Report - www.lfs.com/mtm/direct/.eJxdikEOwiAQRe8yy0oYl1rjWcyETIUECsIYSBrv7thd3b3_3t_gXQPMgGCA6rMpKlVeuHLV4UXKjNh7t3Fp1uWk2ecmj5US6-FYyDkuolp4CHpJ0VApMTiSkFccP3Ma_zbF2-t-tlcz4bTTBT5fC1gyyQ:1oz3qa:MUNZ0F7uOeSGOjjndk3M1RgxhpE/2

Report Overview

Submitted URL
www.lfs.com/mtm/direct/.eJxdikEOwiAQRe8yy0oYl1rjWcyETIUECsIYSBrv7thd3b3_3t_gXQPMgGCA6rMpKlVeuHLV4UXKjNh7t3Fp1uWk2ecmj5US6-FYyDkuolp4CHpJ0VApMTiSkFccP3Ma_zbF2-t-tlcz4bTTBT5fC1gyyQ:1oz3qa:MUNZ0F7uOeSGOjjndk3M1RgxhpE/2
IP
72.14.185.43
ASN
#63949 Linode, LLC
Submitted
2022-11-26 22:41:01
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.lfs.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	546 B	539 B	45.33.30.197
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
ocsp.comodoca.com	1696	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	1.0 kB	172.64.155.188
www.securedoffers.com	554495	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	906 B	33 kB	199.250.195.40
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	754 B	746 B	142.250.74.10
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	343 B	700 B	142.250.74.3
securedoffers.com	283463	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	24 kB	1.4 MB	199.250.195.40
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	485 B	17 kB	216.58.207.195
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	36 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.36.77.32
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	54.148.53.106

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-26	medium	www.lfs.com/mtm/direct/.eJxdikEOwiAQRe8yy0oYl1rjWcyETIUECsIYSBrv7thd3b3_3t_gXQPMgGCA6rMpKlVeuHLV4UXKjNh7t3Fp1uWk2ecmj5US6-FYyDkuolp4CHpJ0VApMTiSkFccP3Ma_zbF2-t-tlcz4bTTBT5fC1gyyQ:1oz3qa:MUNZ0F7uOeSGOjjndk3M1RgxhpE/2	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (27)

	URL	Size	First Seen	Last Seen
	securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1	25 kB	2023-03-07	2024-04-18
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-18 15:54:50 Times Seen16552 Hash 046405de007ff73e52d17dab2af75258 887cfb8a9de27005875f6e1c1d1ead43bd0865c8 533e264cc615ee4601da8d2c1dee4a8987319e53d4d7162272f067fbbf250020 Loading...

	securedoffers.com/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834	10 kB	2023-03-07	2024-04-17
Pretty URL securedoffers.com/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-17 22:14:13 Times Seen1025 Hash 67e56dc626cd9e14d5f0cef38d0c36f7 0c03a4781237e2c86248b562b64e78afe3817c42 22c90613db09ef65c964b143e6adbe584b42eae85c9b7a75fa27c22b25cccb90 Loading...

	www.securedoffers.com/	279 B	2023-03-07	2024-04-12
Pretty URL www.securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-04-12 23:52:14 Times Seen278 Hash dabf19248f3f2cc80d164fa6559b2a68 0e04f02870190a5b3b610a99175eb82e8593e592 f46f139eb77f229b9f439e7f3a53a28350ca6fd146bb4f47480f8a01dafc571c Loading...

	securedoffers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-18
Pretty URL securedoffers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-18 15:41:38 Times Seen68483 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	securedoffers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4	9.9 kB	2023-03-08	2024-04-18
Pretty URL securedoffers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-18 12:23:23 Times Seen3132 Hash dc74c9954b1944928eca0172c3b8c6b3 e9e00e587e0e28491b69563b4e768945ff2e0ed5 d7eff2d3185c4035edbe18b653f9da26c2d872e03c92419542ed524d569fe81b Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1	21 kB	2023-03-07	2024-03-19
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-03-19 08:32:36 Times Seen431 Hash 561ea2048817c46dc239b7edec5f079a 91a1cbb8136115d5b84076284e19cea84dd6d6d4 806ea6d54f56778e10fa44bcb14755440cdccaa5f038d570d86a55cc125f9a40 Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js	1.4 kB	2023-03-08	2024-04-15
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-15 22:34:30 Times Seen332 Hash bd7fa9b462b379ac441355772351f14e 5cc11b3af3e31e790cfa0ecf28598f9509cf9e68 4a518bd1723da2b6011895ad68059361ebb4cb80de3eec9145eacee89ddd9745 Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2	12 kB	2023-03-07	2024-04-18
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-18 15:54:50 Times Seen52475 Hash 3819c3569da71daec283a75483735f7e ecd40a5cc6f0b76200c454ca880210dc301cfab8 214674cc77aba35ab3567b88e2739fd08e8e96c61d279559ad61874069683ea0 Loading...

	www.securedoffers.com/	2.4 kB	2023-03-08	2023-03-11
Pretty URL www.securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:02:28 Last Seen2023-03-11 22:42:03 Times Seen1 Hash 0377aeaa5c0314243e40a16742b90338 c3c81fc6ea0bbb9a15d1bcd1feec861e6be1d285 b22c3f89437949a5cbe01ce683da17adfe82693462b7994685503da2caa40b8f Loading...

	securedoffers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0	3.1 kB	2023-03-07	2024-04-11
Pretty URL securedoffers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-04-11 11:10:09 Times Seen842 Hash 991851ce021f42521a9b8c707500d731 d3b7d0a28b0e6a7e0621f78b1ba440b52060cc9c bd29338c097619843470ad38187d0c1754d939b12fa755f4c11f9e53fd46b09f Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1	3.2 kB	2023-03-07	2024-04-07
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-07 11:55:08 Times Seen1119 Hash dbe4b3628220901277c0c4234475e5cb c17291130bc11a7f39ce70fe869bf82946e7be8b 10a2cf3d16091fbc89cc987160b62093515cd31f0762a751775999311c7313f4 Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1	25 kB	2023-03-07	2024-03-19
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-03-19 08:32:36 Times Seen280 Hash 6c2b608374510ba489c3ce67d750729d 79355adad534884fe83689d9960066f98f76acdc 677425edd8f3d80f950d3ed998ca7b8130ff4a014238147e6ba2f73d48d2ce47 Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1	5.2 kB	2023-03-07	2024-03-19
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-03-19 08:32:36 Times Seen383 Hash 40942ae6be8e9f5ce0503968e6304765 a0c40e8952d38a6e58ed93c8ae32938fa9eccaf4 d5286f59b39642363e8242db6560752945adb073358d26f5f688c3b3d77e8c35 Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1	5.0 kB	2023-03-08	2024-04-15
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-15 22:34:30 Times Seen647 Hash 562ad59077018eb139d1f46afd69a050 d33c188f7d0f306b8a0ede1e3b67a0edb7be8966 f6eb858ead7f15dcd18541c5433714e0c0966d81b8d009a2d49e5a181e548fbb Loading...

	securedoffers.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.4432c50d0d1f64da9d7c.bundle.min.js	3.2 kB	2023-03-07	2024-02-20
Pretty URL securedoffers.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.4432c50d0d1f64da9d7c.bundle.min.js IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2024-02-20 05:54:27 Times Seen173 Hash 1faee0cf8e50dae365432dfff61ed18b 99c0cb98febdb25380d5fbf325329d082b6c495d 99b0f93f39b038bc3d2e44b62628b94146345c51b95bcea4a413b015d88bf83a Loading...

	securedoffers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1	21 kB	2023-03-07	2024-04-18
Pretty URL securedoffers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:36 Last Seen2024-04-18 05:49:36 Times Seen2342 Hash e77ef4006bb97c97c8407f4a8abf4e3d 1a27436ff6ef47ca5c3e352b792e50901ebb705e 9d7da1b980a95ff3d31d0bb8733cbabd1d210ec601d15a1aac2b67394a33191d Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1	40 kB	2023-03-08	2024-04-15
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-15 22:34:30 Times Seen724 Hash 2331d602370faa61829c8aa628996c7d e097dda010d924637e9c9f906be7653ae2d29343 5ceb0c2088d29cecbe3ee571dc3cf6fec764bbb7c73f0e22c73007149a2ce68d Loading...

	www.securedoffers.com/	68 B	2023-03-07	2024-04-18
Pretty URL www.securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-18 19:01:08 Times Seen22387 Hash d30f13da1f424ee0383b76edc55881e1 7e348a5f57ab13eedbc4ed917cdeee5bb9f9bd46 cf01a621447e67a81629bc28276677c86c48fd72c44cba83a82448574aadfd60 Loading...

	www.securedoffers.com/	1.2 kB	2023-03-11	2023-03-11
Pretty URL www.securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:59:55 Last Seen2023-03-11 20:59:55 Times Seen1 Hash d19953a1814c2e5a2372fd8f80f3ef2d 0ec4456d22729212b635a16a6ada9d2ac8b9a651 9d17e151b05a1bab6721a1ba15698e3c975fe86623f4dd72eb45fd07d426669e Loading...

	securedoffers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0	90 kB	2023-03-07	2024-04-18
Pretty URL securedoffers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-18 15:41:39 Times Seen31736 Hash 02dd5d04add4759122013c5ab4dc5cc2 a45a56e396ac549b4ff39b696ce9e0c16a7612de bd4de6a3fc0fb68d6f76ba7b93514b96a92e585c295b5351c31ad92a4b0777ea Loading...

	securedoffers.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5	18 kB	2023-03-07	2024-04-18
Pretty URL securedoffers.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-18 11:53:07 Times Seen12553 Hash 116c86c56f8db0bb63f15ceda50fdc98 75e308982ecf7cd43644b8b426e6aa1a0b0fbe26 def5de6254be138b8b35d680d1fdd8b07827d03b8626daebfeeb4157ec330ea7 Loading...

	securedoffers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4	12 kB	2023-03-08	2024-04-18
Pretty URL securedoffers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:23:19 Last Seen2024-04-18 12:23:25 Times Seen3477 Hash 1f9968a7c7a2a02491393fb9d4103dae 0032c8a6a692e6f072b2cef20828449402fdd57d f1d5583d4c00ebe19c7be536e72ab8234c1f926023cb5a1fd5edbe9c912f0f49 Loading...

	securedoffers.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c	5.7 kB	2023-03-07	2024-04-17
Pretty URL securedoffers.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-17 22:14:10 Times Seen1006 Hash 7935d6e0f5c1a8dabaf92fa17cc5e513 2623f058ab2e57ad10120675d941c9b78eba82e8 e5935466216a250bb06338805b32ffb19eeda9042ead790ebc6e5dda27820adb Loading...

	www.securedoffers.com/	144 B	2023-03-07	2023-03-17
Pretty URL www.securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:22 Last Seen2023-03-17 11:35:01 Times Seen1 Hash ba40651f4a374042363b584603636cfd 4caca357f6d766ef616dfba54f91ecea33986ae2 5d72c3f93b16aa3c0b076879140de6508b11a5d813069f44f7bebc3d41f38120 Loading...

	www.securedoffers.com/	2.2 kB	2023-03-08	2023-03-29
Pretty URL www.securedoffers.com/ IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:02:28 Last Seen2023-03-29 22:28:09 Times Seen12 Hash fcd09a99664a7495f770fa800ec24e10 fcecad9e0fbab51942fa3c090ad9a59264180358 ecc0f7b12f50e4dcd991a2cb0655ad70c4efdb2144910f550910b520874575c5 Loading...

	securedoffers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1	33 kB	2023-03-08	2024-04-15
Pretty URL securedoffers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-15 22:34:30 Times Seen658 Hash 48b7a16ab38005edf9c9964313ce1cd7 8b8569d937aac61fd792b6c68fca974e3cdd94ab 5d80f13fd7524318f81eb1301170d4d0fbee242c12403c01f3a06c9f681192c7 Loading...

	securedoffers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9	6.5 kB	2023-03-07	2024-04-17
Pretty URL securedoffers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 IP 199.250.195.40 ASN #54641 IMH-IAD Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:19 Last Seen2024-04-17 22:14:10 Times Seen2796 Hash 64e89b93b02055fb75ea0913089ded0b 9ccf854a6acedb27496725fa7570a670fd7bd572 a3e64300797e8078baa41dbc49e2affc1d2bedd04a470f0c929ed7fac698fbcd Loading...

HTTP Transactions (75)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5484
Expires: Sun, 27 Nov 2022 00:12:14 GMT
Date: Sat, 26 Nov 2022 22:40:50 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
15b59d5e62caedb4bec3ba6724906c1e
960f801e608a56fdd11449f4face29f62cad2b21
8c72a45737c2eeddf328b0ed3236f3243551d904e94ec9dd7254972ebfb9229e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1709
Cache-Control: max-age=130727
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:40:50 GMT
Etag: "6381eaec-1d7"
Expires: Mon, 28 Nov 2022 10:59:37 GMT
Last-Modified: Sat, 26 Nov 2022 10:31:08 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

www.lfs.com/mtm/direct/.eJxdikEOwiAQRe8yy0oYl1rjWcyETIUECsIYSBrv7thd3b3_3t_gXQPMgGCA6rMpKlVeuHLV4UXKjNh7t3Fp1uWk2ecmj5US6-FYyDkuolp4CHpJ0VApMTiSkFccP3Ma_zbF2-t-tlcz4bTTBT5fC1gyyQ:1oz3qa:MUNZ0F7uOeSGOjjndk3M1RgxhpE/2

45.33.30.197

302 Found

0 B

URL HTTP/1.1
www.lfs.com/mtm/direct/.eJxdikEOwiAQRe8yy0oYl1rjWcyETIUECsIYSBrv7thd3b3_3t_gXQPMgGCA6rMpKlVeuHLV4UXKjNh7t3Fp1uWk2ecmj5US6-FYyDkuolp4CHpJ0VApMTiSkFccP3Ma_zbF2-t-tlcz4bTTBT5fC1gyyQ:1oz3qa:MUNZ0F7uOeSGOjjndk3M1RgxhpE/2
IP
45.33.30.197:0
ASN
#63949 Linode, LLC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /mtm/direct/.eJxdikEOwiAQRe8yy0oYl1rjWcyETIUECsIYSBrv7thd3b3_3t_gXQPMgGCA6rMpKlVeuHLV4UXKjNh7t3Fp1uWk2ecmj5US6-FYyDkuolp4CHpJ0VApMTiSkFccP3Ma_zbF2-t-tlcz4bTTBT5fC1gyyQ:1oz3qa:MUNZ0F7uOeSGOjjndk3M1RgxhpE/2 HTTP/1.1
Host: www.lfs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
server: openresty/1.13.6.1
date: Sat, 26 Nov 2022 22:40:50 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://www.securedoffers.com/
x-mtm-path: 0
vary: Accept-Language
content-language: en
set-cookie: mtm_delivered=WyJ3d3cubGZzLmNvbSIsImh0dHBzOi8vd3d3LnNlY3VyZWRvZmZlcnMuY29tLyIsMSwiMjAyMi0xMS0yNiAyMjo0MDo1MCIsMSwiMTY2OTUwMjQ1MC4wNDA1NTcwMDAwIiwyMDIsbnVsbCxudWxsXQ:1oz3qs:KgHbGWady5i9Sx4pWzEGOzWg2iM; expires=Sat, 26-Nov-2022 23:40:50 GMT; Max-Age=3600; Path=/
connection: close

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
4d7e4eed097b9c4e5d509419f1cfc85a
290bb3d428a7c6330e2e3d73a952b16f820896c8
0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 22:17:33 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 1397
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6334
Expires: Sun, 27 Nov 2022 00:26:24 GMT
Date: Sat, 26 Nov 2022 22:40:50 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: +pjkQCuK+5scuQEk/+TzN35RJ6icKNbu7Sa0BR/55GoT2jyy8V0QZBwqcTMwXfyxbdtmw508Ng4=
x-amz-request-id: 7NXRCXR18XNSNEDT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 21:44:23 GMT
age: 3387
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 22:40:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 22:11:12 GMT
cache-control: public,max-age=3600
age: 1778
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.comodoca.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.comodoca.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
e4394ca6c9bac39eed67b1302c108cd4
fbb3ab534c20d29b5fa72df1417d4d3b8cfee8d2
ebc4eff73e3e3c571336c2f405bfe023f17afb82e01c2adfafbd9b817654d0ed

HTTP Headers

POST / HTTP/1.1
Host: ocsp.comodoca.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 26 Nov 2022 22:40:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 23 Nov 2022 14:38:30 GMT
Expires: Wed, 30 Nov 2022 14:38:29 GMT
Etag: "fbb3ab534c20d29b5fa72df1417d4d3b8cfee8d2"
Cache-Control: max-age=316057,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: MISS
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 770620cf1dcbb503-OSL

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d3df71aab146eefc49acb608796aab63
8401892995193919376dfcd798b09c8261579454
a616c1e54e896576601e6107c1814adbebf35364d8ed807cdd89ac36b8200c88

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2942
Cache-Control: max-age=126902
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:40:51 GMT
Etag: "6381d72b-1d7"
Expires: Mon, 28 Nov 2022 09:55:53 GMT
Last-Modified: Sat, 26 Nov 2022 09:06:51 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471

www.securedoffers.com/

199.250.195.40

200 OK

11 kB

URL HTTP/2
www.securedoffers.com/
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047)
Size
11 kB (10850 bytes)
Hash
fc7df41f06179a64b4696c2b4dd3015c
b75cc8ec20a5cb9e62836301fa56121eb6fe6a42
5c5b18ecc9eef6e6e79969c4f2cf65509c60e2f175db77a28f300af176d70498

HTTP Headers

GET / HTTP/1.1
Host: www.securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/html; charset=UTF-8
content-length: 10850
vary: Accept-Encoding,Cookie
cache-control: max-age=3, must-revalidate
content-encoding: gzip
last-modified: Sat, 26 Nov 2022 18:55:47 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 22:40:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

securedoffers.com/wp-content/themes/so-hello-ch/style.css?ver=5.9.5

199.250.195.40

200 OK

785 B

URL HTTP/2
securedoffers.com/wp-content/themes/so-hello-ch/style.css?ver=5.9.5
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text
Size
785 B (785 bytes)
Hash
2d96f387adca77fa90a47a27b5386436
7e4b466c4e89d96241979d2b694dabeea71032f1
77f4286868a5f8b7a0662e8b953147dc7b868056b7cf364a19e5fbf100c4fbf5

HTTP Headers

GET /wp-content/themes/so-hello-ch/style.css?ver=5.9.5 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Mon, 25 Apr 2022 18:47:37 GMT
vary: Accept-Encoding
etag: W/"6266ecc9-237"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

push.services.mozilla.com/

54.148.53.106

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
54.148.53.106:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DR0mEyAkhW7uZWMIOHLMRg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5tjGNl8NSH+rPwopg0DaBSJ/+zA=

securedoffers.com/wp-content/uploads/elementor/thumbs/SecuredOffers-logo-poz30s655phgrjogxvubyfvgqjfopczlzg1noe77k0.png

199.250.195.40

200 OK

4.7 kB

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/thumbs/SecuredOffers-logo-poz30s655phgrjogxvubyfvgqjfopczlzg1noe77k0.png
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
PNG image data, 239 x 60, 8-bit/color RGBA, non-interlaced\012- data
Size
4.7 kB (4650 bytes)
Hash
0e662c4e7b108c6b00091319ea4d9214
b4694ee9b190342d60ec0f6a159957c622b922c4
994eddecfde709969dcf3f402e68dda17d1cebf64a494f0bf2fa55df22ebd6a2

HTTP Headers

GET /wp-content/uploads/elementor/thumbs/SecuredOffers-logo-poz30s655phgrjogxvubyfvgqjfopczlzg1noe77k0.png HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: image/png
content-length: 4650
last-modified: Wed, 18 May 2022 01:10:10 GMT
etag: "62844772-122a"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

www.securedoffers.com/wp-content/themes/so-hello-ch/images/progress-meter1.jpg

199.250.195.40

200 OK

22 kB

URL HTTP/2
www.securedoffers.com/wp-content/themes/so-hello-ch/images/progress-meter1.jpg
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS4 Windows, datetime=2010:04:22 12:47:02], baseline, precision 8, 570x50, components 3\012- data
Size
22 kB (21764 bytes)
Hash
102f6f90c18f8faa8bcdc5602b46d6d2
ab07a68f92dc713440adc518a88917973e75420e
46437f911962ba205b44d3e6252002a27916df5e28eba808aafdc116ea06a558

HTTP Headers

GET /wp-content/themes/so-hello-ch/images/progress-meter1.jpg HTTP/1.1
Host: www.securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: image/jpeg
content-length: 21764
last-modified: Thu, 12 May 2022 16:30:19 GMT
etag: "627d361b-5504"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/2022/05/SecuredOffers-45px-wht-1.png

199.250.195.40

200 OK

3.3 kB

URL HTTP/2
securedoffers.com/wp-content/uploads/2022/05/SecuredOffers-45px-wht-1.png
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
PNG image data, 179 x 45, 8-bit/color RGBA, non-interlaced\012- data
Size
3.3 kB (3280 bytes)
Hash
dc8046223f44961eabc556b418456355
5cc58f5d27acacbeb2adf10dcf334aede8e7bbba
0f879e845736f9e93a2ce26a79cb200728639ef877cce84eb14b511897577dc6

HTTP Headers

GET /wp-content/uploads/2022/05/SecuredOffers-45px-wht-1.png HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: image/png
content-length: 3280
last-modified: Wed, 18 May 2022 01:13:48 GMT
etag: "6284484c-cd0"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3

199.250.195.40

200 OK

13 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (57726)
Size
13 kB (13083 bytes)
Hash
5a0941362525fc2bd7945fbd06be26d0
fbfd3773bc5a5c2729efbc110328b9c29103cdff
6471f5fc14309ea273747ebd916400e73d10d26ec0d3678838aafad039992a38

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-e238"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0

199.250.195.40

200 OK

32 kB

URL HTTP/2
securedoffers.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (65447)
Size
32 kB (32417 bytes)
Hash
c1dedbbf32d0b742060ac63e83e942b3
4863ec5ec78eb625c1eabe40f83ea28f35ba6a4c
84321476215eade021925a7bbf158452394c3079a28af9575007552a7f801af3

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-15db1"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:08 GMT
expires: Thu, 23 Nov 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 270403
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4

199.250.195.40

200 OK

3.4 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (9937), with no line terminators
Size
3.4 kB (3420 bytes)
Hash
e895b5d99f987aa639f30dc56278839d
72c43e0126dcb31b527b793cab02bf451800a236
2297d1d31b8b67ae2181e1d886cf5ad8bfbed936450bae95293325a1837b7718

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.4 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 19:38:14 GMT
vary: Accept-Encoding
etag: W/"63505226-26d1"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3

199.250.195.40

200 OK

16 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (489)
Size
16 kB (16221 bytes)
Hash
d763d44305be79bc0ba5bda2edd9aaee
261d87f18b3f473fbe6b4b7964060d6fd5a4d818
d3cbdf58e154f1721d71775f44c219149eef29c6be4652d438d98ae3f1b6208b

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/brands.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-2a3"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1

199.250.195.40

200 OK

30 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (65497)
Size
30 kB (29581 bytes)
Hash
e42ce46e25e9e948e41e1e8dbecff743
b90e4fc6176b945eb60888ba349813448d69e838
ec8f9b11393933c1c6e76902a2afaecbaaafa0e412b1c24543cbb1e4b52477f8

HTTP Headers

GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.8.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-19538"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-247.css?ver=1652824432

199.250.195.40

200 OK

1.1 kB

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-247.css?ver=1652824432
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (2541), with no line terminators
Size
1.1 kB (1061 bytes)
Hash
179549f0309c2f88f8384e46055e48b1
23f524aab3538cf92e64067c53e845d18516d125
0c5242e9302f2ab71d5594c89da4d60537505773435e79149f389befd9594246

HTTP Headers

GET /wp-content/uploads/elementor/css/post-247.css?ver=1652824432 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-9ed"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

199.250.195.40

200 OK

78 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size
78 kB (78196 bytes)
Hash
e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: font/woff2
content-length: 78196
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-13174"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2

199.250.195.40

200 OK

77 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Size
77 kB (76764 bytes)
Hash
f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: font/woff2
content-length: 76764
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
etag: "637144a1-12bdc"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/global.css?ver=1652824432

199.250.195.40

200 OK

16 kB

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/global.css?ver=1652824432
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (14692)
Size
16 kB (16205 bytes)
Hash
ab9b5c1ddc1750bddd9b80542efd87d5
5a04f832df5b4a1f991eb8330faeadb68ef81e5c
02952a065e066cb8eb3a7a5fcb81ac9ea819dbfa62b7ff86365e8b5caf1e00b8

HTTP Headers

GET /wp-content/uploads/elementor/css/global.css?ver=1652824432 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-9ab3"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/2022/05/domains.jpg

199.250.195.40

200 OK

28 kB

URL HTTP/2
securedoffers.com/wp-content/uploads/2022/05/domains.jpg
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, description=Domain name concept flat tiny person vector illustration. Stylized abstract web address registry scene with top level names. Co], progressive, precision 8, 612x320, components 3\012- data
Size
28 kB (27930 bytes)
Hash
5ad2c1b6f75f025b84d05319b35a202b
54c239ef71cfd6d8244a6d643acf8f4f47223cf6
5570360609e201d4439eac9707eef2818c4ff08256f261d207de67819713fe1b

HTTP Headers

GET /wp-content/uploads/2022/05/domains.jpg HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: image/jpeg
content-length: 27930
last-modified: Tue, 17 May 2022 16:56:22 GMT
etag: "6283d3b6-6d1a"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3

199.250.195.40

200 OK

90 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (491)
Size
90 kB (90360 bytes)
Hash
ce416fd83885eaa0aef9c17c6c71ead1
a24c8fd3501ff64bd28f0847d652d5cccfd24451
7b3bf320bb78325bbd9bf3f88d2bc91da6e5005beae8a8e65f12838adc201f6c

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/regular.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-2a5"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff

199.250.195.40

200 OK

16 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
Web Open Font Format, TrueType, length 16276, version 331.-31261\012- data
Size
16 kB (16276 bytes)
Hash
7124eb50fc8227c78269f2d995637ff5
d33d8b5b15b7bba2cc17190dc685fe0a76d2989e
14c9db4ff87fde08f67b0a69dd594bab6d87174812a0dbd34c59833bfed8cc0e

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-regular-400.woff HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: font/woff
content-length: 16276
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-3f94"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff

199.250.195.40

200 OK

100 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
Web Open Font Format, TrueType, length 101652, version 331.-31261\012- data
Size
100 kB (99772 bytes)
Hash
7eb8807d1e81457ec1fc2096b9428880
1d29e076310dbbca567cba8cd11554b2a96925c8
9ebd17563ff3727daa1bf7ce5ba2e8c7e263200c1b45d84ee33a97f07838833d

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: font/woff
content-length: 101652
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-18d14"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf

199.250.195.40

200 OK

203 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh\012- data
Size
203 kB (202744 bytes)
Hash
605ed7926cf39a2ad5ec2d1f9d391d3d
c1b9fae262f42868c075ac865a8ab34920e20a2c
3d06af1f31cd83ace7a265a014b8fb5dee15770ecac8f7a55555190e627e03c2

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.ttf HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-type: application/octet-stream
content-length: 202744
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-317f8"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf

199.250.195.40

200 OK

134 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
TrueType Font data, 13 tables, 1st "FFTM", 28 names, Macintosh\012- data
Size
134 kB (134040 bytes)
Hash
3b89dd103490708d19a95adcae52210e
3fa2d67cef22da5c3f3eb5730c6afbd6fecf0372
06f4d00923ea24697df5df0b92984175991d8bd25776a02d531bb401e393ec42

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.ttf HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-type: application/octet-stream
content-length: 134040
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
etag: "637144a2-20b98"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0

199.250.195.40

200 OK

38 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (19233)
Size
38 kB (37554 bytes)
Hash
a0848baa9a75fd7b4409601cdc3ebef7
52f2362c0c47f54248db812db594c653f462e6ef
0479a88918aba9d4687e41cb4835616fc2a45d9df7070c8eae4905a917a73235

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-4b4f"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.4432c50d0d1f64da9d7c.bundle.min.js

199.250.195.40

200 OK

95 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/nav-menu.4432c50d0d1f64da9d7c.bundle.min.js
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (3201)
Size
95 kB (94627 bytes)
Hash
b374e40be417075f824ebfeadbae0515
759a9c0ae3f3ed0b03f1900f47fa12d4a210a0f7
17acb7403d69869c553ed3cba793ef714310cedb743ca5a61f8da85a1a67d144

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/nav-menu.4432c50d0d1f64da9d7c.bundle.min.js HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:58 GMT
vary: Accept-Encoding
etag: W/"6283d8c6-cac"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff?5.16.0

199.250.195.40

200 OK

114 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff?5.16.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
Web Open Font Format, TrueType, length 114280, version 1.0\012- data
Size
114 kB (114280 bytes)
Hash
7d9e85ea4d03fa493502980a31a2006c
a319cc9448cd00fc77c447fed281dc66b1c6ac7c
76dba545735324a48b09747baf7a9a75460cd7d13b6c2e82149950e1dadc948c

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff?5.16.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-type: font/woff
content-length: 114280
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
etag: "637144a1-1be68"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.ttf?5.16.0

199.250.195.40

200 OK

212 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.ttf?5.16.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
TrueType Font data, 15 tables, 1st "GSUB", 18 names, Macintosh, Copyright (C) 2022 by original authors @ fontello.comeiconsRegulareiconseiconsVersion 1.0eiconsG\012- data
Size
212 kB (211480 bytes)
Hash
1b791c461a855e214fecb9bb8ac7adcc
ae304e20e417e1c518e9618805f30a25c7b12da8
d87513d7500fd2bffc38768fffbe678c6d72762654482fa9e30b1ae263693dbf

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.ttf?5.16.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.securedoffers.com
Connection: keep-alive
Referer: https://securedoffers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-type: application/octet-stream
content-length: 211480
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
etag: "637144a1-33a18"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14960
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:40:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14960
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:40:52 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14960
Expires: Sun, 27 Nov 2022 02:50:12 GMT
Date: Sat, 26 Nov 2022 22:40:52 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a7e16e2-9f5f-4739-817a-8a5447d80ee4.png

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a7e16e2-9f5f-4739-817a-8a5447d80ee4.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9549 bytes)
Hash
099add42d39565e1a14ba60a61261a8d
7b0d859df11485329882daddcdd8ca85a1010e56
01a81962c06247835668581bcdd337320c62ba2121e94570f663396b6647c2b1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a7e16e2-9f5f-4739-817a-8a5447d80ee4.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9549
x-amzn-requestid: b99fc256-bdbd-4e59-bdec-b3f453cdfaac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-50OFDDIAMFr1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637c3ce7-75bc0aba74d71992450b11cb;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 03:07:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: VOzEGsb5YWPA9-k63Jsb1Ejw9qoHfkH84GtbM2s7evsvv53iuh3Lug==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:55:30 GMT
age: 2722
etag: "7b0d859df11485329882daddcdd8ca85a1010e56"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1

199.250.195.40

200 OK

11 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (24836)
Size
11 kB (10906 bytes)
Hash
311904f6dcd353d1e3ea5b660159c04c
c1a4e98675dbcb57371887609167b6c8b65f588e
2d5f5928d0fa4a1076896b75f9cd5586cae757ae09b7f02ba9874444502b7db0

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/elements-handlers.min.js?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-612f"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1

199.250.195.40

200 OK

22 kB

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type
ASCII text, with very long lines (40474)
Size
22 kB (21635 bytes)
Hash
86df69f94fac1d2119d98c09fd0a482d
b196a1cd95beefa729319eeb62519d41c49bc807
34556f02b5ed9c7d7589366733dffb1043ac17cee474b2141da80608f5539881

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.8.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
vary: Accept-Encoding
etag: W/"637144a2-9e41"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaab9de7-1f50-401c-bd84-6bcd72fb53d1.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8335 bytes)
Hash
c52c26038ed572c870cf2119865907b1
b298107232e837ccf8d853e6d2c91f67e74dc2ba
d95471f66cf6404bfb5400c4c707fbb81bcaf4be1518313d3f513c9b2a3da1fd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaab9de7-1f50-401c-bd84-6bcd72fb53d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8335
x-amzn-requestid: 3f1c7be1-6140-4fa1-a891-4cb9428436a6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cBcY9FARIAMFzXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d4105-0b84411938fe706d2d48751c;Sampled=0
x-amzn-remapped-date: Tue, 22 Nov 2022 21:37:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RqL5rR_zx78-4MFOH8ObPPDTV_qwTP0w1DHrxxPFfJSOeR5jYQsGQg==
via: 1.1 2e20768704c71ff3ce2e677251d27f3c.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 01:04:08 GMT
age: 77804
etag: "b298107232e837ccf8d853e6d2c91f67e74dc2ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8817 bytes)
Hash
741ddfb19764ac9a77509e7e87cfbfb2
308c08784ce4a0757cbd112807555b83e17a1d56
e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8817
x-amzn-requestid: 33d3ca17-7878-4897-a634-5f626a64e820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cJ40OEOqIAMFaOg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6380a1b4-040288d571fc10b96d893fa4;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 11:06:28 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: f_U8KSYET6kaKAPbEV7sHW0tO6JGijsqUvghniwzFCRd2YGQjVlFoA==
via: 1.1 f313d3df80c4dab8f5399614116801cc.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 10:16:33 GMT
etag: "308c08784ce4a0757cbd112807555b83e17a1d56"
content-type: image/jpeg
age: 44659
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 21:42:14 GMT
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
age: 3518
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/css/dist/block-library/style.min.css?ver=5.9.5
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=5.9.5 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 10 May 2022 22:21:21 GMT
vary: Accept-Encoding
etag: W/"627ae561-145db"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.5.0

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/themes/hello-elementor/theme.min.css?ver=2.5.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/hello-elementor/theme.min.css?ver=2.5.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Fri, 18 Mar 2022 13:04:12 GMT
vary: Accept-Encoding
etag: W/"6234834c-3bf2"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.min.js?ver=1.0.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-6272"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:24 GMT
vary: Accept-Encoding
etag: W/"627ae564-195e"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/lib/sticky/jquery.sticky.min.js?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-ca4"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-2fa6"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.4 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Wed, 19 Oct 2022 19:38:14 GMT
vary: Accept-Encoding
etag: W/"63505226-3016"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.8.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 19:25:23 GMT
vary: Accept-Encoding
etag: W/"637144a3-80b3"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-138.css?ver=1652824432

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-138.css?ver=1652824432
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/post-138.css?ver=1652824432 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-fe5"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-290.css?ver=1652836510

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-290.css?ver=1652836510
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/post-290.css?ver=1652836510 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Wed, 18 May 2022 01:15:10 GMT
vary: Accept-Encoding
etag: W/"6284489e-579"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/widget-nav-menu.min.css HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-72cb"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/dist/hooks.min.js?ver=1e58c8c5a32b2e97491080c5b10dc71c HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:24 GMT
vary: Accept-Encoding
etag: W/"627ae564-163a"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-129.css?ver=1652824431

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-129.css?ver=1652824431
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/post-129.css?ver=1652824431 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:51 GMT
vary: Accept-Encoding
etag: W/"6284196f-77c"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/css/frontend-lite.min.css?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-2c8d"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/uploads/elementor/css/post-158.css?ver=1652824432

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/uploads/elementor/css/post-158.css?ver=1652824432
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/uploads/elementor/css/post-158.css?ver=1652824432 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Tue, 17 May 2022 21:53:52 GMT
vary: Accept-Encoding
etag: W/"62841970-2061"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.8.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 19:25:22 GMT
vary: Accept-Encoding
etag: W/"637144a2-135d"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/dist/i18n.min.js?ver=30fcecb428a0e8383d3776bcdd3a7834 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:23 GMT
vary: Accept-Encoding
etag: W/"627ae563-28a7"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:25 GMT
vary: Accept-Encoding
etag: W/"627ae565-50ea"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.4 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Wed, 19 Oct 2022 19:38:14 GMT
vary: Accept-Encoding
etag: W/"63505226-aab"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/themes/hello-elementor/style.min.css?ver=2.5.0

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/themes/hello-elementor/style.min.css?ver=2.5.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/hello-elementor/style.min.css?ver=2.5.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Fri, 18 Mar 2022 13:04:12 GMT
vary: Accept-Encoding
etag: W/"6234834c-16cf"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-2bd8"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/webpack-pro.runtime.min.js?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-1429"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/js/text-editor.2c35aafbe5bf0e127950.bundle.min.js HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:52 GMT
content-type: application/javascript
last-modified: Sun, 13 Nov 2022 19:25:23 GMT
vary: Accept-Encoding
etag: W/"637144a3-54f"
expires: Sat, 03 Dec 2022 22:40:52 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=5.15.3 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: text/css
last-modified: Sun, 13 Nov 2022 19:25:21 GMT
vary: Accept-Encoding
etag: W/"637144a1-29d"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/wp-emoji-release.min.js?ver=5.9.5
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=5.9.5 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 18 Jan 2022 16:41:40 GMT
vary: Accept-Encoding
etag: W/"61e6edc4-4705"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/hello-elementor/assets/js/hello-frontend.min.js?ver=1.0.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Fri, 18 Mar 2022 13:04:12 GMT
vary: Accept-Encoding
etag: W/"6234834c-c29"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

securedoffers.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 10 May 2022 22:21:24 GMT
vary: Accept-Encoding
etag: W/"627ae564-4b3d"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=5.9.5 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 22:40:51 GMT
date: Sat, 26 Nov 2022 22:40:51 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

securedoffers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1

199.250.195.40

200 OK

0 B

URL HTTP/2
securedoffers.com/wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1
IP
199.250.195.40:0
ASN
#54641 IMH-IAD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/plugins/elementor-pro/assets/js/frontend.min.js?ver=3.7.1 HTTP/1.1
Host: securedoffers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.securedoffers.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
server: nginx/1.21.6
date: Sat, 26 Nov 2022 22:40:51 GMT
content-type: application/javascript
last-modified: Tue, 17 May 2022 17:17:57 GMT
vary: Accept-Encoding
etag: W/"6283d8c5-522a"
expires: Sat, 03 Dec 2022 22:40:51 GMT
cache-control: max-age=604800, public, must-revalidate
x-proxy-cache: STATIC/TYPE
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (27)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations