Report - mainpoke.rzz.com/mtm/direct/.eJxtiksOwjAMBe_iZYlillDEWZAVGRKRH66RolbcHcMSsZv3ZjZ4SoIZEByQ3BZDI-ErC4uNqNpnxEKp9nZnL-vqQyvWxLbopVJhq_5oCoG7mlMeilFLdtR7ToE0tYrj8-zG71vy6XHe-6ObcPrSAV5vYI026Q:1p9daB:62

Report Overview

Submitted URL
mainpoke.rzz.com/mtm/direct/.eJxtiksOwjAMBe_iZYlillDEWZAVGRKRH66RolbcHcMSsZv3ZjZ4SoIZEByQ3BZDI-ErC4uNqNpnxEKp9nZnL-vqQyvWxLbopVJhq_5oCoG7mlMeilFLdtR7ToE0tYrj8-zG71vy6XHe-6ObcPrSAV5vYI026Q:1p9daB:62_PTkmnaUumAP4jyA1UJCb5qGM/2
IP
45.79.19.196
ASN
#63949 Linode, LLC
Submitted
2022-12-26 02:51:50
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	754 B	746 B	142.250.74.106
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.160.97.225
www.securedoffers.com	554495	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	906 B	33 kB	199.250.195.40
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	50 kB	142.250.74.35
mainpoke.rzz.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	555 B	545 B	45.56.79.23
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.5 kB	142.250.74.131
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	3.5 kB	95.101.11.115
ocsp.comodoca.com	1696	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	1.0 kB	172.64.155.188
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	541 B	11 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	797 B	93.184.220.29
securedoffers.com	283463	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	25 kB	1.0 MB	199.250.195.40

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-26	medium	mainpoke.rzz.com/mtm/direct/.eJxtiksOwjAMBe_iZYlillDEWZAVGRKRH66RolbcHcMSsZv3ZjZ4SoIZEByQ3BZDI-ErC4uNqNpnxEKp9nZnL-vqQyvWxLbopVJhq_5oCoG7mlMeilFLdtR7ToE0tYrj8-zG71vy6XHe-6ObcPrSAV5vYI026Q:1p9daB:62_PTkmnaUumAP4jyA1UJCb5qGM/2	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	unknown	0 B	2023-03-07	2024-04-19
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-19 21:30:17 Times Seen36967517 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	securedoffers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4	12 kB	2023-03-08	2024-04-18
Pretty URL securedoffers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-18 12:23:25 Times Seen3477 Hash 1f9968a7c7a2a02491393fb9d4103dae 0032c8a6a692e6f072b2cef20828449402fdd57d f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49 Loading...

	securedoffers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	21 kB	2023-03-07	2024-04-18
Pretty URL securedoffers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-04-18 05:49:36 Times Seen2342 Hash e77ef4006bb97c97c8407f4a8abf4e3d 1a27436ff6ef47ca5c3e352b792e50901ebb705e 9d7da1b980a95ff3d31d0bb8733cbabd1d210ec601d15a1aac2b67394a33191d Loading...

	www.securedoffers.com/	2.2 kB	2023-03-08	2023-03-29
Pretty URL www.securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:02:28 Last Seen2023-03-29 22:28:09 Times Seen12 Hash fcd09a99664a7495f770fa800ec24e10 fcecad9e0fbab51942fa3c090ad9a59264180358 ecc0f7b12f50e4dcd991a2cb0655ad70c4efdb2144910f550910b520874575c5 Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1	25 kB	2023-03-07	2024-04-19
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 11:25:14 Times Seen16560 Hash 046405de007ff73e52d17dab2af75258 887cfb8a9de27005875f6e1c1d1ead43bd0865c8 533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020 Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2	22 kB	2023-03-08	2024-02-14
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:12 Last Seen2024-02-14 11:34:07 Times Seen238 Hash f792742841d2a1dd2eccfdcf3a95e649 ba7af76978c868733d7c23db7694786b34759b36 1682e20b56b5c356e3bccb831e0e417b5c2771d1c509d228499de8782fbd708c Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.2	25 kB	2023-03-08	2024-02-14
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.2 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:12 Last Seen2024-02-14 11:34:06 Times Seen194 Hash b4804a485fe53a11d3d9fdfe9bf3c5c8 15efaebe4a9c34a2c3fe2bad20b86e00387c2092 ebeec409e1fd9a4d5ca59f1bffb6e6937fb8cc6ab91ba9ea2ad411dcb4389014 Loading...

