email.mail.usbfund.com/c/eJxMjsuO4yAQRb8G7xJB8bC9YDFSlN-wCigcNH5EPCbK34_c7Y56hThHunWCdbw3IvqOrDCDFiB6Dd3Deq81j0PshQv96JAGo4Y-BhyU1FxilyxwkFyDET2AFFenwHM9cNfjOKDnTPEV03JtxcW2havf126xj1qfhck_DO4M7q_X67c_oLy3uk5lb9kTkzeHb9pmnImBOcRKIbWVyZvH9Ylp3i50XDntD2TyVnChcjn6umxD3mfKhSkek6N8qeQfafNfTaXumaZM0Qo1anP-W0vBMoAxeKkiGYORGEBXrV_ddD7_ME-glZZdtXWr0_dAzej_oltoSsGe-oPq-0nH7qcU4H8AAAD__4h5e-o
34.102.239.211 556 B URL User Request GET email.mail.usbfund.com/c/eJxMjsuO4yAQRb8G7xJB8bC9YDFSlN-wCigcNH5EPCbK34_c7Y56hThHunWCdbw3IvqOrDCDFiB6Dd3Deq81j0PshQv96JAGo4Y-BhyU1FxilyxwkFyDET2AFFenwHM9cNfjOKDnTPEV03JtxcW2havf126xj1qfhck_DO4M7q_X67c_oLy3uk5lb9kTkzeHb9pmnImBOcRKIbWVyZvH9Ylp3i50XDntD2TyVnChcjn6umxD3mfKhSkek6N8qeQfafNfTaXumaZM0Qo1anP-W0vBMoAxeKkiGYORGEBXrV_ddD7_ME-glZZdtXWr0_dAzej_oltoSsGe-oPq-0nH7qcU4H8AAAD__4h5e-o
IP 34.102.239.211:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 21fec28f4724caf549af42457ff37912
f548019c4538f7a241c68538696a628d3c7140b8
5b452f65a6a1ed2dc9d82ca51b1d87b67f3bd82f8f3bf14009493c1b0a138d2b
Analyzer Verdict Alert fortinet Malware
GET /c/eJxMjsuO4yAQRb8G7xJB8bC9YDFSlN-wCigcNH5EPCbK34_c7Y56hThHunWCdbw3IvqOrDCDFiB6Dd3Deq81j0PshQv96JAGo4Y-BhyU1FxilyxwkFyDET2AFFenwHM9cNfjOKDnTPEV03JtxcW2havf126xj1qfhck_DO4M7q_X67c_oLy3uk5lb9kTkzeHb9pmnImBOcRKIbWVyZvH9Ylp3i50XDntD2TyVnChcjn6umxD3mfKhSkek6N8qeQfafNfTaXumaZM0Qo1anP-W0vBMoAxeKkiGYORGEBXrV_ddD7_ME-glZZdtXWr0_dAzej_oltoSsGe-oPq-0nH7qcU4H8AAAD__4h5e-o HTTP/1.1
Host: email.mail.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Cache-Control: no-store
Content-Length: 556
Content-Type: text/html
Date: Fri, 26 May 2023 17:23:02 GMT
Location: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
X-Robots-Tag: noindex
X-Xss-Protection: 1; mode=block
www.usbfund.com/wp-content/themes/usb/images/logo_text.png
188.114.97.1200 OK 6.3 kB URL GET HTTP/3 www.usbfund.com/wp-content/themes/usb/images/logo_text.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 250 x 52, 8-bit/color RGBA, non-interlaced\012- data
Hash 198c7fed73cadb12c23066fcad4e33e8
1f2616bb88b86ec79f3ce8cbbf74b3392c0b46bc
0053eb54a0f54484a915313939d858e1844208d2d0c4b410ce30e25d9cbc09ba
GET /wp-content/themes/usb/images/logo_text.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 6307
last-modified: Sat, 28 Sep 2019 00:36:10 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qeOyAXfHhp8g05TUroBz%2FxetL%2Bmhs7HSOuN%2Bw%2FxXhPwT5QdnSgR7l8vUo%2FCpevxRRHtAYlbHDd4q4ReDaF%2BE5D9Nb5zqibRxewC4G1o1Dayke6qD7oFpHxRR18g4D8MxVSQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c8d531bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/us-business-funding-logo-small.png
188.114.97.1200 OK 2.0 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/us-business-funding-logo-small.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash a5a71307aefd12c55fd16f36356f9a83
679b01f07d71f673b74fde71a5a0a9da8a8e486d
a2e02fabad9f481343e4e8050843b371e239956a637488eb7d2a9deff98245de
GET /wp-content/uploads/us-business-funding-logo-small.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 2020
last-modified: Sat, 28 Sep 2019 00:14:51 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=l9IKzhhf4xY2RcKZvOwyDUQLJYE6IXe%2Bm5b4W56fdtuct8gme2gr5ElHc%2Fzc7T36OYzGjzCGKV0xYi%2Fq%2BIg5ld2frqvI3pWKt%2Fz9wh9hjLD3wGHTotRWqrbPzxEhYNtJCQ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c8d5c1bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/img-working-capital.jpg
188.114.97.1200 OK 13 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/img-working-capital.jpg
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 300x200, components 3\012- data
Hash 77e791f0bf53571239c7a08d4a6e71a6
596965606bcddfa0f5550bb1aee16ad83db76ead
93c2194c46571f708fc2f3af13766d0f2c93fa377f5c2ab6cbc08c68d7330cf6
GET /wp-content/uploads/img-working-capital.jpg HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/jpeg
content-length: 13371
last-modified: Sat, 28 Sep 2019 00:14:45 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pjVHkC8EWn9QnQkhs0jmpTiQskk0neLyhl2KcOdYWTobBwo84t1Z53ckOJXs1HUX30ANwZ9oo9lFVADa2JD1kfqcCoYz31k7neY9ErKFwjMOK8wJIofZIDP6V%2BIxjE90yoQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c8d5e1bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/themes/usb/images/logo_icon.png
188.114.97.1200 OK 2.2 kB URL GET HTTP/3 www.usbfund.com/wp-content/themes/usb/images/logo_icon.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 53 x 52, 8-bit/color RGBA, non-interlaced\012- data
Hash 50946e7f85431c547526705a530f893f
573eff13df4dc4f2e6e0e1db1a9339d79e22ce3c
05bc3e4202452433d51079e0d6e348cb850ea55330da7786c1d5c7290d13400a
GET /wp-content/themes/usb/images/logo_icon.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 2165
last-modified: Sat, 28 Sep 2019 00:36:10 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=34ZbZm9wIUaHZAzHhe9jsUUWqBgYNFo8XV2MWoSCiZQKHHS4rb5OiUqE2g01ca%2F71j%2B%2BrM9GkV3E9JkOXp4ijeYG7azY0Yt%2FfW%2BS8wjaLSTzfSrxHJpOGuJV1%2B%2BO41Er8WM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c8d5a1bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/phone.png
188.114.97.1200 OK 2.5 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/phone.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 70 x 70, 4-bit colormap, non-interlaced\012- data
Hash b56838fff449db819b49eeb7e64ed614
74de76e6563e7d82a518d03f8f086554a2a3dac6
f91ead1cc6732a5af0755dfcbfcfc9b79f30e1d5d9f5a9e66859e4655438d136
GET /wp-content/uploads/phone.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 2479
last-modified: Tue, 12 Oct 2021 16:10:11 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ctEmHLqjHPmOLhyTSpsB3kJYkAg1c2NkiavU4oc6grg9si2Vpygdx8TuuU1UoI2f28Pru9%2FUD%2FajghzRqxiJ0D554V2ks5ongkdWIJAxHIP2N59QEGTCHtFEshJM8QwjW4k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c8d581bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/img-vendor-program.jpg
188.114.97.1200 OK 13 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/img-vendor-program.jpg
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 300x200, components 3\012- data
Hash cc288539f794416629801dc7c0a313bf
254033b2c00433efd50fbe114e45ed2c638b2777
d92a25f5b72d7659b7e836cb1658e9c112ab37da85fe65813d0cc81070a8009a
GET /wp-content/uploads/img-vendor-program.jpg HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/jpeg
content-length: 12812
last-modified: Sat, 28 Sep 2019 00:14:24 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F2RZuQIsF%2FKl4mks%2FmtetKusHC8JovX%2BEDC%2BICx%2F0x1OQUqfe2LDTD5hfkptiS6iR8h%2FEWgmde8gtSrIi1WMMi%2FRbFianNfKKbLDygCUuvVpTGpvnrszwqqh8EQt2XASKHM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c8d601bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/img-equipment-financing.jpg
188.114.97.1200 OK 20 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/img-equipment-financing.jpg
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 300x200, components 3\012- data
Hash c0d6bce27af13e3d574b79a7987df2c8
44838a75e7b8f4e85a060d6196d3aa2012edb288
7a14596bf6034bbdc2029a158ae6c4a9abfae64faca549cdbd581b5ab978b9d1
GET /wp-content/uploads/img-equipment-financing.jpg HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/jpeg
content-length: 20449
last-modified: Sat, 28 Sep 2019 00:14:55 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CBXx0fa%2B4vPIcPWr4DS%2BcrNBM3GwaEr7yf7eQ328Zb7KVK%2FSyI4PJ3HxSVbXof8215q4avBSXKUiNzgJ8aYCfj5GzKtpd9eb76n7f10IHZVbNLzyl%2B2iIEJXDFA7gZ%2FBQwk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c8d5b1bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/img-sba-loans.jpg
188.114.97.1200 OK 22 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/img-sba-loans.jpg
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 300x200, components 3\012- data
Hash 23f72b8211202321fc5bf2d79da57b7b
a2bcedea0c3396e1eb7106e1e576e900b1062221
516e99c672b4bc62df5134409b5e8918a95ce1bc59277743887f814762f313c1
GET /wp-content/uploads/img-sba-loans.jpg HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/jpeg
content-length: 21745
last-modified: Sat, 28 Sep 2019 00:14:43 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9SqkZW5YOzmIyAUSsK4x9VuoswvUKrjC9DVf9idyzzgJx3d2xtlo2AargIv8sYUFICuVlN8I0%2BgdjTt%2B%2BN9oRWMH%2BWtDPPqsV%2FptsKelT%2FXp7FvKspmi3XMTYNdIII3HQT0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c8d611bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/img-section-business.jpg
188.114.97.1200 OK 20 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/img-section-business.jpg
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 987x600, components 3\012- data
Hash 69b4568a70d5e823c2487ef75db31a3d
f716722204dfd61eefd092ba4aea0f5e03315d3e
31845c6cbd8abdf0187162d1170db2aa7643495bdffe3f92c301131c9d85af15
GET /wp-content/uploads/img-section-business.jpg HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/jpeg
content-length: 20080
last-modified: Sat, 28 Sep 2019 00:14:24 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eo7aL%2BFNCn6QtL1x2TRhNyPFKaRrvMeSGm%2FmsCZh6nxXt%2BGl5BmWd9RPChFLQVcT%2B4Wa%2F86oSXimprrGi8hqQ3qVoPX4gCW9e%2F0r9VbdW5r%2BrsNFYArXDi%2FKxM3iR1C4vuI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c8d621bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-approval.png
188.114.97.1200 OK 841 B URL GET HTTP/3 www.usbfund.com/wp-content/uploads/icon-approval.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 64 x 64, 4-bit colormap, non-interlaced\012- data
Hash ae3c40db3ae713d3b2532f642579dc46
4c79d5f0d3aeb840763298eea898a69005955356
9f1e7382ee492be2670880685b2de565eef1ce8667cdedc03b2415c8c8e18012
GET /wp-content/uploads/icon-approval.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 841
last-modified: Sat, 28 Sep 2019 00:15:17 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JZ1kn%2F7eUBkhZXqtkQ8I7b8i9MzWGZeClGmqHfw5UBLUflx1foWxHJUhr3J0jqTrgFmVQ1XP6R97u60Blzhd6RKd5gFVQJKVzP6AM9XIKxTxfdj%2F3SjflJsJUriVrCYWvSY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c8d651bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-247.png
188.114.97.1200 OK 992 B URL GET HTTP/3 www.usbfund.com/wp-content/uploads/icon-247.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 64 x 64, 4-bit colormap, non-interlaced\012- data
Hash ef7c282ab6144fa5162ed00ca2ae0b66
263b7452a42c10de0401fea7ce10c580b1db9935
8fed20ba76c770f08d0c0a231f16b87cc7fa72e8ae89922b71f642f8ff026455
GET /wp-content/uploads/icon-247.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 992
last-modified: Sat, 28 Sep 2019 00:14:10 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=r%2BP64yrLmwef6yiQrjAZHBDxdrC28TJAyZIoAtzTWop3V4HRC0S0HLbBq6mz0EpuWRm0ZJW2%2BIBh3TmpB5kaSKrLcGJgZrlX0UVABWI1oqNQhPkItZzLTE%2B72cr0H%2B94pg4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c8d661bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-payment-option.png
188.114.97.1200 OK 874 B URL GET HTTP/3 www.usbfund.com/wp-content/uploads/icon-payment-option.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 64 x 64, 4-bit colormap, non-interlaced\012- data
Hash d6e87ed2e1cf82afa5b7b807ff1b31d7
8bfa39f75ed53a385bdf9d0d6ee23c377028426d
fc18ba7522255ecb59d36fc99887aada814f88931f32c29f0a80a63c32589731
GET /wp-content/uploads/icon-payment-option.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 874
last-modified: Sat, 28 Sep 2019 00:14:43 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mChj0Bg3iKDcRpGWdY%2BTJqN5HDy6o520IH01DGLFVav09UFJeEd9l%2F1zoiZOms6FHAB66RqqNfbhuM3ghjeDjPaKPxoz4VBdNLM57Gq9UG2NLQ2Uz%2FdHr1WWsEI9%2Bb9om5c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c9d841bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-trust.png
188.114.97.1200 OK 852 B URL GET HTTP/3 www.usbfund.com/wp-content/uploads/icon-trust.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 64 x 64, 4-bit colormap, non-interlaced\012- data
Hash b717e782e85bd9f42d54ae002213b1c0
5eded8f0286e2872fb084e77126590241b50bd73
2e5819985db070ee25e744ee7d4c0e4733167289e9cf04c0f3790fb47f5e0a8c
GET /wp-content/uploads/icon-trust.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 852
last-modified: Sat, 28 Sep 2019 00:14:21 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aZYOMnIZdpn71jsV3DSmAGN5UD4%2BAlcVDOf03GFcYsU%2FempXjkCTGcPJBZ4ZZ5ACisAODzcr6xyiiwfJa4uWoaYadsGLNMU0CyrZQpzdbtc6TzQ8OrlKPi2efMvfCEyLPas%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c9d851bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-lowest-cost.png
188.114.97.1200 OK 782 B URL GET HTTP/3 www.usbfund.com/wp-content/uploads/icon-lowest-cost.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 64 x 64, 4-bit colormap, non-interlaced\012- data
Hash ad34d701a81be13e89ac5007f328c168
12bb1dd808cfb91272ec57d966c30c33b296ea22
e1b22c7c43c5594dfbf96d96dc1916f420a664234479c79180e82fdcb44fb6be
GET /wp-content/uploads/icon-lowest-cost.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 782
last-modified: Sat, 28 Sep 2019 00:14:35 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PWOn8F1Bo70MfKjaungeymgGOo3Z%2FPtsgmgwUVyKTRAba%2FS%2BEsasqhYsBwz79qP1ez3NGUrV6nPLl%2BGZOh6l63vDoAh9Vkqn1B2PrddNbGVLvhUj%2BibzsaTbIbKIJ%2FK%2BtII%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c9d821bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-paperwork.png
188.114.97.1200 OK 569 B URL GET HTTP/3 www.usbfund.com/wp-content/uploads/icon-paperwork.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 64 x 64, 4-bit colormap, non-interlaced\012- data
Hash 0c4ac1d950bf0c487a56ab5eda6db7d3
df2764e14bc2f9e503e0303a794db2cd834187d9
5c330674c7a9b46f5466d015d4764d8f983e314b817f2a3caf4fc437b808f088
GET /wp-content/uploads/icon-paperwork.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 569
last-modified: Sat, 28 Sep 2019 00:15:16 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ovJ6ZBFfsUM3pqSe7%2BGxF9BaYvBHW44OJUWJ80furrwWDGvR%2Bit1QMmBRqmaZOZDzBVnkDZZn19i2Or8uCi%2FdXr4XCEEG04xn1%2BzIqyH79xQOb%2BccDnhqkDT5GKxwuUXyog%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42c9d871bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/featured-logo-03.png
188.114.97.1200 OK 3.8 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/featured-logo-03.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 83 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash ea461093328a47d28ed34df6be0ad850
5fad4dd9e9daea5b1cac739624cbd673c20fe7c2
37ea654d17c80dfb22d0ad091907b6d4009c76c4671728321fd51376a8df7cce
GET /wp-content/uploads/featured-logo-03.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 3840
last-modified: Sat, 28 Sep 2019 00:15:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5bYuVuOHQatcS%2BvKSqg24BJbSRbX3wXTeZ8mxdimA7%2BL5s5fGpGrUGLBrh5289cUl83FAEczTT3o%2Bz2klcJrE06gFNE7kyNvaL3ajk6UTKE1yGXIqEoIKuEdX9Hhxta8kWc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42cad9e1bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/featured-logo-01.png
188.114.97.1200 OK 3.3 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/featured-logo-01.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 164 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 30427e02eea1cec61004e2fdb293e4d2
d3ba51be6c31147f379670d59cab54ec01b3b448
32161c4a44a1dcdddeeb852e2b6eea070839630ac3a719ac79a503cfd4d3892d
GET /wp-content/uploads/featured-logo-01.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 3311
last-modified: Sat, 28 Sep 2019 00:14:38 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qt5xjmWxUzOx0XDcJeGhj%2B5hBT7QF5AM30fR4zmN4XF89qsMN5xm2NsFRSYG%2FzreGmBberFv3cIyiLwuPuzfFyv9njgmSoJtQGTGOAfLx9U1UVNnpDDZzM4nKdn%2BpYoKWa8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42cada01bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/featured-logo-05.png
188.114.97.1200 OK 3.7 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/featured-logo-05.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 135 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 646b30b6704a2457b04bb12da4144c97
acadca7b80819db2100f2cf8341acdf47a2eb773
b6e64d31c4f5ab917ad1cddfe7fa745e7c4bfc2d5af33cfdaa8130eb14247bc8
GET /wp-content/uploads/featured-logo-05.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 3721
last-modified: Sat, 28 Sep 2019 00:15:03 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hWIN8lMMZqa1qvVOdY1YcNAe6ao7L0ZLzJo8EhQWVVZ7xGmKLEZsNDCyfTi%2BKJZkK%2FBvAA0mUtyGFGKndi9gmKlF2%2FyKfl7VMPNdTctjRTyDWCvunOg3ZZ27AKVTwtNAniI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42cada31bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/norton-secured.png
188.114.97.1200 OK 3.0 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/norton-secured.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 180 x 75, 8-bit colormap, non-interlaced\012- data
Hash 7d05b62893199c911ab6f798ec8127d2
e7dc7368c55a2fbccb17a82c1a25de39cea2907d
0b691c8e6d1b07ce3e066744ccfbf643d61f013ce51503b0a3ceb7a356562ed6
GET /wp-content/uploads/norton-secured.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 3017
last-modified: Sat, 28 Sep 2019 00:14:45 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5H7Y0QY%2FSGh6rddAyMULK1K7zL9dNhhFnyxVchEQaSB%2BlctxCNFOQKvCZ1idz5MC6gPfIuKZ%2BwTxpQlbayXZvyvwGbPmdQGpS0sfFoXOy2WkKirzLJ9aqfQwydBQSCigauQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42cada71bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/featured-logo-04.png
188.114.97.1200 OK 5.8 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/featured-logo-04.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 123 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash e94a0244f1a51d7565de08744375bd07
dde753e74a85c5f094dda6661ada486fdae50422
47bff975ef1626c064613532b237bd114911cdc835effdccb0d124c1432c17b2
GET /wp-content/uploads/featured-logo-04.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 5757
last-modified: Sat, 28 Sep 2019 00:15:18 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sJ1voVlqdxOTp5yAuvjbZwSc57jUO0RT58YrpRumFB9lBYs75Q9Nn1OwX6X0z7IQdX6pB54RUFkkw%2FTD7TAb%2BmQgJ2dWa6%2Fb195QprcDWQwloISdc2O0UrSOa31MTskhXxQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42cada11bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/featured-logo-02.png
188.114.97.1200 OK 5.8 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/featured-logo-02.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 93 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash d2bfb41e522705be8e4a48895b996bca
df2507b75f1c0362bd168ea7ecf829f11469a926
968570479e59e9ff339d5c1d25e4c15011f8cb5ad243776b8cf62f51d28b0903
GET /wp-content/uploads/featured-logo-02.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 5795
last-modified: Sat, 28 Sep 2019 00:13:58 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FpS2JtO%2FGq1H3EG6ixDtoO7c83t%2FbDEEs9ReDKCoEHc9Eh%2B871lwmZ0MdAW4%2Fgg29Dij%2FDWFqSRAj3OmKDuwgK9p0awC0aXQ%2BrccXFd9VBOedBgBnkgFUNi2oWT73QRl8YU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42cada21bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/featured-logo-06.png
188.114.97.1200 OK 2.7 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/featured-logo-06.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 175 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash b7b5570d5d29fd453a5e65063849fcb1
b07b87612c74febb32961e10ed154dc2efdf19cb
886d709e142c957b0d93269a57fccc13800907c8ab90acc1f18c8bec259d3992
GET /wp-content/uploads/featured-logo-06.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 2693
last-modified: Sat, 28 Sep 2019 00:14:38 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jR8UOPuyBsdq0fEipxqr3pL6hNFwleP1QfWqc9EawTxSuY4%2FEGTU5YyWQLSjaI63JIjYFhb8%2FhSjpZJPkxXE6xiYDPeF6F3ObmvBBoGmB8HTffChsOcuwvPZ%2Fxbte28nzVo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42cada91bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/accredited-business-usbfunding.png
188.114.97.1200 OK 2.2 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/accredited-business-usbfunding.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 180 x 75, 8-bit colormap, non-interlaced\012- data
Hash 3befe9c6fb5e6602893570b99d3920aa
1e7c1d352448864975a23135097e59593ae71456
d59962c29e3487892da60ef799f75523576b6f006d54fc3dd43bb6993588f1dc
GET /wp-content/uploads/accredited-business-usbfunding.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: image/png
content-length: 2244
last-modified: Sat, 28 Sep 2019 00:15:06 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vfFHQn6xhW5PzTM3hrfG2Nrx93ClCWK4tn2S5AT3HBUCwoLC9PC9lR3h35RX0ot5GlSkLJxOKnLWtAU2T8mcSM00lo1KQdfkambewJCYoRRTBB7ftUOb8SUeLgKrCuCPIVU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42cada51bfa-OSL
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash 8fdba15b1e036bbb416fbd6c272e5543
20193b9d3ced059164358e60bad68a0ea1bc87b9
1d3d0b81779aae77441b81abe782f4a37a1b88fd2863360de0865784279a7438
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.usbfund.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.1.2
188.114.97.1200 OK 2.1 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.1.2
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (4610)
Hash a39e45502bab7e9e26723e6ab243e8f8
ac62aacd5ee3e7b64ce6a92b5d8e3fb523e34d16
d62a7b7ec5313469ebff5c006b9068dc44d6d1c122cf787ffa29a10113b34060
GET /wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.1.2 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:22:39 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I3RUx72PdWCjiSxTi7c7FzueItNqQg5SzWlPUSMU9OX6P6HYbbVTrbaSEph5J%2BKjwDaQI5zrklKsQ%2Bs8acqfvP8xlHnTibR%2FZsjXu4zrwmSr03w7KpOXPBhjFpOlrLVqUgU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42cadb71bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
code.jquery.com/jquery-migrate-1.2.1.js
69.16.175.42200 OK 5.8 kB URL GET HTTP/2 code.jquery.com/jquery-migrate-1.2.1.js
IP 69.16.175.42:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
Hash 7d87ce904ab76326bff3147c72a45b2a
b5a7a40ada6f87047f00e95915356aff82cb0959
58564bc237b683f482c3a82def059f27b2be41109d237d7a2380074b5b4f22be
GET /jquery-migrate-1.2.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:23:04 GMT
content-encoding: gzip
content-length: 5783
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-40ed"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1685121784.dop068.sk1.t,1685121784.cds216.sk1.hn,1685121784.cds216.sk1.c
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js
142.250.74.138200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js
IP 142.250.74.138:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (32025)
Hash 4a356126b9573eb7bd1e9a7494737410
8258d046f17dd3c15a5d3984e1868b7b5d1db329
22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5
GET /ajax/libs/jquery/2.1.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29725
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 22:50:29 GMT
expires: Wed, 22 May 2024 22:50:29 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 239555
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
54.230.111.27200 OK 6.7 kB URL GET HTTP/2 widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
IP 54.230.111.27:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (21661)
Hash ac0abdc1f9e115bd67375758633d6147
4bd462b3cd5585214826f9958ab02bbd51257481
3cea5994dbfeacf40ac1a561612e7f101c0f3139d13e0c5bf48ddde987677f54
GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6676
last-modified: Wed, 03 May 2023 13:48:29 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Fri, 26 May 2023 01:46:28 GMT
cache-control: max-age=86400
etag: "befec09eb386fc68a0869c8d1b529dd6"
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: z5TnykssnFwe3O0dQnLmTRZ4eY0yf0xRq-yC8sVHYXHyvR8v686M9Q==
age: 56196
X-Firefox-Spdy: h2
widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
54.230.111.27200 OK 6.7 kB URL GET HTTP/2 widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
IP 54.230.111.27:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (21661)
Hash ac0abdc1f9e115bd67375758633d6147
4bd462b3cd5585214826f9958ab02bbd51257481
3cea5994dbfeacf40ac1a561612e7f101c0f3139d13e0c5bf48ddde987677f54
GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6676
last-modified: Wed, 03 May 2023 13:48:29 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Fri, 26 May 2023 01:46:28 GMT
cache-control: max-age=86400
etag: "befec09eb386fc68a0869c8d1b529dd6"
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jmyju-g-0b6TB6tl2AEaLCnn9XqmuF3BOyokcK2-ftFmyZMB0UvxlQ==
age: 56196
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-210860007-1
142.250.74.168200 OK 47 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?id=UA-210860007-1
IP 142.250.74.168:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (2271)
Hash 395520dd68366182d87c00f10150dfa7
ff77c8599ddec3a6f72a91764e2e1446f491c008
1305fe11c426bfdfdf2aaf42946aa88c14b518cca2feb68b7a75dcd08ddb0b00
GET /gtag/js?id=UA-210860007-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:04 GMT
expires: Fri, 26 May 2023 17:23:04 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 May 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46892
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
assets.anytrack.io/1y0o6qdBqYHr.js
54.230.111.10200 OK 103 B URL GET HTTP/2 assets.anytrack.io/1y0o6qdBqYHr.js
IP 54.230.111.10:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subjectanytrack.io
Fingerprint8E:28:1B:95:6D:A8:BB:0C:DE:7B:E1:D3:4B:A0:24:65:34:A7:22:10
ValidityThu, 16 Feb 2023 00:00:00 GMT - Sat, 16 Mar 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 69b5271584dd67a9e6ae79216fe30110
7753fe034a0843770954f6979f6830ff9a82f987
b55a87e172f834369dfb6a2176712509026e5b3de676343ccdc64410245081d9
GET /1y0o6qdBqYHr.js HTTP/1.1
Host: assets.anytrack.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 103
date: Fri, 26 May 2023 17:23:04 GMT
access-control-allow-origin: *
cache-control: public, max-age=600
etag: W/"67-d1P+A0oIQ3cJVPaXn2gw/5qC+Yc"
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: wIqyW2TU2PC03X7nlcU0bxK65h2U2rHUAhtv71mSafQ8ciD_Ais84g==
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash c6092304e909aa9e763a4b2354136b54
63f1eb0dcd73106db5fd351387e5abc61b5fcabb
cb3ba6e6ee4e3741174d619837bdeef1768ac73c3298de3af89f17556598b26b
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=7200'
Date: Fri, 26 May 2023 17:23:04 GMT
Last-Modified: Fri, 26 May 2023 16:48:52 GMT
Server: ECAcc (dcb/7FE4)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: taInIAUjxbi280OF_h9djjVQaMJ2bXgIl2wIEk1iYbeigQPCaGifbw==
Age: 2052
www.usbfund.com/wp-content/themes/usb/style.css
188.114.97.1200 OK 14 kB URL GET HTTP/3 www.usbfund.com/wp-content/themes/usb/style.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (6744)
Hash ff82997c2be31d6b6fa1e90ac97df1ac
0e377bf32af7d347aa51d4885e18d2cc416c8f9c
78f2946b6bdb5e61eb2683808059bebfab45a2e64eedb7157c5a718389b5957d
GET /wp-content/themes/usb/style.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 13 Apr 2022 22:11:44 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yEhMkk5xmJ%2Fn6qOouagRRvolLAlRFzCoDKnwU3%2Be3ZIxx9J28XmKcHBNumDW70s%2FIMP55OpHeHfU80kRIPsUDgihU6MuEeTAUUtAiP%2BRBb5lC%2FLybqJycI7l2PcT6LTl2C0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42c6d301bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226 1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 49977542ef2fdbcd9968470f79ae714c
b38ca0e73df1b02f2e7df169599eefc247f38c08
244eb78a8ef14b689208f3165fd5ac67716e54aaf15183398e88e3e70ace6042
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 May 2023 17:23:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 30 May 2023 13:46:27 GMT
ETag: "b38ca0e73df1b02f2e7df169599eefc247f38c08"
Last-Modified: Fri, 26 May 2023 13:46:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2058
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7cd7b42f7b560b65-OSL
www.usbfund.com/wp-content/plugins/wp-pagenavi/pagenavi-css.css
188.114.97.1200 OK 684 B URL GET HTTP/3 www.usbfund.com/wp-content/plugins/wp-pagenavi/pagenavi-css.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
Hash 73d29ecb3ae4eb2b78712fab3a46d32d
05ea352ab14ccf04386a4c7d112ad4fec944d551
c2711e9edc60964dcb5aada1bfa59c2d68d3d9dc1baf4a5ee058b4c1bd32c3eb
GET /wp-content/plugins/wp-pagenavi/pagenavi-css.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 06 May 2023 22:48:03 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=szO4Kglk4TSVQMX6tFbdlOqf3gG2aMLWkb5wRLnqO6u6rMi%2FxzjB8vVFx3iNgdMnWc4f5UU0g9kRoMyRElXimYB2ddZ47QdPYLsVTEc9whFjlFQ0PokVnQrug9UOlq3JDuk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42c6d2b1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.sectigo.com/
104.18.15.101 472 B IP 104.18.15.101:0
Hash c288580b6df82442d37bd39fe379bcc8
a51bb8e78b9d51dbbda435ff3ebf741b18e1a8b5
e2886d282cb84d1dae876cdac6bde3de1a21774407ca4e8b85aed422aaaad7d1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 May 2023 17:23:04 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 24 May 2023 18:44:45 GMT
Expires: Wed, 31 May 2023 18:44:44 GMT
Etag: "a51bb8e78b9d51dbbda435ff3ebf741b18e1a8b5"
Cache-Control: max-age=437878,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7cd7b42f7cdbb509-OSL
sf.bayengage.com/sf.js?t=9dc34fe66afe
54.230.111.65200 OK 31 kB URL GET HTTP/2 sf.bayengage.com/sf.js?t=9dc34fe66afe
IP 54.230.111.65:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.bayengage.com
FingerprintD9:72:D2:FF:F7:C8:E2:7C:CA:92:AA:4E:A8:FB:C2:82:88:5A:A6:70
ValidityTue, 28 Feb 2023 00:00:00 GMT - Thu, 14 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (30602), with no line terminators
Hash 6654bcf862f4b66f1a9e8cfbc7742418
d36f6c50dcb8846ed51f02d2d0c3908eb9d7c109
3ab34d81e80f32f5d392519204ff6ad5aadf6a3682b1ea352d44b2ad520d55d8
GET /sf.js?t=9dc34fe66afe HTTP/1.1
Host: sf.bayengage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 30602
date: Fri, 26 May 2023 12:19:34 GMT
last-modified: Fri, 26 May 2023 12:18:24 GMT
etag: "6654bcf862f4b66f1a9e8cfbc7742418"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: UNCK7lIw1ENhGMn1HYpzJJtNCDHnMqaaq0Me8kiuS4zdqXcjs8of3g==
age: 18211
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?hl=en&render=explicit&ver=6.1.3
142.250.74.132200 OK 556 B URL GET HTTP/2 www.google.com/recaptcha/api.js?hl=en&render=explicit&ver=6.1.3
IP 142.250.74.132:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint48:E3:15:66:FC:EA:15:BF:D2:34:C1:DD:60:D4:23:A3:63:57:89:8D
ValidityMon, 08 May 2023 08:25:18 GMT - Mon, 31 Jul 2023 08:25:17 GMT
File type ASCII text, with very long lines (852), with no line terminators
Hash 6eb227f49545693ff09e7e868952f4af
dc2cfcf4a5d33b127c8c5d18dbe577c1e690dfa9
0a22aef6916a4504fc4c1b3f83cf9ad8dec879e875888b7598ee8edde393d86d
GET /recaptcha/api.js?hl=en&render=explicit&ver=6.1.3 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Fri, 26 May 2023 17:23:04 GMT
date: Fri, 26 May 2023 17:23:04 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
scripts.iconnode.com/100980.js
54.230.111.63200 OK 7.7 kB URL GET HTTP/2 scripts.iconnode.com/100980.js
IP 54.230.111.63:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.iconnode.com
Fingerprint2A:FB:28:30:52:32:14:03:84:5D:DF:C4:71:E9:EB:81:7F:A6:1A:60
ValidityMon, 27 Feb 2023 00:00:00 GMT - Tue, 22 Aug 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (46582), with no line terminators
Hash da2dafdfdca2cff284c1e82ede81b3f9
f16a5353f7a625d98b7e3e3f9e5035a0878cf282
b75d6009b5a0803a47896401305f7154f4ed6dee4c71c8f52042ebe60f97b57e
GET /100980.js HTTP/1.1
Host: scripts.iconnode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 7683
last-modified: Mon, 26 Sep 2022 18:10:24 GMT
content-encoding: gzip
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 May 2023 06:36:10 GMT
cache-control: max-age=0
etag: "05a6d57113e7870d8851ed0faf8ca12f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TQyepelbTrCrf-lMxaEY8Q8Ri2PIBSYtCB1UT49uPksrPuyg3ZTojQ==
age: 38815
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-NW5DZCL
142.250.74.168200 OK 59 kB URL GET HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-NW5DZCL
IP 142.250.74.168:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (7865)
Hash 7b7bcd55ea1c8f68db239e3f7cd98f7e
d0a813e4da970afecb14adb7a91da131b756f8dc
8bddad8612f03145d006e47b80fb639fc1c6bd518aece991004ddca5a575a64c
GET /gtm.js?id=GTM-NW5DZCL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:04 GMT
expires: Fri, 26 May 2023 17:23:04 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 May 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 58581
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash a5dc40788a7f03b449952c9e029f8099
74a40e0eabcecb7b84aac44e760b89c268886e4f
598e0b0f420de344bed7201b5eb3d74e45f118a165922a754c3b74aa6d659e19
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:23:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:23:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:23:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash 9f00aac479dac582db2e3e2b61ecc619
4c99cd434e986d7bc5b67fde18796a0edc837bac
d05db643636b28263bd4f0093f1c2aa135473db1065a280a7d9764c32177952d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:23:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d.impactradius-event.com/A870624-b043-4b58-adb6-a8c4d22ccc5b1.js
35.186.249.72200 OK 13 kB URL GET HTTP/2 d.impactradius-event.com/A870624-b043-4b58-adb6-a8c4d22ccc5b1.js
IP 35.186.249.72:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerSectigo Limited
Subject*.impactradius-event.com
FingerprintEE:D3:74:1B:8F:1B:24:D4:38:F2:AE:C9:B9:44:66:42:09:32:9A:5A
ValidityWed, 07 Dec 2022 00:00:00 GMT - Sat, 06 Jan 2024 23:59:59 GMT
File type C source, ASCII text, with very long lines (40914), with no line terminators
Hash 6685f4bad8099206373dd4d345ef6480
5b0deb45e1cfc5dc4d6e0c9448c56242a011ef97
cfafe2d61bcbd522d6281105cbc92eb690a1ca39702bd2da0bb8daf63b4fb2c4
GET /A870624-b043-4b58-adb6-a8c4d22ccc5b1.js HTTP/1.1
Host: d.impactradius-event.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-guploader-uploadid: ADPycdvPoHWrrOhQXcNIlBB9hyajzoS-YVv0K3SWixtPdU1spW9phPCWHtYEi9VUeb9naJD3_46Q4g7cxs7kCVavIM_bGA
x-goog-generation: 1581997649126919
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12876
content-encoding: gzip
x-goog-hash: crc32c=PZt+Nw==, md5=gz6cJDHxap5OWQ2MGKARaQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12876
access-control-allow-origin: *
server: UploadServer
date: Fri, 26 May 2023 17:23:04 GMT
expires: Fri, 26 May 2023 17:28:04 GMT
cache-control: public,max-age=900,s-maxage=300
last-modified: Tue, 18 Feb 2020 03:47:29 GMT
etag: "833e9c2431f16a9e4e590d8c18a01169"
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.usbfund.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
188.114.97.1200 OK 14 kB URL GET HTTP/3 www.usbfund.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type HTML document text\012- C source, ASCII text, with very long lines (40914)
Hash 39206ce68fc28f3008edcabe5cca70a8
960d2ec1cd4c1503bbfd9bbeb6c3d8401854ee9f
40f3850bacc7dbce954763878091d7798279d953a9948ff4a2ebb1b0ea484b5e
Analyzer Verdict Alert fortinet Malware
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: application/javascript
last-modified: Thu, 25 May 2023 08:39:22 GMT
etag: W/"646f1eba-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d%2BKV1XNt17BeNmYC715Tv8PFWOboRjpJsfkAzGzXnSzcxT%2Foi0t1ZPCbIJoZmLOOygab11SL%2FB25aFiTsNaywQYCTdeTJrCslr%2FTO9Bm%2BObovl86BU5e%2FtweHewmcuxkvp4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b42cada41bfa-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sun, 28 May 2023 17:23:03 GMT
cache-control: max-age=172800, public
content-encoding: gzip
ocsp.globalsign.com/gsrsaovsslca2018
104.18.20.226 1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.20.226:0
Hash 49977542ef2fdbcd9968470f79ae714c
b38ca0e73df1b02f2e7df169599eefc247f38c08
244eb78a8ef14b689208f3165fd5ac67716e54aaf15183398e88e3e70ace6042
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 May 2023 17:23:04 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 30 May 2023 13:46:27 GMT
ETag: "b38ca0e73df1b02f2e7df169599eefc247f38c08"
Last-Modified: Fri, 26 May 2023 13:46:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2058
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7cd7b4310b78b4ee-OSL
js.hs-scripts.com/5627136.js?integration=WordPress&ver=9.2.12
104.18.134.59200 OK 918 B URL GET HTTP/2 js.hs-scripts.com/5627136.js?integration=WordPress&ver=9.2.12
IP 104.18.134.59:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5A:DE:00:16:F4:3C:EB:0D:2A:0C:6E:27:59:94:38:E3:D9:B1:20:3E
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (502)
Hash 3ac0d86a8386903c30f7f33d91e7ed30
b58fbdee29b5030cb7477bff7adebddc6c35659c
a7ac4ffce095270b6daab4a6a21350c38205fe0bd496fd3ec558b441684616a3
GET /5627136.js?integration=WordPress&ver=9.2.12 HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:23:04 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B360F9DC6E3FBC354B3CD106E62DB997306FC9AC3000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: c54618cf-9a09-4a7d-9766-2d53cdfe49f8
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.usbfund.com
x-envoy-upstream-service-time: 7
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-598c95b5b7-ltr78
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: d7d6bac3-5d3f-4bdf-acfa-853ed6e84523
last-modified: Fri, 26 May 2023 16:13:05 GMT
cf-cache-status: EXPIRED
expires: Fri, 26 May 2023 17:24:04 GMT
server: cloudflare
cf-ray: 7cd7b42e1fdc0b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
shield.sitelock.com/shield/usbfund.com
45.60.14.54200 OK 11 kB URL GET HTTP/1.1 shield.sitelock.com/shield/usbfund.com
IP 45.60.14.54:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerSectigo Limited
Subject*.sitelock.com
FingerprintDE:BD:8E:1E:86:D4:91:AC:F6:A4:EA:0E:96:1E:C4:D3:20:EE:C7:80
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type PNG image data, 117 x 67, 8-bit/color RGBA, non-interlaced\012- data
Hash 73b6e7117857b1d55e6990a5f8242902
b10db1ad9e640ae7e94a90be204dc6b9fda47f18
424aa00695ac65339f62a4898e38d2b5d1e4717b2d3638e325107e6f020486b7
GET /shield/usbfund.com HTTP/1.1
Host: shield.sitelock.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png; charset=ISO-8859-1
Content-Length: 10571
Date: Fri, 26 May 2023 17:22:44 GMT
Server: lighttpd
Set-Cookie: nlbi_275317=YKRKS7ZOxAgM5d3vmBeFbAAAAADXjHid1flJ9nnzrJoXdntJ; path=/; Domain=.sitelock.com
visid_incap_275317=EUP6F/20Qw2A+I0hD4+AN/fqcGQAAAAAQUIPAAAAAADHxWjpszibDlsX11bRCjS8; expires=Fri, 24 May 2024 22:16:37 GMT; HttpOnly; path=/; Domain=.sitelock.com
incap_ses_633_275317=3AClHXc/fVRs+HLNvN7ICPjqcGQAAAAAQ4TUJFB8Pm+ffkngm8fufA==; path=/; Domain=.sitelock.com
X-CDN: Imperva
X-Iinfo: 8-24486505-24459686 2NNN RT(1685121783928 25) q(0 0 0 0) r(4 4)
www.usbfund.com/wp-content/uploads/icon-arrow-down-white.png
188.114.97.1200 OK 172 B URL GET HTTP/3 www.usbfund.com/wp-content/uploads/icon-arrow-down-white.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 14 x 14, 8-bit gray+alpha, non-interlaced\012- data
Hash 26d3bceaf73fad28fb322b6646860f78
1b70241f618df47a01729534d376a57c57bd8c07
0077bc52b60eb51d8785f3aa812a2cdcce59acd3a0b70a801b82c563787e1a7c
GET /wp-content/uploads/icon-arrow-down-white.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/wp-content/themes/usb/style.css
Cookie: _gd1685121784685=; wc_visitor=100980-7b692be6-13aa-d599-78f0-e69cff572b78; _gd1685121784687=; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:05 GMT
content-type: image/png
content-length: 172
last-modified: Sat, 28 Sep 2019 00:15:12 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1pq29JkJjzZV5jH8dm1rM%2Ft5m%2F1jr1cFNRvX7QMS5RGRm0DXv%2BoWYRxvIvISjMLLSslv%2B08K2a3TJbYeMU%2BvayJ0UtQ0mE0e0pvnf2bLXVbgZigkj20puK%2FEJlclAPDMFZI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b4344d191bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/themes/usb/js/plugins.js
188.114.97.1200 OK 50 kB URL GET HTTP/3 www.usbfund.com/wp-content/themes/usb/js/plugins.js
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type HTML document, ASCII text, with very long lines (17791), with CRLF line terminators
Hash bfaeba156e7335456a0a079c2ebc4e54
08a7e1d38d2a0772caf660b897f5a27cc310058a
dea3dfdd01f0f244d07e494f7f6447896b06a42c9ccab081c2b0ea612bb2b9ec
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/usb/js/plugins.js HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:35:52 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d%2BLDNfQtl%2BPVYdnhx3aEz%2FpEgzNBXLg%2BK836LqlzKMQoxHynML33q%2F%2FNhyr05siy5xKiKEmACmPH8e72wI1%2Fx25dRtYzMtBDNSPXpeGD%2Bcotq6XxHtiElcHu7gq%2B%2BBm44%2FU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42cadb21bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-arrow-down-black.png
188.114.97.1200 OK 195 B URL GET HTTP/3 www.usbfund.com/wp-content/uploads/icon-arrow-down-black.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash f984736b4b9dfe03bb8831a718c6a238
d95304fa5fed6fdf9020c21ece2b7e35aec4808c
4944824b4a23581a4660857551680fffd806f6fa42e3d9414fb1529ba78651b9
GET /wp-content/uploads/icon-arrow-down-black.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/wp-content/themes/usb/style.css
Cookie: _gd1685121784685=; wc_visitor=100980-7b692be6-13aa-d599-78f0-e69cff572b78; _gd1685121784687=; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:05 GMT
content-type: image/png
content-length: 195
last-modified: Sat, 28 Sep 2019 00:15:09 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Cpju4T%2Fcamw7jzD1lDzom4DcvVg%2BIMiqL%2FQ2QJQ9GVu7gNO%2FXzhnuCBw6mdR%2FP%2FoRR77G9R0dq%2BmyrraGOpBh1rjn9%2BhWpZvRiikf8epxTZC342GamEN6l911Ac%2BIy1jcO0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b4347d401bfa-OSL
alt-svc: h3=":443"; ma=86400
js.hs-scripts.com/5627136.js
104.18.134.59200 OK 944 kB URL GET HTTP/2 js.hs-scripts.com/5627136.js
IP 104.18.134.59:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint5A:DE:00:16:F4:3C:EB:0D:2A:0C:6E:27:59:94:38:E3:D9:B1:20:3E
ValidityWed, 03 May 2023 00:00:00 GMT - Thu, 02 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (502)
Size 944 kB (944518 bytes)
Hash 3ac0d86a8386903c30f7f33d91e7ed30
b58fbdee29b5030cb7477bff7adebddc6c35659c
a7ac4ffce095270b6daab4a6a21350c38205fe0bd496fd3ec558b441684616a3
GET /5627136.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:23:04 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B971AB08A04FA0AC452B0A89B129276E148978E68000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: e9badc23-cfc6-4316-ade0-737203524469
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.usbfund.com
x-envoy-upstream-service-time: 6
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-598c95b5b7-6qscq
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 0deb19b6-2405-4f77-96de-0a7b597ccb1b
last-modified: Fri, 26 May 2023 16:13:05 GMT
cf-cache-status: EXPIRED
expires: Fri, 26 May 2023 17:24:04 GMT
server: cloudflare
cf-ray: 7cd7b42e2fe30b06-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/uploads/bg-section-business.jpg
188.114.97.1200 OK 349 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/bg-section-business.jpg
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x600, components 3\012- data
Size 349 kB (348779 bytes)
Hash de5e6695d4d920c79dc59cf349165609
fdbc5c62b647b966b29475c703fef8e6df2265ac
39e955407048d0e1e09f62e68f65d266f2b641512ed1918c79c3778cca72b931
GET /wp-content/uploads/bg-section-business.jpg HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/wp-content/themes/usb/style.css
Cookie: _gd1685121784685=; wc_visitor=100980-7b692be6-13aa-d599-78f0-e69cff572b78; _gd1685121784687=; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:05 GMT
content-type: image/jpeg
content-length: 348779
last-modified: Sat, 28 Sep 2019 00:15:01 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7Zqcrh8sDWN%2BcMi6Icj4mq%2F99lanQw%2FMXRvgw721y8lcSqz5SOELV0HO5yyP2Ls9zJfAbv%2B2WFUFxysdGb5mf1DDgktm6JBkiR%2Bd%2FugziS8vvh730w9NPP4a%2FZcuev71KZg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b434dda31bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/fonts/socicon.woff
188.114.97.1200 OK 31 kB URL GET HTTP/3 www.usbfund.com/fonts/socicon.woff
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type Web Open Font Format, TrueType, length 31444, version 1.0\012- data
Hash dcbd1f9c4275862f002f21619e96b8f4
a97cd865925e5102ae7c25aa5dd09112ccf50651
a680b776319127695950fd7c490b17cd15120d683bde57845707a2f7dc0f1a74
Analyzer Verdict Alert fortinet Malware
GET /fonts/socicon.woff HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/wp-content/themes/usb/style.css
Cookie: _gd1685121784685=; wc_visitor=100980-7b692be6-13aa-d599-78f0-e69cff572b78; _gd1685121784687=; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+; __ss=1685121784809; __ss_referrer=https%3A//www.usbfund.com/%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526; IR_gbd=usbfund.com; IR_7486=1685121784854%7C0%7C1685121784854%7C%7C
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:05 GMT
content-type: font/woff
content-length: 31444
last-modified: Fri, 27 Sep 2019 21:47:06 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j37ehWu52hXbyLWecFFMJaRnpfOnyPajTK1sWH6op6%2F3jo0P%2Faz%2FUI2BggDT0iunJQbL5xY2YkcefwXgEhN4GS%2BDbNjhTqMnVvVPMKPIAKtWdvLcfQ8m9wiImHVRNGJXXyU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b435de741bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/themes/usb/css/grid.css
188.114.97.1200 OK 8.3 kB URL GET HTTP/3 www.usbfund.com/wp-content/themes/usb/css/grid.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type assembler source, ASCII text, with very long lines (3536), with CRLF line terminators
Hash 4181231e03890eec942556e99056c078
53f540c04ad3871774cab94d7cf4fd7f48178d05
fe2d7f946ad400cef515d2933476fb3d30f45199a119a668338ab9c7b4061711
GET /wp-content/themes/usb/css/grid.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:35:49 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xvdFr8rnB8vvkXlmjwiX2MH5FGyQTHk2G7%2BRQ8AebsvDNl6XvbOSg9U2RFOUBPJyTcissq7IgzEHF60GdSUGcQoMprUDup3C728We2qFyLyb8ScpmAlJYzHNGF3HG%2F4kCpk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42c5d241bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash fc757271ec057273ef886c129a7bffd0
2e6c8df3cbe82d4dde32cdf7f71a6668dd536287
72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:23:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash d4e2d954927aa1532ece1f3aad871a48
64080e5552252600638702178c90cd946984d117
7dc0934c025e5057e7011bc9b1d43c7dad69fd03c2398f15baab0385a96b230d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:23:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash d4e2d954927aa1532ece1f3aad871a48
64080e5552252600638702178c90cd946984d117
7dc0934c025e5057e7011bc9b1d43c7dad69fd03c2398f15baab0385a96b230d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:23:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 05:00:02 GMT
expires: Fri, 24 May 2024 05:00:02 GMT
cache-control: public, max-age=31536000
age: 130983
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2
IP 216.58.207.227:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15528, version 1.0\012- data
Hash 595fe3fc0b85f3cc9ef5aed2d519abc5
96e76de44987e9dec2f97f1e5eb7a18c738daf5d
747d5a0865fe76129cc17fe70097fd5b1db733ed3bbfa0210a8505d80c14ab5a
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 18:55:52 GMT
expires: Wed, 22 May 2024 18:55:52 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:53:07 GMT
content-type: font/woff2
age: 253633
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 07:44:41 GMT
expires: Sun, 19 May 2024 07:44:41 GMT
cache-control: public, max-age=31536000
age: 553104
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 08:09:04 GMT
expires: Sun, 19 May 2024 08:09:04 GMT
cache-control: public, max-age=31536000
age: 551641
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
IP 216.58.207.227:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15660, version 1.0\012- data
Hash d7b0b953a50fddaa88089b5b787cf719
2f85bc568b27659a3d6452f58f9fd7678450326d
e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 07:42:17 GMT
expires: Fri, 24 May 2024 07:42:17 GMT
cache-control: public, max-age=31536000
age: 121248
last-modified: Tue, 19 Apr 2022 18:42:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 21:39:40 GMT
expires: Wed, 22 May 2024 21:39:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 243805
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 03:11:48 GMT
expires: Sun, 19 May 2024 03:11:48 GMT
cache-control: public, max-age=31536000
age: 569477
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.r2m02.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 3067e56e62d14630f14d268fb71e1b6b
e6f3d444ffece05db7ee41d76883ab9680816796
3ba290fd84152483d25717bec30769d8c5b6ea6f1f79bc5e2a07db252aa533b1
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=7200'
Date: Fri, 26 May 2023 17:23:05 GMT
Last-Modified: Fri, 26 May 2023 16:56:51 GMT
Server: ECAcc (bsa/EA9A)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: SalFpyhK3eNH72fyXzpSKPoguBfcUeGPfBS5EfURAMxM294gVpTC7w==
Age: 1574
widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
54.230.111.27 3.5 kB URL widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
IP 54.230.111.27:0
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13396)
Hash a14ca16dcf08b1eb1de1175abdcd3cda
da20904985aa00a1c013374b861fc4c1469ac057
71cd0f30593ec11e666de6f9e0073737e3f29f0fdcd393dc92d0238c77a703de
GET /trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 3451
last-modified: Mon, 08 May 2023 11:44:30 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 25 May 2023 18:46:34 GMT
cache-control: max-age=86400
etag: "ec8997a01685f3d46f7e65c853a558f4"
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MOCoEeoNOSE_I9vJAb-cJApfq6CGCUV9q1y8jhAuhX9lxoAWJKXZiw==
age: 81392
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash fc757271ec057273ef886c129a7bffd0
2e6c8df3cbe82d4dde32cdf7f71a6668dd536287
72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:23:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
koi-3qnetrwct6.marketingautomation.services/client/ss.js?ver=1.1.1
130.211.21.179200 OK 9.0 kB URL GET HTTP/2 koi-3qnetrwct6.marketingautomation.services/client/ss.js?ver=1.1.1
IP 130.211.21.179:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGlobalSign nv-sa
Subject*.marketingautomation.services
FingerprintB7:49:65:C5:92:42:69:3D:A0:BB:F8:6B:B1:7D:06:FF:FF:16:AC:36
ValidityFri, 03 Jun 2022 16:56:02 GMT - Wed, 05 Jul 2023 16:56:01 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 58bd115e5b03b5c6791a4f1c2951965d
fd5786a0352e5c08bde4da3bc8606cf3a2fe397c
4fadcd63046b6a829c55fa4f70d3be791edec0b00bd833e34b510a904a6975b9
GET /client/ss.js?ver=1.1.1 HTTP/1.1
Host: koi-3qnetrwct6.marketingautomation.services
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 26 May 2023 17:23:04 GMT
content-type: application/javascript
last-modified: Tue, 23 May 2023 18:44:46 GMT
vary: Accept-Encoding
etag: W/"646d099e-2fe4"
expires: Fri, 02 Jun 2023 17:23:04 GMT
cache-control: max-age=604800, public
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/main.js
54.230.111.27200 OK 31 kB URL GET HTTP/2 widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/main.js
IP 54.230.111.27:443
Requested by https://widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9#locale=en-US&styleHeight=240px&styleWidth=100%25&theme=light&stars=5&schemaType=Organization
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (64030), with no line terminators
Hash 265b488523a0763302653f8358e0fa65
218ee5bb91e0fe1a197efeaeb1f38e9005c9a686
34e06b1bd7b555ec33e5c22b40489471dcd0b354f473115e4bce44caf16adb73
GET /trustboxes/54ad5defc6454f065c28af8b/main.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 31063
last-modified: Mon, 08 May 2023 11:44:33 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Fri, 26 May 2023 05:26:40 GMT
cache-control: max-age=86400
etag: "1a13db5176936d0e7afbdc985cc7bdf3"
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: PRaOWjeICHviFraiHCSPcmajGX1McRbAv_p-5rHDGWGyBY-3liiTcQ==
age: 42986
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-YYEX7W0G95&l=dataLayer&cx=c
142.250.74.168200 OK 81 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-YYEX7W0G95&l=dataLayer&cx=c
IP 142.250.74.168:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (3288)
Hash 37ab2c147ea25a423d12a23eed8e834a
2b5f465877ce859ae97a1655e60fab1983618376
29301da6b30da6c9190f0487c8f00c0b3b0449d176ad2536e8faaac90c2aa3cf
GET /gtag/js?id=G-YYEX7W0G95&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:05 GMT
expires: Fri, 26 May 2023 17:23:05 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80746
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.googleapis.com/css?family=Roboto:400,900,700,500,300,100
142.250.74.74200 OK 874 B URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto:400,900,700,500,300,100
IP 142.250.74.74:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type gzip compressed data, max compression\012- data
Hash 32f64e9ce732c595d4dc0409b80d7301
af9b6a460e327a2178d8cf3050b9c75b4f2c8e13
894a2751df66d04313a88230386e3ab18f226b67774a39275c9521b7092d8a74
GET /css?family=Roboto:400,900,700,500,300,100 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 17:23:04 GMT
date: Fri, 26 May 2023 17:23:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/plugins/formidable/css/formidableforms.css
188.114.97.1200 OK 18 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/formidable/css/formidableforms.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (65436)
Hash 399af443c8387c8a98213f936add60f4
e9e2dca0ad4644058ec16d236db729c3026610a9
b51be19b9fba0cc27bbaa03bc6ba7b6203f5960ec2aefb5bc8e49ff514079e45
GET /wp-content/plugins/formidable/css/formidableforms.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 14 Jan 2023 13:08:34 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wgkpi23578uJS2vMssizB96Y5rQTnNmtLms10PKc6SBDGrdx0Hee9a1ZoDc0kVVJZw%2FeEC%2BdjtMZ3%2F6ajZ38ZQAqL4sAITsobZZINDBH9xKOEUH0lDU0R0%2BdbcfCRKEQ534%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42c6d271bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash c5984076b8f292736cbe1e27e05342d6
4c362d202520fa7f1bbcd68ea738e891971e4911
7264c8d72e8a0c7b5ed882b39e63b88af8e3fff067b350eb2645b2bd69bc9dff
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=7200'
Date: Fri, 26 May 2023 17:23:05 GMT
Etag: "647099d8-1d7"
Last-Modified: Fri, 26 May 2023 15:53:26 GMT
Server: ECAcc (dcb/7F10)
X-Cache: Miss from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AFvM7B7f8wMZcc4FEekGPT2xP9DrMRtI1dHSLxRh2oirXtQ1VLLLBw==
Age: 5380
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash c5984076b8f292736cbe1e27e05342d6
4c362d202520fa7f1bbcd68ea738e891971e4911
7264c8d72e8a0c7b5ed882b39e63b88af8e3fff067b350eb2645b2bd69bc9dff
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=7200'
Date: Fri, 26 May 2023 17:23:05 GMT
Last-Modified: Fri, 26 May 2023 16:21:16 GMT
Server: ECAcc (dcb/7338)
X-Cache: Miss from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: qHg_YFsODZnn4sCEZF4Ras0_TJcfr7SvSvCJtBV-WFqGEeHKpNkTjA==
Age: 3709
www.usbfund.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
188.114.97.1200 OK 241 kB URL GET HTTP/3 www.usbfund.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (11126)
Size 241 kB (240788 bytes)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 11 Oct 2021 18:27:21 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uWrFcnCbl0PKKV8sonuKKgvRqvfiotp4UGEeJq1jT2RURIRLWCCXRTV6RJlFRsiHuQX9dRwJnR6D6gak5XOFXkEh89IhJSjxoSWSgfKVkblHnxn2VTBcOOGALdAUZwo2CS4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42c8d521bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.sendlane.com/js/eventing.js
34.251.201.224404 Not Found 248 kB URL GET HTTP/2 www.sendlane.com/js/eventing.js
IP 34.251.201.224:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerLet's Encrypt
Subjectwww.sendlane.com
Fingerprint19:53:25:E1:93:70:B4:98:E1:A8:72:35:9D:27:59:1A:61:87:0E:8F
ValiditySun, 23 Apr 2023 10:15:41 GMT - Sat, 22 Jul 2023 10:15:40 GMT
File type gzip compressed data, from Unix\012- data
Size 248 kB (248201 bytes)
Hash b6f5eec686aac47f6fc0f179c056733f
a88827216d3dc84b7a61f9122bc09f8875e23fd6
7567667ca413b73b7b84f753164ce4392409ca2a16429a1c4ff7badbde929f5f
GET /js/eventing.js HTTP/1.1
Host: www.sendlane.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.usbfund.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 26 May 2023 17:23:05 GMT
content-type: text/html
cache-control: private, max-age=0, must-revalidate
content-encoding: gzip
content-security-policy: frame-ancestors 'self'
etag: W/"cc071382c87fd272c2221899ee443015"
last-modified: Thu, 25 May 2023 20:40:39 GMT
x-frame-options: SAMEORIGIN
accept-ranges: bytes
x-served-by: cache-iad-kcgs7200144-IAD, cache-dub4350-DUB
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1685121785.908789,VS0,VE140
vary: Accept-Encoding,x-wf-forwarded-proto
x-cluster-name: eu-west-1-prod-edge-blue
X-Firefox-Spdy: h2
widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=240px&styleWidth=100%25&theme=light&stars=5&schemaType=Organization&url=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=57559cd10000ff00058effd9&widgetId=54ad5defc6454f065c28af8b
54.230.111.27 0 B URL widget.trustpilot.com/stats/TrustboxImpression?locale=en-US&styleHeight=240px&styleWidth=100%25&theme=light&stars=5&schemaType=Organization&url=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=57559cd10000ff00058effd9&widgetId=54ad5defc6454f065c28af8b
IP 54.230.111.27:0
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /stats/TrustboxImpression?locale=en-US&styleHeight=240px&styleWidth=100%25&theme=light&stars=5&schemaType=Organization&url=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A109.0)%20Gecko%2F20100101%20Firefox%2F111.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=57559cd10000ff00058effd9&widgetId=54ad5defc6454f065c28af8b HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
DNT: 1
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 204 No Content
cache-control: no-store,no-cache
date: Fri, 26 May 2023 17:23:05 GMT
pragma: no-cache
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-cache: Miss from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: cGx8U6IKN9TlJZAxQntYJi11rhTi1dwomh5GTjDXxxHApW2AbfgZKg==
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.227200 OK 7.9 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.227:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:16:36 GMT
expires: Thu, 23 May 2024 00:16:36 GMT
cache-control: public, max-age=31536000
age: 234390
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/plugins/AffiliateWP-master/assets/js/tracking.min.js?ver=2.1.6.1
188.114.97.1200 OK 1.3 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/AffiliateWP-master/assets/js/tracking.min.js?ver=2.1.6.1
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (2972), with no line terminators
Hash 7646a5336d19b5eaefb1dbb3ad0f0a6e
6fe38de00b9510e60397a185cf673dfd0bd1dd79
4fc76a0641b98f34feaf8da716614e82bab80d8e270fcb3539b278ae609f6ea6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/AffiliateWP-master/assets/js/tracking.min.js?ver=2.1.6.1 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:24:33 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AUfVIgkoO3Mlyj8xa4bdsZ6N2PCPHZ3BlxaJvgvu296IKdKGpmvFhbY%2BdiT7TVTiDPbzF0U9qu0tDCV6JMZcif%2FzZDYvYphNdYQ2JJPwzJIJ4RV6dIqGnjh%2BH%2FDRsaIDaQ8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42c8d511bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
omnisnippet1.com/forms/main.js?v=2023-05-26T17
104.18.17.174200 OK 23 kB URL GET HTTP/2 omnisnippet1.com/forms/main.js?v=2023-05-26T17
IP 104.18.17.174:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint34:DC:78:A8:0D:39:3D:C9:A7:9C:B8:55:F1:27:B3:01:7A:95:E5:BB
ValidityMon, 30 Jan 2023 00:00:00 GMT - Mon, 29 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (59903)
Hash 8e166c04bc237612a594999b3bc13627
0dee279219f6ea6a6366f9ac6132603e9c12c3b9
c55c2bdada6711902295dd8b8a2aee21fa71854e81cbe94bf9ce4b19209173cd
GET /forms/main.js?v=2023-05-26T17 HTTP/1.1
Host: omnisnippet1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:23:06 GMT
content-type: application/javascript
last-modified: Fri, 21 Apr 2023 09:17:18 GMT
etag: W/"6442549e-ea20"
expires: Fri, 26 May 2023 17:15:48 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 3568
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 7cd7b43ae8a1b524-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.sendlane.com/js/eventing.js
34.251.201.224404 Not Found 12 kB URL GET HTTP/2 www.sendlane.com/js/eventing.js
IP 34.251.201.224:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerLet's Encrypt
Subjectwww.sendlane.com
Fingerprint19:53:25:E1:93:70:B4:98:E1:A8:72:35:9D:27:59:1A:61:87:0E:8F
ValiditySun, 23 Apr 2023 10:15:41 GMT - Sat, 22 Jul 2023 10:15:40 GMT
File type gzip compressed data, from Unix\012- data
Hash 7525d25400f16ff07e08512394e635b8
fe11b42e44857981064149dbf3be80197a066e07
5974885658ef8ae5fdea854eb9ba33f701ea0062e886bc4585a4c15fa034f3f2
GET /js/eventing.js HTTP/1.1
Host: www.sendlane.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.usbfund.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Fri, 26 May 2023 17:23:06 GMT
content-type: text/html
cache-control: private, max-age=0, must-revalidate
content-encoding: gzip
content-security-policy: frame-ancestors 'self'
etag: W/"cc071382c87fd272c2221899ee443015"
last-modified: Thu, 25 May 2023 20:40:39 GMT
x-frame-options: SAMEORIGIN
accept-ranges: bytes
x-served-by: cache-iad-kjyo7100073-IAD, cache-dub4325-DUB
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1685121786.925025,VS0,VE151
vary: Accept-Encoding,x-wf-forwarded-proto
x-cluster-name: eu-west-1-prod-edge-blue
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/uploads/cropped-iconusbfund-192x192.png
188.114.97.1200 OK 20 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/cropped-iconusbfund-192x192.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 273b22a347363c8bfaa20ddcca897d53
0bf5106cb96db26030ae4bee997db3aef8914130
3c673a54e1fea64b6b57dc31365058249f665f327b0e032746b310a2f6a2c0b2
GET /wp-content/uploads/cropped-iconusbfund-192x192.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Cookie: wc_visitor=100980-7b692be6-13aa-d599-78f0-e69cff572b78; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+; __ss=1685121784809; __ss_referrer=https%3A//www.usbfund.com/%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526; IR_gbd=usbfund.com; IR_7486=1685121784854%7C0%7C1685121784854%7C%7C; 3043=t; _gcl_au=1.1.1888727785.1685121785; soundestID=20230526172305-PCEGcPxaRJVL0fZa5i2yykWcFzuXLBx2jpLzJcu0Tdl8vbpZa; omnisendSessionID=fjMrBafpLiPzfC-20230526172305; _ga_YYEX7W0G95=GS1.1.1685121785.1.0.1685121785.0.0.0; _ga=GA1.1.1680120795.1685121786; wc_swap=9493560881+..+9494611140+..+68836; __ss_tk=202305%7C6470eaf9163dae62070bfd11; prism_224499963=e5f15df2-69a8-44b9-97e3-bac5483925d5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:06 GMT
content-type: image/png
content-length: 19606
last-modified: Sat, 28 Sep 2019 00:15:06 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uceCsF5LFmig8oJKQchbbRINQex944N%2BQLVJr%2Fpg7P7E92lnGCxEQXaE2LsYQVZPAqZ0XfBbvNTv%2F1si81QX93IuVO05FLpKs0dtOO50y9wYIHMyRvWCH0XykRqVNnJ6%2Fqs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b43d4d821bfa-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/cropped-iconusbfund-32x32.png
188.114.97.1200 OK 1.4 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/cropped-iconusbfund-32x32.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 331f8022f00882988b3dd50a45511040
295b137770dedf8de5101ba30c05f515e21b6fb0
f83bb7fbb6ab6b05a6129fdc513d6edeb3b9029b0cbe6cf3eae361ad56c58cf5
GET /wp-content/uploads/cropped-iconusbfund-32x32.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Cookie: wc_visitor=100980-7b692be6-13aa-d599-78f0-e69cff572b78; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+; __ss=1685121784809; __ss_referrer=https%3A//www.usbfund.com/%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526; IR_gbd=usbfund.com; IR_7486=1685121784854%7C0%7C1685121784854%7C%7C; 3043=t; _gcl_au=1.1.1888727785.1685121785; soundestID=20230526172305-PCEGcPxaRJVL0fZa5i2yykWcFzuXLBx2jpLzJcu0Tdl8vbpZa; omnisendSessionID=fjMrBafpLiPzfC-20230526172305; _ga_YYEX7W0G95=GS1.1.1685121785.1.0.1685121785.0.0.0; _ga=GA1.1.1680120795.1685121786; wc_swap=9493560881+..+9494611140+..+68836; __ss_tk=202305%7C6470eaf9163dae62070bfd11; prism_224499963=e5f15df2-69a8-44b9-97e3-bac5483925d5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:06 GMT
content-type: image/png
content-length: 1438
last-modified: Sat, 28 Sep 2019 00:14:07 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nChgXZQeOnDzldMRJXmgMwYps6KHUq78sjaulcFrjJcyF1KmqBBUSjoHQdoray6z%2FZU7JCM8yIma2ThS13HG%2BOer27pAHc7hS4zCSlbcexAjHG87%2F7wACR85LXB4xVFT28o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b43d5d871bfa-OSL
alt-svc: h3=":443"; ma=86400
trackcmp.net/t_prism_sitemessages.php?trackid=224499963&prismid=e5f15df2-69a8-44b9-97e3-bac5483925d5&url=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526
172.64.145.151200 OK 0 B URL GET HTTP/2 trackcmp.net/t_prism_sitemessages.php?trackid=224499963&prismid=e5f15df2-69a8-44b9-97e3-bac5483925d5&url=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526
IP 172.64.145.151:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintD9:67:4E:CC:4A:0F:16:72:90:95:A2:D6:A7:50:E7:85:F3:84:7E:DA
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t_prism_sitemessages.php?trackid=224499963&prismid=e5f15df2-69a8-44b9-97e3-bac5483925d5&url=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526 HTTP/1.1
Host: trackcmp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:23:06 GMT
content-type: text/javascript;charset=UTF-8
content-length: 0
cache-control: no-cache, private
p3p: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
x-envoy-upstream-service-time: 33
x-powered-by: PHP/8.1.19
x-privacy-policy: You can find our privacy policy here: https://www.activecampaign.com/help/privacy-policy/
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7cd7b43c7a6db505-OSL
X-Firefox-Spdy: h2
www.usbfund.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.3
188.114.97.1200 OK 172 kB URL GET HTTP/3 www.usbfund.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.3
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (15660)
Size 172 kB (171740 bytes)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.3 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:04 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 17 Aug 2022 11:46:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DeU6COV%2FiG1DjAcAzgznrXFO7xXDos3ANUQ%2BOVTaPT99F4rnzyY5YBe5hLo%2FwM6hcu%2B3gHVXbfeOXkWAab9iHTh1twblc9S3j5eA4G8L9eLdIaSFY%2F8FtBUig3XawSe2mOw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b43079a61bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.checkbca.org/stylesheets/font-awesome.min.css
207.137.0.213200 OK 7.0 kB URL GET HTTP/2 www.checkbca.org/stylesheets/font-awesome.min.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /stylesheets/font-awesome.min.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: text/css
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:05 GMT
content-length: 6965
X-Firefox-Spdy: h2
www.checkbca.org/stylesheets/jquery.selectBox.css
207.137.0.213301 Moved Permanently 180 B URL GET HTTP/2 www.checkbca.org/stylesheets/jquery.selectBox.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 65d99af646ca7622a01fc0d3eb7a6b6d
a6b71820c0572f17c183b5669255346947bc3492
425fea6b4acfc8c48eee414af2be035b5c77a87742cf0bb46b136d07e0c29f6a
GET /stylesheets/jquery.selectBox.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
cache-control: no-cache
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/stylesheets/jquery.selectbox.css
date: Fri, 26 May 2023 17:23:05 GMT
content-length: 180
X-Firefox-Spdy: h2
www.checkbca.org/stylesheets/style.css
207.137.0.213200 OK 11 kB URL GET HTTP/2 www.checkbca.org/stylesheets/style.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type assembler source, Unicode text, UTF-8 text, with very long lines (548), with CRLF line terminators
Hash ae754d65a6d08cca222317ce7477945d
88ce5023d9268ef9d232e60303c892c9d1725e78
79ce2aec71e345a17562aa20bacb7d319f29e5d08ee338f92e0cfc4c1e69acb3
GET /stylesheets/style.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: text/css
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:05 GMT
content-length: 10899
X-Firefox-Spdy: h2
www.checkbca.org/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZBAd-3g2iBrrqGpefWWgmRAZw8TONzGF-aV_9TjkbkyCvwDWnstKlAYe583il9NLzw2&t=637823077705833095
207.137.0.213200 OK 23 kB URL GET HTTP/2 www.checkbca.org/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZBAd-3g2iBrrqGpefWWgmRAZw8TONzGF-aV_9TjkbkyCvwDWnstKlAYe583il9NLzw2&t=637823077705833095
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with CRLF line terminators
Hash 90ea7274f19755002360945d54c2a0d7
647b5d8bf7d119a2c97895363a07a0c6eb8cd284
40732e9dcfa704cf615e4691bb07aecfd1cc5e063220a46e4a7ff6560c77f5db
GET /WebResource.axd?d=pynGkmcFUV13He1Qd6_TZBAd-3g2iBrrqGpefWWgmRAZw8TONzGF-aV_9TjkbkyCvwDWnstKlAYe583il9NLzw2&t=637823077705833095 HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: application/x-javascript
content-encoding: gzip
expires: Fri, 24 May 2024 17:36:28 GMT
last-modified: Tue, 08 Mar 2022 11:42:50 GMT
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:05 GMT
content-length: 23086
X-Firefox-Spdy: h2
sendlane.com/js/eventing.js
104.16.167.6302 Found 541 B URL GET HTTP/2 sendlane.com/js/eventing.js
IP 104.16.167.6:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerLet's Encrypt
Subject*.sendlane.com
Fingerprint38:54:B8:09:90:3F:CD:43:4F:C7:D1:10:AB:B5:21:21:2F:ED:4D:CD
ValidityWed, 12 Apr 2023 08:56:10 GMT - Tue, 11 Jul 2023 08:56:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7a61f1cdaa9955bd261a3ce634f3cd40
d52a2b0e9d8faf153999610b0eccde26ac5d44a6
3805d6801ccfead7718cb449b7f22b0a331000d7e05161201b95afa8cf04f471
GET /js/eventing.js HTTP/1.1
Host: sendlane.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 26 May 2023 17:23:05 GMT
content-type: text/html; charset=UTF-8
location: https://www.sendlane.com/js/eventing.js
cache-control: no-cache, private, max-age=0
x-frame-options: *
x-ratelimit-limit: 480
x-ratelimit-remaining: 478
expires: Fri, 26 May 2023 17:23:05 GMT
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7cd7b4365a0f0b02-OSL
X-Firefox-Spdy: h2
forms.soundestlink.com/REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=www.usbfund.com&shopType=api&brandID=60034c978a48f7337bc1a105
104.18.31.243 375 B URL GET forms.soundestlink.com/REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=www.usbfund.com&shopType=api&brandID=60034c978a48f7337bc1a105
IP 104.18.31.243:0
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint54:B8:46:7B:76:99:67:6C:EA:5F:AD:F7:5C:7B:46:F2:95:48:76:22
ValidityTue, 24 Jan 2023 00:00:00 GMT - Wed, 24 Jan 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 33b8c6ba54bf5a7e0bbf9c222f68c7c3
813a91b4db50627ca8936ef38e03b07f50decd5a
468b502aa0b27d2b25f5657a356f1c97c0a73c8a60b4ea67fd839afdb27bfa33
GET /REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=www.usbfund.com&shopType=api&brandID=60034c978a48f7337bc1a105 HTTP/1.1
Host: forms.soundestlink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:23:05 GMT
content-type: application/json
cache-control: max-age=0, s-maxage=600, public
last-modified: Fri, 26 May 2023 17:23:05 GMT
x-envoy-upstream-service-time: 6
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: EXPIRED
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 7cd7b4395df8b523-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/plugins/AffiliateWP-master/assets/js/jquery.cookie.min.js?ver=1.4.0
188.114.97.1200 OK 38 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/AffiliateWP-master/assets/js/jquery.cookie.min.js?ver=1.4.0
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (1667), with no line terminators
Hash 48c2e2ebcc4b47648a6c6a781023e61e
de1e3b7a28d2bf514b7164442657830c6c2e53eb
9f73fc38fe1e69919d8113cf47d74c7696b46e913b512709c7b7cfee799b0a8f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/AffiliateWP-master/assets/js/jquery.cookie.min.js?ver=1.4.0 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:24:32 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Ft3BcTguqdENKZhytEBUJhhTZKnD2fvEdNSGvPa4e4Ghdg1V5O7WAfH7dad0Qf73maM3ljMYlTzWOG%2FfxA%2FI%2BRf8YOHng24FDFl7rasbTqWuLCVIAXdxFYzlz0w7tkTI5TY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42c8d551bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.checkbca.org/scripts/jquery.simplemodal.1.4.4.min.js
207.137.0.213200 OK 3.1 kB URL GET HTTP/2 www.checkbca.org/scripts/jquery.simplemodal.1.4.4.min.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (626), with CRLF, LF line terminators
Hash fb6aca1466d23dfc56ae1b6841442ff5
a5a2637328a431ad42b8419510a6f5ef2da22567
3bf4531f259ef747efbc5db8632ac9f5849ce4d1eecb31222ba1cd3df9a4b654
GET /scripts/jquery.simplemodal.1.4.4.min.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:05 GMT
content-length: 3081
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo
142.250.74.132200 OK 29 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo
IP 142.250.74.132:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (43935)
Hash 041f1b3a71bed6d9c67bf4513e64105d
4f21e8c83e4f175851a4446b8605f5a41d70d09a
b4a0f0fccf7d80afe87d94884485c99d42bbf71487e2574408b42c1dc4cb34de
GET /recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 May 2023 17:23:06 GMT
content-security-policy: script-src 'nonce-iyHRLZUR0HJpOHjpJn5__g' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 28690
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.checkbca.org/scripts/jquery.bxslider.min.js
207.137.0.213200 OK 5.1 kB URL GET HTTP/2 www.checkbca.org/scripts/jquery.bxslider.min.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (18813)
Hash b43f81cded58aa3c16fbc9f7cb5652a0
dd077f457e3b4c1218313fa5fb1c0ae6bcd82ede
90e090a6cb40e4832e34a3c91256e2688439df99d921ac1d7e2c4a1108afa859
GET /scripts/jquery.bxslider.min.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:05 GMT
content-length: 5135
X-Firefox-Spdy: h2
www.checkbca.org/scripts/jquery.selectBox.js
207.137.0.213301 Moved Permanently 175 B URL GET HTTP/2 www.checkbca.org/scripts/jquery.selectBox.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 46da262b5b1399dfbf30fac73e57a298
c176cf3cfa6da6a0748c497591ff3619467d6434
4089029c368f61bcc5e6be36c952e1c440e0e20475e247b8316c6ce57ea7cc99
GET /scripts/jquery.selectBox.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
cache-control: no-cache
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/scripts/jquery.selectbox.js
date: Fri, 26 May 2023 17:23:05 GMT
content-length: 175
X-Firefox-Spdy: h2
www.checkbca.org/scripts/scripts.js
207.137.0.213200 OK 4.3 kB URL GET HTTP/2 www.checkbca.org/scripts/scripts.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with CRLF line terminators
Hash 30236ca24709e7f0c3229c413c306635
8d0489db16fd83554c7cead9dccb64dc005dbb3e
c833b3a2bdf42d9d4eeaac3b9ca5a7e98240c8c8d4a76e88cbd73df5664b747a
GET /scripts/scripts.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:55 GMT
accept-ranges: bytes
etag: "806fec8b568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:05 GMT
content-length: 4272
X-Firefox-Spdy: h2
www.checkbca.org/images/widget_seal.png
207.137.0.213200 OK 2.7 kB URL GET HTTP/2 www.checkbca.org/images/widget_seal.png
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 270ad3deddbe8a845043e3d6a8000f91
3835898b5aba554e51bf8c9191b3804e7fad65a2
30f3c9000753eaaba38681a3a44471668df6f9c60258644baba4ca24cdf62c89
GET /images/widget_seal.png HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Sat, 09 May 2020 03:31:08 GMT
accept-ranges: bytes
etag: "ba4a5b47b225d61:0"
date: Fri, 26 May 2023 17:23:05 GMT
content-length: 2723
X-Firefox-Spdy: h2
www.checkbca.org/stylesheets/jquery.selectbox.css
207.137.0.213200 OK 844 B URL GET HTTP/2 www.checkbca.org/stylesheets/jquery.selectbox.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (2823), with no line terminators
Hash 155a76ea457cb37ee5ba3c8a5b7d313e
34d40b1d1da8d4b69fba2084f7b01e81679bdad5
16292829415a66589aa5d756f4cdeb04338c504ce0eeafc8b6909735169a155d
GET /stylesheets/jquery.selectbox.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: text/css
content-encoding: gzip
last-modified: Fri, 02 Aug 2019 17:52:06 GMT
accept-ranges: bytes
etag: "0a783ff5a49d51:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:05 GMT
content-length: 844
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
142.250.74.35200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:55:34 GMT
expires: Tue, 21 May 2024 23:55:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/css
vary: Accept-Encoding
age: 322052
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.35200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 322417
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.checkbca.org/scripts/webforms/msajax/microsoftajax.js
207.137.0.213200 OK 24 kB URL GET HTTP/2 www.checkbca.org/scripts/webforms/msajax/microsoftajax.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (65262), with CRLF line terminators
Hash 527b093e4e30cf9e6ef4ef846f4d387f
85464d16a6d51b0a499ece5df5d853d7820fe436
b6b2a6b0ecb3218b2f5da2dd045e7e5ebd1c4152a443b5642d9351a8e0a59d26
GET /scripts/webforms/msajax/microsoftajax.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:05 GMT
content-length: 24320
X-Firefox-Spdy: h2
www.checkbca.org/scripts/webforms/msajax/microsoftajaxwebforms.js
207.137.0.213200 OK 9.6 kB URL GET HTTP/2 www.checkbca.org/scripts/webforms/msajax/microsoftajaxwebforms.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (39257), with CRLF line terminators
Hash ac2d31b037cf98b67646d9f87a563c75
ae702472c2dabe196299a0a7358c28449ce77c10
75ff9ed4493b32310094826e703a8be5bce10d31eaa682c182adde38f9366bdc
GET /scripts/webforms/msajax/microsoftajaxwebforms.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:05 GMT
content-length: 9603
X-Firefox-Spdy: h2
www.checkbca.org/scripts/jquery.selectbox.js
207.137.0.213200 OK 4.2 kB URL GET HTTP/2 www.checkbca.org/scripts/jquery.selectbox.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type Unicode text, UTF-8 text, with very long lines (15896), with no line terminators
Hash 10a5792beb6c22986a209382994333d5
ead93c883c66aaa50d35b72c77f1f6289fdbefa6
327718a4000a37333388027758b89bcd6be80d24ffc83b0d6f2ea3d9b4f5cb71
GET /scripts/jquery.selectbox.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:05 GMT
content-length: 4192
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:31:32 GMT
expires: Wed, 22 May 2024 17:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 258695
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
142.250.74.132200 OK 112 B URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
IP 142.250.74.132:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with no line terminators
Hash ffdfcf8fae84f7684f006bf5af012c06
b31182bbb1c60a114919bf05e698805b61f76aba
1bf768716a75b7620d341f775d10d79ee73a3a47f6609a24ca25dd88e4aeda95
GET /recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
expires: Fri, 26 May 2023 17:23:07 GMT
date: Fri, 26 May 2023 17:23:07 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/logo_48.png
142.250.74.35200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 21:48:58 GMT
expires: Mon, 29 May 2023 21:48:58 GMT
cache-control: public, max-age=604800
age: 329649
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.35200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 322418
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
54.230.111.27 3.5 kB URL widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
IP 54.230.111.27:0
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13396)
Hash a14ca16dcf08b1eb1de1175abdcd3cda
da20904985aa00a1c013374b861fc4c1469ac057
71cd0f30593ec11e666de6f9e0073737e3f29f0fdcd393dc92d0238c77a703de
GET /trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 3451
last-modified: Mon, 08 May 2023 11:44:30 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 25 May 2023 18:46:34 GMT
cache-control: max-age=86400
etag: "ec8997a01685f3d46f7e65c853a558f4"
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 23y0FJVOh5_Aw8UsFFLUi7j6uanfmOZaj6jXjioXSQ9OsgPZHoF9LA==
age: 81394
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo
142.250.74.132200 OK 29 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo
IP 142.250.74.132:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (43877)
Hash 00fd0134bfbe824f499cd97cd42746b0
a9981d99fab977eb398a705140d7cf4492594f35
ff7c977687c83b4c9a6c988b5307b28a3340bedc512866eb5dc9164689467298
GET /recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 May 2023 17:23:07 GMT
content-security-policy: script-src 'nonce-j5uAL61WLVppAQa8C_20JA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 28654
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/main.js
54.230.111.27200 OK 31 kB URL GET HTTP/2 widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/main.js
IP 54.230.111.27:443
Requested by https://widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9#locale=en-US&styleHeight=240px&styleWidth=100%25&theme=light&stars=5&schemaType=Organization
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (64030), with no line terminators
Hash 265b488523a0763302653f8358e0fa65
218ee5bb91e0fe1a197efeaeb1f38e9005c9a686
34e06b1bd7b555ec33e5c22b40489471dcd0b354f473115e4bce44caf16adb73
GET /trustboxes/54ad5defc6454f065c28af8b/main.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 31063
last-modified: Mon, 08 May 2023 11:44:33 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Fri, 26 May 2023 05:26:40 GMT
cache-control: max-age=86400
etag: "1a13db5176936d0e7afbdc985cc7bdf3"
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: do4bXOruU1T43WiXqaz3BKV65M4eTpcrrOWAarTKwZX9je5qxc4Avg==
age: 42988
X-Firefox-Spdy: h2
www.checkbca.org/CompanyWidget.aspx?ID=100094667&WidgetType=1
207.137.0.213301 Moved Permanently 196 B URL GET HTTP/2 www.checkbca.org/CompanyWidget.aspx?ID=100094667&WidgetType=1
IP 207.137.0.213:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash e4450c4791dadbc8f0fe8409a9b278ec
70f8e597f291a8a247c4f1bbbc4586e300f75723
e350fe60679b3272336147b700171d459374f3a66c6e228673a94ec0d9239b7e
GET /CompanyWidget.aspx?ID=100094667&WidgetType=1 HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 196
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
142.250.74.35200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:55:34 GMT
expires: Tue, 21 May 2024 23:55:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/css
vary: Accept-Encoding
age: 322053
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.35200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 322418
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
speedyfox.io/anywhere/5f1d4e2f1d5e403592a56487267b609f40807d7ef69744e7aa045795455c9581?t=&u=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526&r=
162.242.174.138403 Forbidden 18 B URL GET HTTP/1.1 speedyfox.io/anywhere/5f1d4e2f1d5e403592a56487267b609f40807d7ef69744e7aa045795455c9581?t=&u=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526&r=
IP 162.242.174.138:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerLet's Encrypt
Subjectspeedyfox.io
Fingerprint4F:FE:83:46:63:F7:F9:23:F0:4F:58:EA:CF:21:89:2D:8D:51:9D:2B
ValidityFri, 19 May 2023 15:28:04 GMT - Thu, 17 Aug 2023 15:28:03 GMT
File type ASCII text, with no line terminators
Hash 25f009f228cd844020264ff74a36bb64
8e2ada0df86c2ea12930c55ebdc0575aa5e31d87
a4578829918d4df61d980bf0665df65a68d19ea4de6d0dfdb75fb099b47474bf
GET /anywhere/5f1d4e2f1d5e403592a56487267b609f40807d7ef69744e7aa045795455c9581?t=&u=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526&r= HTTP/1.1
Host: speedyfox.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Content-Type: application/json
Content-Length: 18
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS
X-Timing: lt=1
Date: Fri, 26 May 2023 17:23:07 GMT
Connection: close
www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
207.137.0.213200 OK 6.5 kB URL GET HTTP/2 www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
IP 207.137.0.213:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (540), with CRLF line terminators
Hash d316c0bf781c8e7c0846dddc1b696642
d751ddc4a20ecfc63c9739b306cdba039937243c
c4d63562e014451d95459e3311676d9e32b4cbc1f1e3a4ef922f59350df61c6a
GET /companywidget.aspx?ID=100094667&WidgetType=1 HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.usbfund.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: ASP.NET_SessionId=3ya333c2k4xuu0uznjctntwm; path=/; secure; HttpOnly; SameSite=Lax
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 6465
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:31:32 GMT
expires: Wed, 22 May 2024 17:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 258695
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
widget.trustpilot.com/trustbox-data/54ad5defc6454f065c28af8b?businessUnitId=57559cd10000ff00058effd9&locale=en-US&reviewStars=5&reviewsPerPage=15
54.230.111.27200 OK 3.3 kB URL GET HTTP/2 widget.trustpilot.com/trustbox-data/54ad5defc6454f065c28af8b?businessUnitId=57559cd10000ff00058effd9&locale=en-US&reviewStars=5&reviewsPerPage=15
IP 54.230.111.27:443
Requested by https://widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9#locale=en-US&styleHeight=240px&styleWidth=100%25&theme=light&stars=5&schemaType=Organization
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (9852), with no line terminators
Hash 539a9be6be4413fe1333634b17b47ceb
8c93f9358ad84ba3159f067fb4bfe2a6cee46910
f4a3185158fb61b6a256a5dfe50d605bc30250df64d8ee1922216575f98635fe
GET /trustbox-data/54ad5defc6454f065c28af8b?businessUnitId=57559cd10000ff00058effd9&locale=en-US&reviewStars=5&reviewsPerPage=15 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
DNT: 1
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public,max-age=1800
date: Fri, 26 May 2023 17:06:09 GMT
etag: "428642d158c4cd165f68252100e900b5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ra-Xaxc2TG3UimJaY4tGXiLZsz0zXtq8wOU7eTmJDmj8TmecjLGWQA==
age: 1017
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/api2/logo_48.png
142.250.74.35200 OK 2.2 kB URL GET HTTP/3 www.gstatic.com/recaptcha/api2/logo_48.png
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 21:48:58 GMT
expires: Mon, 29 May 2023 21:48:58 GMT
cache-control: public, max-age=604800
age: 329649
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.35200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 322418
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5
142.250.74.132200 OK 1.2 kB URL GET HTTP/3 www.google.com/recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5
IP 142.250.74.132:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a29944d5fe26df524758a9a64adc4c96
684775dccd280af82b3ea58df56bb405fe907008
13948d7c82b68a0f3b4e3f800287dcf8cf921919eaacc08ed82f54df09028855
GET /recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 May 2023 17:23:07 GMT
content-security-policy: script-src 'nonce-EDRjqqh2OaRSq-uSybPu_A' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1157
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.checkbca.org/stylesheets/font-awesome.min.css
207.137.0.213200 OK 7.0 kB URL GET HTTP/2 www.checkbca.org/stylesheets/font-awesome.min.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /stylesheets/font-awesome.min.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: text/css
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 6965
X-Firefox-Spdy: h2
www.checkbca.org/stylesheets/jquery.selectBox.css
207.137.0.213301 Moved Permanently 180 B URL GET HTTP/2 www.checkbca.org/stylesheets/jquery.selectBox.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 65d99af646ca7622a01fc0d3eb7a6b6d
a6b71820c0572f17c183b5669255346947bc3492
425fea6b4acfc8c48eee414af2be035b5c77a87742cf0bb46b136d07e0c29f6a
GET /stylesheets/jquery.selectBox.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
cache-control: no-cache
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/stylesheets/jquery.selectbox.css
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 180
X-Firefox-Spdy: h2
www.checkbca.org/stylesheets/style.css
207.137.0.213200 OK 11 kB URL GET HTTP/2 www.checkbca.org/stylesheets/style.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type assembler source, Unicode text, UTF-8 text, with very long lines (548), with CRLF line terminators
Hash ae754d65a6d08cca222317ce7477945d
88ce5023d9268ef9d232e60303c892c9d1725e78
79ce2aec71e345a17562aa20bacb7d319f29e5d08ee338f92e0cfc4c1e69acb3
GET /stylesheets/style.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: text/css
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 10899
X-Firefox-Spdy: h2
www.checkbca.org/Scripts/WebForms/MsAjax/MicrosoftAjax.js
207.137.0.213301 Moved Permanently 188 B URL GET HTTP/2 www.checkbca.org/Scripts/WebForms/MsAjax/MicrosoftAjax.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 6f83537ac9d2567aa0049ad8d28282d8
7e4975fe0edee16d97ab1f59dd7473a95902f30e
c614ae1fc44d88ab3555782295fd0de23f7b1062ef93e0777530a9ff2fdb2fe6
GET /Scripts/WebForms/MsAjax/MicrosoftAjax.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
cache-control: no-cache
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/scripts/webforms/msajax/microsoftajax.js
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 188
X-Firefox-Spdy: h2
www.checkbca.org/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZBAd-3g2iBrrqGpefWWgmRAZw8TONzGF-aV_9TjkbkyCvwDWnstKlAYe583il9NLzw2&t=637823077705833095
207.137.0.213200 OK 23 kB URL GET HTTP/2 www.checkbca.org/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZBAd-3g2iBrrqGpefWWgmRAZw8TONzGF-aV_9TjkbkyCvwDWnstKlAYe583il9NLzw2&t=637823077705833095
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with CRLF line terminators
Hash 90ea7274f19755002360945d54c2a0d7
647b5d8bf7d119a2c97895363a07a0c6eb8cd284
40732e9dcfa704cf615e4691bb07aecfd1cc5e063220a46e4a7ff6560c77f5db
GET /WebResource.axd?d=pynGkmcFUV13He1Qd6_TZBAd-3g2iBrrqGpefWWgmRAZw8TONzGF-aV_9TjkbkyCvwDWnstKlAYe583il9NLzw2&t=637823077705833095 HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: application/x-javascript
content-encoding: gzip
expires: Fri, 24 May 2024 17:36:28 GMT
last-modified: Tue, 08 Mar 2022 11:42:50 GMT
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 23086
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/plugins/gravityforms/css/formreset.min.css
188.114.97.1200 OK 569 B URL GET HTTP/3 www.usbfund.com/wp-content/plugins/gravityforms/css/formreset.min.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (3840), with no line terminators
Hash b91b0939a92c34946238d50b1d752451
ced01ef28a297ab45d494018f232dbe88a6e9f9a
784a99d40268afc0eab1bd5c2cd3f4c46e80748dd5d511b5fb53c1abf027eb24
GET /wp-content/plugins/gravityforms/css/formreset.min.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:22:28 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Sw5wgHc4zUZQmr%2FBfwe2d396i95BhEr78cC%2BlSFeKUE%2BY26WMSZazlYp8mYIx6u2CnXCMffGzZ9zmtSSyuEDgCZHiSQVm%2F30jDf71qxf%2Bows5cQIdVWXJnCD%2Bg%2FUZPddCXM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42cadaf1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.checkbca.org/scripts/jquery-3.3.1.min.js
207.137.0.213200 OK 30 kB URL GET HTTP/2 www.checkbca.org/scripts/jquery-3.3.1.min.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (65451)
Hash a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /scripts/jquery-3.3.1.min.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 30394
X-Firefox-Spdy: h2
www.checkbca.org/scripts/jquery.simplemodal.1.4.4.min.js
207.137.0.213200 OK 3.1 kB URL GET HTTP/2 www.checkbca.org/scripts/jquery.simplemodal.1.4.4.min.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (626), with CRLF, LF line terminators
Hash fb6aca1466d23dfc56ae1b6841442ff5
a5a2637328a431ad42b8419510a6f5ef2da22567
3bf4531f259ef747efbc5db8632ac9f5849ce4d1eecb31222ba1cd3df9a4b654
GET /scripts/jquery.simplemodal.1.4.4.min.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 3081
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
142.250.74.35200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=97e90th8o8qo
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:55:34 GMT
expires: Tue, 21 May 2024 23:55:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/css
vary: Accept-Encoding
age: 322054
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.checkbca.org/scripts/jquery.bxslider.min.js
207.137.0.213200 OK 5.1 kB URL GET HTTP/2 www.checkbca.org/scripts/jquery.bxslider.min.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (18813)
Hash b43f81cded58aa3c16fbc9f7cb5652a0
dd077f457e3b4c1218313fa5fb1c0ae6bcd82ede
90e090a6cb40e4832e34a3c91256e2688439df99d921ac1d7e2c4a1108afa859
GET /scripts/jquery.bxslider.min.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 5135
X-Firefox-Spdy: h2
www.checkbca.org/scripts/jquery.selectBox.js
207.137.0.213301 Moved Permanently 175 B URL GET HTTP/2 www.checkbca.org/scripts/jquery.selectBox.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 46da262b5b1399dfbf30fac73e57a298
c176cf3cfa6da6a0748c497591ff3619467d6434
4089029c368f61bcc5e6be36c952e1c440e0e20475e247b8316c6ce57ea7cc99
GET /scripts/jquery.selectBox.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
cache-control: no-cache
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/scripts/jquery.selectbox.js
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 175
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.35200 OK 166 kB URL GET HTTP/2 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 322419
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.checkbca.org/scripts/scripts.js
207.137.0.213200 OK 4.3 kB URL GET HTTP/2 www.checkbca.org/scripts/scripts.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with CRLF line terminators
Hash 30236ca24709e7f0c3229c413c306635
8d0489db16fd83554c7cead9dccb64dc005dbb3e
c833b3a2bdf42d9d4eeaac3b9ca5a7e98240c8c8d4a76e88cbd73df5664b747a
GET /scripts/scripts.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:55 GMT
accept-ranges: bytes
etag: "806fec8b568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 4272
X-Firefox-Spdy: h2
www.checkbca.org/images/widget_seal.png
207.137.0.213200 OK 2.7 kB URL GET HTTP/2 www.checkbca.org/images/widget_seal.png
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 270ad3deddbe8a845043e3d6a8000f91
3835898b5aba554e51bf8c9191b3804e7fad65a2
30f3c9000753eaaba38681a3a44471668df6f9c60258644baba4ca24cdf62c89
GET /images/widget_seal.png HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Sat, 09 May 2020 03:31:08 GMT
accept-ranges: bytes
etag: "ba4a5b47b225d61:0"
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 2723
X-Firefox-Spdy: h2
www.checkbca.org/stylesheets/jquery.selectbox.css
207.137.0.213200 OK 844 B URL GET HTTP/2 www.checkbca.org/stylesheets/jquery.selectbox.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (2823), with no line terminators
Hash 155a76ea457cb37ee5ba3c8a5b7d313e
34d40b1d1da8d4b69fba2084f7b01e81679bdad5
16292829415a66589aa5d756f4cdeb04338c504ce0eeafc8b6909735169a155d
GET /stylesheets/jquery.selectbox.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: text/css
content-encoding: gzip
last-modified: Fri, 02 Aug 2019 17:52:06 GMT
accept-ranges: bytes
etag: "0a783ff5a49d51:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 844
X-Firefox-Spdy: h2
www.checkbca.org/scripts/webforms/msajax/microsoftajax.js
207.137.0.213200 OK 24 kB URL GET HTTP/2 www.checkbca.org/scripts/webforms/msajax/microsoftajax.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (65262), with CRLF line terminators
Hash 527b093e4e30cf9e6ef4ef846f4d387f
85464d16a6d51b0a499ece5df5d853d7820fe436
b6b2a6b0ecb3218b2f5da2dd045e7e5ebd1c4152a443b5642d9351a8e0a59d26
GET /scripts/webforms/msajax/microsoftajax.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 24320
X-Firefox-Spdy: h2
www.checkbca.org/scripts/webforms/msajax/microsoftajaxwebforms.js
207.137.0.213200 OK 9.6 kB URL GET HTTP/2 www.checkbca.org/scripts/webforms/msajax/microsoftajaxwebforms.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (39257), with CRLF line terminators
Hash ac2d31b037cf98b67646d9f87a563c75
ae702472c2dabe196299a0a7358c28449ce77c10
75ff9ed4493b32310094826e703a8be5bce10d31eaa682c182adde38f9366bdc
GET /scripts/webforms/msajax/microsoftajaxwebforms.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 9603
X-Firefox-Spdy: h2
www.checkbca.org/scripts/jquery.selectbox.js
207.137.0.213200 OK 4.2 kB URL GET HTTP/2 www.checkbca.org/scripts/jquery.selectbox.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type Unicode text, UTF-8 text, with very long lines (15896), with no line terminators
Hash 10a5792beb6c22986a209382994333d5
ead93c883c66aaa50d35b72c77f1f6289fdbefa6
327718a4000a37333388027758b89bcd6be80d24ffc83b0d6f2ea3d9b4f5cb71
GET /scripts/jquery.selectbox.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 4192
X-Firefox-Spdy: h2
img.bayengage.com/9dc34fe66afe/studio/44111/Untitled-design-2022-12-23T131817-494.png
54.230.111.127200 OK 236 kB URL GET HTTP/2 img.bayengage.com/9dc34fe66afe/studio/44111/Untitled-design-2022-12-23T131817-494.png
IP 54.230.111.127:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subjectimg.bayengage.com
Fingerprint38:D7:2A:2B:A6:F2:5A:6F:A7:74:87:5C:BC:6A:C6:E4:80:53:DD:76
ValidityWed, 22 Mar 2023 00:00:00 GMT - Fri, 19 Apr 2024 23:59:59 GMT
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 236 kB (236503 bytes)
Hash 0b7980427eb4dd6bad5e83bf705f770b
f4bc224977772afcbb4b22d0dd0899d22b0109eb
089af070e8d98a24c104960d1339bcf4354f3bd0d603a2d9525fc868aa72ef0d
GET /9dc34fe66afe/studio/44111/Untitled-design-2022-12-23T131817-494.png HTTP/1.1
Host: img.bayengage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 236503
date: Thu, 25 May 2023 18:30:11 GMT
last-modified: Fri, 23 Dec 2022 18:22:54 GMT
etag: "0b7980427eb4dd6bad5e83bf705f770b"
x-amz-server-side-encryption: AES256
cache-control: max-age=604800
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WLx5FEF8fkPQjg6DHLZ-nLpBLvtEZD3N50qyY6Ngh4QE_hqcyQcBWQ==
age: 82375
X-Firefox-Spdy: h2
www.checkbca.org/Scripts/WebForms/MsAjax/MicrosoftAjaxWebForms.js
207.137.0.213301 Moved Permanently 40 kB URL GET HTTP/2 www.checkbca.org/Scripts/WebForms/MsAjax/MicrosoftAjaxWebForms.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Scripts/WebForms/MsAjax/MicrosoftAjaxWebForms.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
cache-control: no-cache
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/scripts/webforms/msajax/microsoftajaxwebforms.js
date: Fri, 26 May 2023 17:23:07 GMT
content-length: 196
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/plugins/gravityforms/css/formsmain.min.css
188.114.97.1200 OK 69 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/gravityforms/css/formsmain.min.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 2d014e46f726ff499e976d539f36d59f
6464b434806b7fde0153341b68cef2c9a8711cb6
eef7d267e775bf97baec3613f3eed5bb86b3e82062c0a868c6e3cfe262f5e93b
GET /wp-content/plugins/gravityforms/css/formsmain.min.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:22:23 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UW8ScS1lfTkwu3suRVW%2Bq6Lekj1RhasXm4%2BuzpFpKyi3VaZXm%2FnRQlV%2BO7y6heDFv2OoqW%2BHJuQyWHJyqY6XXvcDB7Nqz%2Fc4YInOg4rPL0Y%2FNtoIssK3u7H2mzIlI13ckwA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42cadab1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
sfc-api.bayengage.com/fetch?t=9dc34fe66afe
54.230.111.27200 OK 26 kB URL GET HTTP/2 sfc-api.bayengage.com/fetch?t=9dc34fe66afe
IP 54.230.111.27:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.bayengage.com
FingerprintD9:72:D2:FF:F7:C8:E2:7C:CA:92:AA:4E:A8:FB:C2:82:88:5A:A6:70
ValidityTue, 28 Feb 2023 00:00:00 GMT - Thu, 14 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (26012), with no line terminators
Hash f0eabac8c41c2c560ffdf052cbbb72d0
8315e383ace30e1de84742e6139386d46827f97d
e01d9f90f254c4f904045e735c31b8e5053933d81484b7b7cfe9cfd4e54db7d1
GET /fetch?t=9dc34fe66afe HTTP/1.1
Host: sfc-api.bayengage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
date: Fri, 26 May 2023 17:23:04 GMT
access-control-allow-origin: *
access-control-expose-headers: date,x-api-id
apigw-requestid: Fimm6hz_oAMEJSw=
content-encoding: br
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 3bff78035f818b6a3185b0f5f4586410.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TX507-XA7iA9OQ7OuZKcyw5O9dPEgOPbjeTUvIrXq_exNEU-OIW-4w==
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/plugins/gravityforms/css/readyclass.min.css
188.114.97.1200 OK 32 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/gravityforms/css/readyclass.min.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (32180), with no line terminators
Hash e8cb782d10e0c6964b9d0b1bab063838
c82794914b3943156c8299bd069d1b02de75c90f
ec8af9acc2272ea0d0f5380ae424670a70b0bc429c3e404675f33db3c9daab22
GET /wp-content/plugins/gravityforms/css/readyclass.min.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:22:26 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wn3j1zcPgJaxWzwJsYCb95qtFLoUCFdTufAd14pYkZWK2Z8P%2BiCX48RRw2CFIDnTW89SKafkjDUH23xhApNn9KGfLkoFCT5rNZHRm2NF3jj1ldgcvyf9DwoGPdePbxeTTjs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42cadae1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css2?family=Poppins&display=swap
142.250.74.74200 OK 1.1 kB URL GET HTTP/3 fonts.googleapis.com/css2?family=Poppins&display=swap
IP 142.250.74.74:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (1136), with no line terminators
Hash 20537057ea6c73337cdc77b139767f3c
353181e25b8bac755eca2151f3aeeb093758e0e0
459da25a87017ee1cad7c7006d94df13abc39aee2e69f38cde9042823188bd78
GET /css2?family=Poppins&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 17:23:05 GMT
date: Fri, 26 May 2023 17:23:05 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.usbfund.com/wp-content/plugins/gravityforms/css/browsers.min.css
188.114.97.1200 OK 7.3 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/gravityforms/css/browsers.min.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (7333), with no line terminators
Hash 7c93668d52449d2bbfaeef7722f005f3
e0263c83f3e654803fa95036d410139dddc53f6a
b99dad0ffd567e9aed6cdad571817c7c18194ff768e933c9ca486da1fa8dbd44
GET /wp-content/plugins/gravityforms/css/browsers.min.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:22:25 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SbotvtMZQz9%2FG2SRyE6H0qa9aL%2BIJOxAepyFCt3NOWaz%2Bj1p9w7vUXcizwTdOIy2W5T64eVVxJRCg9%2BfRwF3d9qgeSfl3jxLXGYN%2FSgysPf7HOgDN3RZTcZfh5GnSkD6DJQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42cadaa1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/themes/usb/js/accounting.min.js
188.114.97.1200 OK 3.2 kB URL GET HTTP/3 www.usbfund.com/wp-content/themes/usb/js/accounting.min.js
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (3251), with no line terminators
Hash 84b1982790eb972cc9500c9a0b0e8591
fa7e04d3c7f821a3052bf64d106ebd8b96d94b71
3132b9c7eb0e6bb416faa146947f093d97542c95d53db5a80ab544929120d2e9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/usb/js/accounting.min.js HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:35:52 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rOGNzIQF5JN6zcJZ%2F%2FgoJbfZ5iquny8h%2B9mJhC0mVlNrcOFX%2F%2FSYwKvvf1G%2BPRlpZm34RZG2Ns4ZVBbo9Lg04wWf4xqqGXnI7AJcm5GuJRh063o6qjgjzDABeXpg%2BGSxVm0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42cadb61bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
142.250.74.74200 OK 11 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
IP 142.250.74.74:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
Hash e0e2280ca8a768a3f15e573a23c54cae
7f3068e8f9945f2623f9c8c9f2a159869f9fccfd
1ba6e02aa649aea52d79959ec42d68b9275396417950a5034ff5ea51b18fc2c8
GET /css?family=Open+Sans:300,400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 17:23:04 GMT
date: Fri, 26 May 2023 17:23:04 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/plugins/AffiliateWP-master/assets/css/forms.min.css
188.114.97.1200 OK 3.3 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/AffiliateWP-master/assets/css/forms.min.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (3302), with no line terminators
Hash 4aecc8ebf1881f8c69b3946867ea0624
6272610602f7ae12b5826dfdbd4cfbdd5a9b3950
86d3e623cc9956d622c3ddfe0a836e3675241801e21381c81d47fba04ed1bd41
GET /wp-content/plugins/AffiliateWP-master/assets/css/forms.min.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:24:30 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MSJGlyTZC5uq5%2BYIHhgr4vigA7WbFoD%2F3yQjd2AXJBnoRQsHiBADGVs5%2B4t9nt69airrKtM5sRFwt34dFquflZFPAsuEPgI7YRWS%2FOqYWKXnksSDLxhKBJhbElnenV%2FFKL0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42c6d281bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.1.2
188.114.97.1200 OK 27 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.1.2
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (26634), with no line terminators
Hash 09632523583508d365ac53989de44491
0e70aa3243512a4cd4ce8a5c9501bbaea4b96469
8981d9116da859cd3792e908f416acf9c0fd94545b1190a33bfe5e4daf1d5bd2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.1.2 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:22:39 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uuPdMm9bt86tGJjv7XkN%2BOo4Ary01HYO%2FMa%2Fihwb6IZRLPy27DxdgNA8pbNXiHj4La0lEASQLFEYWmegWakjWGSMcZHgBb8q5LNHBnldxYHhjhR3lH3kPf8g%2FcKzI6%2FiEl4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42cadb41bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
omnisrc.com/inshop/launcher-v2.js
104.18.24.198200 OK 51 kB URL GET HTTP/2 omnisrc.com/inshop/launcher-v2.js
IP 104.18.24.198:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintB7:6C:47:28:4B:F8:AD:97:84:D1:3F:E2:82:45:F3:E3:9D:79:A7:B2
ValidityTue, 24 Jan 2023 00:00:00 GMT - Tue, 23 Jan 2024 23:59:59 GMT
File type ASCII text, with very long lines (32008)
Hash 8764c8b2fe8e47ddbbca3974b258c945
37a58d66ee4607d0b74a721fac6bb90b8b4ab08a
c5560396bbb16548dc13edd4038e5554953a892a09bb2fac68b3ea002645c6c8
GET /inshop/launcher-v2.js HTTP/1.1
Host: omnisrc.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:23:05 GMT
content-type: application/javascript
last-modified: Fri, 19 May 2023 13:12:16 GMT
etag: W/"646775b0-c6d7"
expires: Fri, 26 May 2023 17:19:58 GMT
cache-control: max-age=3600
x-envoy-upstream-service-time: 1
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 535
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 7cd7b436d8e6b4fa-OSL
content-encoding: br
X-Firefox-Spdy: h2
tag.getdrip.com/9726461.js
54.230.111.55200 OK 8 B URL GET HTTP/2 tag.getdrip.com/9726461.js
IP 54.230.111.55:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.getdrip.com
Fingerprint3E:57:50:A6:D1:A1:2E:AF:A3:74:E3:E3:F5:0E:42:F8:C9:9F:C8:C8
ValidityFri, 24 Feb 2023 00:00:00 GMT - Sat, 27 Jan 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash de2e1607e500ee465eca3ec4505c0859
cfd432c8178796a4af548a7ed62f09bdf5fbb897
295bdad3ed86f4eeb0249f30e724344ec7be85582094013a85403ecbb77a0047
GET /9726461.js HTTP/1.1
Host: tag.getdrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 8
last-modified: Fri, 20 May 2022 20:08:53 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 May 2023 17:23:06 GMT
etag: "de2e1607e500ee465eca3ec4505c0859"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: dFjryrOCW62Svp7esWIEtv7dfW6Y6VSHWec-d0EmibDtbw3BihhrtA==
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/uploads/bg-section-header.png
188.114.97.1200 OK 22 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/bg-section-header.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 1920 x 149, 8-bit colormap, non-interlaced\012- data
Hash 65b13235e26653c77b0ed328dfdb8dc2
2dcc21d12b909058345b01f087062f6b59f4f05c
acba6ce2f083bf3e78176be5f1c68dfbeb67e609472b4f8c034ba8676d0995b2
GET /wp-content/uploads/bg-section-header.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/wp-content/themes/usb/style.css
Cookie: _gd1685121784685=; wc_visitor=100980-7b692be6-13aa-d599-78f0-e69cff572b78; _gd1685121784687=; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:05 GMT
content-type: image/png
content-length: 22531
last-modified: Sat, 28 Sep 2019 00:14:58 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BQYXMLBRag3ot1yOO4OATUzRVLJdtg%2FifPAL%2FMzJz2HpTmJxU8Tue%2F5S0SuCLo4gVs9skT6wpbs1K98M7ljDegeubd2GBU5uTUV9OLR2r0EEGO4PfSc0SjcMcPYrJTyi9Eg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b4344d181bfa-OSL
alt-svc: h3=":443"; ma=86400
forms.soundestlink.com/REST/forms/v1/renderedForms?v=2023-05-26T17&brandID=60034c978a48f7337bc1a105&displayType=popup,embedded
104.18.31.243200 OK 2 B URL GET HTTP/3 forms.soundestlink.com/REST/forms/v1/renderedForms?v=2023-05-26T17&brandID=60034c978a48f7337bc1a105&displayType=popup,embedded
IP 104.18.31.243:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint54:B8:46:7B:76:99:67:6C:EA:5F:AD:F7:5C:7B:46:F2:95:48:76:22
ValidityTue, 24 Jan 2023 00:00:00 GMT - Wed, 24 Jan 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /REST/forms/v1/renderedForms?v=2023-05-26T17&brandID=60034c978a48f7337bc1a105&displayType=popup,embedded HTTP/1.1
Host: forms.soundestlink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.usbfund.com/
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:06 GMT
content-type: application/json
content-length: 2
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: *
cache-control: max-age=0, s-maxage=600, public
expires: Fri, 26 May 2023 17:33:06 GMT
last-modified: Fri, 26 May 2023 17:23:06 GMT
x-envoy-upstream-service-time: 24
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 7cd7b43b6f17b503-OSL
www.usbfund.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
188.114.97.1200 OK 90 kB URL GET HTTP/3 www.usbfund.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 17 Dec 2022 14:44:25 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=66WHhv5j1rtoLKliFd%2FT6BtdpAI7CHrDVVEuuSAFXHefHunS8DX7GRf5RIwSolhyDu%2BCkQQLqGqgYAFjmZrc%2BI9eX5em4AahIiR7NDR1eg4oh4nh6rjO9%2B3Mp3wGVnRwkZg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42c6d3e1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
js.hs-banner.com/v2/5627136/banner.js
104.18.24.196200 OK 213 kB URL GET HTTP/2 js.hs-banner.com/v2/5627136/banner.js
IP 104.18.24.196:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2C:9C:DC:70:87:29:18:51:70:06:6E:2F:4B:4D:E0:23:1F:30:84:18
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (65044)
Size 213 kB (212711 bytes)
Hash cdce2dc555e4864d7603211ee8efc583
c65614a07685c35f95985b76c3f8e8ca0fbe2dfc
6df121737f5c72a579b9c1b56113b4391f669f781bd4eaa176b7a790ae777aa6
GET /v2/5627136/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:23:05 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: Njt72rtbJ63n8lvwSp78AxtrgsSX6fzRVxopizLK8h+pHKY6MIeUcyhPlDic5dYQQ+nduvs0b2Z/oMpceOG64g==
x-amz-request-id: Q8DVJ6ABY2SDP0RW
last-modified: Mon, 17 Apr 2023 15:38:24 GMT
etag: W/"cdce2dc555e4864d7603211ee8efc583"
x-amz-server-side-encryption: AES256
cache-control: max-age=300,public
x-amz-version-id: m3lyAmi2EFE1D8wIXByq5fHLowkIUPum
access-control-allow-origin: https://www.usbfund.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Fri, 26 May 2023 17:28:05 GMT
x-envoy-upstream-service-time: 88
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-7dbb6c8f49-v9vn7
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 7bb2660e-1f12-459d-b551-f5ec54eaa295
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 7cd7b436bb72b4f3-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/uploads/USBusinessFunding-Home1.png
188.114.97.1200 OK 944 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/USBusinessFunding-Home1.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 1696 x 1131, 8-bit colormap, non-interlaced\012- data
Size 944 kB (944072 bytes)
Hash b4b6bd078ef229456fc9d5b22d31ca0e
51cb87382bfb8b0029df296adb021229ad4cf6da
870b85b6771aeb0fc9c84c444ca24919dd6f71e4b34a6bb97003a0a4f34bdfd3
GET /wp-content/uploads/USBusinessFunding-Home1.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/wp-content/themes/usb/style.css
Cookie: _gd1685121784685=; wc_visitor=100980-7b692be6-13aa-d599-78f0-e69cff572b78; _gd1685121784687=; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-7b692be6-13aa-d599-78f0-e69cff572b78+..+
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:05 GMT
content-type: image/png
content-length: 944072
last-modified: Sat, 28 Sep 2019 00:14:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4198
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BcWvpWp0CKJ6Eo6Whs3JdJg2dc0d8Zztk7xufw58DRuILosx5MGoUAHaa5d1YEYouoE92jgQeGUCQR0Iutq8FZrvUdyB%2Br8NEoIdVvWvAXoogEjsOzDUQLFnkvehuycwjbQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7b4346d301bfa-OSL
alt-svc: h3=":443"; ma=86400
prism.app-us1.com/?a=224499963&u=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526
104.17.146.91200 OK 248 B URL GET HTTP/2 prism.app-us1.com/?a=224499963&u=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526
IP 104.17.146.91:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerLet's Encrypt
Subjectprism.app-us1.com
Fingerprint77:E9:1B:05:38:39:0E:7D:64:F1:A1:67:46:1D:7B:97:89:65:72:17
ValidityFri, 31 Mar 2023 15:06:08 GMT - Thu, 29 Jun 2023 15:06:07 GMT
File type ASCII text, with no line terminators
Hash ff52eab9ec2976eab5d586a157cbfd2b
81b8d1413bfcac58db040494b43c1e7d5cbb5d74
ceda8dd7cb7ed97ef12c02c0b8e4657893bb22d4da21ffa98f52bfcdffe789dc
GET /?a=224499963&u=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526 HTTP/1.1
Host: prism.app-us1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:23:06 GMT
content-type: application/javascript
cache-control: no-cache, private
set-cookie: prism_224499963=e5f15df2-69a8-44b9-97e3-bac5483925d5; expires=Sun, 25 Jun 2023 17:23:06 GMT; Max-Age=2592000; path=/; secure; httponly; samesite=none
x-envoy-upstream-service-time: 289
x-powered-by: PHP/8.1.18
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains
server: cloudflare
cf-ray: 7cd7b4396e73b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
diffuser-cdn.app-us1.com/diffuser/diffuser.js
104.17.145.91200 OK 32 kB URL GET HTTP/2 diffuser-cdn.app-us1.com/diffuser/diffuser.js
IP 104.17.145.91:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerLet's Encrypt
Subjectdiffuser-cdn.app-us1.com
Fingerprint1F:0D:9E:A7:64:75:91:0A:1B:CD:9A:34:B7:53:B2:CE:6E:5A:F0:EA
ValidityMon, 10 Apr 2023 17:41:39 GMT - Sun, 09 Jul 2023 17:41:38 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /diffuser/diffuser.js HTTP/1.1
Host: diffuser-cdn.app-us1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:23:05 GMT
content-type: application/javascript
last-modified: Tue, 04 Apr 2023 18:58:37 GMT
etag: W/"613257bb316d347d9417023321c6d62f"
x-amz-server-side-encryption: AES256
cache-control: public, max-age=300
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 554927166d10692a589190ab59950854.cloudfront.net (CloudFront)
x-amz-cf-pop: HEL51-P2
x-amz-cf-id: f8pkjTRsM9Sty-xGa2geI8FQ7gbWjlMXiWclAYyNvBQ4amkFmoZgJg==
cf-cache-status: HIT
age: 246
strict-transport-security: max-age=31536000; includeSubDomains
server: cloudflare
cf-ray: 7cd7b436eba61c0e-OSL
X-Firefox-Spdy: h2
process.iconnode.com/keyword/
76.223.116.242200 OK 37 B URL POST HTTP/2 process.iconnode.com/keyword/
IP 76.223.116.242:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.iconnode.com
Fingerprint09:98:F2:22:AC:4D:89:7C:25:09:0E:D7:63:72:02:3F:B8:D1:15:C5
ValidityFri, 28 Apr 2023 00:00:00 GMT - Mon, 27 May 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash fac2c1e20a128685cdcba772a8c9b296
f127be1ffc01fdd3ea9089f3ab40865696e1b17c
3061414be1c4f3e0684da28abcf00646a28a40fda5a9a12e6948628b6d5a6991
POST /keyword/ HTTP/1.1
Host: process.iconnode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 770
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:23:05 GMT
content-type: text/html; charset=UTF-8
content-length: 37
server: Apache/2.4.57 () OpenSSL/1.0.2k-fips PHP/7.4.33
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://www.usbfund.com
access-control-allow-credentials: true
access-control-max-age: 86400
X-Firefox-Spdy: h2
widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
54.230.111.27200 OK 15 kB URL GET HTTP/2 widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
IP 54.230.111.27:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13396)
Hash a14ca16dcf08b1eb1de1175abdcd3cda
da20904985aa00a1c013374b861fc4c1469ac057
71cd0f30593ec11e666de6f9e0073737e3f29f0fdcd393dc92d0238c77a703de
GET /trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 3451
last-modified: Mon, 08 May 2023 11:44:30 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 25 May 2023 18:46:34 GMT
cache-control: max-age=86400
etag: "ec8997a01685f3d46f7e65c853a558f4"
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: MOCoEeoNOSE_I9vJAb-cJApfq6CGCUV9q1y8jhAuhX9lxoAWJKXZiw==
age: 81392
X-Firefox-Spdy: h2
process.iconnode.com/google-ads/
76.223.116.242200 OK 0 B URL POST HTTP/2 process.iconnode.com/google-ads/
IP 76.223.116.242:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.iconnode.com
Fingerprint09:98:F2:22:AC:4D:89:7C:25:09:0E:D7:63:72:02:3F:B8:D1:15:C5
ValidityFri, 28 Apr 2023 00:00:00 GMT - Mon, 27 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /google-ads/ HTTP/1.1
Host: process.iconnode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 200 OK
date: Fri, 26 May 2023 17:23:05 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache/2.4.57 () OpenSSL/1.0.2k-fips PHP/7.4.33
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://www.usbfund.com
access-control-allow-credentials: true
access-control-max-age: 86400
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.1.2
188.114.97.1200 OK 1.8 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.1.2
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (2029), with no line terminators
Hash 632da64645041cf22c2238720bd50418
7f5d6bf47556097601bbf14f3a904f64596dc66b
28a7eff41dbc963b373a04def10d9d05489dc68daa09f8b95bf6342e55430940
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.1.2 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:22:39 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jhQC4tgpQ1b2tki%2BtmCzugI3L0xaM8vgZxQ4vsS6DHuJAT3vY9yDXhYTM4YfpOKU6LzcGgfZ3dXdKYsvwUVF3ViorV51aAQJwbuIL0oG%2FLnhHbrSJGZPuAiyJMEarxweY44%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42cadb01bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
188.114.97.1200 OK 73 kB URL User Request GET HTTP/2 www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
IP 188.114.97.1:443
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://www.usbfund.com/wp-json/>; rel="https://api.w.org/", <https://www.usbfund.com/wp-json/wp/v2/pages/6>; rel="alternate"; type="application/json", <https://www.usbfund.com/>; rel=shortlink
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IUdnlFV8Z0oYVRnJQhUo1kPTvxc1PRdRL7LW%2FAJ89xiFhPh0bwC9iKnRmK7lR5NybJ%2B6KcuxjR63IKDk7XyR15l%2FIOaNxR7RxkDkYulVgTpNT4qQ4SSiVFOPjZAbdrXTHq8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b4281b1a1c0e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.usbfund.com/?display_custom_css=css&ver=6.1.3
188.114.97.1200 OK 1.5 kB URL GET HTTP/3 www.usbfund.com/?display_custom_css=css&ver=6.1.3
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (1581), with no line terminators
Hash b1f47076df76ba1c9462b4ca56ae90bf
247a3fcc494a83c987814734a29b57521bd26571
f18db6837ba149c8d32f9c0072c09859c0fa4ba5c136745cf9747f2d467c5b30
GET /?display_custom_css=css&ver=6.1.3 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:04 GMT
content-type: text/css;charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lQ4O61wRvjElFIWYBhiiob4MtSC1DB%2B%2FtUsOfJNtJR%2FObtufrV8Dt5AhQIwAGeaWUHcmFgnWUc3EiivR3Moxt2tme6jOJoFCdkfg4DlcZU9QnnW%2BR50nNd5aJ0n35Ckekpo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42c6d351bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/themes/usb/js/site.js
188.114.97.1200 OK 14 kB URL GET HTTP/3 www.usbfund.com/wp-content/themes/usb/js/site.js
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
Hash 6212e4057adf8e6db12e88fe58d538f7
7f426f3ecabb81d52301a6eb63298ec8c76e1b8a
9b6b321e5076cc4ff7eb721e702e4f51560659eb0af3876d8268019592c8b39c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/usb/js/site.js HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:23:03 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:35:52 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 4197
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aWh%2B3wGlQWnDruqhVwqDzo7hYI9tt1xRz%2BrmxhNTsO3QbQV85qnMCVWUJriKJmGRHvlKahkdJyfIhrE2QxL2YFIbiiuLKGvQ8lOsnccY2AkTH3g4FTR%2FpTosZeS7qngqFLc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7b42cadb81bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
54.230.111.27200 OK 15 kB URL GET HTTP/2 widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
IP 54.230.111.27:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13396)
Hash a14ca16dcf08b1eb1de1175abdcd3cda
da20904985aa00a1c013374b861fc4c1469ac057
71cd0f30593ec11e666de6f9e0073737e3f29f0fdcd393dc92d0238c77a703de
GET /trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 3451
last-modified: Mon, 08 May 2023 11:44:30 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 25 May 2023 18:46:34 GMT
cache-control: max-age=86400
etag: "ec8997a01685f3d46f7e65c853a558f4"
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 23y0FJVOh5_Aw8UsFFLUi7j6uanfmOZaj6jXjioXSQ9OsgPZHoF9LA==
age: 81394
X-Firefox-Spdy: h2
koi-3qnetrwct6.marketingautomation.services/koi?rf=&hn=www.usbfund.com&lg=en-US&sr=1280x1024&cd=24&vr=2.4.0&se=1685121784809&ac=KOI-41FUPAF63M&ts=1685121785&pt=0&pl=0&loc=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526&tp=page&ti=US%20Business%20Funding%20-%20Equipment%20Financing%20and%20Working%20Capital%20Loans
130.211.21.179200 OK 126 B URL GET HTTP/3 koi-3qnetrwct6.marketingautomation.services/koi?rf=&hn=www.usbfund.com&lg=en-US&sr=1280x1024&cd=24&vr=2.4.0&se=1685121784809&ac=KOI-41FUPAF63M&ts=1685121785&pt=0&pl=0&loc=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526&tp=page&ti=US%20Business%20Funding%20-%20Equipment%20Financing%20and%20Working%20Capital%20Loans
IP 130.211.21.179:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGlobalSign nv-sa
Subject*.marketingautomation.services
FingerprintB7:49:65:C5:92:42:69:3D:A0:BB:F8:6B:B1:7D:06:FF:FF:16:AC:36
ValidityFri, 03 Jun 2022 16:56:02 GMT - Wed, 05 Jul 2023 16:56:01 GMT
File type ASCII text, with no line terminators
Hash 43babeabd6862b63a120cf2853487901
dfe32b01784f4cd1e489d0cfb0ef89dc8f239357
e3096981b71f871320f67785d969f2c81f0efefff0653569a42a953550b447dd
GET /koi?rf=&hn=www.usbfund.com&lg=en-US&sr=1280x1024&cd=24&vr=2.4.0&se=1685121784809&ac=KOI-41FUPAF63M&ts=1685121785&pt=0&pl=0&loc=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526&tp=page&ti=US%20Business%20Funding%20-%20Equipment%20Financing%20and%20Working%20Capital%20Loans HTTP/1.1
Host: koi-3qnetrwct6.marketingautomation.services
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
server: openresty
date: Fri, 26 May 2023 17:23:05 GMT
content-type: application/javascript
vary: Accept-Encoding
pod-hostname: koi-748d8d66fc-kmz4d
p3p: CP='This is not a P3P policy! See https://www.constantcontact.com/legal/privacy-notice/ for more info.'
expires: Sat, 26 Jul 1997 05:00:00 GMT
last-modified: Fri, 26 May 2023 17:23:05 GMT
cache-control: no-store, no-cache, must-revalidate, pre-check=0, post-check=0, max-age=0
pragma: no-cache
set-cookie: koitk=202305%7C6470eaf9163dae62070bfd11; expires=Mon, 23-May-2033 17:23:05 GMT; Max-Age=315360000; path=/; domain=.marketingautomation.services; secure; SameSite=None
x-xss-protection: 1; mode=block
x-clacks-overhead: GNU Terry Pratchett
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.googleapis.com/css?family=Roboto+Condensed:300,400,700
142.250.74.74200 OK 7.0 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Roboto+Condensed:300,400,700
IP 142.250.74.74:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (7205), with no line terminators
Hash 181654adae1b0c1fc01ac8a1dd6d20bb
b17db82d61f0fc09ae0c6dd9e1f5c09568889bd1
14cf6b095ca053ec3915bd76f4f9bc1825d403eb5d34b9db0b41490e99e9aee7
GET /css?family=Roboto+Condensed:300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 17:23:04 GMT
date: Fri, 26 May 2023 17:23:04 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2