ce1-5ad265000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 21100
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7c86738549e8b511-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202211.2.0/assets/v2/otPcCenter.json
104.19.188.97200 OK 12 kB URL GET HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/assets/v2/otPcCenter.json
IP 104.19.188.97:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with very long lines (50353)
Hash 0b00c4938c4c4a99e077e217316394bc
7cc3223d751ef4d499e430d364ab563cb94186dd
40c8084ce459211c73bf91eaa18b6152cc5fc9e29245dcec381da35ee51334b0
GET /scripttemplates/202211.2.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:09 GMT
content-type: application/json
content-length: 12540
content-encoding: gzip
content-md5: mBGnk7IXt0USbYmXZQhmOw==
last-modified: Mon, 12 Dec 2022 17:31:37 GMT
etag: 0x8DADC66B90C98A8
x-ms-request-id: 391b9025-201e-014e-46e1-5a5b56000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 21100
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7c86738549eab511-OSL
X-Firefox-Spdy: h2
quotes.ecoverage.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/27ac9c8d/invisible.js
104.22.9.151200 OK 94 kB URL GET HTTP/2 quotes.ecoverage.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/27ac9c8d/invisible.js
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (24484), with no line terminators
Hash 9845411aa7c3d6c663361f927fafc4a8
d8967a1437a57462f5de313de5ee706d37fe3488
831c524f04c1510f5b04869d0a584846912a972fe0c96a586b4d19a4bccf39df
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/27ac9c8d/invisible.js HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
vary: accept-encoding
server: cloudflare
cf-ray: 7c867380ba0cb523-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otCommonStyles.css
104.19.188.97200 OK 3.7 kB URL GET HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/assets/otCommonStyles.css
IP 104.19.188.97:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash a23b82a68b8035f98f16e84095f2c6de
3e80b296f2080037c6f178bddec00ca101e540af
81adc8e3a02bbf338ec02471e1dff30ae29b57ccb468e9d2829f62c9e8943556
GET /scripttemplates/202211.2.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:09 GMT
content-type: text/css
content-md5: XcxlleAcPGO2n5kTZrHH2Q==
last-modified: Mon, 12 Dec 2022 17:31:50 GMT
x-ms-request-id: 6651b97b-201e-0005-1fe1-5a2c99000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 21100
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7c86738549ecb511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
collect.analyze.ly/
35.168.98.102204 No Content 0 B IP 35.168.98.102:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerAmazon
Subject*.analyze.ly
Fingerprint6B:CB:E3:30:77:85:26:9E:21:E7:53:B2:39:E8:F1:5E:8D:EB:2E:94
ValidityTue, 31 Jan 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: collect.analyze.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Content-Type: multipart/form-data; boundary=----188264d6912
Content-Length: 2841
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: *
Cache-Control: private
Content-Type: text/html; charset=UTF-8
Date: Tue, 16 May 2023 20:43:09 GMT
Server: gunicorn
Connection: keep-alive
ocsp.r2m02.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash fca9a61781f8eadb6cd82e6459d9cfb3
c6709fc5763ba01fb310e8b465396fb4e7871c5c
31e7a45d7532dd2dc0e8865c314aeb3f2f2a01a3712e3f335eb812e49bb183ba
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=89190
Date: Tue, 16 May 2023 20:43:09 GMT
Etag: "64628c96-1d7"
Expires: Wed, 17 May 2023 21:29:39 GMT
Last-Modified: Mon, 15 May 2023 19:48:38 GMT
Server: ECAcc (nya/79CE)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: agl1m57tOk9anJk0HU63JhTi3sEB56pT8HV6PyNxU_UxRbBPOs27UA==
Age: 6061
create.leadid.com/2.11.9/GenerateToken?msn=1&pid=63642933-ae34-48c9-88b3-3ce4032809ff&_=266382436
3.213.164.48200 OK 1.5 kB URL POST HTTP/2 create.leadid.com/2.11.9/GenerateToken?msn=1&pid=63642933-ae34-48c9-88b3-3ce4032809ff&_=266382436
IP 3.213.164.48:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f3ea80ca6f1c47df2c8f6e2674862397
ac1656352278590e5026d0eda9b18a5fbf5c8f31
bf76d9393221ab75cd9510819f40ebe645873975800b7de693ada407cd09d53d
POST /2.11.9/GenerateToken?msn=1&pid=63642933-ae34-48c9-88b3-3ce4032809ff&_=266382436 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 208
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:09 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Thu, 15-Jun-2023 20:43:09 GMT; Max-Age=2592000; path=/
rguserid=96db7cfc-989c-4b9b-996e-f1850afee458; expires=Thu, 15-Jun-2023 20:43:09 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Thu, 15-Jun-2023 20:43:09 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Thu, 15-Jun-2023 20:43:09 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
collect.analyze.ly/
35.168.98.102204 No Content 0 B IP 35.168.98.102:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerAmazon
Subject*.analyze.ly
Fingerprint6B:CB:E3:30:77:85:26:9E:21:E7:53:B2:39:E8:F1:5E:8D:EB:2E:94
ValidityTue, 31 Jan 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: collect.analyze.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Content-Type: multipart/form-data; boundary=----188264d6d03
Content-Length: 5673
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: *
Cache-Control: private
Content-Type: text/html; charset=UTF-8
Date: Tue, 16 May 2023 20:43:09 GMT
Server: gunicorn
Connection: keep-alive
ocsp.r2m02.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash e0bd0b5c78b353d65b098cd283196357
404e262b4940032cae1983e668cb7ce6d253d3a3
b6ef9a108cbe521cbaa31e9ed9f58b8f6212a9d0c3ba49491d0de71605161ad1
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=163375
Date: Tue, 16 May 2023 20:43:10 GMT
Etag: "6463ae67-1d7"
Expires: Thu, 18 May 2023 18:06:05 GMT
Last-Modified: Tue, 16 May 2023 16:25:11 GMT
Server: ECAcc (bsa/EB2E)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: GfhsIrmH7Vd9xi6dhhZzsiBANHNimFDDRxeixLlgO_3_zkjK9aX9Fg==
Age: 6054
create.leadid.com/2.11.9/SaveDeviceId.js?lac=43E84C4A-8A70-11E1-B18C-22000A1C5064&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&methods=48&token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&uuid=a06807c1c5154e64a31a5144667f6797
3.213.164.48200 OK 20 B URL GET HTTP/2 create.leadid.com/2.11.9/SaveDeviceId.js?lac=43E84C4A-8A70-11E1-B18C-22000A1C5064&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&methods=48&token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&uuid=a06807c1c5154e64a31a5144667f6797
IP 3.213.164.48:443
Requested by https://deviceid.trueleadid.com/iframe.html?token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&lac=43E84C4A-8A70-11E1-B18C-22000A1C5064
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT
File type gzip compressed data, from Unix\012- data
Hash 7029066c27ac6f5ef18d660d5741979a
46c6643f07aa7f6bfe7118de926b86defc5087c4
59869db34853933b239f1e2219cf7d431da006aa919635478511fabbfc8849d2
GET /2.11.9/SaveDeviceId.js?lac=43E84C4A-8A70-11E1-B18C-22000A1C5064&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&methods=48&token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&uuid=a06807c1c5154e64a31a5144667f6797 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://deviceid.trueleadid.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:10 GMT
content-type: text/javascript;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Thu, 15-Jun-2023 20:43:10 GMT; Max-Age=2592000; path=/
rguserid=f3e001cd-3d82-4770-b3e8-d1bdfaa9ee9a; expires=Thu, 15-Jun-2023 20:43:10 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Thu, 15-Jun-2023 20:43:10 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Thu, 15-Jun-2023 20:43:10 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
collect.analyze.ly/
35.168.98.102204 No Content 0 B IP 35.168.98.102:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerAmazon
Subject*.analyze.ly
Fingerprint6B:CB:E3:30:77:85:26:9E:21:E7:53:B2:39:E8:F1:5E:8D:EB:2E:94
ValidityTue, 31 Jan 2023 00:00:00 GMT - Tue, 27 Feb 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: collect.analyze.ly
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Content-Type: multipart/form-data; boundary=----188264d78ba
Content-Length: 737
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 204 No Content
Access-Control-Allow-Origin: *
Cache-Control: private
Content-Type: text/html; charset=UTF-8
Date: Tue, 16 May 2023 20:43:12 GMT
Server: gunicorn
Connection: keep-alive
quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/scripts-lpb.min.js?ver=1
104.22.9.151200 OK 43 kB URL GET HTTP/2 quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/scripts-lpb.min.js?ver=1
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/themes/rise-ecoverage/public/scripts-lpb.min.js?ver=1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 04 Nov 2021 15:15:35 GMT
etag: W/"6183f917-a82c"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 21100
server: cloudflare
cf-ray: 7c86737c7a69b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-content/themes/rise-ecoverage/src/images/icon-arrow-dark-blue.svg
104.22.9.151200 OK 245 B URL GET HTTP/2 quotes.ecoverage.com/wp-content/themes/rise-ecoverage/src/images/icon-arrow-dark-blue.svg
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with no line terminators
Hash 153d5d511c959894c07a59cf3932e415
9bfa13be6362dbef57bc77b853dfceafce038551
1a3b18dc3f04306219000757a979047af576d141fbada6937c4428352e8b0a86
GET /wp-content/themes/rise-ecoverage/src/images/icon-arrow-dark-blue.svg HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/lpb.min.css?ver=1
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: image/svg+xml
last-modified: Thu, 04 Nov 2021 15:15:39 GMT
etag: W/"6183f91b-f5"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 21100
server: cloudflare
cf-ray: 7c867380ca38b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/SaveDom?msn=2&pid=63642933-ae34-48c9-88b3-3ce4032809ff&token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&_=266382437
3.213.164.48200 OK 0 B URL POST HTTP/2 create.leadid.com/2.11.9/SaveDom?msn=2&pid=63642933-ae34-48c9-88b3-3ce4032809ff&token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&_=266382437
IP 3.213.164.48:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /2.11.9/SaveDom?msn=2&pid=63642933-ae34-48c9-88b3-3ce4032809ff&token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&_=266382437 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 496
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:09 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Thu, 15-Jun-2023 20:43:09 GMT; Max-Age=2592000; path=/
rguserid=c0bc1180-52e6-46d3-b7ed-1aa017211228; expires=Thu, 15-Jun-2023 20:43:09 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Thu, 15-Jun-2023 20:43:09 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Thu, 15-Jun-2023 20:43:09 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/Snap?msn=4&pid=63642933-ae34-48c9-88b3-3ce4032809ff&token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&_=266382439
3.213.164.48200 OK 0 B URL POST HTTP/2 create.leadid.com/2.11.9/Snap?msn=4&pid=63642933-ae34-48c9-88b3-3ce4032809ff&token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&_=266382439
IP 3.213.164.48:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /2.11.9/Snap?msn=4&pid=63642933-ae34-48c9-88b3-3ce4032809ff&token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&_=266382439 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 326897
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:11 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Thu, 15-Jun-2023 20:43:11 GMT; Max-Age=2592000; path=/
rguserid=781c1324-9154-4da9-9242-5aeb0591e3ff; expires=Thu, 15-Jun-2023 20:43:11 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Thu, 15-Jun-2023 20:43:11 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Thu, 15-Jun-2023 20:43:11 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
quotes.ecoverage.com/rates
104.22.9.151301 Moved Permanently 52 kB URL User Request GET HTTP/2 quotes.ecoverage.com/rates
IP 104.22.9.151:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rates HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://paramountace.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 16 May 2023 20:43:07 GMT
content-type: text/html; charset=UTF-8
location: https://quotes.ecoverage.com/rates/
x-redirect-by: WordPress
x-powered-by: WP Engine
x-cacheable: non200
cache-control: max-age=600, must-revalidate
x-cache: HIT: 23
x-cache-group: normal
cf-cache-status: DYNAMIC
set-cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=; path=/; expires=Tue, 16-May-23 21:13:07 GMT; domain=.ecoverage.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 7c867377da47b523-OSL
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
104.22.9.151200 OK 90 kB URL GET HTTP/2 quotes.ecoverage.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Mon, 19 Sep 2022 14:16:24 GMT
etag: W/"632879b8-15e54"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 21100
server: cloudflare
cf-ray: 7c86737c7a57b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/vendor.min.js?ver=1
104.22.9.151200 OK 924 kB URL GET HTTP/2 quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/vendor.min.js?ver=1
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
Size 924 kB (923982 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-content/themes/rise-ecoverage/public/vendor.min.js?ver=1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 04 Nov 2021 15:15:35 GMT
etag: W/"6183f917-e194e"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 21100
server: cloudflare
cf-ray: 7c86737c7a5ab523-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/static/powered_by_logo.svg
104.19.188.97200 OK 5.2 kB URL GET HTTP/2 cdn.cookielaw.org/logos/static/powered_by_logo.svg
IP 104.19.188.97:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (5220), with no line terminators
Hash 38b5388f36f8f885deb26afdac0e3116
112eccab1891a3a7cab1c5602ba72c9e127136e0
a8562f11c5a80a5c1c4ab388cfa2a69598203a57a5c67d1f80512bddd80d09ef
GET /logos/static/powered_by_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:09 GMT
content-type: image/svg+xml
content-md5: Y+c301RBZNK39PvKQWrIBw==
last-modified: Mon, 15 May 2023 05:31:40 GMT
x-ms-request-id: d1fafaaa-801e-0148-6e53-87ac2e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 83285
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7c867385cfd3b51d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
d2m2wsoho8qq12.cloudfront.net/iframe.html?token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&lac=43E84C4A-8A70-11E1-B18C-22000A1C5064
143.204.42.49200 OK 3.5 kB URL GET HTTP/1.1 d2m2wsoho8qq12.cloudfront.net/iframe.html?token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&lac=43E84C4A-8A70-11E1-B18C-22000A1C5064
IP 143.204.42.49:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3675), with no line terminators
Hash f296cf3fca2786c12a670712ef7f00bc
da1b0e716af4460dcf59ade38450cb62798954d1
eabbab0c6023ae05e66d758837fa85258b724f04781c69ce36225c586a0c8db7
GET /iframe.html?token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&lac=43E84C4A-8A70-11E1-B18C-22000A1C5064 HTTP/1.1
Host: d2m2wsoho8qq12.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx
Last-Modified: Tue, 18 Apr 2023 16:14:44 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains; preload
Content-Encoding: gzip
Date: Mon, 15 May 2023 22:24:04 GMT
ETag: W/"643ec1f4-dbb"
X-Cache: Hit from cloudfront
Via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pcObgMu3jFbm3Tde-kKg1R3PAWPMXNC8ZuUHihEX5OkP5CxtjVhySw==
Age: 80416
quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/lpb.min.css?ver=1
104.22.9.151200 OK 81 kB URL GET HTTP/2 quotes.ecoverage.com/wp-content/themes/rise-ecoverage/public/lpb.min.css?ver=1
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (65319)
Hash 068c3cf8c5b1347e5b4578ed16037b4d
b60f837851647151885ce514a09af9609c7f5e9f
88a0473bb4a2825de9eb510367d00146ffdf0c4e36d1ed89276cfa3ee55b9735
GET /wp-content/themes/rise-ecoverage/public/lpb.min.css?ver=1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Thu, 04 Nov 2021 15:15:34 GMT
etag: W/"6183f916-13b43"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 21100
server: cloudflare
cf-ray: 7c86737c6a4db523-OSL
content-encoding: br
X-Firefox-Spdy: h2
deviceid.trueleadid.com/iframe.html?token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&lac=43E84C4A-8A70-11E1-B18C-22000A1C5064
52.21.187.247200 OK 4.2 kB URL GET HTTP/2 deviceid.trueleadid.com/iframe.html?token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&lac=43E84C4A-8A70-11E1-B18C-22000A1C5064
IP 52.21.187.247:443
Requested by https://d2m2wsoho8qq12.cloudfront.net/iframe.html?token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&lac=43E84C4A-8A70-11E1-B18C-22000A1C5064
Certificate IssuerAmazon
Subjectdeviceid.trueleadid.com
FingerprintD8:8B:86:53:4A:F3:E9:53:1D:C4:CD:CB:91:CD:50:50:B0:84:BA:DB
ValidityFri, 24 Feb 2023 00:00:00 GMT - Sat, 06 Jan 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4323), with no line terminators
Hash 27a57862137bf0b580930f288703c507
20114057bbb1f8a2ca6f1b6a2d81fe7f2b75c64a
b0019d4447d91be93f68b8fb233b8fcccc542e3dffc16d4dc9c9f71bc9704550
GET /iframe.html?token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&apiurl=https%3A%2F%2Fcreate.leadid.com%2F2.11.9&lck=FA53BD1B-C563-E4B2-5F47-565FEA8AE7A8&lac=43E84C4A-8A70-11E1-B18C-22000A1C5064 HTTP/1.1
Host: deviceid.trueleadid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://d2m2wsoho8qq12.cloudfront.net/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:10 GMT
content-type: text/html
server: nginx
last-modified: Thu, 30 Mar 2023 19:50:33 GMT
etag: W/"6425e809-1049"
expires: Wed, 17 May 2023 20:43:10 GMT
p3p: CP="NOI DSP COR NID CUR ADM DEV OUR BUS"
cache-control: max-age=86400, public
content-encoding: gzip
X-Firefox-Spdy: h2
quotes.ecoverage.com/cdn-cgi/challenge-platform/scripts/invisible.js
104.22.9.151302 Found 24 kB URL GET HTTP/2 quotes.ecoverage.com/cdn-cgi/challenge-platform/scripts/invisible.js
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cdn-cgi/challenge-platform/scripts/invisible.js HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Tue, 16 May 2023 20:43:08 GMT
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/27ac9c8d/invisible.js
vary: accept-encoding
cache-control: max-age=300, public
access-control-allow-origin: *
server: cloudflare
cf-ray: 7c867380697eb523-OSL
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-NLX7M9
142.250.74.168200 OK 183 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NLX7M9
IP 142.250.74.168:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (22366)
Size 183 kB (183089 bytes)
Hash 10f3618ab9ecc3edecf91c2d3bc4c8a1
20669ed7d12767758aaf9fdb58cb130b36c3c0d0
e7958ccfd16047eb14c858ea5a62eb7974f62a01a49568751e6e05de125b5a39
GET /gtm.js?id=GTM-NLX7M9 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 16 May 2023 20:43:08 GMT
expires: Tue, 16 May 2023 20:43:08 GMT
cache-control: private, max-age=900
last-modified: Tue, 16 May 2023 19:19:39 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 61500
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
quotes.ecoverage.com/favicon.ico
104.22.9.151200 OK 1.2 kB URL GET HTTP/2 quotes.ecoverage.com/favicon.ico
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash ea1bc20cecbd8532f39715a0875500b8
367a27faf7963b7a79de91c0eaa0f61635cead38
373fb451a0438add6d52541fcf244006a924e34f1aeb92da0be4e89c2ae6dc24
GET /favicon.ico HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: image/x-icon
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Tue, 24 Jan 2023 17:20:05 GMT
etag: W/"63d01345-47e"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 21099
server: cloudflare
cf-ray: 7c8673837f0cb523-OSL
content-encoding: br
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
104.22.9.151200 OK 95 kB URL GET HTTP/2 quotes.ecoverage.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: text/css
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Fri, 11 Nov 2022 14:56:45 GMT
etag: W/"636e62ad-172a9"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 21100
server: cloudflare
cf-ray: 7c86737c6a31b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/logos/7902e091-b1f3-4029-bee8-18d770c9d5db/73b24541-5278-45db-b4ea-8cae3dd1d1c9/4fc1e8be-c091-467e-ac60-6e7001fbeb64/1x1.png
104.19.188.97200 OK 95 B URL GET HTTP/2 cdn.cookielaw.org/logos/7902e091-b1f3-4029-bee8-18d770c9d5db/73b24541-5278-45db-b4ea-8cae3dd1d1c9/4fc1e8be-c091-467e-ac60-6e7001fbeb64/1x1.png
IP 104.19.188.97:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type PNG image data, 1 x 1, 1-bit colormap, non-interlaced\012- data
Hash 71a50dbba44c78128b221b7df7bb51f1
0ec63b140374ba704a58fa0c743cb357683313dd
3eb10792d1f0c7e07e7248273540f1952d9a5a2996f4b5df70ab026cd9f05517
GET /logos/7902e091-b1f3-4029-bee8-18d770c9d5db/73b24541-5278-45db-b4ea-8cae3dd1d1c9/4fc1e8be-c091-467e-ac60-6e7001fbeb64/1x1.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:09 GMT
content-type: image/png
content-length: 95
content-md5: caUNu6RMeBKLIht997tR8Q==
last-modified: Fri, 16 Dec 2022 17:57:37 GMT
etag: 0x8DADF8F045EA3A1
x-ms-request-id: 95d9f117-901e-0094-32e1-5ab828000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 21100
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7c867385cfd0b51d-OSL
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-includes/css/classic-themes.min.css?ver=1
104.22.9.151200 OK 217 B URL GET HTTP/2 quotes.ecoverage.com/wp-includes/css/classic-themes.min.css?ver=1
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 723bbab25ceea9dadba405ab02269a2d
ca26599ff3d31e01e2215965e790ec4f270c0343
18aa9922624232656ab2f2239fa490a6b75e3e99bbdfff63f95a4b7ec376834d
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: text/css
last-modified: Tue, 25 Oct 2022 13:45:16 GMT
etag: W/"6357e86c-d9"
cache-control: public, max-age=31536000
vary: Accept-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 21100
server: cloudflare
cf-ray: 7c86737c6a36b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
104.22.9.151200 OK 11 kB URL GET HTTP/2 quotes.ecoverage.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: application/javascript
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
last-modified: Wed, 18 Nov 2020 09:06:06 GMT
etag: W/"5fb4e3fe-2bd8"
cache-control: public, max-age=31536000
access-control-allow-origin: *
cf-cache-status: HIT
age: 21100
server: cloudflare
cf-ray: 7c86737c7a58b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
quotes.ecoverage.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
104.22.9.151200 OK 1.2 kB URL GET HTTP/2 quotes.ecoverage.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type HTML document, ASCII text, with very long lines (1271), with no line terminators
Hash 40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: application/javascript
last-modified: Fri, 12 May 2023 14:04:08 GMT
etag: W/"645e4758-4d7"
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c86737c8a8bb523-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Thu, 18 May 2023 20:43:07 GMT
cache-control: max-age=172800, public
content-encoding: gzip
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-D0M3W1QDWH&l=dataLayer&cx=c
142.250.74.168200 OK 237 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-D0M3W1QDWH&l=dataLayer&cx=c
IP 142.250.74.168:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint55:51:32:58:36:72:A1:C8:50:5E:5A:8D:CE:A5:2F:DC:D7:1E:62:03
ValidityMon, 24 Apr 2023 11:56:06 GMT - Mon, 17 Jul 2023 11:56:05 GMT
File type ASCII text, with very long lines (4372)
Size 237 kB (237417 bytes)
Hash e0a1c835ecad92aea3ec4abc1bc6cd52
c1afbe294ae253b566e5c43ae46eb101944812fe
0570f203c68972e967691973d0c78316adb82bf6effdbf0519baa5fb21a5e091
GET /gtag/js?id=G-D0M3W1QDWH&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 16 May 2023 20:43:09 GMT
expires: Tue, 16 May 2023 20:43:09 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 82178
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
cdn.cookielaw.org/logos/static/ot_guard_logo.svg
104.19.188.97200 OK 497 B URL GET HTTP/2 cdn.cookielaw.org/logos/static/ot_guard_logo.svg
IP 104.19.188.97:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (507), with no line terminators
Hash 4cefeea2da1f500b581d4842d6454a50
9939dd4c1394641f53655e558bfdca7499480c52
220f235f0188ff469b92b56eb86adf4e828b8a90c587ebfa073383b8583aaeb2
GET /logos/static/ot_guard_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://quotes.ecoverage.com/
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:09 GMT
content-type: image/svg+xml
content-md5: tXyZydHjxQshFMbbBT1/8A==
last-modified: Mon, 15 May 2023 05:31:39 GMT
x-ms-request-id: 4fbefbdc-f01e-0108-7d46-8785c0000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 21100
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7c867385ca97b511-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
ipapi.co/json/?key=qlZPEJ0BL5x8Kit2UeDgFTsaqFAXC0ZfGjRhkoZlKCEc94FOTz
104.26.9.44200 OK 742 B URL POST HTTP/2 ipapi.co/json/?key=qlZPEJ0BL5x8Kit2UeDgFTsaqFAXC0ZfGjRhkoZlKCEc94FOTz
IP 104.26.9.44:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint1C:DB:D6:56:6B:17:32:E7:56:AF:64:8D:07:3B:37:96:77:A8:FD:F1
ValiditySun, 16 Apr 2023 00:00:00 GMT - Mon, 15 Apr 2024 23:59:59 GMT
File type ASCII text, with very long lines (868), with no line terminators
Hash 29eccf80c3305a9ef2792e8df7f62218
a99f7fbda7d1ef859f7fdb2314b7ffbe36b0538d
4f20437c2ce35f48f0f94d033e93df03cf335b4d1ecde8298e3efae109b7d9c5
POST /json/?key=qlZPEJ0BL5x8Kit2UeDgFTsaqFAXC0ZfGjRhkoZlKCEc94FOTz HTTP/1.1
Host: ipapi.co
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: application/json
allow: HEAD, GET, OPTIONS, POST, OPTIONS
x-frame-options: DENY
vary: Host, Origin
access-control-allow-origin: https://quotes.ecoverage.com
x-content-type-options: nosniff
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H6quIN68pZKfM7Bn9TBNYQIU01Bl0dkYKaB8%2Fc6DdVu5A3mEJomQsj33txmo8JpIL9q7I3dfAACwpuA%2FyrVBExaLS5QEmSBAynHBaAeyeGt2NWQW1Ex%2B%2F3kX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7c8673827aaeb512-OSL
content-encoding: br
X-Firefox-Spdy: h2
cdn.cookielaw.org/consent/24251304-3d3e-43bd-bc99-e50d72329f4a/24251304-3d3e-43bd-bc99-e50d72329f4a.json
104.19.188.97200 OK 3.7 kB URL GET HTTP/2 cdn.cookielaw.org/consent/24251304-3d3e-43bd-bc99-e50d72329f4a/24251304-3d3e-43bd-bc99-e50d72329f4a.json
IP 104.19.188.97:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
File type troff or preprocessor input, ASCII text, with very long lines (4391), with no line terminators
Hash 953e6d46479e11445b483e622b187f3d
6d4fa593e9d815d9566e91d7b89ef823bfd4adfa
546b55eb001c83fe5d53ccc336e7ed45ef3a14805ad0801b2652d8ff9aac7cc1
GET /consent/24251304-3d3e-43bd-bc99-e50d72329f4a/24251304-3d3e-43bd-bc99-e50d72329f4a.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: application/x-javascript
content-length: 1488
cache-control: public, max-age=86400
content-encoding: gzip
content-md5: BCYj99xhJ8/ajQR75C8bBQ==
last-modified: Thu, 05 Jan 2023 16:10:32 GMT
etag: 0x8DAEF375F19861E
x-ms-request-id: 0a7221cb-b01e-010f-51e1-5a7345000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cf-cache-status: HIT
age: 21100
expires: Wed, 17 May 2023 20:43:08 GMT
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7c867381cd4ab511-OSL
X-Firefox-Spdy: h2
cdn.cookielaw.org/scripttemplates/202211.2.0/otBannerSdk.js
104.19.188.97200 OK 392 kB URL GET HTTP/2 cdn.cookielaw.org/scripttemplates/202211.2.0/otBannerSdk.js
IP 104.19.188.97:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectcookielaw.org
Fingerprint72:BB:48:60:EB:F2:A2:EB:51:29:51:1A:B9:2A:85:30:97:3D:9A:2E
ValiditySat, 01 Apr 2023 00:00:00 GMT - Sun, 31 Mar 2024 23:59:59 GMT
Size 392 kB (392535 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /scripttemplates/202211.2.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: application/javascript
content-length: 93482
content-encoding: gzip
content-md5: uPFqyxtrxGqJsyAvB7RnSg==
last-modified: Mon, 12 Dec 2022 17:31:45 GMT
etag: 0x8DADC66BDFA5EC7
x-ms-request-id: da60ad71-a01e-00f1-2de1-5a0975000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 40697
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7c8673844dbeb51d-OSL
X-Firefox-Spdy: h2
create.leadid.com/2.11.9/InitFormData?msn=3&pid=63642933-ae34-48c9-88b3-3ce4032809ff&token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&_=266382438
3.213.164.48200 OK 0 B URL POST HTTP/2 create.leadid.com/2.11.9/InitFormData?msn=3&pid=63642933-ae34-48c9-88b3-3ce4032809ff&token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&_=266382438
IP 3.213.164.48:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerAmazon
Subjectcreate.leadid.com
Fingerprint95:26:B9:FB:B8:EC:5B:05:C8:59:F6:30:90:D5:6D:0A:E9:88:82:7D
ValidityThu, 23 Feb 2023 00:00:00 GMT - Thu, 19 Oct 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /2.11.9/InitFormData?msn=3&pid=63642933-ae34-48c9-88b3-3ce4032809ff&token=2132927C-DDF5-0C1C-116B-F3CE15A10A2F&_=266382438 HTTP/1.1
Host: create.leadid.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 25198
Origin: https://quotes.ecoverage.com
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:09 GMT
content-type: text/plain;charset=UTF-8
server: nginx
set-cookie: rgisanonymous=false; expires=Thu, 15-Jun-2023 20:43:09 GMT; Max-Age=2592000; path=/
rguserid=9349d255-358a-4c60-bbba-9659f558616f; expires=Thu, 15-Jun-2023 20:43:09 GMT; Max-Age=2592000; path=/
rguuid=true; expires=Thu, 15-Jun-2023 20:43:09 GMT; Max-Age=2592000; path=/
rgisanonymous=true; expires=Thu, 15-Jun-2023 20:43:09 GMT; Max-Age=2592000; path=/
cache-control: no-cache, must-revalidate
expires: Sat, 26 Jul 1997 05:00:00 GMT
access-control-allow-origin: *
access-control-allow-headers: X-Requested-With, Content-Type
access-control-max-age: 1728000
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-encoding: gzip
X-Firefox-Spdy: h2
quotes.ecoverage.com/rates/
104.22.9.151200 OK 52 kB URL User Request GET HTTP/2 quotes.ecoverage.com/rates/
IP 104.22.9.151:443
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rates/ HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://paramountace.com/
DNT: 1
Connection: keep-alive
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding,Cookie
link: <https://quotes.ecoverage.com/wp-json/>; rel="https://api.w.org/", <https://quotes.ecoverage.com/?p=69>; rel=shortlink
x-powered-by: WP Engine
x-cacheable: SHORT
cache-control: max-age=600, must-revalidate
x-cache: HIT: 23
x-cache-group: normal
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7c86737a2e7fb523-OSL
content-encoding: br
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-content/themes/rise-ecoverage/style.css?ver=6.1.1
104.22.9.151200 OK 8.6 kB URL GET HTTP/2 quotes.ecoverage.com/wp-content/themes/rise-ecoverage/style.css?ver=6.1.1
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (8588), with no line terminators
Hash f6b09e4b13a6a4ed0e9a09ce3e93ade6
21701e9432dd15acfd9dc35dda27e3f6bcc09a89
10b0a7eec4ece02516af1c7d480d9c69a6e0d1bf38e7d17ba1c0924c6ce2f446
GET /wp-content/themes/rise-ecoverage/style.css?ver=6.1.1 HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:07 GMT
content-type: text/css
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: minify
cf-polished: origSize=19132
etag: W/"6183f911-4abc"
last-modified: Thu, 04 Nov 2021 15:15:29 GMT
vary: Accept-Encoding, Accept-Encoding, Accept-Encoding
cf-cache-status: HIT
age: 21100
server: cloudflare
cf-ray: 7c86737c6a4bb523-OSL
content-encoding: br
X-Firefox-Spdy: h2
quotes.ecoverage.com/wp-content/uploads/2020/07/getty-images-860036016@2x-scaled.jpg
104.22.9.151200 OK 233 kB URL GET HTTP/2 quotes.ecoverage.com/wp-content/uploads/2020/07/getty-images-860036016@2x-scaled.jpg
IP 104.22.9.151:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintE5:4A:79:27:07:D3:C9:64:FF:88:77:78:EB:D6:B6:C2:0B:F9:EC:B4
ValidityMon, 18 Jul 2022 00:00:00 GMT - Tue, 18 Jul 2023 23:59:59 GMT
File type JPEG image data, progressive, precision 8, 2560x1904, components 3\012- data
Size 233 kB (232810 bytes)
Hash c2a058adbb2664b7c5d48625cfe8c982
e5ca61b60938ff198bbb10e69f908e86dd23ec36
d4a7d26c666404d87bda5087265927d4734c5d1dc663063a368a69d5f3a3873b
GET /wp-content/uploads/2020/07/getty-images-860036016@2x-scaled.jpg HTTP/1.1
Host: quotes.ecoverage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/rates/
Cookie: __cf_bm=FZAeSPYqGs.j_SVfPnsOCOeqUYPvj7GccCQbU.ASsbE-1684269787-0-AR/zixRZqhkL11Q2snLLzADfTNaQaaFj6M0f/pQ0JzrVCU0AUKBm9Ar2arrPdajsbewkThzNhjy8GwgiTjNirXE=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: image/jpeg
content-length: 232810
access-control-allow-origin: *
cache-control: public, max-age=31536000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=249294, status=webp_bigger
etag: "5f7f694c-3cdce"
last-modified: Thu, 08 Oct 2020 19:32:28 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 21100
accept-ranges: bytes
server: cloudflare
cf-ray: 7c86738079a3b523-OSL
X-Firefox-Spdy: h2
d22xmn10vbouk4.cloudfront.net/c0648764b65b11eab3db0abec2e02be9.js
54.230.245.215200 OK 83 kB URL GET HTTP/2 d22xmn10vbouk4.cloudfront.net/c0648764b65b11eab3db0abec2e02be9.js
IP 54.230.245.215:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerAmazon
Subject*.cloudfront.net
FingerprintBA:0F:CD:B3:EA:19:B2:9D:99:9B:51:2D:16:33:6B:D0:3F:31:A2:AB
ValidityThu, 08 Dec 2022 00:00:00 GMT - Thu, 07 Dec 2023 23:59:59 GMT
File type ASCII text, with very long lines (10351)
Hash 1eab88e00a62d6cd1108fb550c32ff6c
7efb404de5b24ce8285f4d2d344914f4f7b8653b
699d68e65090f80afd5e1413d990e33bf74a619596e1e0c7fc21991fcab25265
GET /c0648764b65b11eab3db0abec2e02be9.js HTTP/1.1
Host: d22xmn10vbouk4.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/javascript
date: Tue, 16 May 2023 20:12:08 GMT
last-modified: Mon, 03 Apr 2023 03:02:03 GMT
etag: W/"1eab88e00a62d6cd1108fb550c32ff6c"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=601
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: w0fYZ2hnlKk1xBDTgY4wWcqDwZ6B6S5f92H1CjxZRZ_NhmmSd-N-Iw==
age: 1861
X-Firefox-Spdy: h2
create.lidstatic.com/campaign/fa53bd1b-c563-e4b2-5f47-565fea8ae7a8.js?snippet_version=2
104.22.38.182200 OK 126 kB URL GET HTTP/2 create.lidstatic.com/campaign/fa53bd1b-c563-e4b2-5f47-565fea8ae7a8.js?snippet_version=2
IP 104.22.38.182:443
Requested by https://quotes.ecoverage.com/rates/
Certificate IssuerCloudflare, Inc.
Subjectlidstatic.com
FingerprintF7:D5:3C:A9:3E:B6:D5:BF:11:CB:69:9F:0B:34:88:4F:18:79:BC:88
ValidityTue, 28 Feb 2023 00:00:00 GMT - Wed, 28 Feb 2024 23:59:59 GMT
Size 126 kB (126350 bytes)
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /campaign/fa53bd1b-c563-e4b2-5f47-565fea8ae7a8.js?snippet_version=2 HTTP/1.1
Host: create.lidstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://quotes.ecoverage.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 16 May 2023 20:43:08 GMT
content-type: text/javascript
x-amz-id-2: Vsoj3rDoP7gVsZoMsOG3kjrSOz2QPjzEwB1fDLkCEB8xjEYM8G07C7aNxKt1L2aF9E1jc5+lll4=
x-amz-request-id: ZRRCEPRZJMXTRYD8
x-amz-replication-status: COMPLETED
last-modified: Fri, 12 Nov 2021 01:21:45 GMT
etag: W/"0199fc371e67ca5c8d7c94ba0901dfa6"
cache-control: max-age=1800
x-amz-version-id: 4jA9Wyf03YpnT9..zP0RVdyn9Z4JpcyG
cf-cache-status: REVALIDATED
vary: Accept-Encoding
server: cloudflare
cf-ray: 7c8673818f462d9b-ARN
content-encoding: gzip
X-Firefox-Spdy: h2