	securedoffers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0	3.2 kB	2023-03-07	2024-04-18
Pretty URL securedoffers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:35 Last Seen2024-04-18 12:45:31 Times Seen2021 Hash e846984437ce810e4757bb0d935e67f0 0cd5ea1fde5aceba86a2ed59e77e35eff4acd2df 7f161501494bc2f199eaf414c3104318a00e2072f272ebce45540eef58cfb08b Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.2	5.0 kB	2023-03-10	2024-03-01
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.2 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:48:32 Last Seen2024-03-01 04:47:46 Times Seen498 Hash 830cac1ec36685cc6054d87bc1c5a021 8a016c59bd31fab553ecd47bb9bbf00edc6101af 8e6eff98ff6c13a3724e93e342adc61569fad0849034249632e3dd3433395986 Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2	3.7 kB	2023-03-08	2024-04-19
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:56 Last Seen2024-04-19 15:10:39 Times Seen7965 Hash 3e31a0ddb1f910fc672d22e6435b95ed f478fd262840bfb394da94a2f5dd95eed4991194 34bbd1c367ffc7d80fcff86c7e5f8777e70f4911bb324e8ecfc7dd3604a96e68 Loading...

	securedoffers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-19
Pretty URL securedoffers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 20:39:51 Times Seen68499 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	securedoffers.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5	18 kB	2023-03-07	2024-04-19
Pretty URL securedoffers.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 15:34:19 Times Seen12559 Hash 116c86c56f8db0bb63f15ceda50fdc98 75e308982ecf7cd43644b8b426e6aa1a0b0fbe26 def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7 Loading...

	securedoffers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-19
Pretty URL securedoffers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-19 07:32:31 Times Seen2797 Hash 64e89b93b02055fb75ea0913089ded0b 9ccf854a6acedb27496725fa7570a670fd7bd572 a3e64300797e8078baa41dbc49e2affc1d2bedd04a470f0c929ed7fac698fbcd Loading...

	securedoffers.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c	5.7 kB	2023-03-07	2024-04-17
Pretty URL securedoffers.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-17 22:14:10 Times Seen1006 Hash 7935d6e0f5c1a8dabaf92fa17cc5e513 2623f058ab2e57ad10120675d941c9b78eba82e8 e5935466216a250bb06338805b32ffb19eeda9042ead790ebc6e5dda27820adb Loading...

	www.securedoffers.com/	279 B	2023-03-07	2024-04-12
Pretty URL www.securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-04-12 23:52:14 Times Seen278 Hash dabf19248f3f2cc80d164fa6559b2a68 0e04f02870190a5b3b610a99175eb82e8593e592 f46f139eb77f229b9f439e7f3a53a28350ca6fd146bb4f47480f8a01dafc571c Loading...

	securedoffers.com/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834	10 kB	2023-03-07	2024-04-17
Pretty URL securedoffers.com/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-17 22:14:13 Times Seen1025 Hash 67e56dc626cd9e14d5f0cef38d0c36f7 0c03a4781237e2c86248b562b64e78afe3817c42 22c90613db09ef65c964b143e6adbe584b42eae85c9b7a75fa27c22b25cccb90 Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-19
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 20:32:06 Times Seen52512 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.2	41 kB	2023-03-10	2024-03-01
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.2 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:48:32 Last Seen2024-03-01 04:47:46 Times Seen609 Hash 47b4ae21c29544a41724c6d095d07a61 db18cdb7385735d4ea545ebc99e7b65194bd37ae a9c399a3695f864f52665163ff94626e3b77b44747e1519b03e5f82597b004d7 Loading...

	www.securedoffers.com/	1.2 kB	2023-03-12	2023-03-12
Pretty URL www.securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 07:57:55 Last Seen2023-03-12 09:01:05 Times Seen1 Hash 1bf92fa6475449fbe196ab4fc1e8c278 b8f7af974a3f5c90e4105450aa33328f19eedd8e 693e295686a6c8aa13a1b3fd9f0c04ee58ebcba4ea483201f02444442c0b4086 Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js	3.3 kB	2023-03-08	2024-01-13
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:33:51 Last Seen2024-01-13 22:46:33 Times Seen118 Hash e2ae3aa1610ca88d864c0872777ccb4c 179fb889d3feb99eaf61852cb74ac3cfc3452156 d44d2ff947f8f8e5d0e708fabcdc8954b9e334a4905e3f2fbeebe003c8f399fc Loading...

	www.securedoffers.com/	118 B	2023-03-08	2023-05-21
Pretty URL www.securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:02:28 Last Seen2023-05-21 16:13:05 Times Seen24 Hash a8eb4e6ac9283cba98ccc1cd9131c328 752342adee4d3390d4de6736e079cd183b104505 b2305db792bf5ab1aa38f4d4cc1941f8cd28c9381daea398e9859decc3a66796 Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	1.4 kB	2023-03-10	2024-03-01
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 02:22:55 Last Seen2024-03-01 04:47:46 Times Seen175 Hash 14017b74098686680bdcc15a9402e4fe c5fd7c0fc5ca253ad2e9d48e24dda27983ee1979 359c32724ded3d649d66332ac70da65306ff8c45ff08f9d0e253ae1fd175e109 Loading...

	securedoffers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	9.9 kB	2023-03-08	2024-04-18
Pretty URL securedoffers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-18 12:23:23 Times Seen3132 Hash dc74c9954b1944928eca0172c3b8c6b3 e9e00e587e0e28491b69563b4e768945ff2e0ed5 d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2	5.2 kB	2023-03-08	2024-02-14
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:56 Last Seen2024-02-14 11:34:06 Times Seen209 Hash 4a5e93453207dcef411790c75b2e9650 5e7057beb2802a863814829cc539c0def5b188fa 1a7149ba9a80966cb6790ba4c536609cf7ad307eac7cd2eed36a009867464c7c Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.2	32 kB	2023-03-10	2024-03-01
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.2 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 01:48:32 Last Seen2024-03-01 04:47:46 Times Seen513 Hash f8345cf99b3245538698c358c15f7fca 05405bd9fa67559e27759e45145b4d1857474a5c 71c853d2f2a1dc0393f6ceba3441c8e5bf7fb84a13ffc1dc95bdf72d98dd453c Loading...

	www.securedoffers.com/	68 B	2023-03-07	2024-04-19
Pretty URL www.securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 20:39:50 Times Seen22397 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	www.securedoffers.com/	2.4 kB	2023-03-10	2023-03-12
Pretty URL www.securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 06:57:46 Last Seen2023-03-12 19:30:30 Times Seen1 Hash 2ba11f19a56a75c8b7e634bb4160afac dd15dd9e8e11ad64d1ec9c7995e71a351274461b 5549e9b485789a312c4df5dcdc53a4d75bb7e1ba7c1a43ddaebe007ddee5c894 Loading...

HTTP Transactions (77)

URL IP Response Size

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb20c18681040b740ab1730562beb45c
abedefb801b0e13987d6619a77e0368771f9dfcb
288c1832db391da57e3d74ffa893ec2c47ef9c1945f85b88473c563b55a3dfb3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "288C1832DB391DA57E3D74FFA893EC2C47EF9C1945F85B88473C563B55A3DFB3"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5087
Expires: Mon, 26 Dec 2022 04:16:26 GMT
Date: Mon, 26 Dec 2022 02:51:39 GMT
Connection: keep-alive

mainpoke.rzz.com/mtm/direct/.eJxtiksOwjAMBe_iZYlillDEWZAVGRKRH66RolbcHcMSsZv3ZjZ4SoIZEByQ3BZDI-ErC4uNqNpnxEKp9nZnL-vqQyvWxLbopVJhq_5oCoG7mlMeilFLdtR7ToE0tYrj8-zG71vy6XHe-6ObcPrSAV5vYI026Q:1p9daB:62_PTkmnaUumAP4jyA1UJCb5qGM/2

45.56.79.23

302 Found

0 B

URL HTTP/1.1
mainpoke.rzz.com/mtm/direct/.eJxtiksOwjAMBe_iZYlillDEWZAVGRKRH66RolbcHcMSsZv3ZjZ4SoIZEByQ3BZDI-ErC4uNqNpnxEKp9nZnL-vqQyvWxLbopVJhq_5oCoG7mlMeilFLdtR7ToE0tYrj8-zG71vy6XHe-6ObcPrSAV5vYI026Q:1p9daB:62_PTkmnaUumAP4jyA1UJCb5qGM/2
IP
45.56.79.23:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /mtm/direct/.eJxtiksOwjAMBe_iZYlillDEWZAVGRKRH66RolbcHcMSsZv3ZjZ4SoIZEByQ3BZDI-ErC4uNqNpnxEKp9nZnL-vqQyvWxLbopVJhq_5oCoG7mlMeilFLdtR7ToE0tYrj8-zG71vy6XHe-6ObcPrSAV5vYI026Q:1p9daB:62_PTkmnaUumAP4jyA1UJCb5qGM/2 HTTP/1.1
Host: mainpoke.rzz.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Mon, 26 Dec 2022 02:51:39 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://www.securedoffers.com/
x-mtm-path: 0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJtYWlucG9rZS5yenouY29tIiwiaHR0cHM6Ly93d3cuc2VjdXJlZG9mZmVycy5jb20vIiwxLCIyMDIyLTEyLTI2IDAyOjUxOjM5IiwxLCIxNjcyMDIzMDk5LjAzMzIzNjAwMDAiLDIwMixudWxsLG51bGxd:1p9daV:OEZ0naEMgNDSm0kh1AxHH6i58ao; expires=Mon, 26-Dec-2022 03:51:39 GMT; Max-Age=3600; Path=/
connection: close

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9cce060ddc316540d079e6816a1e7412
709a74969d1996d2b35ef0f7f34ae18455169f1e
6d58b895476c9ab451d8fc51df98809adca445bc6e9d720430e80a0c85242879

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D58B895476C9AB451D8FC51DF98809ADCA445BC6E9D720430E80A0C85242879"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5157
Expires: Mon, 26 Dec 2022 04:17:36 GMT
Date: Mon, 26 Dec 2022 02:51:39 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 26 Dec 2022 02:46:27 GMT
content-type: application/json
age: 312
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6b1d63d9d906daa309dc263b4991bbe9
04680ddd86781d46dfe6a9671571b3ad1f3758f3
46fff7230b88de4cd81dfb0feb783d2dec27e49041f9257d2fb891030781bf6c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46FFF7230B88DE4CD81DFB0FEB783D2DEC27E49041F9257D2FB891030781BF6C"
Last-Modified: Fri, 23 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15155
Expires: Mon, 26 Dec 2022 07:04:14 GMT
Date: Mon, 26 Dec 2022 02:51:39 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: a7YD6FvBTmdQcImQuEOGmSTxhplX401GCyuT5BOkF3jPpXJD0WQ7gXr1H/hPnv4nyfQzUVn4I/A=
x-amz-request-id: FQ18ZAHKZ32N917A
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 26 Dec 2022 01:57:15 GMT
age: 3264
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 26 Dec 2022 02:51:39 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Pragma, Last-Modified, Expires, Alert, Content-Type, Retry-After, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 26 Dec 2022 02:08:05 GMT
age: 2614
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
bdc6ddd27a64c85bd15f78b39a79874c
965b8f1b763483b4b4dfe35526d27393d1fdf05c
d2f4dee4d920109e0751634731bea278c9ea9e6c0120ac07969eba74ddbfe615

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3504
Cache-Control: max-age=112413
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 02:51:39 GMT
Etag: "63a812a8-1d7"
Expires: Tue, 27 Dec 2022 10:05:12 GMT
Last-Modified: Sun, 25 Dec 2022 09:06:48 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

ocsp.comodoca.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.comodoca.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
3e11b918d0908c8de43c7054f0e5fc25
000f88f8cd9bcac0e8ace80fc0e1d30e32825d91
46c85dcb9d72428384c044fa73afceaed1598c158f4111512e89c0f1485b7fae

HTTP Headers

POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 02:51:39 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 25 Dec 2022 19:45:09 GMT
Expires: Sun, 01 Jan 2023 19:45:08 GMT
Etag: "000f88f8cd9bcac0e8ace80fc0e1d30e32825d91"
Cache-Control: max-age=579299,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77f684168d000b41-OSL

push.services.mozilla.com/

35.160.97.225

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.160.97.225:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: A45Or+4toC7A6MFRrqYEMw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: /6ZRvRx2l6pem5VS+2bax7D3Rww=

www.securedoffers.com/

199.250.195.40

200 OK

11 kB

URL HTTP/2
www.securedoffers.com/
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Size
11 kB (10813 bytes)
Hash
db70391885406730f884936e2564c970
0589ec22d7983dd0bc532483cbc241aa41bfffb3
5eb063e655f413ff498d61f7f5f29910f1c0707aa9e1167508296ff5c04b6f50

HTTP Headers

GET / HTTP/1.1
Host: www.securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/html; charset=UTF-8
content-length: 10813
vary: Accept-Encoding,Cookie
cache-control: max-age=3, must-revalidate
content-encoding: gzip
last-modified: Mon, 26 Dec 2022 02:05:05 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
508c2c991a10f5f048c213f732698d4c
5a43bb96597ada2c1a16fb35c6cd74529bb306c4
bdf5e18cacb564fe4be4448d268ecee27b7139b91109b6d0727f2b809c6b5f3f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 02:51:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
508c2c991a10f5f048c213f732698d4c
5a43bb96597ada2c1a16fb35c6cd74529bb306c4
bdf5e18cacb564fe4be4448d268ecee27b7139b91109b6d0727f2b809c6b5f3f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 02:51:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

securedoffers.com/wp-content/uploads/elementor/thumbs/SecuredOffers-logo-poz30s655phgrjogxvubyfvgqjfopczlzg1noe77k0.png

199.250.195.40

200 OK

4.7 kB

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/thumbs/SecuredOffers-logo-poz30s655phgrjogxvubyfvgqjfopczlzg1noe77k0.png
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
PNG image data, 239 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
4.7 kB (4650 bytes)
Hash
0e662c4e7b108c6b00091319ea4d9214
b4694ee9b190342d60ec0f6a159957c622b922c4
994eddecfde709969dcf3f402e68dda17d1cebf64a494f0bf2fa55df22ebd6a2

HTTP Headers

GET /wp-content/uploads/elementor/thumbs/SecuredOffers-logo-poz30s655phgrjogxvubyfvgqjfopczlzg1noe77k0.png HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: image/png
content-length: 4650
last-modified: Wed, 18 May 2022 01:10:10 GMT
etag: "62844772-122a"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

www.securedoffers.com/wp-content/themes/so-hello-ch/images/progress-meter1.jpg

199.250.195.40

200 OK

22 kB

URL HTTP/2
www.securedoffers.com/wp-content/themes/so-hello-ch/images/progress-meter1.jpg
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS4 Windows, datetime=2010:04:22 12:47:02], baseline, precision 8, 570x50, components 3\012- data
Size
22 kB (21764 bytes)
Hash
102f6f90c18f8faa8bcdc5602b46d6d2
ab07a68f92dc713440adc518a88917973e75420e
46437f911962ba205b44d3e6252002a27916df5e28eba808aafdc116ea06a558

HTTP Headers

GET /wp-content/themes/so-hello-ch/images/progress-meter1.jpg HTTP/1.1
Host: www.securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: image/jpeg
content-length: 21764
last-modified: Thu, 12 May 2022 16:30:19 GMT
etag: "627d361b-5504"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/2022/05/SecuredOffers-45px-wht-1.png

199.250.195.40

200 OK

3.3 kB

URL HTTP/2
securedoffers.com/wp-content/uploads/2022/05/SecuredOffers-45px-wht-1.png
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
PNG image data, 179 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3280 bytes)
Hash
dc8046223f44961eabc556b418456355
5cc58f5d27acacbeb2adf10dcf334aede8e7bbba
0f879e845736f9e93a2ce26a79cb200728639ef877cce84eb14b511897577dc6

HTTP Headers

GET /wp-content/uploads/2022/05/SecuredOffers-45px-wht-1.png HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: image/png
content-length: 3280
last-modified: Wed, 18 May 2022 01:13:48 GMT
etag: "6284484c-cd0"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a4887aa0a07d726c889d8dfbddc359c6
83658ae9db1abb14fb2b869bf451caa97ef58e4d
085603732bde2eb04b81ae99e116350593ad282d21e81bfd624c0f9543247cd9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 02:51:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a4887aa0a07d726c889d8dfbddc359c6
83658ae9db1abb14fb2b869bf451caa97ef58e4d
085603732bde2eb04b81ae99e116350593ad282d21e81bfd624c0f9543247cd9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 02:51:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Dec 2022 19:33:54 GMT
expires: Thu, 21 Dec 2023 19:33:54 GMT
cache-control: public, max-age=31536000
age: 371866
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a4887aa0a07d726c889d8dfbddc359c6
83658ae9db1abb14fb2b869bf451caa97ef58e4d
085603732bde2eb04b81ae99e116350593ad282d21e81bfd624c0f9543247cd9

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 02:51:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Dec 2022 13:33:13 GMT
expires: Sat, 23 Dec 2023 13:33:13 GMT
cache-control: public, max-age=31536000
age: 220707
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2

142.250.74.35

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Size
16 kB (15920 bytes)
Hash
3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Dec 2022 19:33:56 GMT
expires: Thu, 21 Dec 2023 19:33:56 GMT
cache-control: public, max-age=31536000
age: 371864
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.2

199.250.195.40

200 OK

6.3 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (24753)
Size
6.3 kB (6332 bytes)
Hash
6edc2d9d5377dc7c5303ccb2ed386f5e
fd3e7260f8eacfd48cba8781a6d1685b4420056e
50225386b6ade61bcb93579ca56817b9af60a2cb5a0cc60e43a499ab93230e71

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.8.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Mon, 28 Nov 2022 14:59:46 GMT
vary: Accept-Encoding
etag: W/"6384cce2-60dc"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2

199.250.195.40

200 OK

77 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Size
77 kB (76764 bytes)
Hash
f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: font/woff2
content-length: 76764
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
etag: "63a35da4-12bdc"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/2022/05/domains.jpg

199.250.195.40

200 OK

28 kB

URL HTTP/2
securedoffers.com/wp-content/uploads/2022/05/domains.jpg
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, description=Domain name concept flat tiny person vector illustration. Stylized abstract web address registry scene with top level names. Co], progressive, precision 8, 612x320, components 3\012- data
Size
28 kB (27930 bytes)
Hash
5ad2c1b6f75f025b84d05319b35a202b
54c239ef71cfd6d8244a6d643acf8f4f47223cf6
5570360609e201d4439eac9707eef2818c4ff08256f261d207de67819713fe1b

HTTP Headers

GET /wp-content/uploads/2022/05/domains.jpg HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: image/jpeg
content-length: 27930
last-modified: Tue, 17 May 2022 16:56:22 GMT
etag: "6283d3b6-6d1a"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff

199.250.195.40

200 OK

102 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
Web Open Font Format, TrueType, length 101652, version 331.-31261\012- data
Size
102 kB (101652 bytes)
Hash
9fe5a17c8ab036d20e6c5ba3fd2ac511
52751432ded489dfdf27fb1cf64c570c4c27a1d7
74edc18b67c487e32f181719fdb347e2e77020744651f446e9acd7bd6821e2e7

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: font/woff
content-length: 101652
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
etag: "63a35da4-18d14"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff

199.250.195.40

200 OK

90 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
Web Open Font Format, TrueType, length 90060, version 331.-31261\012- data
Size
90 kB (90060 bytes)
Hash
099a9556e1a63ece24f8a99859c94c7d
5f8cab91347c553c1eb87f9b527f6bee8a28e40d
aff76e5c986f295d4bc6f8142a78e2a31888b101c2d025db89f79c75f64fd90b

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: font/woff
content-length: 90060
last-modified: Wed, 21 Dec 2022 19:25:25 GMT
etag: "63a35da5-15fcc"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff

199.250.195.40

200 OK

16 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
Web Open Font Format, TrueType, length 16276, version 331.-31261\012- data
Size
16 kB (16276 bytes)
Hash
7124eb50fc8227c78269f2d995637ff5
d33d8b5b15b7bba2cc17190dc685fe0a76d2989e
14c9db4ff87fde08f67b0a69dd594bab6d87174812a0dbd34c59833bfed8cc0e

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: font/woff
content-length: 16276
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
etag: "63a35da4-3f94"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2

199.250.195.40

200 OK

3.0 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (3720)
Size
3.0 kB (2994 bytes)
Hash
6e6ca7333b2822ac527f37fd28320acc
0bcb2f436204d1d5f25630fa10bf2b399f19aacf
c18e697a31cb97ba51ba7932fb121038cc70a5516a257040d327c55a21a09aeb

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.8.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Mon, 28 Nov 2022 14:59:44 GMT
vary: Accept-Encoding
etag: W/"6384cce0-e89"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf

199.250.195.40

200 OK

203 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh\012- data
Size
203 kB (202744 bytes)
Hash
605ed7926cf39a2ad5ec2d1f9d391d3d
c1b9fae262f42868c075ac865a8ab34920e20a2c
3d06af1f31cd83ace7a265a014b8fb5dee15770ecac8f7a55555190e627e03c2

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/octet-stream
content-length: 202744
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
etag: "63a35da4-317f8"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf

199.250.195.40

200 OK

134 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh\012- data
Size
134 kB (134040 bytes)
Hash
3b89dd103490708d19a95adcae52210e
3fa2d67cef22da5c3f3eb5730c6afbd6fecf0372
06f4d00923ea24697df5df0b92984175991d8bd25776a02d531bb401e393ec42

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/octet-stream
content-length: 134040
last-modified: Wed, 21 Dec 2022 19:25:25 GMT
etag: "63a35da5-20b98"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.ttf

199.250.195.40

200 OK

34 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.ttf
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh\012- data
Size
34 kB (33736 bytes)
Hash
1f77739ca9ff2188b539c36f30ffa2be
7d849a3981a716e2ba4a84634bc57d0b8054a6a3
c651b8a67d3193206f622c3c3b0fbca4a2f2727108c4212b52c1e2a2e84c9b31

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.ttf HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/octet-stream
content-length: 33736
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
etag: "63a35da4-83c8"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js

199.250.195.40

200 OK

95 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (3262)
Size
95 kB (94656 bytes)
Hash
f8ef501ced06ef35469f26795ee3b4cf
a158d9a94ea5c01b17c932a639d0e334f816abda
f81a5b593e2b6099f0adbc0f3148378bd9cfa7d781f501889a37d919fa71f7ba

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.3de49ba5ef86f9a22ff5.bundle.min.js HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Mon, 28 Nov 2022 14:59:46 GMT
vary: Accept-Encoding
etag: W/"6384cce2-ce9"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2

199.250.195.40

200 OK

6.5 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (21520)
Size
6.5 kB (6483 bytes)
Hash
a6c5c8f2ea6a1cce7bc81f4dd25e0a87
b7ae0fc92961b20a79a1e01e6ecf254a7a8595c2
e28c5c9e2f05fbf39bbcb64636884ebd875011fcf5faf6fb68278bbed31a8446

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.8.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Mon, 28 Nov 2022 14:59:46 GMT
vary: Accept-Encoding
etag: W/"6384cce2-543b"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5b2790419bb1f19fd29300d548278b98
64671f1c88a1271e9bcda28ac13a01e330a2a07e
1ce1ca2a9d6783fa668b57c8764e8c3a17fde26812161af8ce8096b3691b9279

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1CE1CA2A9D6783FA668B57C8764E8C3A17FDE26812161AF8CE8096B3691B9279"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7686
Expires: Mon, 26 Dec 2022 04:59:47 GMT
Date: Mon, 26 Dec 2022 02:51:41 GMT
Connection: keep-alive

securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff?5.16.0

199.250.195.40

200 OK

114 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff?5.16.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
Web Open Font Format, TrueType, length 114280, version 1.0\012- data
Size
114 kB (114280 bytes)
Hash
7d9e85ea4d03fa493502980a31a2006c
a319cc9448cd00fc77c447fed281dc66b1c6ac7c
76dba545735324a48b09747baf7a9a75460cd7d13b6c2e82149950e1dadc948c

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff?5.16.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:41 GMT
content-type: font/woff
content-length: 114280
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
etag: "63a35da4-1be68"
expires: Mon, 02 Jan 2023 02:51:41 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1

199.250.195.40

200 OK

7.5 kB

URL HTTP/2
securedoffers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
Unicode text, UTF-8 text, with very long lines (8189)
Size
7.5 kB (7528 bytes)
Hash
a580115b5681e00c253042b5450e2f04
7d321693d5ba5c73685c080eeb98bb1a24961773
8fa5c4ed450f2098ac7077eb40347dc2b27f96685dd9fc54527440760ca56afa

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:25 GMT
vary: Accept-Encoding
etag: W/"627ae565-50ea"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9932 bytes)
Hash
e2665a6ae98ace2eab671f9e8a9f0978
d1b0b2b7bf8c8bf2e9765e9103908aba36989727
ae9125caee2dc267c67bf4f31f2669e03f65c47a43f2d0ab83081eb043d23d85

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9932
x-amzn-requestid: 280fdeaa-a0e1-4306-9adb-52c0f28b4002
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNZzGcjoAMF5wg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2a4-73e3e4b34b67da2d2dbb8020;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nR7WiQ1kUfI129AOECPfR181bNjexz6B7BEIYxDRiGNqfKCQPiBKOQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:57:09 GMT
age: 17672
etag: "d1b0b2b7bf8c8bf2e9765e9103908aba36989727"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5

199.250.195.40

200 OK

12 kB

URL HTTP/2
securedoffers.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (39791)
Size
12 kB (11955 bytes)
Hash
fd2adc39834eeb8def9895208cad6b7b
3e621203b7a78edef183d93cdf08de4fd7753be5
a34078273d6441be3b36e8cb6077d2f346adde6226c610b4ef2e6634757598f2

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Tue, 10 May 2022 22:21:21 GMT
vary: Accept-Encoding
etag: W/"627ae561-145db"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c

199.250.195.40

200 OK

9.1 kB

URL HTTP/2
securedoffers.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (5655)
Size
9.1 kB (9063 bytes)
Hash
a07b8001fbc8f0d5caab0b8efc95cbae
ec54887aae1e587e7a0573b7bf245170db083477
c5381d413a48112008fad3058902d6122dbe2cd95af3029d94cee154a0d09726

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:24 GMT
vary: Accept-Encoding
etag: W/"627ae564-163a"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1

199.250.195.40

200 OK

16 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (25115)
Size
16 kB (16371 bytes)
Hash
15652e2c3db5c6fe949171c7c01267c2
a3616f41fb64cd64618820a9dac642d0672a9448
456df05772e7f797c1dce94107105c0b7c9928d5489c11cfb31abceac3c56388

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Mon, 28 Nov 2022 14:59:44 GMT
vary: Accept-Encoding
etag: W/"6384cce0-6272"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css

199.250.195.40

200 OK

15 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
Unicode text, UTF-8 text, with very long lines (29459)
Size
15 kB (14878 bytes)
Hash
469b3cc83466afa1568c11af9f8e2785
7667949f6018cf72e7453fe6d78e98a127e7bb71
1eabe4e450fe96f013a63fdd2720b3df05e4edcc207cc5c2d2b29c7684d0cf1d

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Mon, 28 Nov 2022 14:59:44 GMT
vary: Accept-Encoding
etag: W/"6384cce0-733f"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2

199.250.195.40

200 OK

9.2 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (5191)
Size
9.2 kB (9215 bytes)
Hash
d011d243cfba9390cf87964f56af2cca
0791ece7a2a86289cd6795620264af368f2f6b32
e8342088f18575fb9591b089019a3184a91a30ddce3398b2081cc04ad1c8be6d

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.8.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Mon, 28 Nov 2022 14:59:46 GMT
vary: Accept-Encoding
etag: W/"6384cce2-1472"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

199.250.195.40

200 OK

13 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (12198), with no line terminators
Size
13 kB (13258 bytes)
Hash
1dc4665415e0465b19d610b207be98e5
f1f0e1a823734fc01ee90e7e1275976d96b3e567
ddd21d7a2a965c86e64af2a2c1462c6e6b818e3965bb451517910ba853720fc3

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
vary: Accept-Encoding
etag: W/"63a35da4-2fa6"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
vary: Accept-Encoding
etag: W/"63a35da4-4b4f"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/global.css?ver=1671089264

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/global.css?ver=1671089264
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1671089264 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Thu, 15 Dec 2022 07:27:44 GMT
vary: Accept-Encoding
etag: W/"639acc70-9ab3"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-138.css?ver=1671091343

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-138.css?ver=1671091343
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/post-138.css?ver=1671091343 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Thu, 15 Dec 2022 08:02:23 GMT
vary: Accept-Encoding
etag: W/"639ad48f-fe5"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-4705"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/themes/so-hello-ch/style.css?ver=5.9.5

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/themes/so-hello-ch/style.css?ver=5.9.5
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/so-hello-ch/style.css?ver=5.9.5 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Mon, 25 Apr 2022 18:47:37 GMT
vary: Accept-Encoding
etag: W/"6266ecc9-237"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-290.css?ver=1671089264

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-290.css?ver=1671089264
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/post-290.css?ver=1671089264 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Thu, 15 Dec 2022 07:27:44 GMT
vary: Accept-Encoding
etag: W/"639acc70-579"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-15db1"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.2

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.9.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Wed, 21 Dec 2022 19:25:25 GMT
vary: Accept-Encoding
etag: W/"63a35da5-135d"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.6.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Mon, 28 Nov 2022 15:01:43 GMT
vary: Accept-Encoding
etag: W/"6384cd57-3d38"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
vary: Accept-Encoding
etag: W/"63a35da4-29d"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.ttf?5.16.0

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.ttf?5.16.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.ttf?5.16.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:41 GMT
content-type: application/octet-stream
content-length: 211480
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
etag: "63a35da4-33a18"
expires: Mon, 02 Jan 2023 02:51:41 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:24 GMT
vary: Accept-Encoding
etag: W/"627ae564-4b3d"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Dec 2022 02:51:40 GMT
date: Mon, 26 Dec 2022 02:51:40 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
vary: Accept-Encoding
etag: W/"63a35da4-2a3"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.2

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.9.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Wed, 21 Dec 2022 19:25:25 GMT
vary: Accept-Encoding
etag: W/"63a35da5-9ef8"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
vary: Accept-Encoding
etag: W/"63a35da4-e238"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
vary: Accept-Encoding
etag: W/"63a35da4-2a5"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 19:38:14 GMT
vary: Accept-Encoding
etag: W/"63505226-3016"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.9.2

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.9.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.9.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
vary: Accept-Encoding
etag: W/"63a35da4-15492"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: font/woff2
content-length: 13276
last-modified: Wed, 21 Dec 2022 19:25:25 GMT
etag: "63a35da5-33dc"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-158.css?ver=1671089264

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-158.css?ver=1671089264
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/post-158.css?ver=1671089264 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Thu, 15 Dec 2022 07:27:44 GMT
vary: Accept-Encoding
etag: W/"639acc70-2061"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.2

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.8.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Mon, 28 Nov 2022 14:59:44 GMT
vary: Accept-Encoding
etag: W/"6384cce0-2eee"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-247.css?ver=1671089264

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-247.css?ver=1671089264
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/post-247.css?ver=1671089264 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Thu, 15 Dec 2022 07:27:44 GMT
vary: Accept-Encoding
etag: W/"639acc70-9ed"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-2bd8"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 19:38:14 GMT
vary: Accept-Encoding
etag: W/"63505226-26d1"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Mon, 28 Nov 2022 15:01:43 GMT
vary: Accept-Encoding
etag: W/"6384cd57-c5c"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.2

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.9.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Wed, 21 Dec 2022 19:25:27 GMT
vary: Accept-Encoding
etag: W/"63a35da7-7b22"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: font/woff2
content-length: 78196
last-modified: Wed, 21 Dec 2022 19:25:24 GMT
etag: "63a35da4-13174"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-129.css?ver=1671089263

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-129.css?ver=1671089263
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/post-129.css?ver=1671089263 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Thu, 15 Dec 2022 07:27:43 GMT
vary: Accept-Encoding
etag: W/"639acc6f-76a"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 19:38:14 GMT
vary: Accept-Encoding
etag: W/"63505226-aab"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/themes/hello-elementor/style.min.css?ver=2.6.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/hello-elementor/style.min.css?ver=2.6.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: text/css
last-modified: Mon, 28 Nov 2022 15:01:43 GMT
vary: Accept-Encoding
etag: W/"6384cd57-17a3"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.23.2
date: Mon, 26 Dec 2022 02:51:40 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:24 GMT
vary: Accept-Encoding
etag: W/"627ae564-195e"
expires: Mon, 02 Jan 2023 02:51:40 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (27)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP