Overview

URLwww.lfs.com/mtm/direct/.eJxdikEOwiAQRe8yy0oYl1rjWcyETIUECsIYSBrv7thd3b3_3t_gXQPMgGCA6rMpKlVeuHLV4UXKjNh7t3Fp1uWk2ecmj5US6-FYyDkuolp4CHpJ0VApMTiSkFccP3Ma_zbF2-t-tlcz4bTTBT5fC1gyyQ:1oz3qa:MUNZ0F7uOeSGOjjndk3M1RgxhpE/2
IP 72.14.185.43 (United States)
ASN#63949 Linode, LLC
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-26 22:41:01 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (14)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
ocsp.comodoca.com (1) 1696 2012-05-21 07:01:17 UTC 2021-12-08 16:29:47 UTC 172.64.155.188
ocsp.pki.goog (1) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
securedoffers.com (52) 283463 2012-07-11 18:25:29 UTC 2022-11-23 04:17:17 UTC 199.250.195.40
fonts.gstatic.com (1) 0 2014-09-09 00:40:21 UTC 2022-11-26 10:10:14 UTC 216.58.207.195 Domain (gstatic.com) ranked at: 540
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-26 05:33:20 UTC 34.102.187.140
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
www.securedoffers.com (2) 554495 2012-07-11 18:25:29 UTC 2020-04-25 23:36:37 UTC 199.250.195.40
r3.o.lencr.org (5) 344 No data No data 23.36.77.32
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
img-getpocket.cdn.mozilla.net (4) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
fonts.googleapis.com (1) 8877 2013-06-10 20:14:26 UTC 2022-11-26 07:22:52 UTC 142.250.74.10
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-26 05:33:16 UTC 34.117.237.239
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 54.148.53.106
www.lfs.com (1) 0 2014-04-29 03:58:13 UTC 2018-02-19 23:33:32 UTC 45.33.30.197 Unknown ranking

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-26 2 www.lfs.com/mtm/direct/.eJxdikEOwiAQRe8yy0oYl1rjWcyETIUECsIYSBrv7thd3b3_3t_ (...) Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 72.14.185.43
Date UQ / IDS / BL URL IP
2023-02-07 22:21:01 +0000 0 - 0 - 1 acphoflib04.acp.net/...366F7F66AEB68A1AB4B7EC (...) 72.14.185.43
2023-02-07 03:40:02 +0000 0 - 0 - 1 vlr.com/ 72.14.185.43
2023-02-05 22:35:07 +0000 0 - 0 - 1 www42.steampowerd.com/ 72.14.185.43
2023-02-05 15:03:15 +0000 0 - 0 - 1 nebraskahaf.org/ 72.14.185.43
2023-02-05 10:12:01 +0000 0 - 0 - 1 janani.com/ 72.14.185.43


Last 5 reports on ASN: Linode, LLC
Date UQ / IDS / BL URL IP
2023-02-09 06:03:04 +0000 0 - 7 - 0 m.vasvas.click/c/n/208448/2911?sc=&cid=wurobl (...) 96.126.96.125
2023-02-09 05:19:29 +0000 0 - 0 - 3 www70.simpelsite.com/ 45.33.30.197
2023-02-09 03:54:11 +0000 0 - 0 - 2 myfinepix.com/ 96.126.123.244
2023-02-09 03:52:59 +0000 0 - 0 - 1 www.amebaoor.net/ 139.162.72.175
2023-02-09 03:46:24 +0000 0 - 0 - 8 app.afesistemas.xyz/ 45.79.85.100


Last 1 reports on domain: lfs.com
Date UQ / IDS / BL URL IP
2022-11-26 22:41:01 +0000 0 - 0 - 1 www.lfs.com/mtm/direct/.eJxdikEOwiAQRe8yy0oYl (...) 72.14.185.43


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-30 00:50:05 +0000 0 - 0 - 1 vlr.com/ 96.126.123.244
2023-01-27 19:54:42 +0000 0 - 0 - 1 rma.com/ 45.33.23.183
2022-12-26 05:38:57 +0000 0 - 0 - 1 kvf.com/mtm/direct/.eJxdyUEKwjAQheG7zLKGjkut9 (...) 45.33.30.197
2022-12-26 02:51:50 +0000 0 - 0 - 1 mainpoke.rzz.com/mtm/direct/.eJxtiksOwjAMBe_i (...) 45.79.19.196
2022-12-24 16:43:01 +0000 0 - 0 - 2 duc.com/c/33601898-5332132/35907d460fedcfbc74 (...) 96.126.123.244

JavaScript

Executed Scripts (27)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (75)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5484
Expires: Sun, 27 Nov 2022 00:12:14 GMT
Date: Sat, 26 Nov 2022 22:40:50 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 1709
Cache-Control: max-age=130727
Date: Sat, 26 Nov 2022 22:40:50 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 10:59:37 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /mtm/direct/.eJxdikEOwiAQRe8yy0oYl1rjWcyETIUECsIYSBrv7thd3b3_3t_gXQPMgGCA6rMpKlVeuHLV4UXKjNh7t3Fp1uWk2ecmj5US6-FYyDkuolp4CHpJ0VApMTiSkFccP3Ma_zbF2-t-tlcz4bTTBT5fC1gyyQ:1oz3qa:MUNZ0F7uOeSGOjjndk3M1RgxhpE/2 HTTP/1.1 
Host: www.lfs.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         45.33.30.197
HTTP/1.1 302 Found
content-type: text/html; charset=utf-8
                                        
server: openresty/1.13.6.1
date: Sat, 26 Nov 2022 22:40:50 GMT
content-length: 0
location: https://www.securedoffers.com/
x-mtm-path: 0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJ3d3cubGZzLmNvbSIsImh0dHBzOi8vd3d3LnNlY3VyZWRvZmZlcnMuY29tLyIsMSwiMjAyMi0xMS0yNiAyMjo0MDo1MCIsMSwiMTY2OTUwMjQ1MC4wNDA1NTcwMDAwIiwyMDIsbnVsbCxudWxsXQ:1oz3qs:KgHbGWady5i9Sx4pWzEGOzWg2iM; expires=Sat, 26-Nov-2022 23:40:50 GMT; Max-Age=3600; Path=/
connection: close


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 22:17:33 GMT
cache-control: public,max-age=3600
age: 1397
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    4d7e4eed097b9c4e5d509419f1cfc85a
Sha1:   290bb3d428a7c6330e2e3d73a952b16f820896c8
Sha256: 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6334
Expires: Sun, 27 Nov 2022 00:26:24 GMT
Date: Sat, 26 Nov 2022 22:40:50 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: +pjkQCuK+5scuQEk/+TzN35RJ6icKNbu7Sa0BR/55GoT2jyy8V0QZBwqcTMwXfyxbdtmw508Ng4=
x-amz-request-id: 7NXRCXR18XNSNEDT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 21:44:23 GMT
age: 3387
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    9ebddc2b260d081ebbefee47c037cb28
Sha1:   492bad62a7ca6a74738921ef5ae6f0be5edebf39
Sha256: 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sat, 26 Nov 2022 22:40:50 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 22:11:12 GMT
cache-control: public,max-age=3600
age: 1778
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.comodoca.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         172.64.155.188
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 22:40:51 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 14:38:30 GMT
Expires: Wed, 30 Nov 2022 14:38:29 GMT
Etag: "fbb3ab534c20d29b5fa72df1417d4d3b8cfee8d2"
Cache-Control: max-age=316057,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770620cf1dcbb503-OSL

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2942
Cache-Control: max-age=126902
Date: Sat, 26 Nov 2022 22:40:51 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 09:55:53 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: www.securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-length: 10850
vary: Accept-Encoding,Cookie
cache-control: max-age=3, must-revalidate
content-encoding: gzip
last-modified: Sat, 26 Nov 2022 18:55:47 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Size:   10850
Md5:    fc7df41f06179a64b4696c2b4dd3015c
Sha1:   b75cc8ec20a5cb9e62836301fa56121eb6fe6a42
Sha256: 5c5b18ecc9eef6e6e79969c4f2cf65509c60e2f175db77a28f300af176d70498
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sat, 26 Nov 2022 22:40:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /wp-content/themes/so-hello-ch/style.css?ver=5.9.5 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Mon, 25 Apr 2022 18:47:37 GMT
vary: Accept-Encoding
etag: W/"6266ecc9-237"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   785
Md5:    2d96f387adca77fa90a47a27b5386436
Sha1:   7e4b466c4e89d96241979d2b694dabeea71032f1
Sha256: 77f4286868a5f8b7a0662e8b953147dc7b868056b7cf364a19e5fbf100c4fbf5
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DR0mEyAkhW7uZWMIOHLMRg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.148.53.106
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5tjGNl8NSH+rPwopg0DaBSJ/+zA=

                                        
                                            GET /wp-content/uploads/elementor/thumbs/SecuredOffers-logo-poz30s655phgrjogxvubyfvgqjfopczlzg1noe77k0.png HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-length: 4650
last-modified: Wed, 18 May 2022 01:10:10 GMT
etag: "62844772-122a"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 239 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size:   4650
Md5:    0e662c4e7b108c6b00091319ea4d9214
Sha1:   b4694ee9b190342d60ec0f6a159957c622b922c4
Sha256: 994eddecfde709969dcf3f402e68dda17d1cebf64a494f0bf2fa55df22ebd6a2
                                        
                                            GET /wp-content/themes/so-hello-ch/images/progress-meter1.jpg HTTP/1.1 
Host: www.securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-length: 21764
last-modified: Thu, 12 May 2022 16:30:19 GMT
etag: "627d361b-5504"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS4 Windows, datetime=2010:04:22 12:47:02], baseline, precision 8, 570x50, components 3\012- data
Size:   21764
Md5:    102f6f90c18f8faa8bcdc5602b46d6d2
Sha1:   ab07a68f92dc713440adc518a88917973e75420e
Sha256: 46437f911962ba205b44d3e6252002a27916df5e28eba808aafdc116ea06a558
                                        
                                            GET /wp-content/uploads/2022/05/SecuredOffers-45px-wht-1.png HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: image/png
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-length: 3280
last-modified: Wed, 18 May 2022 01:13:48 GMT
etag: "6284484c-cd0"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 179 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size:   3280
Md5:    dc8046223f44961eabc556b418456355
Sha1:   5cc58f5d27acacbeb2adf10dcf334aede8e7bbba
Sha256: 0f879e845736f9e93a2ce26a79cb200728639ef877cce84eb14b511897577dc6
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-e238"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (57726)
Size:   13083
Md5:    5a0941362525fc2bd7945fbd06be26d0
Sha1:   fbfd3773bc5a5c2729efbc110328b9c29103cdff
Sha256: 6471f5fc14309ea273747ebd916400e73d10d26ec0d3678838aafad039992a38
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-15db1"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   32417
Md5:    c1dedbbf32d0b742060ac63e83e942b3
Sha1:   4863ec5ec78eb625c1eabe40f83ea28f35ba6a4c
Sha256: 84321476215eade021925a7bbf158452394c3079a28af9575007552a7f801af3
                                        
                                            GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 270403
last-modified: Wed, 11 May 2022 19:24:48 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size:   15744
Md5:    15d9f621c3bd1599f0169dcf0bd5e63e
Sha1:   7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Wed, 19 Oct 2022 19:38:14 GMT
vary: Accept-Encoding
etag: W/"63505226-26d1"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (9937), with no line terminators
Size:   3420
Md5:    e895b5d99f987aa639f30dc56278839d
Sha1:   72c43e0126dcb31b527b793cab02bf451800a236
Sha256: 2297d1d31b8b67ae2181e1d886cf5ad8bfbed936450bae95293325a1837b7718
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-2a3"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (489)
Size:   16221
Md5:    d763d44305be79bc0ba5bda2edd9aaee
Sha1:   261d87f18b3f473fbe6b4b7964060d6fd5a4d818
Sha256: d3cbdf58e154f1721d71775f44c219149eef29c6be4652d438d98ae3f1b6208b
                                        
                                            GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-19538"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65497)
Size:   29581
Md5:    e42ce46e25e9e948e41e1e8dbecff743
Sha1:   b90e4fc6176b945eb60888ba349813448d69e838
Sha256: ec8f9b11393933c1c6e76902a2afaecbaaafa0e412b1c24543cbb1e4b52477f8
                                        
                                            GET /wp-content/uploads/elementor/css/post-247.css?ver=1652824432 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-9ed"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (2541), with no line terminators
Size:   1061
Md5:    179549f0309c2f88f8384e46055e48b1
Sha1:   23f524aab3538cf92e64067c53e845d18516d125
Sha256: 0c5242e9302f2ab71d5594c89da4d60537505773435e79149f389befd9594246
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-length: 78196
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-13174"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size:   78196
Md5:    e8a427e15cc502bef99cfd722b37ea98
Sha1:   a9922842a120a7f1eaced667480c5e185a106d69
Sha256: d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: font/woff2
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-length: 76764
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
etag: "637144a1-12bdc"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Size:   76764
Md5:    f7307680c7fe85959f3ecf122493ea7d
Sha1:   fce0da592a3e536d6d5df5b50cb513398d8c5161
Sha256: 43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
                                        
                                            GET /wp-content/uploads/elementor/css/global.css?ver=1652824432 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-9ab3"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (14692)
Size:   16205
Md5:    ab9b5c1ddc1750bddd9b80542efd87d5
Sha1:   5a04f832df5b4a1f991eb8330faeadb68ef81e5c
Sha256: 02952a065e066cb8eb3a7a5fcb81ac9ea819dbfa62b7ff86365e8b5caf1e00b8
                                        
                                            GET /wp-content/uploads/2022/05/domains.jpg HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-length: 27930
last-modified: Tue, 17 May 2022 16:56:22 GMT
etag: "6283d3b6-6d1a"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, description=Domain name concept flat tiny person vector illustration. Stylized abstract web address registry scene with top level names. Co], progressive, precision 8, 612x320, components 3\012- data
Size:   27930
Md5:    5ad2c1b6f75f025b84d05319b35a202b
Sha1:   54c239ef71cfd6d8244a6d643acf8f4f47223cf6
Sha256: 5570360609e201d4439eac9707eef2818c4ff08256f261d207de67819713fe1b
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-2a5"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (491)
Size:   90360
Md5:    ce416fd83885eaa0aef9c17c6c71ead1
Sha1:   a24c8fd3501ff64bd28f0847d652d5cccfd24451
Sha256: 7b3bf320bb78325bbd9bf3f88d2bc91da6e5005beae8a8e65f12838adc201f6c
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: font/woff
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-length: 16276
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-3f94"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 16276, version 331.-31261\012- data
Size:   16276
Md5:    7124eb50fc8227c78269f2d995637ff5
Sha1:   d33d8b5b15b7bba2cc17190dc685fe0a76d2989e
Sha256: 14c9db4ff87fde08f67b0a69dd594bab6d87174812a0dbd34c59833bfed8cc0e
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: font/woff
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-length: 101652
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-18d14"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 101652, version 331.-31261\012- data
Size:   99772
Md5:    7eb8807d1e81457ec1fc2096b9428880
Sha1:   1d29e076310dbbca567cba8cd11554b2a96925c8
Sha256: 9ebd17563ff3727daa1bf7ce5ba2e8c7e263200c1b45d84ee33a97f07838833d
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-length: 202744
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-317f8"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh\012- data
Size:   202744
Md5:    605ed7926cf39a2ad5ec2d1f9d391d3d
Sha1:   c1b9fae262f42868c075ac865a8ab34920e20a2c
Sha256: 3d06af1f31cd83ace7a265a014b8fb5dee15770ecac8f7a55555190e627e03c2
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-length: 134040
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-20b98"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh\012- data
Size:   134040
Md5:    3b89dd103490708d19a95adcae52210e
Sha1:   3fa2d67cef22da5c3f3eb5730c6afbd6fecf0372
Sha256: 06f4d00923ea24697df5df0b92984175991d8bd25776a02d531bb401e393ec42
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-4b4f"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (19233)
Size:   37554
Md5:    a0848baa9a75fd7b4409601cdc3ebef7
Sha1:   52f2362c0c47f54248db812db594c653f462e6ef
Sha256: 0479a88918aba9d4687e41cb4835616fc2a45d9df7070c8eae4905a917a73235
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.4432c50d0d1f64da9d7c.bundle.min.js HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
last-modified: Tue, 17 May 2022 17:17:58 GMT
vary: Accept-Encoding
etag: W/"6283d8c6-cac"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3201)
Size:   94627
Md5:    b374e40be417075f824ebfeadbae0515
Sha1:   759a9c0ae3f3ed0b03f1900f47fa12d4a210a0f7
Sha256: 17acb7403d69869c553ed3cba793ef714310cedb743ca5a61f8da85a1a67d144
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff?5.16.0 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: font/woff
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-length: 114280
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
etag: "637144a1-1be68"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 114280, version 1.0\012- data
Size:   114280
Md5:    7d9e85ea4d03fa493502980a31a2006c
Sha1:   a319cc9448cd00fc77c447fed281dc66b1c6ac7c
Sha256: 76dba545735324a48b09747baf7a9a75460cd7d13b6c2e82149950e1dadc948c
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.ttf?5.16.0 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/octet-stream
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-length: 211480
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
etag: "637144a1-33a18"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  TrueType Font data, 15 tables, 1st "GSUB", 18 names, Macintosh, Copyright (C) 2022 by original authors @ fontello.comeiconsRegulareiconseiconsVersion 1.0eiconsG\012- data
Size:   211480
Md5:    1b791c461a855e214fecb9bb8ac7adcc
Sha1:   ae304e20e417e1c518e9618805f30a25c7b12da8
Sha256: d87513d7500fd2bffc38768fffbe678c6d72762654482fa9e30b1ae263693dbf
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14960
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:40:52 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14960
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:40:52 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14960
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:40:52 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a7e16e2-9f5f-4739-817a-8a5447d80ee4.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9549
x-amzn-requestid: b99fc256-bdbd-4e59-bdec-b3f453cdfaac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-50OFDDIAMFr1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c3ce7-75bc0aba74d71992450b11cb;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 03:07:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VOzEGsb5YWPA9-k63Jsb1Ejw9qoHfkH84GtbM2s7evsvv53iuh3Lug==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:55:30 GMT
age: 2722
etag: "7b0d859df11485329882daddcdd8ca85a1010e56"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9549
Md5:    099add42d39565e1a14ba60a61261a8d
Sha1:   7b0d859df11485329882daddcdd8ca85a1010e56
Sha256: 01a81962c06247835668581bcdd337320c62ba2121e94570f663396b6647c2b1
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-612f"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (24836)
Size:   10906
Md5:    311904f6dcd353d1e3ea5b660159c04c
Sha1:   c1a4e98675dbcb57371887609167b6c8b65f588e
Sha256: 2d5f5928d0fa4a1076896b75f9cd5586cae757ae09b7f02ba9874444502b7db0
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
vary: Accept-Encoding
etag: W/"637144a2-9e41"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (40474)
Size:   21635
Md5:    86df69f94fac1d2119d98c09fd0a482d
Sha1:   b196a1cd95beefa729319eeb62519d41c49bc807
Sha256: 34556f02b5ed9c7d7589366733dffb1043ac17cee474b2141da80608f5539881
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaab9de7-1f50-401c-bd84-6bcd72fb53d1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8335
x-amzn-requestid: 3f1c7be1-6140-4fa1-a891-4cb9428436a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBcY9FARIAMFzXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d4105-0b84411938fe706d2d48751c;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 21:37:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RqL5rR_zx78-4MFOH8ObPPDTV_qwTP0w1DHrxxPFfJSOeR5jYQsGQg==
via: 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 01:04:08 GMT
age: 77804
etag: "b298107232e837ccf8d853e6d2c91f67e74dc2ba"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8335
Md5:    c52c26038ed572c870cf2119865907b1
Sha1:   b298107232e837ccf8d853e6d2c91f67e74dc2ba
Sha256: d95471f66cf6404bfb5400c4c707fbb81bcaf4be1518313d3f513c9b2a3da1fd
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8817
x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJ40OEOqIAMFaOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 10:16:33 GMT
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
age: 44659
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8817
Md5:    741ddfb19764ac9a77509e7e87cfbfb2
Sha1:   308c08784ce4a0757cbd112807555b83e17a1d56
Sha256: e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
age: 3518
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4803
Md5:    cc0a257323f882caff067adb86d906e4
Sha1:   cedf2f21be7cd366bd46055b62b5513db3011dfc
Sha256: c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
                                        
                                            GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 10 May 2022 22:21:21 GMT
vary: Accept-Encoding
etag: W/"627ae561-145db"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.5.0 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Fri, 18 Mar 2022 13:04:12 GMT
vary: Accept-Encoding
etag: W/"6234834c-3bf2"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-6272"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 10 May 2022 22:21:24 GMT
vary: Accept-Encoding
etag: W/"627ae564-195e"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-ca4"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-2fa6"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Wed, 19 Oct 2022 19:38:14 GMT
vary: Accept-Encoding
etag: W/"63505226-3016"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Sun, 13 Nov 2022 19:25:23 GMT
vary: Accept-Encoding
etag: W/"637144a3-80b3"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/elementor/css/post-138.css?ver=1652824432 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-fe5"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/elementor/css/post-290.css?ver=1652836510 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Wed, 18 May 2022 01:15:10 GMT
vary: Accept-Encoding
etag: W/"6284489e-579"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-72cb"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 10 May 2022 22:21:24 GMT
vary: Accept-Encoding
etag: W/"627ae564-163a"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/elementor/css/post-129.css?ver=1652824431 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 17 May 2022 21:53:51 GMT
vary: Accept-Encoding
etag: W/"6284196f-77c"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-2c8d"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/elementor/css/post-158.css?ver=1652824432 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-2061"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
vary: Accept-Encoding
etag: W/"637144a2-135d"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 10 May 2022 22:21:23 GMT
vary: Accept-Encoding
etag: W/"627ae563-28a7"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 10 May 2022 22:21:25 GMT
vary: Accept-Encoding
etag: W/"627ae565-50ea"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Wed, 19 Oct 2022 19:38:14 GMT
vary: Accept-Encoding
etag: W/"63505226-aab"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/hello-elementor/style.min.css?ver=2.5.0 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Fri, 18 Mar 2022 13:04:12 GMT
vary: Accept-Encoding
etag: W/"6234834c-16cf"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-2bd8"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-1429"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
last-modified: Sun, 13 Nov 2022 19:25:23 GMT
vary: Accept-Encoding
etag: W/"637144a3-54f"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-29d"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-4705"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Fri, 18 Mar 2022 13:04:12 GMT
vary: Accept-Encoding
etag: W/"6234834c-c29"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 10 May 2022 22:21:24 GMT
vary: Accept-Encoding
etag: W/"627ae564-4b3d"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 22:40:51 GMT
date: Sat, 26 Nov 2022 22:40:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1 HTTP/1.1 
Host: securedoffers.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

search
                                         199.250.195.40
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-522a"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---