r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5484
Expires: Sun, 27 Nov 2022 00:12:14 GMT
Date: Sat, 26 Nov 2022 22:40:50 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1709
Cache-Control: max-age=130727
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:40:50 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 10:59:37 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
www.lfs.com/mtm/direct/.eJxdikEOwiAQRe8yy0oYl1rjWcyETIUECsIYSBrv7thd3b3_3t_gXQPMgGCA6rMpKlVeuHLV4UXKjNh7t3Fp1uWk2ecmj5US6-FYyDkuolp4CHpJ0VApMTiSkFccP3Ma_zbF2-t-tlcz4bTTBT5fC1gyyQ:1oz3qa:MUNZ0F7uOeSGOjjndk3M1RgxhpE/2
45.33.30.197302 Found 0 B URL HTTP/1.1 www.lfs.com/mtm/direct/.eJxdikEOwiAQRe8yy0oYl1rjWcyETIUECsIYSBrv7thd3b3_3t_gXQPMgGCA6rMpKlVeuHLV4UXKjNh7t3Fp1uWk2ecmj5US6-FYyDkuolp4CHpJ0VApMTiSkFccP3Ma_zbF2-t-tlcz4bTTBT5fC1gyyQ:1oz3qa:MUNZ0F7uOeSGOjjndk3M1RgxhpE/2
IP 45.33.30.197:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Malware
GET /mtm/direct/.eJxdikEOwiAQRe8yy0oYl1rjWcyETIUECsIYSBrv7thd3b3_3t_gXQPMgGCA6rMpKlVeuHLV4UXKjNh7t3Fp1uWk2ecmj5US6-FYyDkuolp4CHpJ0VApMTiSkFccP3Ma_zbF2-t-tlcz4bTTBT5fC1gyyQ:1oz3qa:MUNZ0F7uOeSGOjjndk3M1RgxhpE/2 HTTP/1.1
Host: www.lfs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Sat, 26 Nov 2022 22:40:50 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://www.securedoffers.com/
x-mtm-path: 0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJ3d3cubGZzLmNvbSIsImh0dHBzOi8vd3d3LnNlY3VyZWRvZmZlcnMuY29tLyIsMSwiMjAyMi0xMS0yNiAyMjo0MDo1MCIsMSwiMTY2OTUwMjQ1MC4wNDA1NTcwMDAwIiwyMDIsbnVsbCxudWxsXQ:1oz3qs:KgHbGWady5i9Sx4pWzEGOzWg2iM; expires=Sat, 26-Nov-2022 23:40:50 GMT; Max-Age=3600; Path=/
connection: close
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 22:17:33 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1397
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6334
Expires: Sun, 27 Nov 2022 00:26:24 GMT
Date: Sat, 26 Nov 2022 22:40:50 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: +pjkQCuK+5scuQEk/+TzN35RJ6icKNbu7Sa0BR/55GoT2jyy8V0QZBwqcTMwXfyxbdtmw508Ng4=
x-amz-request-id: 7NXRCXR18XNSNEDT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 21:44:23 GMT
age: 3387
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:40:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 22:11:12 GMT
cache-control: public,max-age=3600
age: 1778
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.comodoca.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash e4394ca6c9bac39eed67b1302c108cd4
fbb3ab534c20d29b5fa72df1417d4d3b8cfee8d2
ebc4eff73e3e3c571336c2f405bfe023f17afb82e01c2adfafbd9b817654d0ed
POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:40:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 14:38:30 GMT
Expires: Wed, 30 Nov 2022 14:38:29 GMT
Etag: "fbb3ab534c20d29b5fa72df1417d4d3b8cfee8d2"
Cache-Control: max-age=316057,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770620cf1dcbb503-OSL
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2942
Cache-Control: max-age=126902
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:40:51 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 09:55:53 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
www.securedoffers.com/
199.250.195.40200 OK 11 kB IP 199.250.195.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Hash fc7df41f06179a64b4696c2b4dd3015c
b75cc8ec20a5cb9e62836301fa56121eb6fe6a42
5c5b18ecc9eef6e6e79969c4f2cf65509c60e2f175db77a28f300af176d70498
GET / HTTP/1.1
Host: www.securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/html; charset=UTF-8
content-length: 10850
vary: Accept-Encoding,Cookie
cache-control: max-age=3, must-revalidate
content-encoding: gzip
last-modified: Sat, 26 Nov 2022 18:55:47 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:40:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
securedoffers.com/wp-content/themes/so-hello-ch/style.css?ver=5.9.5
199.250.195.40200 OK 785 B URL HTTP/2 securedoffers.com/wp-content/themes/so-hello-ch/style.css?ver=5.9.5
IP 199.250.195.40:0
Hash 2d96f387adca77fa90a47a27b5386436
7e4b466c4e89d96241979d2b694dabeea71032f1
77f4286868a5f8b7a0662e8b953147dc7b868056b7cf364a19e5fbf100c4fbf5
GET /wp-content/themes/so-hello-ch/style.css?ver=5.9.5 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Mon, 25 Apr 2022 18:47:37 GMT
vary: Accept-Encoding
etag: W/"6266ecc9-237"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.148.53.106101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.53.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DR0mEyAkhW7uZWMIOHLMRg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5tjGNl8NSH+rPwopg0DaBSJ/+zA=
securedoffers.com/wp-content/uploads/elementor/thumbs/SecuredOffers-logo-poz30s655phgrjogxvubyfvgqjfopczlzg1noe77k0.png
199.250.195.40200 OK 4.7 kB URL HTTP/2 securedoffers.com/wp-content/uploads/elementor/thumbs/SecuredOffers-logo-poz30s655phgrjogxvubyfvgqjfopczlzg1noe77k0.png
IP 199.250.195.40:0
File type PNG image data, 239 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash 0e662c4e7b108c6b00091319ea4d9214
b4694ee9b190342d60ec0f6a159957c622b922c4
994eddecfde709969dcf3f402e68dda17d1cebf64a494f0bf2fa55df22ebd6a2
GET /wp-content/uploads/elementor/thumbs/SecuredOffers-logo-poz30s655phgrjogxvubyfvgqjfopczlzg1noe77k0.png HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: image/png
content-length: 4650
last-modified: Wed, 18 May 2022 01:10:10 GMT
etag: "62844772-122a"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
www.securedoffers.com/wp-content/themes/so-hello-ch/images/progress-meter1.jpg
199.250.195.40200 OK 22 kB URL HTTP/2 www.securedoffers.com/wp-content/themes/so-hello-ch/images/progress-meter1.jpg
IP 199.250.195.40:0
File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS4 Windows, datetime=2010:04:22 12:47:02], baseline, precision 8, 570x50, components 3\012- data
Hash 102f6f90c18f8faa8bcdc5602b46d6d2
ab07a68f92dc713440adc518a88917973e75420e
46437f911962ba205b44d3e6252002a27916df5e28eba808aafdc116ea06a558
GET /wp-content/themes/so-hello-ch/images/progress-meter1.jpg HTTP/1.1
Host: www.securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: image/jpeg
content-length: 21764
last-modified: Thu, 12 May 2022 16:30:19 GMT
etag: "627d361b-5504"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
securedoffers.com/wp-content/uploads/2022/05/SecuredOffers-45px-wht-1.png
199.250.195.40200 OK 3.3 kB URL HTTP/2 securedoffers.com/wp-content/uploads/2022/05/SecuredOffers-45px-wht-1.png
IP 199.250.195.40:0
File type PNG image data, 179 x 45, 8-bit/color RGBA, non-interlaced\012- data
Hash dc8046223f44961eabc556b418456355
5cc58f5d27acacbeb2adf10dcf334aede8e7bbba
0f879e845736f9e93a2ce26a79cb200728639ef877cce84eb14b511897577dc6
GET /wp-content/uploads/2022/05/SecuredOffers-45px-wht-1.png HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: image/png
content-length: 3280
last-modified: Wed, 18 May 2022 01:13:48 GMT
etag: "6284484c-cd0"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
199.250.195.40200 OK 13 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP 199.250.195.40:0
File type ASCII text, with very long lines (57726)
Hash 5a0941362525fc2bd7945fbd06be26d0
fbfd3773bc5a5c2729efbc110328b9c29103cdff
6471f5fc14309ea273747ebd916400e73d10d26ec0d3678838aafad039992a38
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-e238"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
199.250.195.40200 OK 32 kB URL HTTP/2 securedoffers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 199.250.195.40:0
File type ASCII text, with very long lines (65447)
Hash c1dedbbf32d0b742060ac63e83e942b3
4863ec5ec78eb625c1eabe40f83ea28f35ba6a4c
84321476215eade021925a7bbf158452394c3079a28af9575007552a7f801af3
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-15db1"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.195200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 270403
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
199.250.195.40200 OK 3.4 kB URL HTTP/2 securedoffers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP 199.250.195.40:0
File type ASCII text, with very long lines (9937), with no line terminators
Hash e895b5d99f987aa639f30dc56278839d
72c43e0126dcb31b527b793cab02bf451800a236
2297d1d31b8b67ae2181e1d886cf5ad8bfbed936450bae95293325a1837b7718
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 19:38:14 GMT
vary: Accept-Encoding
etag: W/"63505226-26d1"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
199.250.195.40200 OK 16 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP 199.250.195.40:0
File type ASCII text, with very long lines (489)
Hash d763d44305be79bc0ba5bda2edd9aaee
261d87f18b3f473fbe6b4b7964060d6fd5a4d818
d3cbdf58e154f1721d71775f44c219149eef29c6be4652d438d98ae3f1b6208b
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-2a3"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
199.250.195.40200 OK 30 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
IP 199.250.195.40:0
File type ASCII text, with very long lines (65497)
Hash e42ce46e25e9e948e41e1e8dbecff743
b90e4fc6176b945eb60888ba349813448d69e838
ec8f9b11393933c1c6e76902a2afaecbaaafa0e412b1c24543cbb1e4b52477f8
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-19538"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/uploads/elementor/css/post-247.css?ver=1652824432
199.250.195.40200 OK 1.1 kB URL HTTP/2 securedoffers.com/wp-content/uploads/elementor/css/post-247.css?ver=1652824432
IP 199.250.195.40:0
File type ASCII text, with very long lines (2541), with no line terminators
Hash 179549f0309c2f88f8384e46055e48b1
23f524aab3538cf92e64067c53e845d18516d125
0c5242e9302f2ab71d5594c89da4d60537505773435e79149f389befd9594246
GET /wp-content/uploads/elementor/css/post-247.css?ver=1652824432 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-9ed"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
199.250.195.40200 OK 78 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP 199.250.195.40:0
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: font/woff2
content-length: 78196
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-13174"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
199.250.195.40200 OK 77 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP 199.250.195.40:0
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: font/woff2
content-length: 76764
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
etag: "637144a1-12bdc"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
securedoffers.com/wp-content/uploads/elementor/css/global.css?ver=1652824432
199.250.195.40200 OK 16 kB URL HTTP/2 securedoffers.com/wp-content/uploads/elementor/css/global.css?ver=1652824432
IP 199.250.195.40:0
File type ASCII text, with very long lines (14692)
Hash ab9b5c1ddc1750bddd9b80542efd87d5
5a04f832df5b4a1f991eb8330faeadb68ef81e5c
02952a065e066cb8eb3a7a5fcb81ac9ea819dbfa62b7ff86365e8b5caf1e00b8
GET /wp-content/uploads/elementor/css/global.css?ver=1652824432 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-9ab3"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/uploads/2022/05/domains.jpg
199.250.195.40200 OK 28 kB URL HTTP/2 securedoffers.com/wp-content/uploads/2022/05/domains.jpg
IP 199.250.195.40:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, description=Domain name concept flat tiny person vector illustration. Stylized abstract web address registry scene with top level names. Co], progressive, precision 8, 612x320, components 3\012- data
Hash 5ad2c1b6f75f025b84d05319b35a202b
54c239ef71cfd6d8244a6d643acf8f4f47223cf6
5570360609e201d4439eac9707eef2818c4ff08256f261d207de67819713fe1b
GET /wp-content/uploads/2022/05/domains.jpg HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: image/jpeg
content-length: 27930
last-modified: Tue, 17 May 2022 16:56:22 GMT
etag: "6283d3b6-6d1a"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
199.250.195.40200 OK 90 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP 199.250.195.40:0
File type ASCII text, with very long lines (491)
Hash ce416fd83885eaa0aef9c17c6c71ead1
a24c8fd3501ff64bd28f0847d652d5cccfd24451
7b3bf320bb78325bbd9bf3f88d2bc91da6e5005beae8a8e65f12838adc201f6c
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-2a5"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff
199.250.195.40200 OK 16 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff
IP 199.250.195.40:0
File type Web Open Font Format, TrueType, length 16276, version 331.-31261\012- data
Hash 7124eb50fc8227c78269f2d995637ff5
d33d8b5b15b7bba2cc17190dc685fe0a76d2989e
14c9db4ff87fde08f67b0a69dd594bab6d87174812a0dbd34c59833bfed8cc0e
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: font/woff
content-length: 16276
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-3f94"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff
199.250.195.40200 OK 100 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff
IP 199.250.195.40:0
File type Web Open Font Format, TrueType, length 101652, version 331.-31261\012- data
Hash 7eb8807d1e81457ec1fc2096b9428880
1d29e076310dbbca567cba8cd11554b2a96925c8
9ebd17563ff3727daa1bf7ce5ba2e8c7e263200c1b45d84ee33a97f07838833d
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: font/woff
content-length: 101652
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-18d14"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf
199.250.195.40200 OK 203 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf
IP 199.250.195.40:0
File type TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh\012- data
Size 203 kB (202744 bytes)
Hash 605ed7926cf39a2ad5ec2d1f9d391d3d
c1b9fae262f42868c075ac865a8ab34920e20a2c
3d06af1f31cd83ace7a265a014b8fb5dee15770ecac8f7a55555190e627e03c2
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-type: application/octet-stream
content-length: 202744
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-317f8"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf
199.250.195.40200 OK 134 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf
IP 199.250.195.40:0
File type TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh\012- data
Size 134 kB (134040 bytes)
Hash 3b89dd103490708d19a95adcae52210e
3fa2d67cef22da5c3f3eb5730c6afbd6fecf0372
06f4d00923ea24697df5df0b92984175991d8bd25776a02d531bb401e393ec42
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-type: application/octet-stream
content-length: 134040
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-20b98"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
199.250.195.40200 OK 38 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 199.250.195.40:0
File type ASCII text, with very long lines (19233)
Hash a0848baa9a75fd7b4409601cdc3ebef7
52f2362c0c47f54248db812db594c653f462e6ef
0479a88918aba9d4687e41cb4835616fc2a45d9df7070c8eae4905a917a73235
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-4b4f"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.4432c50d0d1f64da9d7c.bundle.min.js
199.250.195.40200 OK 95 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.4432c50d0d1f64da9d7c.bundle.min.js
IP 199.250.195.40:0
File type ASCII text, with very long lines (3201)
Hash b374e40be417075f824ebfeadbae0515
759a9c0ae3f3ed0b03f1900f47fa12d4a210a0f7
17acb7403d69869c553ed3cba793ef714310cedb743ca5a61f8da85a1a67d144
GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.4432c50d0d1f64da9d7c.bundle.min.js HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:58 GMT
vary: Accept-Encoding
etag: W/"6283d8c6-cac"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff?5.16.0
199.250.195.40200 OK 114 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff?5.16.0
IP 199.250.195.40:0
File type Web Open Font Format, TrueType, length 114280, version 1.0\012- data
Size 114 kB (114280 bytes)
Hash 7d9e85ea4d03fa493502980a31a2006c
a319cc9448cd00fc77c447fed281dc66b1c6ac7c
76dba545735324a48b09747baf7a9a75460cd7d13b6c2e82149950e1dadc948c
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff?5.16.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-type: font/woff
content-length: 114280
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
etag: "637144a1-1be68"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.ttf?5.16.0
199.250.195.40200 OK 212 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.ttf?5.16.0
IP 199.250.195.40:0
File type TrueType Font data, 15 tables, 1st "GSUB", 18 names, Macintosh, Copyright (C) 2022 by original authors @ fontello.comeiconsRegulareiconseiconsVersion 1.0eiconsG\012- data
Size 212 kB (211480 bytes)
Hash 1b791c461a855e214fecb9bb8ac7adcc
ae304e20e417e1c518e9618805f30a25c7b12da8
d87513d7500fd2bffc38768fffbe678c6d72762654482fa9e30b1ae263693dbf
GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.ttf?5.16.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-type: application/octet-stream
content-length: 211480
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
etag: "637144a1-33a18"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14960
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:40:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14960
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:40:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14960
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:40:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a7e16e2-9f5f-4739-817a-8a5447d80ee4.png
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a7e16e2-9f5f-4739-817a-8a5447d80ee4.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 099add42d39565e1a14ba60a61261a8d
7b0d859df11485329882daddcdd8ca85a1010e56
01a81962c06247835668581bcdd337320c62ba2121e94570f663396b6647c2b1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a7e16e2-9f5f-4739-817a-8a5447d80ee4.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9549
x-amzn-requestid: b99fc256-bdbd-4e59-bdec-b3f453cdfaac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-50OFDDIAMFr1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c3ce7-75bc0aba74d71992450b11cb;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 03:07:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VOzEGsb5YWPA9-k63Jsb1Ejw9qoHfkH84GtbM2s7evsvv53iuh3Lug==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:55:30 GMT
age: 2722
etag: "7b0d859df11485329882daddcdd8ca85a1010e56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1
199.250.195.40200 OK 11 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1
IP 199.250.195.40:0
File type ASCII text, with very long lines (24836)
Hash 311904f6dcd353d1e3ea5b660159c04c
c1a4e98675dbcb57371887609167b6c8b65f588e
2d5f5928d0fa4a1076896b75f9cd5586cae757ae09b7f02ba9874444502b7db0
GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-612f"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
199.250.195.40200 OK 22 kB URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP 199.250.195.40:0
File type ASCII text, with very long lines (40474)
Hash 86df69f94fac1d2119d98c09fd0a482d
b196a1cd95beefa729319eeb62519d41c49bc807
34556f02b5ed9c7d7589366733dffb1043ac17cee474b2141da80608f5539881
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
vary: Accept-Encoding
etag: W/"637144a2-9e41"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaab9de7-1f50-401c-bd84-6bcd72fb53d1.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaab9de7-1f50-401c-bd84-6bcd72fb53d1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c52c26038ed572c870cf2119865907b1
b298107232e837ccf8d853e6d2c91f67e74dc2ba
d95471f66cf6404bfb5400c4c707fbb81bcaf4be1518313d3f513c9b2a3da1fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaab9de7-1f50-401c-bd84-6bcd72fb53d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8335
x-amzn-requestid: 3f1c7be1-6140-4fa1-a891-4cb9428436a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBcY9FARIAMFzXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d4105-0b84411938fe706d2d48751c;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 21:37:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RqL5rR_zx78-4MFOH8ObPPDTV_qwTP0w1DHrxxPFfJSOeR5jYQsGQg==
via: 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 01:04:08 GMT
age: 77804
etag: "b298107232e837ccf8d853e6d2c91f67e74dc2ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJ40OEOqIAMFaOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 10:16:33 GMT
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
age: 44659
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
age: 3518
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
securedoffers.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP 199.250.195.40:0
GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 10 May 2022 22:21:21 GMT
vary: Accept-Encoding
etag: W/"627ae561-145db"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.5.0
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.5.0
IP 199.250.195.40:0
GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.5.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Fri, 18 Mar 2022 13:04:12 GMT
vary: Accept-Encoding
etag: W/"6234834c-3bf2"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP 199.250.195.40:0
GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-6272"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 199.250.195.40:0
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:24 GMT
vary: Accept-Encoding
etag: W/"627ae564-195e"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1
IP 199.250.195.40:0
GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-ca4"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 199.250.195.40:0
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-2fa6"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP 199.250.195.40:0
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 19:38:14 GMT
vary: Accept-Encoding
etag: W/"63505226-3016"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP 199.250.195.40:0
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 19:25:23 GMT
vary: Accept-Encoding
etag: W/"637144a3-80b3"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/uploads/elementor/css/post-138.css?ver=1652824432
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/uploads/elementor/css/post-138.css?ver=1652824432
IP 199.250.195.40:0
GET /wp-content/uploads/elementor/css/post-138.css?ver=1652824432 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-fe5"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/uploads/elementor/css/post-290.css?ver=1652836510
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/uploads/elementor/css/post-290.css?ver=1652836510
IP 199.250.195.40:0
GET /wp-content/uploads/elementor/css/post-290.css?ver=1652836510 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 01:15:10 GMT
vary: Accept-Encoding
etag: W/"6284489e-579"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
IP 199.250.195.40:0
GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-72cb"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c
IP 199.250.195.40:0
GET /wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:24 GMT
vary: Accept-Encoding
etag: W/"627ae564-163a"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/uploads/elementor/css/post-129.css?ver=1652824431
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/uploads/elementor/css/post-129.css?ver=1652824431
IP 199.250.195.40:0
GET /wp-content/uploads/elementor/css/post-129.css?ver=1652824431 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:51 GMT
vary: Accept-Encoding
etag: W/"6284196f-77c"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1
IP 199.250.195.40:0
GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-2c8d"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/uploads/elementor/css/post-158.css?ver=1652824432
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/uploads/elementor/css/post-158.css?ver=1652824432
IP 199.250.195.40:0
GET /wp-content/uploads/elementor/css/post-158.css?ver=1652824432 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-2061"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP 199.250.195.40:0
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
vary: Accept-Encoding
etag: W/"637144a2-135d"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834
IP 199.250.195.40:0
GET /wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:23 GMT
vary: Accept-Encoding
etag: W/"627ae563-28a7"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 199.250.195.40:0
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:25 GMT
vary: Accept-Encoding
etag: W/"627ae565-50ea"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP 199.250.195.40:0
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 19:38:14 GMT
vary: Accept-Encoding
etag: W/"63505226-aab"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/themes/hello-elementor/style.min.css?ver=2.5.0
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/themes/hello-elementor/style.min.css?ver=2.5.0
IP 199.250.195.40:0
GET /wp-content/themes/hello-elementor/style.min.css?ver=2.5.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Fri, 18 Mar 2022 13:04:12 GMT
vary: Accept-Encoding
etag: W/"6234834c-16cf"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 199.250.195.40:0
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-2bd8"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1
IP 199.250.195.40:0
GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-1429"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP 199.250.195.40:0
GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 19:25:23 GMT
vary: Accept-Encoding
etag: W/"637144a3-54f"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP 199.250.195.40:0
GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-29d"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP 199.250.195.40:0
GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-4705"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
IP 199.250.195.40:0
GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Fri, 18 Mar 2022 13:04:12 GMT
vary: Accept-Encoding
etag: W/"6234834c-c29"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
securedoffers.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 199.250.195.40:0
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:24 GMT
vary: Accept-Encoding
etag: W/"627ae564-4b3d"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5
IP 142.250.74.10:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 22:40:51 GMT
date: Sat, 26 Nov 2022 22:40:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1
199.250.195.40200 OK 0 B URL HTTP/2 securedoffers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1
IP 199.250.195.40:0
GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-522a"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2