Report - alv.com/mtm/direct/.ejxdyuekwjaqheg7zlkgjktb6vlkckmjje2cjhiovxunbgru_ve9ft4syqqebysvxdjk-mncyioo1hgr0rf3jdsvyqkpmtlbesp5z1wnljti0jwc1zqij41lxnbipf1rtvf3do0h12h3qxtso1bwl58:1ot0mc:nqnrfmnd

Report Overview

Submitted URL
alv.com/mtm/direct/.ejxdyuekwjaqheg7zlkgjktb6vlkckmjje2cjhiovxunbgru_ve9ft4syqqebysvxdjk-mncyioo1hgr0rf3jdsvyqkpmtlbesp5z1wnljti0jwc1zqij41lxnbipf1rtvf3do0h12h3qxtso1bwl58:1ot0mc:nqnrfmnd_bij0d4gzxttvepl1ne/2
IP
45.56.79.23
ASN
#63949 Linode, LLC
Submitted
2022-10-02 17:19:58
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	326 B	886 B	23.36.76.226
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	469 B	17 kB	216.58.207.195
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	738 B	13 kB	142.250.74.10
www42.alv.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	533 B	45.79.19.196
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	736 B	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	44.237.163.41
ocsp.comodoca.com	1696	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	329 B	1.0 kB	104.18.32.68
securedoffers.com	283463	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	20 kB	461 kB	199.250.195.40
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	18.165.201.80
alv.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	527 B	240 B	72.14.185.43
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	993 B	2.1 kB	142.250.74.3
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	108.156.28.51
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
www.securedoffers.com	554495	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	439 B	286 B	199.250.195.40
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	23 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-10-02	medium	alv.com/mtm/direct/.ejxdyuekwjaqheg7zlkgjktb6vlkckmjje2cjhiovxunbgru_ve9ft4syqqebysvxdjk-mncyioo1hgr0rf3jdsvyqkpmtlbesp5z1wnljti0jwc1zqij41lxnbipf1rtvf3do0h12h3qxtso1bwl58:1ot0mc:nqnrfmnd_bij0d4gzxttvepl1ne/2	Malware
2022-10-02	medium	www42.alv.com/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	securedoffers.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c	5.7 kB	2023-03-07	2024-04-26
Pretty URL securedoffers.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-26 15:16:07 Times Seen1021 Hash 7935d6e0f5c1a8dabaf92fa17cc5e513 2623f058ab2e57ad10120675d941c9b78eba82e8 e5935466216a250bb06338805b32ffb19eeda9042ead790ebc6e5dda27820adb Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1	21 kB	2023-03-07	2024-03-19
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-03-19 08:32:36 Times Seen431 Hash 561ea2048817c46dc239b7edec5f079a 91a1cbb8136115d5b84076284e19cea84dd6d6d4 806ea6d54f56778e10fa44bcb14755440cdccaa5f038d570d86a55cc125f9a40 Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-26
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 17:49:49 Times Seen52812 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7	40 kB	2023-03-07	2024-03-19
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:07 Last Seen2024-03-19 20:09:32 Times Seen354 Hash 9186019ccc4b917dadbeab08f409b8fa 2054ba180821db453f363b084d24c2399ed70f93 1b7e5ce2d76665f7555486ed22ec9d9ebf824020cf53b432fb1bf740406b3e56 Loading...

	securedoffers.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4	18 kB	2023-03-07	2024-04-26
Pretty URL securedoffers.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 15:16:07 Times Seen12602 Hash 116c86c56f8db0bb63f15ceda50fdc98 75e308982ecf7cd43644b8b426e6aa1a0b0fbe26 def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7 Loading...

	securedoffers.com/	279 B	2023-03-07	2024-04-26
Pretty URL securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-04-26 15:16:06 Times Seen281 Hash dabf19248f3f2cc80d164fa6559b2a68 0e04f02870190a5b3b610a99175eb82e8593e592 f46f139eb77f229b9f439e7f3a53a28350ca6fd146bb4f47480f8a01dafc571c Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 19:44:13 Times Seen37099177 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	securedoffers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0	3.1 kB	2023-03-07	2024-04-23
Pretty URL securedoffers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-04-23 17:51:47 Times Seen844 Hash 991851ce021f42521a9b8c707500d731 d3b7d0a28b0e6a7e0621f78b1ba440b52060cc9c bd29338c097619843470ad38187d0c1754d939b12fa755f4c11f9e53fd46b09f Loading...

	securedoffers.com/	2.4 kB	2023-03-07	2023-03-08
Pretty URL securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:49:15 Last Seen2023-03-08 04:42:11 Times Seen1 Hash 19d4afe6bbf968932a4a4eb319495524 f615c6ef445e67b61b9599d61e2a0785a51a3893 09ac47651a521c55ca1671ad887ca433a0f89d81892f52ec17997d1a41c62232 Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.4432c50d0d1f64da9d7c.bundle.min.js	3.2 kB	2023-03-07	2024-02-20
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.4432c50d0d1f64da9d7c.bundle.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-02-20 05:54:27 Times Seen173 Hash 1faee0cf8e50dae365432dfff61ed18b 99c0cb98febdb25380d5fbf325329d082b6c495d 99b0f93f39b038bc3d2e44b62628b94146345c51b95bcea4a413b015d88bf83a Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	1.4 kB	2023-03-07	2024-03-19
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 22:00:18 Last Seen2024-03-19 20:09:32 Times Seen143 Hash e15c03c5a1c9eae91c26376316ff4edb d40196b09bec27de14848f5f606dc65cbbf1bf96 6ce6ca5a174c3dc4bebbfef575f82d363dd81e6110d8faf7e9e7b37e184ca152 Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1	25 kB	2023-03-07	2024-04-26
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 17:32:09 Times Seen16619 Hash 046405de007ff73e52d17dab2af75258 887cfb8a9de27005875f6e1c1d1ead43bd0865c8 533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020 Loading...

	securedoffers.com/	144 B	2023-03-07	2023-03-17
Pretty URL securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2023-03-17 11:35:01 Times Seen1 Hash ba40651f4a374042363b584603636cfd 4caca357f6d766ef616dfba54f91ecea33986ae2 5d72c3f93b16aa3c0b076879140de6508b11a5d813069f44f7bebc3d41f38120 Loading...

	securedoffers.com/	68 B	2023-03-07	2024-04-26
Pretty URL securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 17:40:07 Times Seen22493 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	securedoffers.com/	1.2 kB	2023-03-08	2023-03-08
Pretty URL securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 04:42:11 Last Seen2023-03-08 04:42:11 Times Seen1 Hash 38da290425bc2e3be0b27db1695e6743 dda21f7db6092b4ddaf14862544bf76d109102c2 c748bac001e0d5a7b4b4abbc88285d5ebac97cf77212c9552b3f2c9a59137ef8 Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1	3.2 kB	2023-03-07	2024-04-24
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 13:04:53 Times Seen1128 Hash dbe4b3628220901277c0c4234475e5cb c17291130bc11a7f39ce70fe869bf82946e7be8b 10a2cf3d16091fbc89cc987160b62093515cd31f0762a751775999311c7313f4 Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7	33 kB	2023-03-07	2024-03-19
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:07 Last Seen2024-03-19 20:09:32 Times Seen321 Hash ad9e0dc726051e4c01a96e714e090007 7139e369a2e7b0a4899305cfa0348bf227a0b5d0 7f6416579057ab5faf142b3965d135aa7eae333d9c5f6fcb789185f020f3c2e2 Loading...

	securedoffers.com/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834	10 kB	2023-03-07	2024-04-26
Pretty URL securedoffers.com/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-26 15:16:07 Times Seen1039 Hash 67e56dc626cd9e14d5f0cef38d0c36f7 0c03a4781237e2c86248b562b64e78afe3817c42 22c90613db09ef65c964b143e6adbe584b42eae85c9b7a75fa27c22b25cccb90 Loading...

	securedoffers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	21 kB	2023-03-07	2024-04-26
Pretty URL securedoffers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-04-26 15:16:07 Times Seen2354 Hash e77ef4006bb97c97c8407f4a8abf4e3d 1a27436ff6ef47ca5c3e352b792e50901ebb705e 9d7da1b980a95ff3d31d0bb8733cbabd1d210ec601d15a1aac2b67394a33191d Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1	25 kB	2023-03-07	2024-03-19
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-03-19 08:32:36 Times Seen280 Hash 6c2b608374510ba489c3ce67d750729d 79355adad534884fe83689d9960066f98f76acdc 677425edd8f3d80f950d3ed998ca7b8130ff4a014238147e6ba2f73d48d2ce47 Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1	5.2 kB	2023-03-07	2024-03-19
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-03-19 08:32:36 Times Seen383 Hash 40942ae6be8e9f5ce0503968e6304765 a0c40e8952d38a6e58ed93c8ae32938fa9eccaf4 d5286f59b39642363e8242db6560752945adb073358d26f5f688c3b3d77e8c35 Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7	5.0 kB	2023-03-07	2024-03-19
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 21:59:07 Last Seen2024-03-19 20:09:32 Times Seen319 Hash b3c8935acfaf38ea6c5b44ca4708856c 05b873d198d0d1050608869c3b44d11dab49517d 07a470485da50cd0fa2468f4c235ffa955b9de29be215e6c9a2947ee34fff625 Loading...

	securedoffers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3	12 kB	2023-03-07	2024-04-26
Pretty URL securedoffers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:48 Last Seen2024-04-26 15:37:46 Times Seen2057 Hash 3f3fc23f477a3849aa5677c585b2a2b4 ccf0865ebd37f76c450c7a377a86ff2448288db3 985fdd42398281348ca133a44750a56fe4909a806b9c075c9443a5d0bd6d2e51 Loading...

	securedoffers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-26
Pretty URL securedoffers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-26 15:16:07 Times Seen2819 Hash 64e89b93b02055fb75ea0913089ded0b 9ccf854a6acedb27496725fa7570a670fd7bd572 a3e64300797e8078baa41dbc49e2affc1d2bedd04a470f0c929ed7fac698fbcd Loading...

	securedoffers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3	9.7 kB	2023-03-07	2024-04-26
Pretty URL securedoffers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:47 Last Seen2024-04-26 15:37:45 Times Seen1724 Hash 490c29d6776fc430c23403fd845b34b0 817129906b7fef1011895a76f047c7693a852e21 29e8de26576208c07ba0845f604e65c9273b93f9f4d1d66214eb4c586f9938c4 Loading...

	securedoffers.com/	2.2 kB	2023-03-07	2023-03-17
Pretty URL securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:34:45 Last Seen2023-03-17 11:35:01 Times Seen1 Hash 590c98fd43f62b10ffe8de12b63cbb5c ab9a4fbd6f902f5cbdd2181c9807350958b3a84a 2da95a0352044f3e5d6b11a7a653c0cfe8f1f8c68df9ee6029daf622247fb582 Loading...

	securedoffers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-26
Pretty URL securedoffers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 16:08:31 Times Seen68676 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

HTTP Transactions (64)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

18.165.201.80

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
18.165.201.80:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 02 Oct 2022 17:03:12 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 65cbd6c4094454b31bc32d6426b92cf2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: yWisa8zzeJJlTSFTmzw6Wfo41vJ4ywjOcLDIZVV8qftQ7xMq2PbIZQ==
Age: 995

alv.com/mtm/direct/.ejxdyuekwjaqheg7zlkgjktb6vlkckmjje2cjhiovxunbgru_ve9ft4syqqebysvxdjk-mncyioo1hgr0rf3jdsvyqkpmtlbesp5z1wnljti0jwc1zqij41lxnbipf1rtvf3do0h12h3qxtso1bwl58:1ot0mc:nqnrfmnd_bij0d4gzxttvepl1ne/2

72.14.185.43

302 Found

0 B

URL HTTP/1.1
alv.com/mtm/direct/.ejxdyuekwjaqheg7zlkgjktb6vlkckmjje2cjhiovxunbgru_ve9ft4syqqebysvxdjk-mncyioo1hgr0rf3jdsvyqkpmtlbesp5z1wnljti0jwc1zqij41lxnbipf1rtvf3do0h12h3qxtso1bwl58:1ot0mc:nqnrfmnd_bij0d4gzxttvepl1ne/2
IP
72.14.185.43:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /mtm/direct/.ejxdyuekwjaqheg7zlkgjktb6vlkckmjje2cjhiovxunbgru_ve9ft4syqqebysvxdjk-mncyioo1hgr0rf3jdsvyqkpmtlbesp5z1wnljti0jwc1zqij41lxnbipf1rtvf3do0h12h3qxtso1bwl58:1ot0mc:nqnrfmnd_bij0d4gzxttvepl1ne/2 HTTP/1.1
Host: alv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Sun, 02 Oct 2022 17:19:47 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: http://www42.alv.com
vary: Accept-Language
content-language: en
connection: close

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
60e4edea7b5f4d19f3547a3bb2d5df57
3ee076bab4da3416c2c5808f730cb316c28baef7
763e2dadfdd286a51327cd2000ca335e30cd0b9b7267875d22ca33f7556ba200

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2834
Expires: Sun, 02 Oct 2022 18:07:01 GMT
Date: Sun, 02 Oct 2022 17:19:47 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

108.156.28.51

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
108.156.28.51:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 02 Oct 2022 03:33:17 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 728b6476f3e2317ec8044d22806d4f94.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: BJ3JtPY6f4KfP4l3t8iC9j1gqHJT0A0zcnCMh_M1sSkRj8xVhmscFQ==
age: 49592
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:19:48 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

www42.alv.com/

45.79.19.196

302 Found

0 B

URL HTTP/1.1
www42.alv.com/
IP
45.79.19.196:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www42.alv.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Sun, 02 Oct 2022 17:19:48 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://www.securedoffers.com/
x-mtm-path: 0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJhbHYuY29tIiwiaHR0cHM6Ly93d3cuc2VjdXJlZG9mZmVycy5jb20vIiwxLCIyMDIyLTEwLTAyIDE3OjE5OjQ4IiwxLCIxNjY0NzMxMTg4LjAzMzQ3MDAwMDAiLDIwMixudWxsLG51bGxd:1of2d2:tTVpZ2e9VLV3a76Gh307LoDBTBI; expires=Sun, 02-Oct-2022 18:19:48 GMT; Max-Age=3600; Path=/
connection: close

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

18.165.201.80

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
18.165.201.80:0
ASN
#0

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 16:32:56 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 02 Oct 2022 16:54:57 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 242a81711c4fc113f186d0cca0b5bb94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: -E9Ha5oi2SHdpJLT-PlcsfLhjbHtMYjPBQUL6cXJuUXPdl51YC9RpA==
Age: 2815

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4eb30b4a4234809cf7d5f89fa1f6ceeb
797242aab2f13c820050aa9accd11b7b950cd177
ce9d833a0ac321a908184b655d6632c481f758a04a9c936a7c303bb253444146

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 826
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 17:19:48 GMT
Last-Modified: Sun, 02 Oct 2022 17:06:02 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

44.237.163.41

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.237.163.41:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: aTBdENAiT1+VbGx7OtwVFw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: PUROoLnTjFbWdDOMpqllcUYD8f0=

ocsp.comodoca.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.comodoca.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
b7e1f638041c79c47feb60212d01397f
eae727851e0d27820162fd0f92e18af6c1b06cfc
d09c6943a65ed000a9c86f183739c54d9de8f25a4d4cb9b3e4840422897ce9c6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:19:49 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 02 Oct 2022 02:38:29 GMT
Expires: Sun, 09 Oct 2022 02:38:28 GMT
Etag: "eae727851e0d27820162fd0f92e18af6c1b06cfc"
Cache-Control: max-age=551549,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753f1aebfa34b511-OSL

www.securedoffers.com/

199.250.195.40

301 Moved Permanently

0 B

URL HTTP/2
www.securedoffers.com/
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: www.securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/html; charset=UTF-8
content-length: 0
vary: Accept-Encoding,Cookie
x-redirect-by: WordPress
location: https://securedoffers.com/
x-proxy-cache: EXPIRED
X-Firefox-Spdy: h2

securedoffers.com/

199.250.195.40

200 OK

11 kB

URL HTTP/2
securedoffers.com/
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Size
11 kB (10846 bytes)
Hash
96425bfe0e9443811d9c8001c5e57ab3
5c04c6f60f4c55967643871eb05c6628c284babe
b6a1c19c4b9ffcf3b878b0ae52b7e386bbc1b350bbe29a9e2cbcbd29072e108f

HTTP Headers

GET / HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/html; charset=UTF-8
content-length: 10846
vary: Accept-Encoding,Cookie
cache-control: max-age=3, must-revalidate
content-encoding: gzip
last-modified: Sun, 02 Oct 2022 14:30:27 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
83f9407574c75ca600c57af0637cb200
4ebabbc1900b8f575e90186e2024e48097b0c8d2
1e166ac737e5c3c015e0dc0c68115ebc5eeb53958682a9b77928ddb647137ac1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 17:19:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
83f9407574c75ca600c57af0637cb200
4ebabbc1900b8f575e90186e2024e48097b0c8d2
1e166ac737e5c3c015e0dc0c68115ebc5eeb53958682a9b77928ddb647137ac1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 17:19:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

securedoffers.com/wp-content/uploads/elementor/thumbs/SecuredOffers-logo-poz30s655phgrjogxvubyfvgqjfopczlzg1noe77k0.png

199.250.195.40

200 OK

4.7 kB

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/thumbs/SecuredOffers-logo-poz30s655phgrjogxvubyfvgqjfopczlzg1noe77k0.png
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
PNG image data, 239 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
4.7 kB (4650 bytes)
Hash
0e662c4e7b108c6b00091319ea4d9214
b4694ee9b190342d60ec0f6a159957c622b922c4
994eddecfde709969dcf3f402e68dda17d1cebf64a494f0bf2fa55df22ebd6a2

HTTP Headers

GET /wp-content/uploads/elementor/thumbs/SecuredOffers-logo-poz30s655phgrjogxvubyfvgqjfopczlzg1noe77k0.png HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: image/png
content-length: 4650
last-modified: Wed, 18 May 2022 01:10:10 GMT
etag: "62844772-122a"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/themes/so-hello-ch/images/progress-meter1.jpg

199.250.195.40

200 OK

22 kB

URL HTTP/2
securedoffers.com/wp-content/themes/so-hello-ch/images/progress-meter1.jpg
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS4 Windows, datetime=2010:04:22 12:47:02], baseline, precision 8, 570x50, components 3\012- data
Size
22 kB (21764 bytes)
Hash
102f6f90c18f8faa8bcdc5602b46d6d2
ab07a68f92dc713440adc518a88917973e75420e
46437f911962ba205b44d3e6252002a27916df5e28eba808aafdc116ea06a558

HTTP Headers

GET /wp-content/themes/so-hello-ch/images/progress-meter1.jpg HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: image/jpeg
content-length: 21764
last-modified: Thu, 12 May 2022 16:30:19 GMT
etag: "627d361b-5504"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/2022/05/SecuredOffers-45px-wht-1.png

199.250.195.40

200 OK

3.3 kB

URL HTTP/2
securedoffers.com/wp-content/uploads/2022/05/SecuredOffers-45px-wht-1.png
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
PNG image data, 179 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3280 bytes)
Hash
dc8046223f44961eabc556b418456355
5cc58f5d27acacbeb2adf10dcf334aede8e7bbba
0f879e845736f9e93a2ce26a79cb200728639ef877cce84eb14b511897577dc6

HTTP Headers

GET /wp-content/uploads/2022/05/SecuredOffers-45px-wht-1.png HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: image/png
content-length: 3280
last-modified: Wed, 18 May 2022 01:13:48 GMT
etag: "6284484c-cd0"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7

199.250.195.40

200 OK

2.6 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (4918)
Size
2.6 kB (2645 bytes)
Hash
ff4233bfae0e096d2e9dd0e1e70afd36
f5a152c069d8647b5676dc48a5154e7d3af3d904
e326f2fea57f77ee77d3198a03118cb9fc7187ba1277b6283fc8e498254e1699

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.7 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 21:00:41 GMT
vary: Accept-Encoding
etag: W/"632a29f9-135d"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7

199.250.195.40

200 OK

13 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (40474)
Size
13 kB (13032 bytes)
Hash
bf9385d3a58dccef9e316f6d76ac7841
78ea0aa64360790794fc688451a44ca8fecd6d09
9baf2da78182fbe5c14449040d662e50de74a897bd7dbd989e4d663c22c80252

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.7 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 21:00:41 GMT
vary: Accept-Encoding
etag: W/"632a29f9-9e41"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3

199.250.195.40

200 OK

4.4 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
HTML document, ASCII text, with very long lines (12211), with no line terminators
Size
4.4 kB (4385 bytes)
Hash
0dc6b6c869f28df63eb9280db6c25ea8
c5517cf20fb39e8316b4d8504653dd81e815a61e
6dea071dba1f573ae6ff230c13343b49f2c52d38c0186fecefb0abc94fdb3801

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 21:00:28 GMT
vary: Accept-Encoding
etag: W/"63111d6c-2fb3"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://securedoffers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 337541
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1

199.250.195.40

200 OK

23 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (25115)
Size
23 kB (23383 bytes)
Hash
fa71796363250cfff3fe57feeb207cfa
859de21b99d8813775aacfcb73b334937a6d2b0c
849aeb4a5892377fac89afd81fb3570177387e7a6ac9f96d846d1ae26a950dae

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-6272"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3

199.250.195.40

200 OK

19 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (9680), with no line terminators
Size
19 kB (18855 bytes)
Hash
63fc469e2b5cc6b1ae25ec33782d980c
a80ff33626b0676daab53f3cc84554bfc9cca623
b7e4335e7b600cd8e27428aaf04db3e132700c9046b72dbf620c3746fb020721

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Thu, 01 Sep 2022 21:00:28 GMT
vary: Accept-Encoding
etag: W/"63111d6c-25d0"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
eb2de1a6c4c76b62bd9b5844ac8f0711
205f8666f86cf5f699ed5c8252c46004492fa88e
d0f5a54640474e3d0383d5302a9899e8060456287379906d2359925c6d36c46b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 17:19:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

securedoffers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0

199.250.195.40

200 OK

79 kB

URL HTTP/2
securedoffers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (3113), with no line terminators
Size
79 kB (79202 bytes)
Hash
f11f3e19fc6d659042b75c17920f3ef0
cd92e34f42f2c444d1f77e5a7fa4915d2ccdc20b
a15d64e525c14eaeccd764da5b3f1e10b7c4e4270b2661a99c768dc86054374e

HTTP Headers

GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Fri, 18 Mar 2022 13:04:12 GMT
vary: Accept-Encoding
etag: W/"6234834c-c29"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1

199.250.195.40

200 OK

79 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (5118)
Size
79 kB (79075 bytes)
Hash
5861d798594034c5077c9ffc9ac23a79
861b908b9b20db774d072611d31fb281d19c844b
7c2043b001091d23dadf429ae27bcebab881ece003e349b9ffac6590930b3b3e

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-1429"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7

199.250.195.40

200 OK

24 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
Unicode text, UTF-8 text, with very long lines (32889)
Size
24 kB (24351 bytes)
Hash
35c966b6d4dd465dab7103023bc59788
bda8b2559a9a018b3a9d590d4217b7ec0a0b18cf
858f054cebbeb1f6a4afce50e447c6eddc3f7d41b0b414f2ddbe555411ef87cf

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.7 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 21:00:41 GMT
vary: Accept-Encoding
etag: W/"632a29f9-80a1"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/2022/05/domains.jpg

199.250.195.40

200 OK

28 kB

URL HTTP/2
securedoffers.com/wp-content/uploads/2022/05/domains.jpg
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, description=Domain name concept flat tiny person vector illustration. Stylized abstract web address registry scene with top level names. Co], progressive, precision 8, 612x320, components 3\012- data
Size
28 kB (27930 bytes)
Hash
5ad2c1b6f75f025b84d05319b35a202b
54c239ef71cfd6d8244a6d643acf8f4f47223cf6
5570360609e201d4439eac9707eef2818c4ff08256f261d207de67819713fe1b

HTTP Headers

GET /wp-content/uploads/2022/05/domains.jpg HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:50 GMT
content-type: image/jpeg
content-length: 27930
last-modified: Tue, 17 May 2022 16:56:22 GMT
etag: "6283d3b6-6d1a"
expires: Sun, 09 Oct 2022 17:19:50 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/themes/hello-elementor/style.min.css?ver=2.5.0

199.250.195.40

200 OK

2.3 kB

URL HTTP/2
securedoffers.com/wp-content/themes/hello-elementor/style.min.css?ver=2.5.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (5839), with no line terminators
Size
2.3 kB (2299 bytes)
Hash
46abb8f8cecf6eaecd8b556a9238c83a
eb8a8f9b56bc83c7bb1317f8debc49f8d16ba8f5
e774ac3b67b0bf1b1a130ae4c8f2d490ec96a3cc2bdcaf06106f2e60fa4a501a

HTTP Headers

GET /wp-content/themes/hello-elementor/style.min.css?ver=2.5.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Fri, 18 Mar 2022 13:04:12 GMT
vary: Accept-Encoding
etag: W/"6234834c-16cf"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4

199.250.195.40

200 OK

12 kB

URL HTTP/2
securedoffers.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.4
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (39791)
Size
12 kB (11955 bytes)
Hash
98c72fd52b677e98602095f3db0999ea
3022af2d20f56832a0aa7a3091c88eed02703843
c23ea6f45856d1a34c283c883347c1d33497b0f2a86e2a5f9677cf58a53b299a

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.4 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Tue, 10 May 2022 22:21:21 GMT
vary: Accept-Encoding
etag: W/"627ae561-145db"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1

199.250.195.40

200 OK

11 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (3235)
Size
11 kB (10681 bytes)
Hash
58b7b117e86089f6fa944f4a94dd3ffd
f52d36d17d9a25e442ca7d63e1fe6cf27d0b5e2a
9a59b819b329829bfcdbcc952d59b7c6ec89d1d5a95e7dddbb8fba6b9d340777

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-ca4"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.4

142.250.74.10

200 OK

13 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.4
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
13 kB (12626 bytes)
Hash
7be2bcfc0b935d0fe7ae543b9a171f1d
5fe079a5f144893ab4333741bf2da95a9874dde3
9a115c8b4444bc63a8585a0fea0d82befd769a95be4e69301c17ab0f5eba5486

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.4 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 02 Oct 2022 17:19:49 GMT
date: Sun, 02 Oct 2022 17:19:49 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg

34.120.237.76

200 OK

5.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.0 kB (4987 bytes)
Hash
463bdcfbec5426e18ecef83b1c373b71
2e533332ee5c49143e58dad32ee3717a39179532
2c40befd28781482b9be249a792571612d68d7045324083d2c832fa5ec42f04b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4987
x-amzn-requestid: 763edd04-7f8d-42ae-8864-482be3549958
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHpFs4oAMFbqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ca-2f7b67e85aa83b69183e62b5;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Zoggf30lA-Kvt5QYa-IdhGePHCNiphR7pfFiOaFvL8ZkWZIaiK4pA==
via: 1.1 f4367b41311e3e9a490d7461b7b85490.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:54:45 GMT
etag: "2e533332ee5c49143e58dad32ee3717a39179532"
content-type: image/jpeg
age: 69905
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.3 kB (6315 bytes)
Hash
206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 04:41:39 GMT
age: 45491
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

199.250.195.40

200 OK

11 kB

URL HTTP/2
securedoffers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (11126)
Size
11 kB (11157 bytes)
Hash
25428301eb10661cd7e8a1d47038fa9e
c408c4ec60a6ee7d977ce7ee6c7f9c0801be6292
f841db90cc0364bbc1f1a0d1fea1f404cf5a57b08a3ba907d9c3f24dbc7f32d6

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-2bd8"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d657f8a-70bc-42c6-9aae-1127c4403047.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8602 bytes)
Hash
94d82ad8d70761f6ee1384b4183335f3
5d3389a965cfa45dab2202d89b40264368674e8a
ad495dc0ede3bfcbaebfd3bf2eb55fc5596cd7643a539e030ccce0b8a3bcf8dd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d657f8a-70bc-42c6-9aae-1127c4403047.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8602
x-amzn-requestid: 89329169-bc7a-46b1-85fc-20383a85cae8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDf9GxzoAMFg0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2cc-27952f8357fa25c956b1cd72;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YDfn3Xd8m6jaBrj_M9hs4dePku_eEhJbYv3NJSHjCdAWifhBkiKUhw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:53:38 GMT
age: 69972
etag: "5d3389a965cfa45dab2202d89b40264368674e8a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/2022/01/secured-offers-icon.png

199.250.195.40

200 OK

1.5 kB

URL HTTP/2
securedoffers.com/wp-content/uploads/2022/01/secured-offers-icon.png
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Size
1.5 kB (1468 bytes)
Hash
e0fefe887bd0301efc8d013446c7ddf3
b2577f72d82fea9c95df07e99ae1cf46dd97dcdf
005bfa8e2b63f42b1d476e57a1f4bc629cbbd09d4b15fa3377fe66773a9f6777

HTTP Headers

GET /wp-content/uploads/2022/01/secured-offers-icon.png HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:50 GMT
content-type: image/png
content-length: 1468
last-modified: Thu, 12 May 2022 20:04:18 GMT
etag: "627d6842-5bc"
expires: Sun, 09 Oct 2022 17:19:50 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0

199.250.195.40

200 OK

93 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
Web Open Font Format (Version 2), TrueType, length 93372, version 1.0\012- data
Size
93 kB (93372 bytes)
Hash
aab0bb3379e0eb7ebc26071db61fbd57
711c8d350c4192c2f1aa7f73551445b89fb4b161
691fa7d17effc7d303eda0ad7e4a1d91b2f375506cfc8a774480cc2b55f156ea

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.16.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:50 GMT
content-type: font/woff2
content-length: 93372
last-modified: Tue, 20 Sep 2022 21:00:39 GMT
etag: "632a29f7-16cbc"
expires: Sun, 09 Oct 2022 17:19:50 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.7

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.7
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.7 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 21:00:38 GMT
vary: Accept-Encoding
etag: W/"632a29f6-1a788"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/global.css?ver=1652824432

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/global.css?ver=1652824432
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1652824432 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-9ab3"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-158.css?ver=1652824432

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-158.css?ver=1652824432
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/post-158.css?ver=1652824432 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-2061"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-15db1"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.5.0

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.5.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.5.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Fri, 18 Mar 2022 13:04:12 GMT
vary: Accept-Encoding
etag: W/"6234834c-3bf2"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-129.css?ver=1652824431

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-129.css?ver=1652824431
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/post-129.css?ver=1652824431 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:51 GMT
vary: Accept-Encoding
etag: W/"6284196f-77c"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-2c8d"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-72cb"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:24 GMT
vary: Accept-Encoding
etag: W/"627ae564-195e"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-522a"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Thu, 01 Sep 2022 21:00:28 GMT
vary: Accept-Encoding
etag: W/"63111d6c-aab"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-247.css?ver=1652824432

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-247.css?ver=1652824432
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/post-247.css?ver=1652824432 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-9ed"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:24 GMT
vary: Accept-Encoding
etag: W/"627ae564-163a"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:25 GMT
vary: Accept-Encoding
etag: W/"627ae565-50ea"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 21:00:39 GMT
vary: Accept-Encoding
etag: W/"632a29f7-2a5"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 20 Sep 2022 21:00:38 GMT
vary: Accept-Encoding
etag: W/"632a29f6-2fa6"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-138.css?ver=1652824432

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-138.css?ver=1652824432
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/post-138.css?ver=1652824432 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-fe5"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-290.css?ver=1652836510

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-290.css?ver=1652836510
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/post-290.css?ver=1652836510 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 01:15:10 GMT
vary: Accept-Encoding
etag: W/"6284489e-579"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 21:00:39 GMT
vary: Accept-Encoding
etag: W/"632a29f7-e238"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 21:00:39 GMT
vary: Accept-Encoding
etag: W/"632a29f7-29d"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.4
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.4 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-4705"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-612f"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 21:00:38 GMT
vary: Accept-Encoding
etag: W/"632a29f6-4b4f"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:23 GMT
vary: Accept-Encoding
etag: W/"627ae563-28a7"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/themes/so-hello-ch/style.css?ver=5.9.4

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/themes/so-hello-ch/style.css?ver=5.9.4
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/so-hello-ch/style.css?ver=5.9.4 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Mon, 25 Apr 2022 18:47:37 GMT
vary: Accept-Encoding
etag: W/"6266ecc9-237"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sun, 02 Oct 2022 17:19:49 GMT
content-type: text/css
last-modified: Tue, 20 Sep 2022 21:00:39 GMT
vary: Accept-Encoding
etag: W/"632a29f7-2a3"
expires: Sun, 09 Oct 2022 17:19:49 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP