email.mail.usbfund.com/c/eJxcjsuu2yAQQL8G7xKZAWN7waJSlN-wBhgcVGMsHony95Xb9OrqrhDnjGaO06YfFfe2I83VNHCAaRbdQ1sYRy5pdDDxQTkio7AnIbkj5QbELmjoQfQDKD5KLsTV-En52fTgnRejm5jsI4bt2orxbXdXm2K36UetR2HiF4M7g_vr9fruTyjurcalpJYtMXEz-KZ9xZUYqFNEcqFFJm4W44Fh3S90XvnY_5CJW8GNyuXs67JeKeWVPJO9TaViOXJ6hhLSXv5mlZoyLZm85nIe1OffWnCaAczOCulJKfTEALqq616Xf5NV22iWz_PEvMAgB9HVjPY3mo2W4PRPVN8HnXu_YgH-BAAA__8fCX5J
34.102.239.211302 Found 556 B URL User Request GET HTTP/1.1 email.mail.usbfund.com/c/eJxcjsuu2yAQQL8G7xKZAWN7waJSlN-wBhgcVGMsHony95Xb9OrqrhDnjGaO06YfFfe2I83VNHCAaRbdQ1sYRy5pdDDxQTkio7AnIbkj5QbELmjoQfQDKD5KLsTV-En52fTgnRejm5jsI4bt2orxbXdXm2K36UetR2HiF4M7g_vr9fruTyjurcalpJYtMXEz-KZ9xZUYqFNEcqFFJm4W44Fh3S90XvnY_5CJW8GNyuXs67JeKeWVPJO9TaViOXJ6hhLSXv5mlZoyLZm85nIe1OffWnCaAczOCulJKfTEALqq616Xf5NV22iWz_PEvMAgB9HVjPY3mo2W4PRPVN8HnXu_YgH-BAAA__8fCX5J
IP 34.102.239.211:80
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 21fec28f4724caf549af42457ff37912
f548019c4538f7a241c68538696a628d3c7140b8
5b452f65a6a1ed2dc9d82ca51b1d87b67f3bd82f8f3bf14009493c1b0a138d2b
Analyzer Verdict Alert fortinet Malware
GET /c/eJxcjsuu2yAQQL8G7xKZAWN7waJSlN-wBhgcVGMsHony95Xb9OrqrhDnjGaO06YfFfe2I83VNHCAaRbdQ1sYRy5pdDDxQTkio7AnIbkj5QbELmjoQfQDKD5KLsTV-En52fTgnRejm5jsI4bt2orxbXdXm2K36UetR2HiF4M7g_vr9fruTyjurcalpJYtMXEz-KZ9xZUYqFNEcqFFJm4W44Fh3S90XvnY_5CJW8GNyuXs67JeKeWVPJO9TaViOXJ6hhLSXv5mlZoyLZm85nIe1OffWnCaAczOCulJKfTEALqq616Xf5NV22iWz_PEvMAgB9HVjPY3mo2W4PRPVN8HnXu_YgH-BAAA__8fCX5J HTTP/1.1
Host: email.mail.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
Cache-Control: no-store
Content-Length: 556
Content-Type: text/html
Date: Fri, 26 May 2023 17:42:04 GMT
Location: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
X-Robots-Tag: noindex
X-Xss-Protection: 1; mode=block
www.usbfund.com/wp-content/themes/usb/images/logo_icon.png
188.114.97.1200 OK 2.2 kB URL GET HTTP/3 www.usbfund.com/wp-content/themes/usb/images/logo_icon.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 53 x 52, 8-bit/color RGBA, non-interlaced\012- data
Hash 50946e7f85431c547526705a530f893f
573eff13df4dc4f2e6e0e1db1a9339d79e22ce3c
05bc3e4202452433d51079e0d6e348cb850ea55330da7786c1d5c7290d13400a
GET /wp-content/themes/usb/images/logo_icon.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 2165
last-modified: Sat, 28 Sep 2019 00:36:10 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xNM33%2BNfvVBzjJ5WWFTGiu9GKmaU6ZbJy0%2B%2FR6sLHv54eecRRwSncUpxS5lvo3lM7Tnjw33jrhONCMFUidpGYYmvpKWl3UxEWWz%2FiXPsNKw%2BNoU4RviyJ%2B%2FwawDyhNV10ME%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00d78950b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/us-business-funding-logo-small.png
188.114.97.1200 OK 2.0 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/us-business-funding-logo-small.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 60 x 60, 8-bit/color RGBA, non-interlaced\012- data
Hash a5a71307aefd12c55fd16f36356f9a83
679b01f07d71f673b74fde71a5a0a9da8a8e486d
a2e02fabad9f481343e4e8050843b371e239956a637488eb7d2a9deff98245de
GET /wp-content/uploads/us-business-funding-logo-small.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 2020
last-modified: Sat, 28 Sep 2019 00:14:51 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AOQRMnceLOxl6RykO5FcdlD6atEa3x2121HCT6SBC2FHOGCm58ih86ag1cc7IkuGyopofazGyDMtNCi3ULyQq08fMx5BZMsEcxcmy%2BY%2Fh%2FHwKfGcAZbG1KYDVYttOu5k8iM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00d78960b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/themes/usb/images/logo_text.png
188.114.97.1200 OK 6.3 kB URL GET HTTP/3 www.usbfund.com/wp-content/themes/usb/images/logo_text.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 250 x 52, 8-bit/color RGBA, non-interlaced\012- data
Hash 198c7fed73cadb12c23066fcad4e33e8
1f2616bb88b86ec79f3ce8cbbf74b3392c0b46bc
0053eb54a0f54484a915313939d858e1844208d2d0c4b410ce30e25d9cbc09ba
GET /wp-content/themes/usb/images/logo_text.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 6307
last-modified: Sat, 28 Sep 2019 00:36:10 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2Fdp7Tjc7cEkSgpQqkXrZvzDfu4m15nc4MWVnI2D%2FsUw3GfyiECGRz7%2FO7cLOyQ0tpXwKUSgnAd4DXXahXwtzMibwyGh%2F5dtHG%2F04yg4vALx9fdbn44x0ifjFEWsa1gYfEjY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00d78930b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/phone.png
188.114.97.1 2.5 kB URL www.usbfund.com/wp-content/uploads/phone.png
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 70 x 70, 4-bit colormap, non-interlaced\012- data
Hash b56838fff449db819b49eeb7e64ed614
74de76e6563e7d82a518d03f8f086554a2a3dac6
f91ead1cc6732a5af0755dfcbfcfc9b79f30e1d5d9f5a9e66859e4655438d136
GET /wp-content/uploads/phone.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 2479
last-modified: Tue, 12 Oct 2021 16:10:11 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5340
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AATeQw3nWY4z875e%2BRHpIKJHmr6tyZzfMq8YZ2b7JaLvQMiWClD%2FH6awENRrTU%2BOsG0Hyhz%2B8bPCKW9mxrfwhXF4JZWdrRr2GCKK0r0wS2HxYGGa4Za4fuzi8o7s3C6vW2A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00d98ab0b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/img-equipment-financing.jpg
188.114.97.1 20 kB URL www.usbfund.com/wp-content/uploads/img-equipment-financing.jpg
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 300x200, components 3\012- data
Hash c0d6bce27af13e3d574b79a7987df2c8
44838a75e7b8f4e85a060d6196d3aa2012edb288
7a14596bf6034bbdc2029a158ae6c4a9abfae64faca549cdbd581b5ab978b9d1
GET /wp-content/uploads/img-equipment-financing.jpg HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/jpeg
content-length: 20449
last-modified: Sat, 28 Sep 2019 00:14:55 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KZBnHav%2FRFu%2Fj1v4GZFRhe%2F32sBkpmgnB6tvkLXRBdmejy1yWHCbWBjX8AH0qp2EiM9fo4zjAsh%2BXpK8AeTvIAUEPiMfSgZtFarSfR1MfsJlo5LMIJnaQi0Ql8tS0ZhJl9o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00d98ad0b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/img-working-capital.jpg
188.114.97.1200 OK 13 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/img-working-capital.jpg
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 300x200, components 3\012- data
Hash 77e791f0bf53571239c7a08d4a6e71a6
596965606bcddfa0f5550bb1aee16ad83db76ead
93c2194c46571f708fc2f3af13766d0f2c93fa377f5c2ab6cbc08c68d7330cf6
GET /wp-content/uploads/img-working-capital.jpg HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/jpeg
content-length: 13371
last-modified: Sat, 28 Sep 2019 00:14:45 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vg7Eri4QyvhmIIDRQG7Aq%2BacMWcjO%2FkJBvuu2BA0UKp%2Bbivr8vkWI%2FN8HI9tPrBN3wBx8QvxrDyR%2BGI29lkMvxRduSrAfFZEPPl3kSM8MDHwuMD5bmkdY7L5DOTscsqsjUg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00d98aa0b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/img-sba-loans.jpg
188.114.97.1 22 kB URL www.usbfund.com/wp-content/uploads/img-sba-loans.jpg
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 300x200, components 3\012- data
Hash 23f72b8211202321fc5bf2d79da57b7b
a2bcedea0c3396e1eb7106e1e576e900b1062221
516e99c672b4bc62df5134409b5e8918a95ce1bc59277743887f814762f313c1
GET /wp-content/uploads/img-sba-loans.jpg HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/jpeg
content-length: 21745
last-modified: Sat, 28 Sep 2019 00:14:43 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6sUYSnXKQiJ%2B0U4HApUkm%2BWn1QBKmou7kk5HWShLVb5yFC4YHWqyvXSUlU0BH5VxKFAguYpHyKueTSK8rRNe9f6cVIKpD9PbVpspB7vLdV6s0XRBkW3VGmFKdBn1hp%2F6q3o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00d98ac0b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/img-section-business.jpg
188.114.97.1 20 kB URL www.usbfund.com/wp-content/uploads/img-section-business.jpg
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 987x600, components 3\012- data
Hash 69b4568a70d5e823c2487ef75db31a3d
f716722204dfd61eefd092ba4aea0f5e03315d3e
31845c6cbd8abdf0187162d1170db2aa7643495bdffe3f92c301131c9d85af15
GET /wp-content/uploads/img-section-business.jpg HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/jpeg
content-length: 20080
last-modified: Sat, 28 Sep 2019 00:14:24 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pJ2FZeXWxuNBSuWcmRuNYti3KIAlaMVr5jlqJL1MQgkahMCZVjTKGVj6VnScb%2BoQ07YSCmTittXxiP%2BMtnjiDlh9YTvlRjAkshcYdQopwlJq1LvNJN77ip3PkFn3A0lolUw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00d98bc0b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-approval.png
188.114.97.1 841 B URL www.usbfund.com/wp-content/uploads/icon-approval.png
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 64 x 64, 4-bit colormap, non-interlaced\012- data
Hash ae3c40db3ae713d3b2532f642579dc46
4c79d5f0d3aeb840763298eea898a69005955356
9f1e7382ee492be2670880685b2de565eef1ce8667cdedc03b2415c8c8e18012
GET /wp-content/uploads/icon-approval.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 841
last-modified: Sat, 28 Sep 2019 00:15:17 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yJ8Ij3yqhfRxVxkZtmAef4CA%2FpGSJFGdwZeussmZrly5mxaqAIpQWZ%2FdLCl3p7f2jkJYlqNy%2F7gzHbM7TVqjnOjm58xwACBQKUjPAf4Wwtx8ex%2FMSEgwyNba4TP5S%2FGYy0w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00d98b80b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-247.png
188.114.97.1200 OK 992 B URL GET HTTP/3 www.usbfund.com/wp-content/uploads/icon-247.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 64 x 64, 4-bit colormap, non-interlaced\012- data
Hash ef7c282ab6144fa5162ed00ca2ae0b66
263b7452a42c10de0401fea7ce10c580b1db9935
8fed20ba76c770f08d0c0a231f16b87cc7fa72e8ae89922b71f642f8ff026455
GET /wp-content/uploads/icon-247.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 992
last-modified: Sat, 28 Sep 2019 00:14:10 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fi3AUos3NiAivhasujzFGVDyPGbLGrTAJ8A2B0F0UN9VrYlZo4M0yQThf7gQ2GDNPPIvKQRxScWFg1y5PD7id7PmA8HnPA4d09FJcIBB3pnCnVzZ2A4zrN%2Fzyp4ss8r1T8c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00da8c70b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/featured-logo-01.png
188.114.97.1200 OK 3.3 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/featured-logo-01.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 164 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 30427e02eea1cec61004e2fdb293e4d2
d3ba51be6c31147f379670d59cab54ec01b3b448
32161c4a44a1dcdddeeb852e2b6eea070839630ac3a719ac79a503cfd4d3892d
GET /wp-content/uploads/featured-logo-01.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 3311
last-modified: Sat, 28 Sep 2019 00:14:38 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fZ0%2B76t%2BT%2FYiuGWd2PhKJVfp%2Fx0AjstVktDx1j4ctCXQa4j%2Bndln1OM5oisuYD5AbHTl%2B80u3z7qMrUzk3bEs4AfhvhwaXUh6l5wceqXMYx61KJMca2fZ0MUKmLR6xTWuxs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00da8c80b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-trust.png
188.114.97.1200 OK 852 B URL GET HTTP/3 www.usbfund.com/wp-content/uploads/icon-trust.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 64 x 64, 4-bit colormap, non-interlaced\012- data
Hash b717e782e85bd9f42d54ae002213b1c0
5eded8f0286e2872fb084e77126590241b50bd73
2e5819985db070ee25e744ee7d4c0e4733167289e9cf04c0f3790fb47f5e0a8c
GET /wp-content/uploads/icon-trust.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 852
last-modified: Sat, 28 Sep 2019 00:14:21 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qhACSDD6W0dMhiTqMsLU%2BEcLLYLgKAl8RDS2y2BCRyCtE%2BP22qSyj7H1xO5J909MhozrfGMtScM8rZiD1hgsMNCpRtdME9IWKIWkX9CaZ%2F4SLJOPieor7WdmpZWSziiBCvI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00da8c60b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-lowest-cost.png
188.114.97.1200 OK 782 B URL GET HTTP/3 www.usbfund.com/wp-content/uploads/icon-lowest-cost.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 64 x 64, 4-bit colormap, non-interlaced\012- data
Hash ad34d701a81be13e89ac5007f328c168
12bb1dd808cfb91272ec57d966c30c33b296ea22
e1b22c7c43c5594dfbf96d96dc1916f420a664234479c79180e82fdcb44fb6be
GET /wp-content/uploads/icon-lowest-cost.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 782
last-modified: Sat, 28 Sep 2019 00:14:35 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WawZzPDXbj93nCgCV8YKuDPS6OTPZzRSXsw3SL8E0OvS%2F2C15h5cufFTeLYTxaMPOuwcloJIEomOm8yoffRuzY1lebBc8s%2FHaVcq8wkjeZdpBdFw5eeG2icm8bslTp9idFg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00da8c40b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/img-vendor-program.jpg
188.114.97.1200 OK 13 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/img-vendor-program.jpg
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "Compressed by jpeg-recompress", progressive, precision 8, 300x200, components 3\012- data
Hash cc288539f794416629801dc7c0a313bf
254033b2c00433efd50fbe114e45ed2c638b2777
d92a25f5b72d7659b7e836cb1658e9c112ab37da85fe65813d0cc81070a8009a
GET /wp-content/uploads/img-vendor-program.jpg HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/jpeg
content-length: 12812
last-modified: Sat, 28 Sep 2019 00:14:24 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=djSCI3IVTj%2BQEdtFPf%2FrR5NKzktb8BTTo8a5TFcUuSppSXhtzyqOWOlBWPtIOxno3YuJKQmUGcorCu0DhY5oOANMF0fqTJ2CnP3fE%2BEn%2BbiJzgTcAAXOBr9AiGTtRBDqVl8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00d98bb0b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-payment-option.png
188.114.97.1 874 B URL www.usbfund.com/wp-content/uploads/icon-payment-option.png
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 64 x 64, 4-bit colormap, non-interlaced\012- data
Hash d6e87ed2e1cf82afa5b7b807ff1b31d7
8bfa39f75ed53a385bdf9d0d6ee23c377028426d
fc18ba7522255ecb59d36fc99887aada814f88931f32c29f0a80a63c32589731
GET /wp-content/uploads/icon-payment-option.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 874
last-modified: Sat, 28 Sep 2019 00:14:43 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZubxHRB8G9OZTBEbyxTB3DHW39%2BaNU1C3ubf5XRnAGqGWxmyLUN%2Bs2VGI7kPAKLl3Rk%2FRyRJU54phzFWqUq%2ButB4GCw2wmVVo%2FAgVhsCBMNFqRaz%2B%2FtfBO%2BnwEt%2FkAK0zkw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00da8c50b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/featured-logo-02.png
188.114.97.1200 OK 5.8 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/featured-logo-02.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 93 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash d2bfb41e522705be8e4a48895b996bca
df2507b75f1c0362bd168ea7ecf829f11469a926
968570479e59e9ff339d5c1d25e4c15011f8cb5ad243776b8cf62f51d28b0903
GET /wp-content/uploads/featured-logo-02.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 5795
last-modified: Sat, 28 Sep 2019 00:13:58 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JY29S3CJPKNpTgPhl0%2FtS4EiNMhcfws05KbdHDmUpUxb2WVzUuWM2dR6lXh9mybW1Y3%2Fn6p2y%2FF3dtw6pIhfBbFlI%2BU0e%2FH%2BJ6qG9MLA8EYqCUNPg3%2FUw9QViw9%2FMdRltqM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00da8c90b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-paperwork.png
188.114.97.1 569 B URL www.usbfund.com/wp-content/uploads/icon-paperwork.png
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 64 x 64, 4-bit colormap, non-interlaced\012- data
Hash 0c4ac1d950bf0c487a56ab5eda6db7d3
df2764e14bc2f9e503e0303a794db2cd834187d9
5c330674c7a9b46f5466d015d4764d8f983e314b817f2a3caf4fc437b808f088
GET /wp-content/uploads/icon-paperwork.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 569
last-modified: Sat, 28 Sep 2019 00:15:16 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VYV%2BjrwktAwkKauIfb3ekXCx2jDu0z7gFtBKflZkLTR808RxXPZ25XKWNrkeABFRxVKQKQ6cTvjD1T0gi4AALLOt8EdoeQSHgPqQU2R%2BpuZDJobrbjQ72gDvehVmw%2FnFnoo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00da8ca0b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/featured-logo-03.png
188.114.97.1200 OK 3.8 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/featured-logo-03.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 83 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash ea461093328a47d28ed34df6be0ad850
5fad4dd9e9daea5b1cac739624cbd673c20fe7c2
37ea654d17c80dfb22d0ad091907b6d4009c76c4671728321fd51376a8df7cce
GET /wp-content/uploads/featured-logo-03.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 3840
last-modified: Sat, 28 Sep 2019 00:15:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mEtWbyMMsRy0LLJ76rhUO87IUB%2FCFff%2FjnAV%2BBgHmnMZHjg6LPtqNTXR9eP9OdIbALuxxnJYTSSP3Cvji70ihP0kl5MjnbCj3AqYelxrw%2FqiTxQxxzDMA8D8mZl8mch%2FfWc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00db8da0b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/featured-logo-04.png
188.114.97.1 5.8 kB URL www.usbfund.com/wp-content/uploads/featured-logo-04.png
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 123 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash e94a0244f1a51d7565de08744375bd07
dde753e74a85c5f094dda6661ada486fdae50422
47bff975ef1626c064613532b237bd114911cdc835effdccb0d124c1432c17b2
GET /wp-content/uploads/featured-logo-04.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 5757
last-modified: Sat, 28 Sep 2019 00:15:18 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ge5k%2BU2VDRQhuVNubKb0D6eDVV9EP9SJWnnR6VxFAx2o9s3v9Jhm1OMKURRJdwafmjkn38mGLG%2B1SVbSCDe6%2FUe2Lg8Uf%2BvDY1wzeh39fCGbKFoEuXEQCrW%2Bu8dqEtuwdFk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00db8db0b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/featured-logo-05.png
188.114.97.1 3.7 kB URL www.usbfund.com/wp-content/uploads/featured-logo-05.png
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 135 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash 646b30b6704a2457b04bb12da4144c97
acadca7b80819db2100f2cf8341acdf47a2eb773
b6e64d31c4f5ab917ad1cddfe7fa745e7c4bfc2d5af33cfdaa8130eb14247bc8
GET /wp-content/uploads/featured-logo-05.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 3721
last-modified: Sat, 28 Sep 2019 00:15:03 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zjd2OaSuPJcZKIJGyZuWAL1m1dut8tNkGdokc%2BbP6rUhgHnzdN8arp41BXr7lisj5maxavTqHuVtjfP5RSZ1on21VPceKNwwowqr5ULzbeAP39gCWOAZf67UgzK8C2gPz6U%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00db8dc0b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/norton-secured.png
188.114.97.1200 OK 3.0 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/norton-secured.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 180 x 75, 8-bit colormap, non-interlaced\012- data
Hash 7d05b62893199c911ab6f798ec8127d2
e7dc7368c55a2fbccb17a82c1a25de39cea2907d
0b691c8e6d1b07ce3e066744ccfbf643d61f013ce51503b0a3ceb7a356562ed6
GET /wp-content/uploads/norton-secured.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 3017
last-modified: Sat, 28 Sep 2019 00:14:45 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qy%2FY8KX3qQ3co5L7zVtnDG7dCOmBmAZXcT6gSI2WDU98qmZvY0bwoAMnhublfjLQuudaL%2BzWqK4ELOS%2FEgY0eJFFeLUesYt9w%2BBGmdonJjro1MnDGmXbs0HRwlLFljqaPQo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00dc8e90b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/featured-logo-06.png
188.114.97.1200 OK 2.7 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/featured-logo-06.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 175 x 75, 8-bit/color RGBA, non-interlaced\012- data
Hash b7b5570d5d29fd453a5e65063849fcb1
b07b87612c74febb32961e10ed154dc2efdf19cb
886d709e142c957b0d93269a57fccc13800907c8ab90acc1f18c8bec259d3992
GET /wp-content/uploads/featured-logo-06.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 2693
last-modified: Sat, 28 Sep 2019 00:14:38 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j5TM%2FMvqDJKmj82DCkaJ2ZPks2PMHloayeVsbG5tZH26SxJF8uL9bcqbaoCI%2BYItFYRrxnY4aRkG0jJxYuXC4bGTf3oaTDjX%2F6F38wOukuxY6nbMSWTKBC0Y6MRD5E%2B0gYU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00dc8eb0b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/accredited-business-usbfunding.png
188.114.97.1200 OK 2.2 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/accredited-business-usbfunding.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 180 x 75, 8-bit colormap, non-interlaced\012- data
Hash 3befe9c6fb5e6602893570b99d3920aa
1e7c1d352448864975a23135097e59593ae71456
d59962c29e3487892da60ef799f75523576b6f006d54fc3dd43bb6993588f1dc
GET /wp-content/uploads/accredited-business-usbfunding.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: image/png
content-length: 2244
last-modified: Sat, 28 Sep 2019 00:15:06 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JLh4vuDycvkD4qSAaL6Wj5lQQDIOvS1RsLEFJE03Gf3ThwhomnLb%2FnxHqswfvkPCTaqlnPSkwy9iv8269C%2BZZ99LqWBZiZAWRfadd53jJRCwexZUq6IoK5j0aPIazlaif4E%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d00dc8e80b51-OSL
alt-svc: h3=":443"; ma=86400
widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
54.230.111.79200 OK 6.7 kB URL GET HTTP/2 widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js
IP 54.230.111.79:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (21661)
Hash ac0abdc1f9e115bd67375758633d6147
4bd462b3cd5585214826f9958ab02bbd51257481
3cea5994dbfeacf40ac1a561612e7f101c0f3139d13e0c5bf48ddde987677f54
GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 6676
last-modified: Wed, 03 May 2023 13:48:29 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Fri, 26 May 2023 01:46:28 GMT
cache-control: max-age=86400
etag: "befec09eb386fc68a0869c8d1b529dd6"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: G_kdrp9nuySfq25-KDbDTVd_nVI5YeRWcPyS92emX8ozZG_gDplTQw==
age: 57337
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:42:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:42:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.usbfund.com/wp-content/plugins/gravityforms/css/browsers.min.css
188.114.97.1 1.7 kB URL www.usbfund.com/wp-content/plugins/gravityforms/css/browsers.min.css
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (7331), with no line terminators
Hash 9ce7b00ef409acf70d80eb90c53c4e82
b63340fcd8c2b1813d9e1c21e3ac798731b9a818
f6d620c30ddb2146a4543b7648209d6ae882bb876b352f1b56e148aed94ce09c
GET /wp-content/plugins/gravityforms/css/browsers.min.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:22:25 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bVl247yqGhHH0WukeqRp8OP9CGV02Mt4E52u5U5VGqh0jaFWlcTQiVAHCtllTGYDYqaX5njl0aOVUEMN3Dm%2BZ5gzZIW3S9GtFZWw2rVv5ZvgRG50ALgPo6qm47q7j043sbM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00dc8f20b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/plugins/gravityforms/css/readyclass.min.css
188.114.97.1200 OK 4.0 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/gravityforms/css/readyclass.min.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (32180), with no line terminators
Hash e8cb782d10e0c6964b9d0b1bab063838
c82794914b3943156c8299bd069d1b02de75c90f
ec8af9acc2272ea0d0f5380ae424670a70b0bc429c3e404675f33db3c9daab22
GET /wp-content/plugins/gravityforms/css/readyclass.min.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:22:26 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gl7ome9eWhHVCgx9ps1EGyFLHVNplqyphYRYO6suvKFy6yxcVrFC3Grwu5mw995yCRm5nwm7pLxfBOBc3wW9JA6haN0mYvV7lFeeftKbll4CNi8b%2BF0vag0kJcOwmuthdW0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00dc8f00b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.1.2
188.114.97.1200 OK 7.7 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.1.2
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (1847), with no line terminators
Hash 4423675b49191eba3339cf4becb11952
3c67b1a469f1992517fc96598149a992aa827f32
1fdeb0058a3afba062577a4b883ba40e47be349ff2801f0d084a99eec9245187
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/gravityforms/js/jquery.json.min.js?ver=2.1.2 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:22:39 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=g2rh8LftauIJaVOlFnsPi5o8SzvHEjKIPDhT%2Bn%2FFFwtt7JO3itOwcTdO50fIPLX9KWtoUODGIUHrs0U343XZ1Lda4TGygXDPXRq1EBFqje2ic4Px7fYXvOlHmstXXeETPFs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00de90e0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash a5dc40788a7f03b449952c9e029f8099
74a40e0eabcecb7b84aac44e760b89c268886e4f
598e0b0f420de344bed7201b5eb3d74e45f118a165922a754c3b74aa6d659e19
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
code.jquery.com/jquery-migrate-1.2.1.js
69.16.175.10200 OK 5.8 kB URL GET HTTP/2 code.jquery.com/jquery-migrate-1.2.1.js
IP 69.16.175.10:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
Hash 7d87ce904ab76326bff3147c72a45b2a
b5a7a40ada6f87047f00e95915356aff82cb0959
58564bc237b683f482c3a82def059f27b2be41109d237d7a2380074b5b4f22be
GET /jquery-migrate-1.2.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:42:06 GMT
content-encoding: gzip
content-length: 5783
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-40ed"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1685122926.dop018.sk1.t,1685122926.cds202.sk1.hn,1685122926.cds216.sk1.c
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js
142.250.74.42200 OK 30 kB URL GET HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.1.4/jquery.min.js
IP 142.250.74.42:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with very long lines (32025)
Hash 4a356126b9573eb7bd1e9a7494737410
8258d046f17dd3c15a5d3984e1868b7b5d1db329
22642f202577f0ba2f22cbe56b6cf291a09374487567cd3563e0d2a29f75c0c5
GET /ajax/libs/jquery/2.1.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29725
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 00:02:03 GMT
expires: Wed, 22 May 2024 00:02:03 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 322803
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-210860007-1
142.250.74.168 47 kB URL www.googletagmanager.com/gtag/js?id=UA-210860007-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (2271)
Hash a36ee847c1bd49f40cf5b2548cfb6766
1e51d41ca7e20a071afd86a00f4d8998bbb892e0
5c69322cfe538f3d1d530aa72ec8b84b19fb3cde28647035d3b5afd37efbf779
GET /gtag/js?id=UA-210860007-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:06 GMT
expires: Fri, 26 May 2023 17:42:06 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 May 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 46893
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/plugins/gravityforms/css/formreset.min.css
188.114.97.1200 OK 844 B URL GET HTTP/3 www.usbfund.com/wp-content/plugins/gravityforms/css/formreset.min.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (3840), with no line terminators
Hash b91b0939a92c34946238d50b1d752451
ced01ef28a297ab45d494018f232dbe88a6e9f9a
784a99d40268afc0eab1bd5c2cd3f4c46e80748dd5d511b5fb53c1abf027eb24
GET /wp-content/plugins/gravityforms/css/formreset.min.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:22:28 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FO%2B3KFMeGhO1KtZEaAPxy9l%2B4p111KSI9pPbRGBt693tjj2mEYjsd9Hj9WnMV9xVT%2BsE8iabG75BaCL1%2FZoMLTUplwWNa4Ms20pm20YXEblDTXIdpMqrWdErojWqAE2%2FIIk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00dc8ef0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/plugins/formidable/css/formidableforms.css
188.114.97.1200 OK 18 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/formidable/css/formidableforms.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (65436)
Hash 399af443c8387c8a98213f936add60f4
e9e2dca0ad4644058ec16d236db729c3026610a9
b51be19b9fba0cc27bbaa03bc6ba7b6203f5960ec2aefb5bc8e49ff514079e45
GET /wp-content/plugins/formidable/css/formidableforms.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 14 Jan 2023 13:08:34 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5340
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KBESvE6IX2h3sq3r7%2BU1synewfvT7GBrkf1PNObcZnJohO7KHPR4IMJhFsOXh9CaCF1ZttLr%2F9ZAtresonqMoLBcdcL%2BYPfRQDblLds6t7sYlf1p%2Bdlfwe8m2DFTkh0dNZw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00d48500b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/plugins/AffiliateWP-master/assets/js/jquery.cookie.min.js?ver=1.4.0
188.114.97.1200 OK 1.2 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/AffiliateWP-master/assets/js/jquery.cookie.min.js?ver=1.4.0
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (1667), with no line terminators
Hash 48c2e2ebcc4b47648a6c6a781023e61e
de1e3b7a28d2bf514b7164442657830c6c2e53eb
9f73fc38fe1e69919d8113cf47d74c7696b46e913b512709c7b7cfee799b0a8f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/AffiliateWP-master/assets/js/jquery.cookie.min.js?ver=1.4.0 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:24:32 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5340
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=irWU%2FRn15Nq0KBlRHWcMSQnuW%2B8OMuTsQaqiJ%2BWg%2FqdaSi2%2BEKgRuXbSyzprS7vJCUxVKeRFUXCLPFZViHteihTqTOEUr4emeqXCzCYhXCgH%2FKoONA0CENs6E2V29spBSCw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00d78940b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/themes/usb/js/accounting.min.js
188.114.97.1200 OK 1.4 kB URL GET HTTP/3 www.usbfund.com/wp-content/themes/usb/js/accounting.min.js
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (3019)
Hash 4f7e0cd725048f9e8d1b21ddd6c8f8a1
9d0c9bd891d533f63899ed57aab9253227620c7b
c0b79f3ef7ed519698110aae0df4699d71bc9e4476a3dbeeb407032cd7bae11d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/usb/js/accounting.min.js HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:35:52 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rqGIpL2Ghyr%2F2Z44X%2BiH6jX9xY5DikYfS0A%2Bagk0YMXR7nwJNVmHMxUR%2FADW8DkGls0IdOKqZw3ccAodzymGXyj%2Fk5pkNmNNOrQ2D9dr7U8QewV0nCRtwh9mi59r6nKTqgE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00de90f0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/plugins/AffiliateWP-master/assets/js/tracking.min.js?ver=2.1.6.1
188.114.97.1 1.6 kB URL www.usbfund.com/wp-content/plugins/AffiliateWP-master/assets/js/tracking.min.js?ver=2.1.6.1
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (2972), with no line terminators
Hash 7646a5336d19b5eaefb1dbb3ad0f0a6e
6fe38de00b9510e60397a185cf673dfd0bd1dd79
4fc76a0641b98f34feaf8da716614e82bab80d8e270fcb3539b278ae609f6ea6
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/AffiliateWP-master/assets/js/tracking.min.js?ver=2.1.6.1 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:24:33 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5340
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JZNVEMdP0XNP1dIF2%2F7nP%2FVeQSzX%2Fu1CyGLkQl99wrVYpAWPdKL0oTK7BEFA7ypyqPeHXFYi4tlJ5JgFI4GjjCragiPQhFSW3gKJSrFNPxeod0x%2Bcdq1bZphPi%2BHOJSQ4qg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00d78900b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226 1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 49977542ef2fdbcd9968470f79ae714c
b38ca0e73df1b02f2e7df169599eefc247f38c08
244eb78a8ef14b689208f3165fd5ac67716e54aaf15183398e88e3e70ace6042
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 May 2023 17:42:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 30 May 2023 13:46:27 GMT
ETag: "b38ca0e73df1b02f2e7df169599eefc247f38c08"
Last-Modified: Fri, 26 May 2023 13:46:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3200
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7cd7d0114cfcb512-OSL
scripts.iconnode.com/100980.js
54.230.111.124200 OK 7.7 kB URL GET HTTP/2 scripts.iconnode.com/100980.js
IP 54.230.111.124:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.iconnode.com
Fingerprint2A:FB:28:30:52:32:14:03:84:5D:DF:C4:71:E9:EB:81:7F:A6:1A:60
ValidityMon, 27 Feb 2023 00:00:00 GMT - Tue, 22 Aug 2023 23:59:59 GMT
File type Unicode text, UTF-8 text, with very long lines (46582), with no line terminators
Hash da2dafdfdca2cff284c1e82ede81b3f9
f16a5353f7a625d98b7e3e3f9e5035a0878cf282
b75d6009b5a0803a47896401305f7154f4ed6dee4c71c8f52042ebe60f97b57e
GET /100980.js HTTP/1.1
Host: scripts.iconnode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 7683
last-modified: Mon, 26 Sep 2022 18:10:24 GMT
content-encoding: gzip
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 May 2023 06:36:10 GMT
cache-control: max-age=0
etag: "05a6d57113e7870d8851ed0faf8ca12f"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ABxZhd4jwizYvVeDNTveXv5rX0U8E-wXk32SZkKaia838v0v_A_y0A==
age: 39957
X-Firefox-Spdy: h2
www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
188.114.97.1 49 kB URL www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8365), with CRLF, LF line terminators
Hash 9d1d5379a2a053d729922afc3b137527
560157c664707011afec1e28fdba848f10be65b3
8ebdd6ed4c03945e6bccade266117ba4a6485a2bd13253069fa896c7f5f9f66a
GET /?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
link: <https://www.usbfund.com/wp-json/>; rel="https://api.w.org/", <https://www.usbfund.com/wp-json/wp/v2/pages/6>; rel="alternate"; type="application/json", <https://www.usbfund.com/>; rel=shortlink
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DbLKki4R8wwhEcHBwPMr2XiVFpLJThDbjU0kFIAe6aL4WhQKpnC7GZjF6UhT7T5Q0zESHCcux8RZLCUB%2FKtEuCOJ4UWXtgbSsmKArRAyBEcZRlec9kX700bGqshp8V5d%2Bzg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d0086ff1b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.google.com/recaptcha/api.js?hl=en&render=explicit&ver=6.1.3
216.58.211.4200 OK 556 B URL GET HTTP/2 www.google.com/recaptcha/api.js?hl=en&render=explicit&ver=6.1.3
IP 216.58.211.4:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectwww.google.com
Fingerprint48:E3:15:66:FC:EA:15:BF:D2:34:C1:DD:60:D4:23:A3:63:57:89:8D
ValidityMon, 08 May 2023 08:25:18 GMT - Mon, 31 Jul 2023 08:25:17 GMT
File type ASCII text, with very long lines (852), with no line terminators
Hash 6eb227f49545693ff09e7e868952f4af
dc2cfcf4a5d33b127c8c5d18dbe577c1e690dfa9
0a22aef6916a4504fc4c1b3f83cf9ad8dec879e875888b7598ee8edde393d86d
GET /recaptcha/api.js?hl=en&render=explicit&ver=6.1.3 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Fri, 26 May 2023 17:42:06 GMT
date: Fri, 26 May 2023 17:42:06 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 556
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash eabef916764564262ad985fd27284a97
42a72e12642fe4249aa5bd8e1cc9e9db07fd7943
ffa5c8a67b8ebba1ce4e464bc7e831e998c830a78d78880f09702afae02a9d70
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash b9a762a1e577f4b078f4ad3de865303f
87d0f23fd6fc8378d53f72301c4444b362e4f3c9
44773657e91b7a1facdbc5538fea70b8dea0e1cdc850f4ee3eaee0d84bb02088
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.usbfund.com/wp-content/themes/usb/js/plugins.js
188.114.97.1200 OK 41 kB URL GET HTTP/3 www.usbfund.com/wp-content/themes/usb/js/plugins.js
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type HTML document, ASCII text, with very long lines (17791), with CRLF line terminators
Hash bfaeba156e7335456a0a079c2ebc4e54
08a7e1d38d2a0772caf660b897f5a27cc310058a
dea3dfdd01f0f244d07e494f7f6447896b06a42c9ccab081c2b0ea612bb2b9ec
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/usb/js/plugins.js HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:35:52 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lN8Us7ivwX%2BhXPfq%2B1ABvtR8R%2BWbLXmljv2aIKBIie%2BKx4U2Vwr%2BeiZXYqPZg9FDPwW3B0QornUc2XC%2FtE7FtKkr0R%2BB%2BtyyGAz3T2qPQtRT1v4JC%2FCkBoG7FdsBHHelNAs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00de90a0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.3 471 B IP 142.250.74.3:0
Hash 9f00aac479dac582db2e3e2b61ecc619
4c99cd434e986d7bc5b67fde18796a0edc837bac
d05db643636b28263bd4f0093f1c2aa135473db1065a280a7d9764c32177952d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d.impactradius-event.com/A870624-b043-4b58-adb6-a8c4d22ccc5b1.js
35.186.249.72200 OK 13 kB URL GET HTTP/2 d.impactradius-event.com/A870624-b043-4b58-adb6-a8c4d22ccc5b1.js
IP 35.186.249.72:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerSectigo Limited
Subject*.impactradius-event.com
FingerprintEE:D3:74:1B:8F:1B:24:D4:38:F2:AE:C9:B9:44:66:42:09:32:9A:5A
ValidityWed, 07 Dec 2022 00:00:00 GMT - Sat, 06 Jan 2024 23:59:59 GMT
File type C source, ASCII text, with very long lines (40914), with no line terminators
Hash 6685f4bad8099206373dd4d345ef6480
5b0deb45e1cfc5dc4d6e0c9448c56242a011ef97
cfafe2d61bcbd522d6281105cbc92eb690a1ca39702bd2da0bb8daf63b4fb2c4
GET /A870624-b043-4b58-adb6-a8c4d22ccc5b1.js HTTP/1.1
Host: d.impactradius-event.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-guploader-uploadid: ADPycduxoxRwUuERDNSDPZIf-8QyLwSVxi0gByObTHhJZ_onrYRSABUbvdVbDKyqALMpobGJvgYZZsXXQV-KtFoveezJ-a4LhsBZ
x-goog-generation: 1581997649126919
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 12876
content-encoding: gzip
x-goog-hash: crc32c=PZt+Nw==, md5=gz6cJDHxap5OWQ2MGKARaQ==
x-goog-storage-class: MULTI_REGIONAL
accept-ranges: bytes
content-length: 12876
access-control-allow-origin: *
server: UploadServer
date: Fri, 26 May 2023 17:42:06 GMT
expires: Fri, 26 May 2023 17:47:06 GMT
cache-control: public,max-age=900,s-maxage=300
age: 0
last-modified: Tue, 18 Feb 2020 03:47:29 GMT
etag: "833e9c2431f16a9e4e590d8c18a01169"
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtm.js?id=GTM-NW5DZCL
142.250.74.168 59 kB URL www.googletagmanager.com/gtm.js?id=GTM-NW5DZCL
IP 142.250.74.168:0
File type ASCII text, with very long lines (7865)
Hash e4f75b6365066237d202d675ec263170
27f9cc01abf851b27ca19d2e40807ab65c3bdf03
710d5cc7e5723ad73caa0c190a6fc3873ac8ba60d937bf3f659c80ee07f2caca
GET /gtm.js?id=GTM-NW5DZCL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:06 GMT
expires: Fri, 26 May 2023 17:42:06 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 May 2023 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 58584
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.usbfund.com/wp-content/uploads/bg-section-header.png
188.114.97.1200 OK 22 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/bg-section-header.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 1920 x 149, 8-bit colormap, non-interlaced\012- data
Hash 65b13235e26653c77b0ed328dfdb8dc2
2dcc21d12b909058345b01f087062f6b59f4f05c
acba6ce2f083bf3e78176be5f1c68dfbeb67e609472b4f8c034ba8676d0995b2
GET /wp-content/uploads/bg-section-header.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/wp-content/themes/usb/style.css
Cookie: _gd1685122926178=; wc_visitor=100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:06 GMT
content-type: image/png
content-length: 22531
last-modified: Sat, 28 Sep 2019 00:14:58 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pMx70AJNXmERtwlOur%2FE8ZnmZZ2CIJ1uG5T%2ByPk9aGhUJy62Oh0uVt4nHecyo%2BblwHkkbx2zyyzp3rvb3JeMjQft2ANHrn6x2JuIYf1CW9gFuFi0fXkjI7AE8r7o4nNV1MA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d0136f270b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-arrow-down-white.png
188.114.97.1 172 B URL www.usbfund.com/wp-content/uploads/icon-arrow-down-white.png
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 14 x 14, 8-bit gray+alpha, non-interlaced\012- data
Hash 26d3bceaf73fad28fb322b6646860f78
1b70241f618df47a01729534d376a57c57bd8c07
0077bc52b60eb51d8785f3aa812a2cdcce59acd3a0b70a801b82c563787e1a7c
GET /wp-content/uploads/icon-arrow-down-white.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/wp-content/themes/usb/style.css
Cookie: _gd1685122926178=; wc_visitor=100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:06 GMT
content-type: image/png
content-length: 172
last-modified: Sat, 28 Sep 2019 00:15:12 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2BCRZSe5pgt1b7YFpZLhuEgUNbxhAa2q190I82hGCR0rMsY27m5Cchcj5v5LkkfS5G0rMzlBvX9Eb7VNgqgrtEhXEhwCNEVPYwn7FVNGRZYsZgBugnrUdspSjTqmK7s%2Fm90%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d0137f2d0b51-OSL
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/icon-arrow-down-black.png
188.114.97.1200 OK 195 B URL GET HTTP/3 www.usbfund.com/wp-content/uploads/icon-arrow-down-black.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 14 x 14, 8-bit/color RGBA, non-interlaced\012- data
Hash f984736b4b9dfe03bb8831a718c6a238
d95304fa5fed6fdf9020c21ece2b7e35aec4808c
4944824b4a23581a4660857551680fffd806f6fa42e3d9414fb1529ba78651b9
GET /wp-content/uploads/icon-arrow-down-black.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/wp-content/themes/usb/style.css
Cookie: _gd1685122926178=; wc_visitor=100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:06 GMT
content-type: image/png
content-length: 195
last-modified: Sat, 28 Sep 2019 00:15:09 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=742HNuNc320dHORa35Mzz2xi8fl1cwA%2BWyTH4yWvCrTyYx1u4i2GAyis8h7BFawMWg9e9m9hzcRNXDSh5H425rcvGkSZ9V8ipPm1EQLs6jo6SpIgf3KodG3UbRHLlskQiQk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d0137f310b51-OSL
alt-svc: h3=":443"; ma=86400
ocsp.globalsign.com/gsrsaovsslca2018
104.18.21.226 1.4 kB URL ocsp.globalsign.com/gsrsaovsslca2018
IP 104.18.21.226:0
Hash 49977542ef2fdbcd9968470f79ae714c
b38ca0e73df1b02f2e7df169599eefc247f38c08
244eb78a8ef14b689208f3165fd5ac67716e54aaf15183398e88e3e70ace6042
POST /gsrsaovsslca2018 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 May 2023 17:42:06 GMT
Content-Type: application/ocsp-response
Content-Length: 1432
Connection: keep-alive
Expires: Tue, 30 May 2023 13:46:27 GMT
ETag: "b38ca0e73df1b02f2e7df169599eefc247f38c08"
Last-Modified: Fri, 26 May 2023 13:46:28 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 3200
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7cd7d0138d01b529-OSL
www.usbfund.com/wp-content/plugins/gravityforms/css/formsmain.min.css
188.114.97.1 365 kB URL www.usbfund.com/wp-content/plugins/gravityforms/css/formsmain.min.css
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 365 kB (364892 bytes)
Hash 2d014e46f726ff499e976d539f36d59f
6464b434806b7fde0153341b68cef2c9a8711cb6
eef7d267e775bf97baec3613f3eed5bb86b3e82062c0a868c6e3cfe262f5e93b
GET /wp-content/plugins/gravityforms/css/formsmain.min.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:22:23 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9SIQRNV5VjfonIsv9h%2FoSfmPf%2FHX0fZzk%2FEAuqUXTvSPn9mby4ATItVEVBYfUJjMOxzCaOQTe7GYghtzjsPkn8Z7RPtKXjQQJZBo1%2F%2FtCz2pJ4bF0Wpyv1symdemFJ1yCgk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00dc8ec0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/USBusinessFunding-Home1.png
188.114.97.1200 OK 944 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/USBusinessFunding-Home1.png
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 1696 x 1131, 8-bit colormap, non-interlaced\012- data
Size 944 kB (944072 bytes)
Hash b4b6bd078ef229456fc9d5b22d31ca0e
51cb87382bfb8b0029df296adb021229ad4cf6da
870b85b6771aeb0fc9c84c444ca24919dd6f71e4b34a6bb97003a0a4f34bdfd3
GET /wp-content/uploads/USBusinessFunding-Home1.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/wp-content/themes/usb/style.css
Cookie: _gd1685122926178=; wc_visitor=100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:06 GMT
content-type: image/png
content-length: 944072
last-modified: Sat, 28 Sep 2019 00:14:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KxcJ48GhOcFdcTwAgHt6UeqH0835USBhKPEfyfQXC71Bc7QRpIRzPSRX2e5TzhUHiQw0CZ1FtzTChUQtwa70V0jdf%2BfmzRlUzDX9VDFdf2ms9h%2B2z4xONJSQ1NLw3UELO5M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d0137f300b51-OSL
alt-svc: h3=":443"; ma=86400
ocsp.sectigo.com/
104.18.15.101 472 B IP 104.18.15.101:0
Hash c288580b6df82442d37bd39fe379bcc8
a51bb8e78b9d51dbbda435ff3ebf741b18e1a8b5
e2886d282cb84d1dae876cdac6bde3de1a21774407ca4e8b85aed422aaaad7d1
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 26 May 2023 17:42:06 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 24 May 2023 18:44:45 GMT
Expires: Wed, 31 May 2023 18:44:44 GMT
Etag: "a51bb8e78b9d51dbbda435ff3ebf741b18e1a8b5"
Cache-Control: max-age=436113,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7cd7d013cf46b521-OSL
www.usbfund.com/fonts/socicon.woff
188.114.97.1 31 kB URL www.usbfund.com/fonts/socicon.woff
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type Web Open Font Format, TrueType, length 31444, version 1.0\012- data
Hash dcbd1f9c4275862f002f21619e96b8f4
a97cd865925e5102ae7c25aa5dd09112ccf50651
a680b776319127695950fd7c490b17cd15120d683bde57845707a2f7dc0f1a74
Analyzer Verdict Alert fortinet Malware
GET /fonts/socicon.woff HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/wp-content/themes/usb/style.css
Cookie: _gd1685122926178=; wc_visitor=100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+; __ss=1685122926336; __ss_referrer=https%3A//www.usbfund.com/%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:06 GMT
content-type: font/woff
content-length: 31444
last-modified: Fri, 27 Sep 2019 21:47:06 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=skSqhcypMGQuJz52RU6YhujD7v7jdFb0C7I1c7LGyQ54I7%2BdYAQjY%2Bm5e5xe9fyAmtFxPqd9eVut%2B54hgF3IzLxlDiKmp2G3%2BUzVOkMtetE15UxUXLJOqw25OGf0v7kUbvY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d01468600b51-OSL
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash d4e2d954927aa1532ece1f3aad871a48
64080e5552252600638702178c90cd946984d117
7dc0934c025e5057e7011bc9b1d43c7dad69fd03c2398f15baab0385a96b230d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash fc757271ec057273ef886c129a7bffd0
2e6c8df3cbe82d4dde32cdf7f71a6668dd536287
72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.usbfund.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.1.2
188.114.97.1200 OK 2.1 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.1.2
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (4610)
Hash a39e45502bab7e9e26723e6ab243e8f8
ac62aacd5ee3e7b64ce6a92b5d8e3fb523e34d16
d62a7b7ec5313469ebff5c006b9068dc44d6d1c122cf787ffa29a10113b34060
GET /wp-content/plugins/gravityforms/js/placeholders.jquery.min.js?ver=2.1.2 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:22:39 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5KmYNZS3RqhRGkYUtXVM0nIkuI4Z3KwVq7c%2BO84kRUhDeyzlEZ6Jhu54XUIp51VXgvytwDLCe7KVbBmvPxjPJuHwWIXAAQguP0ruWkBNEhEkYjWytMD6nXtrlo3C4rGC8gQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00de90d0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash fc757271ec057273ef886c129a7bffd0
2e6c8df3cbe82d4dde32cdf7f71a6668dd536287
72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227 16 kB URL fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 07:44:41 GMT
expires: Sun, 19 May 2024 07:44:41 GMT
cache-control: public, max-age=31536000
age: 554245
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash fc757271ec057273ef886c129a7bffd0
2e6c8df3cbe82d4dde32cdf7f71a6668dd536287
72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
shield.sitelock.com/shield/usbfund.com
45.60.14.54200 OK 11 kB URL GET HTTP/1.1 shield.sitelock.com/shield/usbfund.com
IP 45.60.14.54:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerSectigo Limited
Subject*.sitelock.com
FingerprintDE:BD:8E:1E:86:D4:91:AC:F6:A4:EA:0E:96:1E:C4:D3:20:EE:C7:80
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT
File type PNG image data, 117 x 67, 8-bit/color RGBA, non-interlaced\012- data
Hash 7d223e971744474f57e40b02cb420908
86e63d44de26ead2700bbf7e0774d3d375d13250
3901663ecced9160ebb39980f967a3583a84609c686d50c11048d6d228aae170
GET /shield/usbfund.com HTTP/1.1
Host: shield.sitelock.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png; charset=ISO-8859-1
Content-Length: 10640
Date: Fri, 26 May 2023 17:41:47 GMT
Server: lighttpd
Set-Cookie: nlbi_275317=NiVHYDlTlCcrMX5smBeFbAAAAAAXvFf8mh2ffhgYRWmVxugx; path=/; Domain=.sitelock.com
visid_incap_275317=oPixe15wTzm6jcWRETN4oG7vcGQAAAAAQUIPAAAAAABYs9/53g3poD3ForcnNU8a; expires=Fri, 24 May 2024 22:16:36 GMT; HttpOnly; path=/; Domain=.sitelock.com
incap_ses_633_275317=AoC+foL2x3m0pnXNvN7ICG7vcGQAAAAAfgif5GuXM4daKB5GyrIELg==; path=/; Domain=.sitelock.com
X-CDN: Imperva
X-Iinfo: 9-26957620-26940533 2NNN RT(1685122925968 25) q(0 0 0 -1) r(4 4)
www.usbfund.com/wp-content/plugins/AffiliateWP-master/assets/css/forms.min.css
188.114.97.1200 OK 16 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/AffiliateWP-master/assets/css/forms.min.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (3296), with no line terminators
Hash ad0196afb6e479006d95cdaeecd0aa56
c8c8c6c41ee6cee6b57fdc7b3b0423a9df88dfc8
defa3211ab59b04b393f09eb4c6a942c0a67db068c3be3088c0c51a64e77660e
GET /wp-content/plugins/AffiliateWP-master/assets/css/forms.min.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:24:30 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5340
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UP3Cjz3rY11M3Cdaeb5FGegUvhgMA1QBUNPZfDphbytv22rCs7QqJiEGvlXlcbyOq54Ww51n%2Fv4OJVizkU4i7a%2FHoI6gou29G%2FDxwiBWVycFlLsY2266dlvonDhCB98MVgo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00d485d0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
216.58.207.227 16 kB URL fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Hash b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 08:09:04 GMT
expires: Sun, 19 May 2024 08:09:04 GMT
cache-control: public, max-age=31536000
age: 552782
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 21:39:40 GMT
expires: Wed, 22 May 2024 21:39:40 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 244946
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2
IP 216.58.207.227:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15660, version 1.0\012- data
Hash d7b0b953a50fddaa88089b5b787cf719
2f85bc568b27659a3d6452f58f9fd7678450326d
e79c1c1a140e6afb861074c70392db54cc65a06050de2a69162ab94eb95b0516
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-32meGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15660
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 07:42:17 GMT
expires: Fri, 24 May 2024 07:42:17 GMT
cache-control: public, max-age=31536000
age: 122389
last-modified: Tue, 19 Apr 2022 18:42:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
js.hs-scripts.com/5627136.js?integration=WordPress&ver=9.2.12
104.18.137.59 16 kB URL js.hs-scripts.com/5627136.js?integration=WordPress&ver=9.2.12
IP 104.18.137.59:0
File type ASCII text, with very long lines (502)
Hash 51f2be701589c5d1be42abdc4ea86abc
bc03e12450c14faecbff1d1b388b2fbc2943127a
4bf4791cedebd1c61642374b8ba7e36ac727ea548a84be77fca6da7c61bc595e
GET /5627136.js?integration=WordPress&ver=9.2.12 HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:42:06 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2BFC1BCC054EF522025F8A6C0B3A80F7686645BC8F000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: 789909ec-1023-4820-9691-c243f6c37c77
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.usbfund.com
x-envoy-upstream-service-time: 9
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-598c95b5b7-9rtcn
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: f9ed040d-61ce-4972-af12-45c900e54022
last-modified: Fri, 26 May 2023 17:23:04 GMT
cf-cache-status: EXPIRED
expires: Fri, 26 May 2023 17:43:06 GMT
server: cloudflare
cf-ray: 7cd7d00ffd030b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 20 May 2023 03:11:48 GMT
expires: Sun, 19 May 2024 03:11:48 GMT
cache-control: public, max-age=31536000
age: 570618
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3 472 B IP 142.250.74.3:0
Hash fc757271ec057273ef886c129a7bffd0
2e6c8df3cbe82d4dde32cdf7f71a6668dd536287
72cd2bbd96698941fa58cb6a7dfa4340187c0eb2499bd5a0e6cf4d7240c3a225
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 26 May 2023 17:42:06 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.r2m02.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m02.amazontrust.com/
IP 54.230.80.227:0
Hash 3067e56e62d14630f14d268fb71e1b6b
e6f3d444ffece05db7ee41d76883ab9680816796
3ba290fd84152483d25717bec30769d8c5b6ea6f1f79bc5e2a07db252aa533b1
POST / HTTP/1.1
Host: ocsp.r2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Fri, 26 May 2023 17:42:06 GMT
Etag: "646fd650-1d7"
Expires: Fri, 26 May 2023 19:42:06 GMT
Last-Modified: Thu, 25 May 2023 21:42:40 GMT
Server: ECAcc (bsa/EB26)
X-Cache: Miss from cloudfront
Via: 1.1 5bcfe2deda0bdbc6bade0af9b61602ca.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 7A7tNcHrszTEpv0KLlBy_UYRRqm7cnoVpov0JBn2vkoDPKAItbjIgQ==
Age: 5524
js.hs-scripts.com/5627136.js
104.18.137.59 446 B URL js.hs-scripts.com/5627136.js
IP 104.18.137.59:0
File type ASCII text, with very long lines (502)
Hash 51f2be701589c5d1be42abdc4ea86abc
bc03e12450c14faecbff1d1b388b2fbc2943127a
4bf4791cedebd1c61642374b8ba7e36ac727ea548a84be77fca6da7c61bc595e
GET /5627136.js HTTP/1.1
Host: js.hs-scripts.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:42:06 GMT
content-type: application/javascript;charset=utf-8
x-trace: 2B7DA767F2D17D0E32E22839DED33A7FBA7F657C8C000000000000000000
cache-control: public, max-age=60
vary: origin, Accept-Encoding
x-hubspot-correlation-id: daa8b6d6-edd2-44c4-a0c0-c55030ea97dd
access-control-allow-credentials: true
access-control-max-age: 3600
access-control-allow-origin: https://www.usbfund.com
x-envoy-upstream-service-time: 3
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/hubapi-td/envoy-proxy-598c95b5b7-s6jrd
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 139a8487-484c-44e7-92fc-592091b0249d
last-modified: Fri, 26 May 2023 17:23:04 GMT
cf-cache-status: EXPIRED
expires: Fri, 26 May 2023 17:43:06 GMT
server: cloudflare
cf-ray: 7cd7d0100d210b45-OSL
content-encoding: br
X-Firefox-Spdy: h2
widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
54.230.111.79 3.5 kB URL widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
IP 54.230.111.79:0
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13396)
Hash a14ca16dcf08b1eb1de1175abdcd3cda
da20904985aa00a1c013374b861fc4c1469ac057
71cd0f30593ec11e666de6f9e0073737e3f29f0fdcd393dc92d0238c77a703de
GET /trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 3451
last-modified: Mon, 08 May 2023 11:44:30 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 25 May 2023 18:46:34 GMT
cache-control: max-age=86400
etag: "ec8997a01685f3d46f7e65c853a558f4"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: mlyNByNfz4kracIJep9QaWtXaDtlUA9MHKf3WyESdxDSSO_Zkw8Azg==
age: 82534
X-Firefox-Spdy: h2
www.checkbca.org/CompanyWidget.aspx?ID=100094667&WidgetType=1
207.137.0.213301 Moved Permanently 196 B URL GET HTTP/2 www.checkbca.org/CompanyWidget.aspx?ID=100094667&WidgetType=1
IP 207.137.0.213:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash e4450c4791dadbc8f0fe8409a9b278ec
70f8e597f291a8a247c4f1bbbc4586e300f75723
e350fe60679b3272336147b700171d459374f3a66c6e228673a94ec0d9239b7e
GET /CompanyWidget.aspx?ID=100094667&WidgetType=1 HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
date: Fri, 26 May 2023 17:42:06 GMT
content-length: 196
X-Firefox-Spdy: h2
widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/main.js
54.230.111.79 31 kB URL widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/main.js
IP 54.230.111.79:0
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (64030), with no line terminators
Hash 265b488523a0763302653f8358e0fa65
218ee5bb91e0fe1a197efeaeb1f38e9005c9a686
34e06b1bd7b555ec33e5c22b40489471dcd0b354f473115e4bce44caf16adb73
GET /trustboxes/54ad5defc6454f065c28af8b/main.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 31063
last-modified: Mon, 08 May 2023 11:44:33 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Fri, 26 May 2023 05:26:40 GMT
cache-control: max-age=86400
etag: "1a13db5176936d0e7afbdc985cc7bdf3"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: I585CsFeIByqRZAjLQNAY_hEy9c4MO-pjgTRAypLHZR5y2YDLlFKTQ==
age: 44128
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-YYEX7W0G95&l=dataLayer&cx=c
142.250.74.168200 OK 81 kB URL GET HTTP/3 www.googletagmanager.com/gtag/js?id=G-YYEX7W0G95&l=dataLayer&cx=c
IP 142.250.74.168:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
FingerprintEB:A2:AF:B3:20:F1:B1:77:23:0B:85:D2:B1:16:33:A7:97:49:EE:51
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with very long lines (3288)
Hash 04444fd083ddbb7f69e1e3987a21ec8b
e7e921624f393947140dd626a527f6034d5b1710
7c7466586355b722323b2f9d5fb1399850bb70bb72b5ea184d3e045d4087206e
GET /gtag/js?id=G-YYEX7W0G95&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:07 GMT
expires: Fri, 26 May 2023 17:42:07 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80743
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.usbfund.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
188.114.97.1200 OK 32 kB URL GET HTTP/3 www.usbfund.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (65447)
Hash 17738318d61d394f1de8890d589afaec
f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3
cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 17 Dec 2022 14:44:25 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KdirqEf60N8M4UTht2VkvqRCgwnYEimHhjhmFZ3YDlsSGTbNATbvhRUiQbnhOhMyDs8SZCtFxu8Ny7lGzcGC8mKk%2BNm9g0S%2FuFnNODS7X7HHKQNs8463khRU%2FNcDcsZ8ZUA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00d788d0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash c5984076b8f292736cbe1e27e05342d6
4c362d202520fa7f1bbcd68ea738e891971e4911
7264c8d72e8a0c7b5ed882b39e63b88af8e3fff067b350eb2645b2bd69bc9dff
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=7200'
Date: Fri, 26 May 2023 17:42:07 GMT
Etag: "647099d8-1d7"
Last-Modified: Fri, 26 May 2023 17:33:02 GMT
Server: ECAcc (nya/1C5C)
X-Cache: Miss from cloudfront
Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MF0SmLzJAz-4D07sp8kjzYlQhp6e6uMUVdVaMsjZWqX9e57a0ZRO7g==
Age: 546
ocsp.r2m01.amazontrust.com/
54.230.80.227 471 B URL ocsp.r2m01.amazontrust.com/
IP 54.230.80.227:0
Hash c5984076b8f292736cbe1e27e05342d6
4c362d202520fa7f1bbcd68ea738e891971e4911
7264c8d72e8a0c7b5ed882b39e63b88af8e3fff067b350eb2645b2bd69bc9dff
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=7200'
Date: Fri, 26 May 2023 17:42:07 GMT
Last-Modified: Fri, 26 May 2023 16:08:31 GMT
Server: ECAcc (bsa/EA8F)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: M5MB8I1CZFUhQqIgjMxWKQxUcHvlSM4-K_gEA8e-4fWl0TMuW7qF5w==
Age: 5616
img.bayengage.com/9dc34fe66afe/studio/44111/Untitled-design-2022-12-23T131817-494.png
54.230.111.9200 OK 236 kB URL GET HTTP/2 img.bayengage.com/9dc34fe66afe/studio/44111/Untitled-design-2022-12-23T131817-494.png
IP 54.230.111.9:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subjectimg.bayengage.com
Fingerprint38:D7:2A:2B:A6:F2:5A:6F:A7:74:87:5C:BC:6A:C6:E4:80:53:DD:76
ValidityWed, 22 Mar 2023 00:00:00 GMT - Fri, 19 Apr 2024 23:59:59 GMT
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 236 kB (236503 bytes)
Hash 0b7980427eb4dd6bad5e83bf705f770b
f4bc224977772afcbb4b22d0dd0899d22b0109eb
089af070e8d98a24c104960d1339bcf4354f3bd0d603a2d9525fc868aa72ef0d
GET /9dc34fe66afe/studio/44111/Untitled-design-2022-12-23T131817-494.png HTTP/1.1
Host: img.bayengage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 236503
date: Thu, 25 May 2023 18:30:11 GMT
last-modified: Fri, 23 Dec 2022 18:22:54 GMT
etag: "0b7980427eb4dd6bad5e83bf705f770b"
x-amz-server-side-encryption: AES256
cache-control: max-age=604800
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: AOU2wR-G5FrMF4sddU7xSTgHL56roFr6J7qvInHLhWvuLHvIfguB8A==
age: 83517
X-Firefox-Spdy: h2
img.bayengage.com/9dc34fe66afe/studio/44111/Untitled-design-2022-12-23T131817-494.png
54.230.111.9200 OK 236 kB URL GET HTTP/2 img.bayengage.com/9dc34fe66afe/studio/44111/Untitled-design-2022-12-23T131817-494.png
IP 54.230.111.9:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subjectimg.bayengage.com
Fingerprint38:D7:2A:2B:A6:F2:5A:6F:A7:74:87:5C:BC:6A:C6:E4:80:53:DD:76
ValidityWed, 22 Mar 2023 00:00:00 GMT - Fri, 19 Apr 2024 23:59:59 GMT
File type PNG image data, 400 x 400, 8-bit/color RGBA, non-interlaced\012- data
Size 236 kB (236503 bytes)
Hash 0b7980427eb4dd6bad5e83bf705f770b
f4bc224977772afcbb4b22d0dd0899d22b0109eb
089af070e8d98a24c104960d1339bcf4354f3bd0d603a2d9525fc868aa72ef0d
GET /9dc34fe66afe/studio/44111/Untitled-design-2022-12-23T131817-494.png HTTP/1.1
Host: img.bayengage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/png
content-length: 236503
date: Thu, 25 May 2023 18:30:11 GMT
last-modified: Fri, 23 Dec 2022 18:22:54 GMT
etag: "0b7980427eb4dd6bad5e83bf705f770b"
x-amz-server-side-encryption: AES256
cache-control: max-age=604800
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 94eee494c19905cb6933ec8a32a577a0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: F0sFO3V4hKQPeFLGVBhCPApISsslXQUewgaJOKYzdYw62MWzG5y3Yw==
age: 83517
X-Firefox-Spdy: h2
www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
207.137.0.213 6.5 kB URL www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
IP 207.137.0.213:0
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (540), with CRLF line terminators
Hash b21e9a48a000143d729f0de7732b2ec1
fc3b74592cd63c6fcc6a4d24c9a0576061168595
32ac5d3396c9c12061dd5af0fe156546e57ba135ee613a4e9425950fd0ab305d
GET /companywidget.aspx?ID=100094667&WidgetType=1 HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.usbfund.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: ASP.NET_SessionId=drwlw1o1qkyamciafes1ybh0; path=/; secure; HttpOnly; SameSite=Lax
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 6465
X-Firefox-Spdy: h2
www.sendlane.com/js/eventing.js
34.253.101.190404 Not Found 12 kB URL GET HTTP/2 www.sendlane.com/js/eventing.js
IP 34.253.101.190:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerLet's Encrypt
Subjectwww.sendlane.com
Fingerprint19:53:25:E1:93:70:B4:98:E1:A8:72:35:9D:27:59:1A:61:87:0E:8F
ValiditySun, 23 Apr 2023 10:15:41 GMT - Sat, 22 Jul 2023 10:15:40 GMT
File type gzip compressed data, from Unix\012- data
Hash 0646a0dfb22521e0544246721b2346e8
e0fdcd7f4ad1f9b2f5f34c07ef2a6c08cc17f831
bb75d6daae8dc1223899d4e50daca7ee99120d3f6cd03215ecc7704618198609
GET /js/eventing.js HTTP/1.1
Host: www.sendlane.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.usbfund.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
date: Fri, 26 May 2023 17:42:07 GMT
content-type: text/html
cache-control: private, max-age=0, must-revalidate
content-encoding: gzip
content-security-policy: frame-ancestors 'self'
etag: W/"cc071382c87fd272c2221899ee443015"
last-modified: Thu, 25 May 2023 20:40:39 GMT
x-frame-options: SAMEORIGIN
accept-ranges: bytes
x-served-by: cache-iad-kjyo7100091-IAD, cache-dub4333-DUB
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1685122927.037132,VS0,VE176
vary: Accept-Encoding,x-wf-forwarded-proto
x-cluster-name: eu-west-1-prod-edge-blue
X-Firefox-Spdy: h2
fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
216.58.207.227200 OK 7.9 kB URL GET HTTP/2 fonts.gstatic.com/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 216.58.207.227:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 7884
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 24 May 2023 00:16:36 GMT
expires: Thu, 23 May 2024 00:16:36 GMT
cache-control: public, max-age=31536000
age: 235532
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
sendlane.com/js/eventing.js
104.16.167.6302 Found 353 B URL GET HTTP/2 sendlane.com/js/eventing.js
IP 104.16.167.6:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerLet's Encrypt
Subject*.sendlane.com
Fingerprint38:54:B8:09:90:3F:CD:43:4F:C7:D1:10:AB:B5:21:21:2F:ED:4D:CD
ValidityWed, 12 Apr 2023 08:56:10 GMT - Tue, 11 Jul 2023 08:56:09 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 7eeeb4f0c7de464201b9e7caf135caa0
e61cbc560014083dd67a374d70dbcf61ff6c26da
3163dec58ac83786ba30a7dbfd4ac4131fe5b00abe79c3be894423c80b094d95
GET /js/eventing.js HTTP/1.1
Host: sendlane.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 26 May 2023 17:42:07 GMT
content-type: text/html; charset=UTF-8
location: https://www.sendlane.com/js/eventing.js
cache-control: no-cache, private, max-age=0
x-frame-options: *
x-ratelimit-limit: 480
x-ratelimit-remaining: 478
expires: Fri, 26 May 2023 17:42:07 GMT
cf-cache-status: MISS
vary: Accept-Encoding
x-content-type-options: nosniff
server: cloudflare
cf-ray: 7cd7d018788eb4f9-OSL
X-Firefox-Spdy: h2
www.checkbca.org/stylesheets/font-awesome.min.css
207.137.0.213200 OK 7.0 kB URL GET HTTP/2 www.checkbca.org/stylesheets/font-awesome.min.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /stylesheets/font-awesome.min.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: text/css
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 6965
X-Firefox-Spdy: h2
www.checkbca.org/stylesheets/jquery.selectBox.css
207.137.0.213301 Moved Permanently 180 B URL GET HTTP/2 www.checkbca.org/stylesheets/jquery.selectBox.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 65d99af646ca7622a01fc0d3eb7a6b6d
a6b71820c0572f17c183b5669255346947bc3492
425fea6b4acfc8c48eee414af2be035b5c77a87742cf0bb46b136d07e0c29f6a
GET /stylesheets/jquery.selectBox.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
cache-control: no-cache
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/stylesheets/jquery.selectbox.css
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 180
X-Firefox-Spdy: h2
trackcmp.net/t_prism_sitemessages.php?trackid=224499963&prismid=74ace4a0-2a89-48e5-974f-5704ba1abb2a&url=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526
104.18.42.105200 OK 0 B URL GET HTTP/2 trackcmp.net/t_prism_sitemessages.php?trackid=224499963&prismid=74ace4a0-2a89-48e5-974f-5704ba1abb2a&url=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526
IP 104.18.42.105:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintD9:67:4E:CC:4A:0F:16:72:90:95:A2:D6:A7:50:E7:85:F3:84:7E:DA
ValiditySun, 25 Sep 2022 00:00:00 GMT - Mon, 25 Sep 2023 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t_prism_sitemessages.php?trackid=224499963&prismid=74ace4a0-2a89-48e5-974f-5704ba1abb2a&url=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526 HTTP/1.1
Host: trackcmp.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:42:08 GMT
content-type: text/javascript;charset=UTF-8
content-length: 0
cache-control: no-cache, private
p3p: CP="NON BUS INT NAV COM ADM CON CUR IVA IVD OTP PSA PSD TEL SAM"
x-envoy-upstream-service-time: 8
x-powered-by: PHP/8.1.19
x-privacy-policy: You can find our privacy policy here: https://www.activecampaign.com/help/privacy-policy/
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 7cd7d01d2878b524-OSL
X-Firefox-Spdy: h2
www.checkbca.org/stylesheets/style.css
207.137.0.213200 OK 11 kB URL GET HTTP/2 www.checkbca.org/stylesheets/style.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type assembler source, Unicode text, UTF-8 text, with very long lines (548), with CRLF line terminators
Hash ae754d65a6d08cca222317ce7477945d
88ce5023d9268ef9d232e60303c892c9d1725e78
79ce2aec71e345a17562aa20bacb7d319f29e5d08ee338f92e0cfc4c1e69acb3
GET /stylesheets/style.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: text/css
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 10899
X-Firefox-Spdy: h2
www.checkbca.org/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZBAd-3g2iBrrqGpefWWgmRAZw8TONzGF-aV_9TjkbkyCvwDWnstKlAYe583il9NLzw2&t=637823077705833095
207.137.0.213 23 kB URL www.checkbca.org/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZBAd-3g2iBrrqGpefWWgmRAZw8TONzGF-aV_9TjkbkyCvwDWnstKlAYe583il9NLzw2&t=637823077705833095
IP 207.137.0.213:0
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with CRLF line terminators
Hash 90ea7274f19755002360945d54c2a0d7
647b5d8bf7d119a2c97895363a07a0c6eb8cd284
40732e9dcfa704cf615e4691bb07aecfd1cc5e063220a46e4a7ff6560c77f5db
GET /WebResource.axd?d=pynGkmcFUV13He1Qd6_TZBAd-3g2iBrrqGpefWWgmRAZw8TONzGF-aV_9TjkbkyCvwDWnstKlAYe583il9NLzw2&t=637823077705833095 HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: application/x-javascript
content-encoding: gzip
expires: Fri, 24 May 2024 17:36:28 GMT
last-modified: Tue, 08 Mar 2022 11:42:50 GMT
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 23086
X-Firefox-Spdy: h2
fonts.googleapis.com/css2?family=Poppins&display=swap
142.250.74.106200 OK 604 B URL GET HTTP/3 fonts.googleapis.com/css2?family=Poppins&display=swap
IP 142.250.74.106:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type gzip compressed data, max compression\012- data
Hash 301120f54e0278c49aacd56fa6689f74
1d997098cf45a3621ad479501208dc1c4b0c7aa0
be889a8ff1fcc4531af934b5aa8538c62fabc7ac768caadec49bac1862b7cb97
GET /css2?family=Poppins&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 17:42:07 GMT
date: Fri, 26 May 2023 17:42:07 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.checkbca.org/Scripts/WebForms/MsAjax/MicrosoftAjaxWebForms.js
207.137.0.213301 Moved Permanently 196 B URL GET HTTP/2 www.checkbca.org/Scripts/WebForms/MsAjax/MicrosoftAjaxWebForms.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 95d708e49ef3d81c5832e354dbdafb01
ddb6aa6d1990a59c42331129fef517bb9101fad1
429e36746d58356e8d7fd50c755f2ec8de5fcf67bc3980f782eef9c14e89db18
GET /Scripts/WebForms/MsAjax/MicrosoftAjaxWebForms.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
cache-control: no-cache
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/scripts/webforms/msajax/microsoftajaxwebforms.js
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 196
X-Firefox-Spdy: h2
www.checkbca.org/scripts/jquery-3.3.1.min.js
207.137.0.213 30 kB URL www.checkbca.org/scripts/jquery-3.3.1.min.js
IP 207.137.0.213:0
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (65451)
Hash a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /scripts/jquery-3.3.1.min.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 30394
X-Firefox-Spdy: h2
www.checkbca.org/scripts/jquery.simplemodal.1.4.4.min.js
207.137.0.213 3.1 kB URL www.checkbca.org/scripts/jquery.simplemodal.1.4.4.min.js
IP 207.137.0.213:0
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (626), with CRLF, LF line terminators
Hash fb6aca1466d23dfc56ae1b6841442ff5
a5a2637328a431ad42b8419510a6f5ef2da22567
3bf4531f259ef747efbc5db8632ac9f5849ce4d1eecb31222ba1cd3df9a4b654
GET /scripts/jquery.simplemodal.1.4.4.min.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 3081
X-Firefox-Spdy: h2
forms.soundestlink.com/REST/forms/v1/renderedForms?v=2023-05-26T17&brandID=60034c978a48f7337bc1a105&displayType=popup,embedded
104.18.31.243200 OK 2 B URL GET HTTP/3 forms.soundestlink.com/REST/forms/v1/renderedForms?v=2023-05-26T17&brandID=60034c978a48f7337bc1a105&displayType=popup,embedded
IP 104.18.31.243:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint54:B8:46:7B:76:99:67:6C:EA:5F:AD:F7:5C:7B:46:F2:95:48:76:22
ValidityTue, 24 Jan 2023 00:00:00 GMT - Wed, 24 Jan 2024 23:59:59 GMT
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /REST/forms/v1/renderedForms?v=2023-05-26T17&brandID=60034c978a48f7337bc1a105&displayType=popup,embedded HTTP/1.1
Host: forms.soundestlink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.usbfund.com/
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:08 GMT
content-type: application/json
content-length: 2
access-control-allow-methods: GET,OPTIONS
access-control-allow-origin: *
cache-control: max-age=0, s-maxage=600, public
expires: Fri, 26 May 2023 17:52:08 GMT
last-modified: Fri, 26 May 2023 17:42:08 GMT
x-envoy-upstream-service-time: 2
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: EXPIRED
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 7cd7d01e1fac1bfa-OSL
sfc-api.bayengage.com/fetch?t=9dc34fe66afe
54.230.111.107200 OK 17 kB URL GET HTTP/2 sfc-api.bayengage.com/fetch?t=9dc34fe66afe
IP 54.230.111.107:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.bayengage.com
FingerprintD9:72:D2:FF:F7:C8:E2:7C:CA:92:AA:4E:A8:FB:C2:82:88:5A:A6:70
ValidityTue, 28 Feb 2023 00:00:00 GMT - Thu, 14 Sep 2023 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (26012), with no line terminators
Hash f0eabac8c41c2c560ffdf052cbbb72d0
8315e383ace30e1de84742e6139386d46827f97d
e01d9f90f254c4f904045e735c31b8e5053933d81484b7b7cfe9cfd4e54db7d1
GET /fetch?t=9dc34fe66afe HTTP/1.1
Host: sfc-api.bayengage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/plain; charset=utf-8
date: Fri, 26 May 2023 17:42:07 GMT
access-control-allow-origin: *
access-control-expose-headers: date,x-api-id
apigw-requestid: FipZZjIGIAMEaww=
content-encoding: br
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: R64T6goTBMrtQCMZPnVNH8dOS9IDLMZITA0aBczTbur3rhQc0e7BDQ==
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/uploads/cropped-iconusbfund-192x192.png
188.114.97.1 20 kB URL www.usbfund.com/wp-content/uploads/cropped-iconusbfund-192x192.png
IP 188.114.97.1:0
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 273b22a347363c8bfaa20ddcca897d53
0bf5106cb96db26030ae4bee997db3aef8914130
3c673a54e1fea64b6b57dc31365058249f665f327b0e032746b310a2f6a2c0b2
GET /wp-content/uploads/cropped-iconusbfund-192x192.png HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Cookie: wc_visitor=100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+; __ss=1685122926336; __ss_referrer=https%3A//www.usbfund.com/%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526; IR_gbd=usbfund.com; IR_7486=1685122927122%7C0%7C1685122927122%7C%7C; 3043=t; _gcl_au=1.1.1917630598.1685122927; soundestID=20230526174207-VhAqtnt6Q5CCn9HBfrqLIbDWRbw2gM64yauu31ZqYQxVHDjBj; omnisendSessionID=bfHrxbDAb4Sxfc-20230526174207; wc_swap=9494033494+..+9494611140+..+68836; __ss_tk=202305%7C6470ef6f58b953340c5c44c9; _ga_YYEX7W0G95=GS1.1.1685122927.1.0.1685122927.0.0.0; _ga=GA1.1.136248934.1685122928; prism_224499963=74ace4a0-2a89-48e5-974f-5704ba1abb2a
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:08 GMT
content-type: image/png
content-length: 19606
last-modified: Sat, 28 Sep 2019 00:15:06 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5340
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0P79abkvFJC%2BF1G%2FFlqRqhg8GNG1g9kclUCs0MKUZopN1CMsSogowIrV27I%2BXpyy4AfSYjzcckspYLz0ihaKRDwO6EviGEejajxgR0NEQM5HukMfDLEuSfmgTZeoTDr84wA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d01f1bbf0b51-OSL
alt-svc: h3=":443"; ma=86400
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.35200 OK 166 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 323559
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.checkbca.org/scripts/jquery.bxslider.min.js
207.137.0.213200 OK 5.1 kB URL GET HTTP/2 www.checkbca.org/scripts/jquery.bxslider.min.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (18813)
Hash b43f81cded58aa3c16fbc9f7cb5652a0
dd077f457e3b4c1218313fa5fb1c0ae6bcd82ede
90e090a6cb40e4832e34a3c91256e2688439df99d921ac1d7e2c4a1108afa859
GET /scripts/jquery.bxslider.min.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 5135
X-Firefox-Spdy: h2
www.checkbca.org/scripts/jquery.selectBox.js
207.137.0.213301 Moved Permanently 175 B URL GET HTTP/2 www.checkbca.org/scripts/jquery.selectBox.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 46da262b5b1399dfbf30fac73e57a298
c176cf3cfa6da6a0748c497591ff3619467d6434
4089029c368f61bcc5e6be36c952e1c440e0e20475e247b8316c6ce57ea7cc99
GET /scripts/jquery.selectBox.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
cache-control: no-cache
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/scripts/jquery.selectbox.js
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 175
X-Firefox-Spdy: h2
www.checkbca.org/scripts/scripts.js
207.137.0.213200 OK 4.3 kB URL GET HTTP/2 www.checkbca.org/scripts/scripts.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with CRLF line terminators
Hash 30236ca24709e7f0c3229c413c306635
8d0489db16fd83554c7cead9dccb64dc005dbb3e
c833b3a2bdf42d9d4eeaac3b9ca5a7e98240c8c8d4a76e88cbd73df5664b747a
GET /scripts/scripts.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:55 GMT
accept-ranges: bytes
etag: "806fec8b568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 4272
X-Firefox-Spdy: h2
www.checkbca.org/images/widget_seal.png
207.137.0.213 2.7 kB URL www.checkbca.org/images/widget_seal.png
IP 207.137.0.213:0
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 270ad3deddbe8a845043e3d6a8000f91
3835898b5aba554e51bf8c9191b3804e7fad65a2
30f3c9000753eaaba38681a3a44471668df6f9c60258644baba4ca24cdf62c89
GET /images/widget_seal.png HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Sat, 09 May 2020 03:31:08 GMT
accept-ranges: bytes
etag: "ba4a5b47b225d61:0"
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 2723
X-Firefox-Spdy: h2
www.checkbca.org/stylesheets/jquery.selectbox.css
207.137.0.213200 OK 844 B URL GET HTTP/2 www.checkbca.org/stylesheets/jquery.selectbox.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (2823), with no line terminators
Hash 155a76ea457cb37ee5ba3c8a5b7d313e
34d40b1d1da8d4b69fba2084f7b01e81679bdad5
16292829415a66589aa5d756f4cdeb04338c504ce0eeafc8b6909735169a155d
GET /stylesheets/jquery.selectbox.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: text/css
content-encoding: gzip
last-modified: Fri, 02 Aug 2019 17:52:06 GMT
accept-ranges: bytes
etag: "0a783ff5a49d51:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 844
X-Firefox-Spdy: h2
www.checkbca.org/scripts/webforms/msajax/microsoftajaxwebforms.js
207.137.0.213 9.6 kB URL www.checkbca.org/scripts/webforms/msajax/microsoftajaxwebforms.js
IP 207.137.0.213:0
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (39257), with CRLF line terminators
Hash ac2d31b037cf98b67646d9f87a563c75
ae702472c2dabe196299a0a7358c28449ce77c10
75ff9ed4493b32310094826e703a8be5bce10d31eaa682c182adde38f9366bdc
GET /scripts/webforms/msajax/microsoftajaxwebforms.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 9603
X-Firefox-Spdy: h2
www.checkbca.org/scripts/webforms/msajax/microsoftajax.js
207.137.0.213200 OK 24 kB URL GET HTTP/2 www.checkbca.org/scripts/webforms/msajax/microsoftajax.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (65262), with CRLF line terminators
Hash 527b093e4e30cf9e6ef4ef846f4d387f
85464d16a6d51b0a499ece5df5d853d7820fe436
b6b2a6b0ecb3218b2f5da2dd045e7e5ebd1c4152a443b5642d9351a8e0a59d26
GET /scripts/webforms/msajax/microsoftajax.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:07 GMT
content-length: 24320
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0
216.58.211.4200 OK 29 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0
IP 216.58.211.4:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (43842)
Hash 57e9aeb72837128ae3beca0de26ce58b
02c3ada96bde935de71d8605af35b82772cd52a0
b5b38dc9e3dc9bf5e56a5253a0dae34e1b9f89f3964c57762727c2542c6d3b10
GET /recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 May 2023 17:42:08 GMT
content-security-policy: script-src 'nonce-PUtqh0Wj3ckq_8K6cD7VyQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 28618
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.checkbca.org/scripts/jquery.selectbox.js
207.137.0.213 4.2 kB URL www.checkbca.org/scripts/jquery.selectbox.js
IP 207.137.0.213:0
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type Unicode text, UTF-8 text, with very long lines (15896), with no line terminators
Hash 10a5792beb6c22986a209382994333d5
ead93c883c66aaa50d35b72c77f1f6289fdbefa6
327718a4000a37333388027758b89bcd6be80d24ffc83b0d6f2ea3d9b4f5cb71
GET /scripts/jquery.selectbox.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:08 GMT
content-length: 4192
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
142.250.74.35200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:55:34 GMT
expires: Tue, 21 May 2024 23:55:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/css
vary: Accept-Encoding
age: 323195
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.35200 OK 166 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 323560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:31:32 GMT
expires: Wed, 22 May 2024 17:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 259837
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
216.58.211.4200 OK 112 B URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
IP 216.58.211.4:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with no line terminators
Hash ffdfcf8fae84f7684f006bf5af012c06
b31182bbb1c60a114919bf05e698805b61f76aba
1bf768716a75b7620d341f775d10d79ee73a3a47f6609a24ca25dd88e4aeda95
GET /recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
expires: Fri, 26 May 2023 17:42:09 GMT
date: Fri, 26 May 2023 17:42:09 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/logo_48.png
142.250.74.35 2.2 kB URL www.gstatic.com/recaptcha/api2/logo_48.png
IP 142.250.74.35:0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 21:48:58 GMT
expires: Mon, 29 May 2023 21:48:58 GMT
cache-control: public, max-age=604800
age: 330791
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.35200 OK 166 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 323560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
54.230.111.79 3.5 kB URL widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
IP 54.230.111.79:0
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13396)
Hash a14ca16dcf08b1eb1de1175abdcd3cda
da20904985aa00a1c013374b861fc4c1469ac057
71cd0f30593ec11e666de6f9e0073737e3f29f0fdcd393dc92d0238c77a703de
GET /trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
content-length: 3451
last-modified: Mon, 08 May 2023 11:44:30 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 25 May 2023 18:46:34 GMT
cache-control: max-age=86400
etag: "ec8997a01685f3d46f7e65c853a558f4"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: orj5lQHX7Mq-E2an1efJxHM3N34IA075pL8I7JYAnC5CiAcMKr7ppw==
age: 82536
X-Firefox-Spdy: h2
www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0
216.58.211.4200 OK 29 kB URL GET HTTP/3 www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0
IP 216.58.211.4:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (43830)
Hash 9f90202c220072ac58e592d2a1fa0999
541ba94aac5a58a6b23b34a44bb1adafcf416571
7e0e43a27f30b8f1a1e0b3d034c8cf3b30049493d42398aefd501c1df5b843b3
GET /recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 May 2023 17:42:09 GMT
content-security-policy: script-src 'nonce-lYgZuLHgLqmMkAxp23h7kw' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 28663
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5
216.58.211.4200 OK 1.2 kB URL GET HTTP/3 www.google.com/recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5
IP 216.58.211.4:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3aa46e09792bf03972b59ff46a21d93e
3de584242713073918b7de72bbcd657ba69b765d
eeda8794a44750704828744476730788439af556407e05056c6756ff9c7cfcf1
GET /recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 May 2023 17:42:09 GMT
content-security-policy: script-src 'nonce-6xmUlunjM_9qPcPNG-C91g' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1155
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.checkbca.org/CompanyWidget.aspx?ID=100094667&WidgetType=1
207.137.0.213301 Moved Permanently 196 B URL GET HTTP/2 www.checkbca.org/CompanyWidget.aspx?ID=100094667&WidgetType=1
IP 207.137.0.213:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash e4450c4791dadbc8f0fe8409a9b278ec
70f8e597f291a8a247c4f1bbbc4586e300f75723
e350fe60679b3272336147b700171d459374f3a66c6e228673a94ec0d9239b7e
GET /CompanyWidget.aspx?ID=100094667&WidgetType=1 HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
date: Fri, 26 May 2023 17:42:08 GMT
content-length: 196
X-Firefox-Spdy: h2
widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/main.js
54.230.111.79 31 kB URL widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/main.js
IP 54.230.111.79:0
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (64030), with no line terminators
Hash 265b488523a0763302653f8358e0fa65
218ee5bb91e0fe1a197efeaeb1f38e9005c9a686
34e06b1bd7b555ec33e5c22b40489471dcd0b354f473115e4bce44caf16adb73
GET /trustboxes/54ad5defc6454f065c28af8b/main.js HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/x-javascript
content-length: 31063
last-modified: Mon, 08 May 2023 11:44:33 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Fri, 26 May 2023 05:26:40 GMT
cache-control: max-age=86400
etag: "1a13db5176936d0e7afbdc985cc7bdf3"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Jp-jkgOj_02jPRCnURWKPY8_mAD8JTjXoF85CmADmgEA6iFnW-uVNQ==
age: 44130
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
142.250.74.35200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:55:34 GMT
expires: Tue, 21 May 2024 23:55:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/css
vary: Accept-Encoding
age: 323195
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.35200 OK 166 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 323560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
142.250.74.35200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:55:34 GMT
expires: Tue, 21 May 2024 23:55:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/css
vary: Accept-Encoding
age: 323195
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.35200 OK 166 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 323560
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
207.137.0.213 6.5 kB URL www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
IP 207.137.0.213:0
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (540), with CRLF line terminators
Hash 707199289f1e148b34b587b2947936be
684eb290b2ef1e21db3b79adf392e37d6e5b61b0
3647c5e82b884d1708f8e4b98c01cf9290ae1199817aa99da672bd76b2e753a4
GET /companywidget.aspx?ID=100094667&WidgetType=1 HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.usbfund.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: private
content-type: text/html; charset=utf-8
content-encoding: gzip
vary: Accept-Encoding
set-cookie: ASP.NET_SessionId=xbxyopmzdogbt5ijaimvqdst; path=/; secure; HttpOnly; SameSite=Lax
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 6465
X-Firefox-Spdy: h2
speedyfox.io/anywhere/5f1d4e2f1d5e403592a56487267b609f40807d7ef69744e7aa045795455c9581?t=&u=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526&r=
23.253.207.75403 Forbidden 18 B URL GET HTTP/1.1 speedyfox.io/anywhere/5f1d4e2f1d5e403592a56487267b609f40807d7ef69744e7aa045795455c9581?t=&u=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526&r=
IP 23.253.207.75:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerLet's Encrypt
Subjectspeedyfox.io
Fingerprint4F:FE:83:46:63:F7:F9:23:F0:4F:58:EA:CF:21:89:2D:8D:51:9D:2B
ValidityFri, 19 May 2023 15:28:04 GMT - Thu, 17 Aug 2023 15:28:03 GMT
File type ASCII text, with no line terminators
Hash 25f009f228cd844020264ff74a36bb64
8e2ada0df86c2ea12930c55ebdc0575aa5e31d87
a4578829918d4df61d980bf0665df65a68d19ea4de6d0dfdb75fb099b47474bf
GET /anywhere/5f1d4e2f1d5e403592a56487267b609f40807d7ef69744e7aa045795455c9581?t=&u=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526&r= HTTP/1.1
Host: speedyfox.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 403 Forbidden
Content-Type: application/json
Content-Length: 18
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, PUT, OPTIONS
X-Timing: lt=1
Date: Fri, 26 May 2023 17:42:09 GMT
Connection: close
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 15 kB URL GET HTTP/3 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 17:31:32 GMT
expires: Wed, 22 May 2024 17:31:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 259838
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
216.58.211.4200 OK 112 B URL GET HTTP/3 www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
IP 216.58.211.4:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type ASCII text, with no line terminators
Hash ffdfcf8fae84f7684f006bf5af012c06
b31182bbb1c60a114919bf05e698805b61f76aba
1bf768716a75b7620d341f775d10d79ee73a3a47f6609a24ca25dd88e4aeda95
GET /recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0
Sec-Fetch-Dest: worker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
expires: Fri, 26 May 2023 17:42:10 GMT
date: Fri, 26 May 2023 17:42:10 GMT
cache-control: private, max-age=300
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/javascript; charset=UTF-8
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 112
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/api2/logo_48.png
142.250.74.35 2.2 kB URL www.gstatic.com/recaptcha/api2/logo_48.png
IP 142.250.74.35:0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash ef9941290c50cd3866e2ba6b793f010d
4736508c795667dcea21f8d864233031223b7832
1b9efb22c938500971aac2b2130a475fa23684dd69e43103894968df83145b8a
GET /recaptcha/api2/logo_48.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 2228
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 21:48:58 GMT
expires: Mon, 29 May 2023 21:48:58 GMT
cache-control: public, max-age=604800
age: 330792
last-modified: Tue, 03 Mar 2020 20:15:00 GMT
content-type: image/png
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.35200 OK 166 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 323561
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.google.com/recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5
216.58.211.4200 OK 1.2 kB URL GET HTTP/3 www.google.com/recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5
IP 216.58.211.4:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.google.com
Fingerprint5D:BA:19:A5:81:25:05:32:72:13:A7:18:CF:67:8C:D6:6F:13:B3:EF
ValidityMon, 08 May 2023 08:20:09 GMT - Mon, 31 Jul 2023 08:20:08 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 9737a99ad555c6ab1bc781ba59c06115
643be1bd72f703b1e2ea38a5d7fff2b18c3c4ea0
bd63e47d0acd6de2045295a3f099cf8927e584b8203848286cda59289b6b8090
GET /recaptcha/api2/bframe?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 May 2023 17:42:10 GMT
content-security-policy: script-src 'nonce-9ZYcJ0Q9wBnKuur7E8CHNQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 1156
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.checkbca.org/stylesheets/font-awesome.min.css
207.137.0.213200 OK 7.0 kB URL GET HTTP/2 www.checkbca.org/stylesheets/font-awesome.min.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (30837)
Hash 269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd
GET /stylesheets/font-awesome.min.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: text/css
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 6965
X-Firefox-Spdy: h2
www.checkbca.org/stylesheets/jquery.selectBox.css
207.137.0.213301 Moved Permanently 180 B URL GET HTTP/2 www.checkbca.org/stylesheets/jquery.selectBox.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 65d99af646ca7622a01fc0d3eb7a6b6d
a6b71820c0572f17c183b5669255346947bc3492
425fea6b4acfc8c48eee414af2be035b5c77a87742cf0bb46b136d07e0c29f6a
GET /stylesheets/jquery.selectBox.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
cache-control: no-cache
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/stylesheets/jquery.selectbox.css
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 180
X-Firefox-Spdy: h2
www.checkbca.org/stylesheets/style.css
207.137.0.213200 OK 11 kB URL GET HTTP/2 www.checkbca.org/stylesheets/style.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type assembler source, Unicode text, UTF-8 text, with very long lines (548), with CRLF line terminators
Hash ae754d65a6d08cca222317ce7477945d
88ce5023d9268ef9d232e60303c892c9d1725e78
79ce2aec71e345a17562aa20bacb7d319f29e5d08ee338f92e0cfc4c1e69acb3
GET /stylesheets/style.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: text/css
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 10899
X-Firefox-Spdy: h2
www.checkbca.org/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZBAd-3g2iBrrqGpefWWgmRAZw8TONzGF-aV_9TjkbkyCvwDWnstKlAYe583il9NLzw2&t=637823077705833095
207.137.0.213 23 kB URL www.checkbca.org/WebResource.axd?d=pynGkmcFUV13He1Qd6_TZBAd-3g2iBrrqGpefWWgmRAZw8TONzGF-aV_9TjkbkyCvwDWnstKlAYe583il9NLzw2&t=637823077705833095
IP 207.137.0.213:0
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with CRLF line terminators
Hash 90ea7274f19755002360945d54c2a0d7
647b5d8bf7d119a2c97895363a07a0c6eb8cd284
40732e9dcfa704cf615e4691bb07aecfd1cc5e063220a46e4a7ff6560c77f5db
GET /WebResource.axd?d=pynGkmcFUV13He1Qd6_TZBAd-3g2iBrrqGpefWWgmRAZw8TONzGF-aV_9TjkbkyCvwDWnstKlAYe583il9NLzw2&t=637823077705833095 HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public
content-type: application/x-javascript
content-encoding: gzip
expires: Fri, 24 May 2024 17:36:28 GMT
last-modified: Tue, 08 Mar 2022 11:42:50 GMT
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 23086
X-Firefox-Spdy: h2
widget.trustpilot.com/trustbox-data/54ad5defc6454f065c28af8b?businessUnitId=57559cd10000ff00058effd9&locale=en-US&reviewStars=5&reviewsPerPage=15
54.230.111.79200 OK 3.3 kB URL GET HTTP/2 widget.trustpilot.com/trustbox-data/54ad5defc6454f065c28af8b?businessUnitId=57559cd10000ff00058effd9&locale=en-US&reviewStars=5&reviewsPerPage=15
IP 54.230.111.79:443
Requested by https://widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9#locale=en-US&styleHeight=240px&styleWidth=100%25&theme=light&stars=5&schemaType=Organization
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type gzip compressed data, max speed, from Unix\012- data
Hash 6a5a523b3ef8a520b3d14251aa85dcec
329c1d4b329baf29a0141be27d89dc420e224308
9b2a640b95b0701c8547be0d6fdef8dce20f6ba042a2371da4a60e2ed0bedfe3
GET /trustbox-data/54ad5defc6454f065c28af8b?businessUnitId=57559cd10000ff00058effd9&locale=en-US&reviewStars=5&reviewsPerPage=15 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
DNT: 1
Connection: keep-alive
Referer: https://widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=utf-8
content-encoding: gzip
server: Kestrel
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
cache-control: public,max-age=1800
date: Fri, 26 May 2023 17:42:07 GMT
etag: "428642d158c4cd165f68252100e900b5"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7N0jT7m5K3jKXizBxX6ztV7P0gPlOYoo4WOeJdCSZE6sCYJvuOkirg==
age: 1
X-Firefox-Spdy: h2
www.checkbca.org/Scripts/WebForms/MsAjax/MicrosoftAjaxWebForms.js
207.137.0.213301 Moved Permanently 196 B URL GET HTTP/2 www.checkbca.org/Scripts/WebForms/MsAjax/MicrosoftAjaxWebForms.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 95d708e49ef3d81c5832e354dbdafb01
ddb6aa6d1990a59c42331129fef517bb9101fad1
429e36746d58356e8d7fd50c755f2ec8de5fcf67bc3980f782eef9c14e89db18
GET /Scripts/WebForms/MsAjax/MicrosoftAjaxWebForms.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
cache-control: no-cache
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/scripts/webforms/msajax/microsoftajaxwebforms.js
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 196
X-Firefox-Spdy: h2
www.checkbca.org/scripts/jquery-3.3.1.min.js
207.137.0.213 30 kB URL www.checkbca.org/scripts/jquery-3.3.1.min.js
IP 207.137.0.213:0
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (65451)
Hash a09e13ee94d51c524b7e2a728c7d4039
0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae
160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef
GET /scripts/jquery-3.3.1.min.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 30394
X-Firefox-Spdy: h2
www.checkbca.org/scripts/jquery.simplemodal.1.4.4.min.js
207.137.0.213 3.1 kB URL www.checkbca.org/scripts/jquery.simplemodal.1.4.4.min.js
IP 207.137.0.213:0
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (626), with CRLF, LF line terminators
Hash fb6aca1466d23dfc56ae1b6841442ff5
a5a2637328a431ad42b8419510a6f5ef2da22567
3bf4531f259ef747efbc5db8632ac9f5849ce4d1eecb31222ba1cd3df9a4b654
GET /scripts/jquery.simplemodal.1.4.4.min.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 3081
X-Firefox-Spdy: h2
www.checkbca.org/scripts/jquery.bxslider.min.js
207.137.0.213200 OK 5.1 kB URL GET HTTP/2 www.checkbca.org/scripts/jquery.bxslider.min.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (18813)
Hash b43f81cded58aa3c16fbc9f7cb5652a0
dd077f457e3b4c1218313fa5fb1c0ae6bcd82ede
90e090a6cb40e4832e34a3c91256e2688439df99d921ac1d7e2c4a1108afa859
GET /scripts/jquery.bxslider.min.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 5135
X-Firefox-Spdy: h2
www.checkbca.org/scripts/jquery.selectBox.js
207.137.0.213301 Moved Permanently 175 B URL GET HTTP/2 www.checkbca.org/scripts/jquery.selectBox.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 46da262b5b1399dfbf30fac73e57a298
c176cf3cfa6da6a0748c497591ff3619467d6434
4089029c368f61bcc5e6be36c952e1c440e0e20475e247b8316c6ce57ea7cc99
GET /scripts/jquery.selectBox.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 301 Moved Permanently
cache-control: no-cache
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/scripts/jquery.selectbox.js
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 175
X-Firefox-Spdy: h2
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
142.250.74.35200 OK 25 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/anchor?ar=1&k=6LeV-r0UAAAAAL6BGGYoyPzKeCbkmp6lFJjP5HZ5&co=aHR0cHM6Ly93d3cudXNiZnVuZC5jb206NDQz&hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9&theme=light&size=normal&cb=jv6jyrjqnpo0
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (56403), with no line terminators
Hash 83f90c5a4c20afb44429fa346fbadc10
7c278ec721d3880fbafaadeba9ee80bdf294b014
952833e41ba7a4b64c31a2d7b07dde81bf5bbacf5cbb967821cfe459d0c4a0d8
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/styles__ltr.css HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 24605
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:55:34 GMT
expires: Tue, 21 May 2024 23:55:34 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/css
vary: Accept-Encoding
age: 323196
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
142.250.74.35200 OK 166 kB URL GET HTTP/3 www.gstatic.com/recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js
IP 142.250.74.35:443
Requested by https://www.google.com/recaptcha/api2/webworker.js?hl=en&v=CDFvp7CXAHw7k3HxO47Gm1O9
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type ASCII text, with very long lines (660)
Size 166 kB (166449 bytes)
Hash 95a32a4d8f8be968bc15d6ab9b9491d1
fbfbcb40c8d8997096cd2ea3d8cfc3dee1981015
a41096fbcf982d79bf075bf2378c9c0c2e8ada5bdc94bd7cc794454135ccf981
GET /recaptcha/releases/CDFvp7CXAHw7k3HxO47Gm1O9/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 166449
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 22 May 2023 23:49:29 GMT
expires: Tue, 21 May 2024 23:49:29 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 22 May 2023 20:58:33 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 323561
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
fonts.googleapis.com/css?family=Roboto:400,900,700,500,300,100
142.250.74.106 5.3 kB URL fonts.googleapis.com/css?family=Roboto:400,900,700,500,300,100
IP 142.250.74.106:0
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
File type ASCII text, with CRLF, LF line terminators
Hash 43025b4da747423ee3a87e80f1381e20
c8367cf152f14dc4b08b4d4ada91b87a454b899c
b196b28fe4ead291e9cc86cc4f1ad34a62b1e9d96bef16e362588b24a5519371
GET /css?family=Roboto:400,900,700,500,300,100 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 17:42:06 GMT
date: Fri, 26 May 2023 17:42:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.checkbca.org/images/widget_seal.png
207.137.0.213 2.7 kB URL www.checkbca.org/images/widget_seal.png
IP 207.137.0.213:0
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type PNG image data, 72 x 72, 8-bit/color RGB, non-interlaced\012- data
Hash 270ad3deddbe8a845043e3d6a8000f91
3835898b5aba554e51bf8c9191b3804e7fad65a2
30f3c9000753eaaba38681a3a44471668df6f9c60258644baba4ca24cdf62c89
GET /images/widget_seal.png HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: image/png
last-modified: Sat, 09 May 2020 03:31:08 GMT
accept-ranges: bytes
etag: "ba4a5b47b225d61:0"
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 2723
X-Firefox-Spdy: h2
www.checkbca.org/stylesheets/jquery.selectbox.css
207.137.0.213200 OK 844 B URL GET HTTP/2 www.checkbca.org/stylesheets/jquery.selectbox.css
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (2823), with no line terminators
Hash 155a76ea457cb37ee5ba3c8a5b7d313e
34d40b1d1da8d4b69fba2084f7b01e81679bdad5
16292829415a66589aa5d756f4cdeb04338c504ce0eeafc8b6909735169a155d
GET /stylesheets/jquery.selectbox.css HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: text/css
content-encoding: gzip
last-modified: Fri, 02 Aug 2019 17:52:06 GMT
accept-ranges: bytes
etag: "0a783ff5a49d51:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 844
X-Firefox-Spdy: h2
www.checkbca.org/scripts/webforms/msajax/microsoftajax.js
207.137.0.213200 OK 24 kB URL GET HTTP/2 www.checkbca.org/scripts/webforms/msajax/microsoftajax.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (65262), with CRLF line terminators
Hash 527b093e4e30cf9e6ef4ef846f4d387f
85464d16a6d51b0a499ece5df5d853d7820fe436
b6b2a6b0ecb3218b2f5da2dd045e7e5ebd1c4152a443b5642d9351a8e0a59d26
GET /scripts/webforms/msajax/microsoftajax.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 24320
X-Firefox-Spdy: h2
www.checkbca.org/scripts/webforms/msajax/microsoftajaxwebforms.js
207.137.0.213 9.6 kB URL www.checkbca.org/scripts/webforms/msajax/microsoftajaxwebforms.js
IP 207.137.0.213:0
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type ASCII text, with very long lines (39257), with CRLF line terminators
Hash ac2d31b037cf98b67646d9f87a563c75
ae702472c2dabe196299a0a7358c28449ce77c10
75ff9ed4493b32310094826e703a8be5bce10d31eaa682c182adde38f9366bdc
GET /scripts/webforms/msajax/microsoftajaxwebforms.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Wed, 24 May 2023 15:43:58 GMT
accept-ranges: bytes
etag: "033b68d568ed91:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 9603
X-Firefox-Spdy: h2
www.checkbca.org/scripts/jquery.selectbox.js
207.137.0.213 4.2 kB URL www.checkbca.org/scripts/jquery.selectbox.js
IP 207.137.0.213:0
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
File type Unicode text, UTF-8 text, with very long lines (15896), with no line terminators
Hash 10a5792beb6c22986a209382994333d5
ead93c883c66aaa50d35b72c77f1f6289fdbefa6
327718a4000a37333388027758b89bcd6be80d24ffc83b0d6f2ea3d9b4f5cb71
GET /scripts/jquery.selectbox.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: no-cache
content-type: application/javascript
content-encoding: gzip
last-modified: Tue, 16 Oct 2018 20:49:20 GMT
accept-ranges: bytes
etag: "0c813b69165d41:0"
vary: Accept-Encoding
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 4192
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/themes/usb/style.css
188.114.97.1200 OK 60 kB URL GET HTTP/3 www.usbfund.com/wp-content/themes/usb/style.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (6744)
Hash ff82997c2be31d6b6fa1e90ac97df1ac
0e377bf32af7d347aa51d4885e18d2cc416c8f9c
78f2946b6bdb5e61eb2683808059bebfab45a2e64eedb7157c5a718389b5957d
GET /wp-content/themes/usb/style.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Wed, 13 Apr 2022 22:11:44 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qMaCk1TOAFWDkVqZ1nMh9dm94PECVe%2FjJLXYg7MnlsJOGG1Rpgwl7BQy3UKmWOp62LjezumvLRj73%2FjXe6etdaEwCcztSH55mpluqirvZxSHb6A4ziXu8gn4sNq45d1nWbA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00d788e0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
forms.soundestlink.com/REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=www.usbfund.com&shopType=api&brandID=60034c978a48f7337bc1a105
0.0.0.0 0 B URL GET forms.soundestlink.com/REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=www.usbfund.com&shopType=api&brandID=60034c978a48f7337bc1a105
IP 0.0.0.0:0
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint54:B8:46:7B:76:99:67:6C:EA:5F:AD:F7:5C:7B:46:F2:95:48:76:22
ValidityTue, 24 Jan 2023 00:00:00 GMT - Wed, 24 Jan 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /REST/inShop/v1/getSettings?callback=_omnisend.setSettings&responseType=jsonp&shopHostname=www.usbfund.com&shopType=api&brandID=60034c978a48f7337bc1a105 HTTP/1.1
Host: forms.soundestlink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:42:07 GMT
content-type: application/json
cache-control: max-age=0, s-maxage=600, public
last-modified: Fri, 26 May 2023 17:42:07 GMT
x-envoy-upstream-service-time: 3
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: EXPIRED
vary: Accept-Encoding
strict-transport-security: max-age=15552000
server: cloudflare
cf-ray: 7cd7d01a7e9cb4eb-OSL
content-encoding: br
X-Firefox-Spdy: h2
sf.bayengage.com/sf.js?t=9dc34fe66afe
54.230.111.65200 OK 31 kB URL GET HTTP/2 sf.bayengage.com/sf.js?t=9dc34fe66afe
IP 54.230.111.65:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.bayengage.com
FingerprintD9:72:D2:FF:F7:C8:E2:7C:CA:92:AA:4E:A8:FB:C2:82:88:5A:A6:70
ValidityTue, 28 Feb 2023 00:00:00 GMT - Thu, 14 Sep 2023 23:59:59 GMT
File type ASCII text, with very long lines (30602), with no line terminators
Hash 6654bcf862f4b66f1a9e8cfbc7742418
d36f6c50dcb8846ed51f02d2d0c3908eb9d7c109
3ab34d81e80f32f5d392519204ff6ad5aadf6a3682b1ea352d44b2ad520d55d8
GET /sf.js?t=9dc34fe66afe HTTP/1.1
Host: sf.bayengage.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 30602
date: Fri, 26 May 2023 12:19:34 GMT
last-modified: Fri, 26 May 2023 12:18:24 GMT
etag: "6654bcf862f4b66f1a9e8cfbc7742418"
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: jctSNf0z8i6fZMDXrW_mzc8IDSXbbFLUUtM7YTpZXIklbRY722tznQ==
age: 19352
X-Firefox-Spdy: h2
fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2
IP 216.58.207.227:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15528, version 1.0\012- data
Hash 595fe3fc0b85f3cc9ef5aed2d519abc5
96e76de44987e9dec2f97f1e5eb7a18c738daf5d
747d5a0865fe76129cc17fe70097fd5b1db733ed3bbfa0210a8505d80c14ab5a
GET /s/robotocondensed/v25/ieVi2ZhZI2eCN5jzbjEETS9weq8-33mZGCQYbw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15528
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 23 May 2023 18:55:52 GMT
expires: Wed, 22 May 2024 18:55:52 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:53:07 GMT
content-type: font/woff2
age: 254774
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
assets.anytrack.io/1y0o6qdBqYHr.js
54.230.111.10200 OK 103 B URL GET HTTP/2 assets.anytrack.io/1y0o6qdBqYHr.js
IP 54.230.111.10:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subjectanytrack.io
Fingerprint8E:28:1B:95:6D:A8:BB:0C:DE:7B:E1:D3:4B:A0:24:65:34:A7:22:10
ValidityThu, 16 Feb 2023 00:00:00 GMT - Sat, 16 Mar 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 862711599b05883791b08e76f7ad4048
2489e35c54be4b8e55330655c5c3102b77ad57b5
7a774a030fc73a71ac63b2c6ee6571a77c42b971a9db68df9020271cfb1b496f
GET /1y0o6qdBqYHr.js HTTP/1.1
Host: assets.anytrack.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
content-length: 103
date: Fri, 26 May 2023 17:42:06 GMT
access-control-allow-origin: *
cache-control: public, max-age=600
etag: W/"67-d1P+A0oIQ3cJVPaXn2gw/5qC+Yc"
x-cache: Miss from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 6dcu2VN6F7l9kYIksglBxSP1XIx1UVQtO8ZpLvuulaY7osWwFTMrRQ==
X-Firefox-Spdy: h2
prism.app-us1.com/?a=224499963&u=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526
104.17.145.91200 OK 248 B URL GET HTTP/2 prism.app-us1.com/?a=224499963&u=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526
IP 104.17.145.91:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerLet's Encrypt
Subjectprism.app-us1.com
Fingerprint77:E9:1B:05:38:39:0E:7D:64:F1:A1:67:46:1D:7B:97:89:65:72:17
ValidityFri, 31 Mar 2023 15:06:08 GMT - Thu, 29 Jun 2023 15:06:07 GMT
File type ASCII text, with no line terminators
Hash 4acbe2195a64582f0cbb13512ed7ba46
db53b387173578fcc0594b96f2b1154fe7b27a71
18f925b7b87f65c2b4d83e8e4497021d7f59e6cd7b6b10e01731cedc030450fc
GET /?a=224499963&u=https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526 HTTP/1.1
Host: prism.app-us1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:42:07 GMT
content-type: application/javascript
cache-control: no-cache, private
set-cookie: prism_224499963=74ace4a0-2a89-48e5-974f-5704ba1abb2a; expires=Sun, 25 Jun 2023 17:42:07 GMT; Max-Age=2592000; path=/; secure; httponly; samesite=none
x-envoy-upstream-service-time: 49
x-powered-by: PHP/8.1.18
cf-cache-status: DYNAMIC
strict-transport-security: max-age=31536000; includeSubDomains
server: cloudflare
cf-ray: 7cd7d01a7e8d0b55-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.checkbca.org/Scripts/WebForms/MsAjax/MicrosoftAjax.js
207.137.0.213301 Moved Permanently 99 kB URL GET HTTP/2 www.checkbca.org/Scripts/WebForms/MsAjax/MicrosoftAjax.js
IP 207.137.0.213:443
Requested by https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Certificate IssuerGoDaddy.com, Inc.
Subjectwww.checkbca.org
Fingerprint87:AD:C4:C8:1F:DC:D9:3D:5B:82:E5:41:FB:4A:C6:AC:05:E5:9F:DF
ValidityMon, 29 Aug 2022 19:07:54 GMT - Sat, 30 Sep 2023 00:45:53 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Scripts/WebForms/MsAjax/MicrosoftAjax.js HTTP/1.1
Host: www.checkbca.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.checkbca.org/companywidget.aspx?ID=100094667&WidgetType=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
cache-control: no-cache
content-type: text/html; charset=UTF-8
location: https://www.checkbca.org/scripts/webforms/msajax/microsoftajax.js
date: Fri, 26 May 2023 17:42:09 GMT
content-length: 188
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/plugins/wp-pagenavi/pagenavi-css.css
188.114.97.1200 OK 374 B URL GET HTTP/3 www.usbfund.com/wp-content/plugins/wp-pagenavi/pagenavi-css.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (405), with no line terminators
Hash 848471b6454d977ddfb8116bd1d05a3d
936d97b72e65a134dcb9d5b8c3766fb2efd84135
1fac9bd2a321702f464c9f719bcf5952e4991d82a781318107c9fc165ed4bacb
GET /wp-content/plugins/wp-pagenavi/pagenavi-css.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 06 May 2023 22:48:03 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5340
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jh3MpppyAm1kY7lBhkS0IdTiVLDO1pSDqqNwpAWV2J97zGrofyNwF68IG3F2X8gW7peSuGUTEySBpwXSalojaMHy3VGIYz8JeinwD2Xv3ZQJogYjWX7Kw0h3NCKil0pS4HI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00d788b0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.3
188.114.97.1200 OK 19 kB URL GET HTTP/3 www.usbfund.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.3
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (15660)
Hash 32beb68a374e3aeac00abdf9e12b84ea
b5d18aa625e8696dd9d07cd0869337717b211ae0
5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.3 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Cookie: _gd1685122926178=; wc_visitor=100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:06 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 17 Aug 2022 11:46:13 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5340
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bm5%2Fd7nwjl7idA4PzPafUJP2zKVtCIGmtPPwpt1R89SKzraimxEne078VQkpcaf3nFB6hpjbVTxDeyjtH0v62faV1Evh5%2B4bXBRSlR2YyloVilSGqiNxbFD5mYqH3C89dGo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d012be630b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.1.2
188.114.97.1200 OK 27 kB URL GET HTTP/3 www.usbfund.com/wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.1.2
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (26634), with no line terminators
Hash 09632523583508d365ac53989de44491
0e70aa3243512a4cd4ce8a5c9501bbaea4b96469
8981d9116da859cd3792e908f416acf9c0fd94545b1190a33bfe5e4daf1d5bd2
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/gravityforms/js/gravityforms.min.js?ver=2.1.2 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:22:39 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zdwea%2FL8ve7KveHS%2BPx7i0AH98M8tyWNEPhhy9zMDXmDRJbfcDjRM8Alw9rWpTU20SR%2BCfH1cFLH2UFD0f5POTX%2BWSWkb6XDOxufgbzRilr8ZssWkhFk5B7%2FcD10KKMwyb8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00de90b0b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/wp-content/uploads/bg-section-business.jpg
188.114.97.1200 OK 349 kB URL GET HTTP/3 www.usbfund.com/wp-content/uploads/bg-section-business.jpg
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x600, components 3\012- data
Size 349 kB (348779 bytes)
Hash de5e6695d4d920c79dc59cf349165609
fdbc5c62b647b966b29475c703fef8e6df2265ac
39e955407048d0e1e09f62e68f65d266f2b641512ed1918c79c3778cca72b931
GET /wp-content/uploads/bg-section-business.jpg HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/wp-content/themes/usb/style.css
Cookie: _gd1685122926178=; wc_visitor=100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a; wc_client=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+; wc_client_current=bayengage+..+campaign-email+..+sales-0526+..++..++..++..+https%3A%2F%2Fwww.usbfund.com%2F%3Futm_source%3Dbayengage%26utm_medium%3Dcampaign-email%26utm_campaign%3Dsales-0526+..+100980-3ba7b72f-97f0-88bb-ee03-31bf6795c07a+..+
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:06 GMT
content-type: image/jpeg
content-length: 348779
last-modified: Sat, 28 Sep 2019 00:15:01 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=T68oyKDIKGYGzbjBrJyFF8uxBicPB7x3LGlXPPFX7i9wohlxRRH6Wu7XFllu5qKJiOVlHxaumSpHe5LKhPgq7TgsH5oKR4FMFIRJGv%2F8%2F2cQi%2BbWqnFbVaOEm8FUvG%2BDkAA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7cd7d0138f4d0b51-OSL
alt-svc: h3=":443"; ma=86400
widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
54.230.111.79200 OK 15 kB URL GET HTTP/2 widget.trustpilot.com/trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9
IP 54.230.111.79:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.trustpilot.com
FingerprintED:01:2E:50:4C:98:9B:F1:34:D7:8C:1E:93:45:E6:05:00:3C:47:86
ValidityThu, 02 Feb 2023 00:00:00 GMT - Sat, 02 Mar 2024 23:59:59 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13396)
Hash a14ca16dcf08b1eb1de1175abdcd3cda
da20904985aa00a1c013374b861fc4c1469ac057
71cd0f30593ec11e666de6f9e0073737e3f29f0fdcd393dc92d0238c77a703de
GET /trustboxes/54ad5defc6454f065c28af8b/index.html?templateId=54ad5defc6454f065c28af8b&businessunitId=57559cd10000ff00058effd9 HTTP/1.1
Host: widget.trustpilot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html
content-length: 3451
last-modified: Mon, 08 May 2023 11:44:30 GMT
x-amz-server-side-encryption: AES256
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000
date: Thu, 25 May 2023 18:46:34 GMT
cache-control: max-age=86400
etag: "ec8997a01685f3d46f7e65c853a558f4"
x-cache: Hit from cloudfront
via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: orj5lQHX7Mq-E2an1efJxHM3N34IA075pL8I7JYAnC5CiAcMKr7ppw==
age: 82536
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/themes/usb/js/site.js
188.114.97.1200 OK 14 kB URL GET HTTP/3 www.usbfund.com/wp-content/themes/usb/js/site.js
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
Hash 6212e4057adf8e6db12e88fe58d538f7
7f426f3ecabb81d52301a6eb63298ec8c76e1b8a
9b6b321e5076cc4ff7eb721e702e4f51560659eb0af3876d8268019592c8b39c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/usb/js/site.js HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:35:52 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5339
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z%2F8Wk4ryZVupOoZbBr%2BLvq6vSLDAKk3DFv1dE9Sw8KUsOwbPgVjcClLJz1Qg%2BrJpkE%2Bv1oFUK5vul7HoqaOCCh8go2AxrWA5akhQpyloZQ3G5zRGygBaOCkcsP0Bi8Oz9tE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00de9100b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
koi-3qnetrwct6.marketingautomation.services/client/ss.js?ver=1.1.1
130.211.21.179200 OK 12 kB URL GET HTTP/2 koi-3qnetrwct6.marketingautomation.services/client/ss.js?ver=1.1.1
IP 130.211.21.179:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGlobalSign nv-sa
Subject*.marketingautomation.services
FingerprintB7:49:65:C5:92:42:69:3D:A0:BB:F8:6B:B1:7D:06:FF:FF:16:AC:36
ValidityFri, 03 Jun 2022 16:56:02 GMT - Wed, 05 Jul 2023 16:56:01 GMT
File type ASCII text, with very long lines (12260), with no line terminators
Hash 0487ebe14570243b2b4631d23894e8b8
e17c25cbd2c41a35e4bb6c6e12e92a6782cb74db
0e068a3b14939e7e082107ed425f54aa8100b20b1584de181abf6791a36564f3
GET /client/ss.js?ver=1.1.1 HTTP/1.1
Host: koi-3qnetrwct6.marketingautomation.services
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: openresty
date: Fri, 26 May 2023 17:42:06 GMT
content-type: application/javascript
last-modified: Tue, 23 May 2023 18:44:46 GMT
vary: Accept-Encoding
etag: W/"646d099e-2fe4"
expires: Fri, 02 Jun 2023 17:42:06 GMT
cache-control: max-age=604800, public
content-encoding: gzip
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
process.iconnode.com/google-ads/
76.223.116.242200 OK 0 B URL POST HTTP/2 process.iconnode.com/google-ads/
IP 76.223.116.242:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.iconnode.com
Fingerprint09:98:F2:22:AC:4D:89:7C:25:09:0E:D7:63:72:02:3F:B8:D1:15:C5
ValidityFri, 28 Apr 2023 00:00:00 GMT - Mon, 27 May 2024 23:59:59 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /google-ads/ HTTP/1.1
Host: process.iconnode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/2 200 OK
date: Fri, 26 May 2023 17:42:07 GMT
content-type: text/html; charset=UTF-8
content-length: 0
server: Apache/2.4.57 () OpenSSL/1.0.2k-fips PHP/7.4.33
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://www.usbfund.com
access-control-allow-credentials: true
access-control-max-age: 86400
X-Firefox-Spdy: h2
tag.getdrip.com/9726461.js
54.230.111.109200 OK 8 B URL GET HTTP/2 tag.getdrip.com/9726461.js
IP 54.230.111.109:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.getdrip.com
Fingerprint3E:57:50:A6:D1:A1:2E:AF:A3:74:E3:E3:F5:0E:42:F8:C9:9F:C8:C8
ValidityFri, 24 Feb 2023 00:00:00 GMT - Sat, 27 Jan 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash de2e1607e500ee465eca3ec4505c0859
cfd432c8178796a4af548a7ed62f09bdf5fbb897
295bdad3ed86f4eeb0249f30e724344ec7be85582094013a85403ecbb77a0047
GET /9726461.js HTTP/1.1
Host: tag.getdrip.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 8
last-modified: Fri, 20 May 2022 20:08:53 GMT
accept-ranges: bytes
server: AmazonS3
date: Fri, 26 May 2023 17:42:08 GMT
etag: "de2e1607e500ee465eca3ec4505c0859"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _t9B_aMVciMbFEsKAa4tFRrM_C-LEhc1F50rTvVsExxQ53FqLZPXAw==
X-Firefox-Spdy: h2
www.usbfund.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
188.114.97.1200 OK 11 kB URL GET HTTP/3 www.usbfund.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (11126)
Hash 79b4956b7ec478ec10244b5e2d33ac7d
a46025b9d05e3df30d610a8aef14f392c7058dc9
029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Mon, 11 Oct 2021 18:27:21 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5340
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5WC2pX2M0Pg1cmgJn05vVNYf%2F3ZGlLawXpvZt5C5Q9ub6IVBwvTE1UPD%2Blza7Ofyf%2FFn3XYc4xatQo4PFt4lvfoWB64sJkJbNqpuOUsfma0XapDBhsSu452a7g9AakN2MEE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00d78910b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
142.250.74.106200 OK 11 kB URL GET HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,600,700
IP 142.250.74.106:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:AC:74:E6:97:66:CD:D0:F1:EA:0D:01:37:89:65:2E:98:22:84:6C
ValidityMon, 08 May 2023 08:24:50 GMT - Mon, 31 Jul 2023 08:24:49 GMT
Hash e0e2280ca8a768a3f15e573a23c54cae
7f3068e8f9945f2623f9c8c9f2a159869f9fccfd
1ba6e02aa649aea52d79959ec42d68b9275396417950a5034ff5ea51b18fc2c8
GET /css?family=Open+Sans:300,400,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 May 2023 17:42:06 GMT
date: Fri, 26 May 2023 17:42:06 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.usbfund.com/wp-content/themes/usb/css/grid.css
188.114.97.1200 OK 45 kB URL GET HTTP/3 www.usbfund.com/wp-content/themes/usb/css/grid.css
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type assembler source, ASCII text, with very long lines (3536), with CRLF line terminators
Hash 4181231e03890eec942556e99056c078
53f540c04ad3871774cab94d7cf4fd7f48178d05
fe2d7f946ad400cef515d2933476fb3d30f45199a119a668338ab9c7b4061711
GET /wp-content/themes/usb/css/grid.css HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:05 GMT
content-type: text/css
vary: Accept-Encoding
last-modified: Sat, 28 Sep 2019 00:35:49 GMT
cache-control: max-age=14400
cf-cache-status: HIT
age: 5340
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xrKHep3I0W8tcDxnMZKLsTyp5oPiemM1MnsQYZCcGhyMauw4dNcItYfQkUeUrV0mwkZQEYjd6tzTCAoZAymXnbhQ%2FvbXb53S7E7EowoCkvdgNam6UjRT4f9PNqClSu%2FnMec%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00d48480b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.usbfund.com/?display_custom_css=css&ver=6.1.3
188.114.97.1200 OK 1.5 kB URL GET HTTP/3 www.usbfund.com/?display_custom_css=css&ver=6.1.3
IP 188.114.97.1:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subjectusbfund.com
FingerprintAB:E6:A7:3D:EC:D8:F9:09:CB:27:2D:BA:32:20:C9:B5:01:27:3B:0F
ValidityFri, 14 Apr 2023 16:18:40 GMT - Thu, 13 Jul 2023 16:18:39 GMT
File type ASCII text, with very long lines (1581), with no line terminators
Hash b1f47076df76ba1c9462b4ca56ae90bf
247a3fcc494a83c987814734a29b57521bd26571
f18db6837ba149c8d32f9c0072c09859c0fa4ba5c136745cf9747f2d467c5b30
GET /?display_custom_css=css&ver=6.1.3 HTTP/1.1
Host: www.usbfund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 May 2023 17:42:06 GMT
content-type: text/css;charset=UTF-8
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3BcxWOovgbDSAQj1hzg4TxP4mtp5mI2gJ%2F0u%2B%2F3%2FEz9qWUFu1QtSeuvgA2%2ByGNSfEBxosur8mrRtco5dUcBWYke1vw%2B6NuPp8H0khBDSRZs5nfS6K4I%2BuaBjXv81%2FNc95a8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7cd7d00d78880b51-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
js.hs-banner.com/v2/5627136/banner.js
104.18.24.196200 OK 213 kB URL GET HTTP/2 js.hs-banner.com/v2/5627136/banner.js
IP 104.18.24.196:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint2C:9C:DC:70:87:29:18:51:70:06:6E:2F:4B:4D:E0:23:1F:30:84:18
ValidityTue, 02 May 2023 00:00:00 GMT - Wed, 01 May 2024 23:59:59 GMT
File type ASCII text, with very long lines (65044)
Size 213 kB (212711 bytes)
Hash cdce2dc555e4864d7603211ee8efc583
c65614a07685c35f95985b76c3f8e8ca0fbe2dfc
6df121737f5c72a579b9c1b56113b4391f669f781bd4eaa176b7a790ae777aa6
GET /v2/5627136/banner.js HTTP/1.1
Host: js.hs-banner.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:42:07 GMT
content-type: text/javascript; charset=UTF-8
x-amz-id-2: Njt72rtbJ63n8lvwSp78AxtrgsSX6fzRVxopizLK8h+pHKY6MIeUcyhPlDic5dYQQ+nduvs0b2Z/oMpceOG64g==
x-amz-request-id: Q8DVJ6ABY2SDP0RW
last-modified: Mon, 17 Apr 2023 15:38:24 GMT
etag: W/"cdce2dc555e4864d7603211ee8efc583"
x-amz-server-side-encryption: AES256
cache-control: max-age=300,public
x-amz-version-id: m3lyAmi2EFE1D8wIXByq5fHLowkIUPum
access-control-allow-origin: https://www.usbfund.com
access-control-allow-methods: GET, OPTIONS, PUT, POST, DELETE, PATCH, HEAD
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Accept-Charset, Accept-Encoding, X-Override-Internal-Permissions, X-Properties-Source, X-Properties-SourceId, X-Properties-Flag, X-Hubspot-User-Id, X-Hubspot-Trace, X-Hubspot-Callee, X-Hubspot-Offset, X-Hubspot-No-Trace, X-HubSpot-Static-App-Info, X-HubSpot-Messages-Uri, X-HubSpot-Request-Source, X-HubSpot-Request-Reason, Subscription-Billing-Auth-Token, X-App-CSRF, X-Tools-CSRF, Online-Payment-Signing-UUID, X-Source, X-SourceId, X-Origin-UserId, X-Biden-Request-Source, X-HubSpot-CSRF-hubspotapi, X-Force-Cookie-Refresh, X-Force-Cookie-Refresh-No-Cache, X-HS-User-Request, X-Application-Id, X-HS-Referer, X-HubSpot-Correlation-Id
access-control-expose-headers: x-last-modified-timestamp, X-HubSpot-NotFound, X-HS-User-Request, Link, Server-Timing
access-control-allow-credentials: true
access-control-max-age: 604800
timing-allow-origin: *
vary: origin, Accept-Encoding
expires: Fri, 26 May 2023 17:47:07 GMT
x-envoy-upstream-service-time: 88
x-evy-trace-route-service-name: envoyset-translator
x-evy-trace-virtual-host: all
x-evy-trace-served-by-pod: iad02/analytics-js-proxy-td/envoy-proxy-7dbb6c8f49-v9vn7
x-evy-trace-listener: listener_https
x-evy-trace-route-configuration: listener_https/all
x-request-id: 7bb2660e-1f12-459d-b551-f5ec54eaa295
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 7cd7d018fa3cb518-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
216.58.207.227200 OK 16 kB URL GET HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 216.58.207.227:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintA3:09:CB:6C:64:76:4B:58:32:D1:21:3E:F4:65:1F:DE:58:22:8F:D6
ValidityMon, 08 May 2023 08:24:48 GMT - Mon, 31 Jul 2023 08:24:47 GMT
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 25 May 2023 05:00:02 GMT
expires: Fri, 24 May 2024 05:00:02 GMT
cache-control: public, max-age=31536000
age: 132124
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
process.iconnode.com/keyword/
76.223.116.242200 OK 37 B URL POST HTTP/2 process.iconnode.com/keyword/
IP 76.223.116.242:443
Requested by https://www.usbfund.com/?utm_source=bayengage&utm_medium=campaign-email&utm_campaign=sales-0526
Certificate IssuerAmazon
Subject*.iconnode.com
Fingerprint09:98:F2:22:AC:4D:89:7C:25:09:0E:D7:63:72:02:3F:B8:D1:15:C5
ValidityFri, 28 Apr 2023 00:00:00 GMT - Mon, 27 May 2024 23:59:59 GMT
File type ASCII text, with no line terminators
Hash 47d237a9ed20cca7882969e1f7cabaad
b036919d16d1ffdce3bf3673d49edb255d5983e6
ac783c5fa4807f599b392fc3774e82e8fe8f33998e17f3f523a1c1358fd659c5
POST /keyword/ HTTP/1.1
Host: process.iconnode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 770
Origin: https://www.usbfund.com
DNT: 1
Connection: keep-alive
Referer: https://www.usbfund.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 17:42:07 GMT
content-type: text/html; charset=UTF-8
content-length: 37
server: Apache/2.4.57 () OpenSSL/1.0.2k-fips PHP/7.4.33
x-powered-by: PHP/7.4.33
access-control-allow-origin: https://www.usbfund.com
access-control-allow-credentials: true
access-control-max-age: 86400
X-Firefox-Spdy: h2