r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9433
Expires: Mon, 30 Jan 2023 17:03:50 GMT
Date: Mon, 30 Jan 2023 14:26:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14087
Expires: Mon, 30 Jan 2023 18:21:24 GMT
Date: Mon, 30 Jan 2023 14:26:37 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8556
Expires: Mon, 30 Jan 2023 16:49:13 GMT
Date: Mon, 30 Jan 2023 14:26:37 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 13:35:43 GMT
content-type: application/json
age: 3054
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.bihmfirm.com/
192.254.147.113301 Moved Permanently 233 B IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 0f0a45e2bf2bffa694aed0081cb4f5b4
0a2a287d0bb887105280af7eabbe0ac344c9e9d0
0a945e0ddcfa58429b2df34eafa4de1c988a6f9ddbdf6631fff294f0faa64e3f
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Mon, 30 Jan 2023 14:26:37 GMT
Server: Apache
Location: https://www.bihmfirm.com/
Content-Length: 233
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 2doUzJuicRD1QlkDzRILDYyuldWPvClMxAKKUnmmtZknTKHJUSNLZx1DyW15Vzb91Si1XnOBTeM=
x-amz-request-id: XG65Z69D1768WJKM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 14:21:49 GMT
age: 288
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 14:26:37 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 13:49:04 GMT
age: 2254
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8200
Expires: Mon, 30 Jan 2023 16:43:18 GMT
Date: Mon, 30 Jan 2023 14:26:38 GMT
Connection: keep-alive
push.services.mozilla.com/
52.42.147.182101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.147.182:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7VAt68H//lvE6/xEm/+A4w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0AdRK7bahQW4ZACBF9Zta/SfH7M=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:26:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bihmfirm.com/
192.254.147.113200 OK 26 kB IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1222), with CRLF, CR, LF line terminators
Hash dfb6da5c656be013f0dc40590310577f
5a478a0c9a4392fd534fad4f0362fb6d33b1a946
44bcd671bc42fa69407dd4cbf6de684f606fcfe7b037fab7719382f07d29bb99
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:38 GMT
Server: Apache
Content-Encoding: gzip
Expires: Wed, 17 Aug 2005 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac; path=/; HttpOnly
Last-Modified: Mon, 30 Jan 2023 14:26:38 GMT
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
www.googletagmanager.com/gtm.js?id=GTM-WDDVHSN
142.250.74.168200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-WDDVHSN
IP 142.250.74.168:0
File type ASCII text, with very long lines (3382)
Hash 485b450d32e618422ed88f54eb9252a6
92d2b03d33b1e5104301d4c2201b1f113c9894b9
33fda70438ae597cf98dab3afffa8126e624f240aed3686f35990bddb3e439cd
GET /gtm.js?id=GTM-WDDVHSN HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 30 Jan 2023 14:26:38 GMT
expires: Mon, 30 Jan 2023 14:26:38 GMT
cache-control: private, max-age=900
last-modified: Mon, 30 Jan 2023 12:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44912
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash ba2ca6af7b23ce2e11aa4f9d86e66269
212aef55d64b6add292dcf6241b16e7c93d1bae2
f163a94d190f5aeeb05b2e344bc8e1544d9701772b08585e9c92b529c8652b3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:26:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bihmfirm.com/media/jui/js/jquery-noconflict.js
192.254.147.113200 OK 21 B URL HTTP/1.1 www.bihmfirm.com/media/jui/js/jquery-noconflict.js
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash e2060c4e5e5955c824723b13a212d3ec
18420ce484978f8ba3d7371febf1638828bb7a67
5b6cf4e6eda02f7c90b60b3c32413c0851915f8f80a268a913b92929085132a6
Analyzer Verdict Alert fortinet Phishing
GET /media/jui/js/jquery-noconflict.js HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:38 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 03:28:16 GMT
Accept-Ranges: bytes
Content-Length: 21
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.bihmfirm.com/media/jui/js/jquery-migrate.min.js
192.254.147.113200 OK 10 kB URL HTTP/1.1 www.bihmfirm.com/media/jui/js/jquery-migrate.min.js
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
Analyzer Verdict Alert fortinet Phishing
GET /media/jui/js/jquery-migrate.min.js HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:38 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 03:28:16 GMT
Accept-Ranges: bytes
Content-Length: 10056
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
region1.google-analytics.com/g/collect?v=2&tid=G-RBPHX8QC8J>m=2oe1p0&_p=1646584031&cid=33110345.1675088811&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675088811&sct=1&seg=0&dl=https%3A%2F%2Fwww.bihmfirm.com%2F&dt=Conroe%20Divorce%20Lawyer%20%7C%20Texas%20%7C%20The%20Bihm%20Firm%2C%20PLLC&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-RBPHX8QC8J>m=2oe1p0&_p=1646584031&cid=33110345.1675088811&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675088811&sct=1&seg=0&dl=https%3A%2F%2Fwww.bihmfirm.com%2F&dt=Conroe%20Divorce%20Lawyer%20%7C%20Texas%20%7C%20The%20Bihm%20Firm%2C%20PLLC&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-RBPHX8QC8J>m=2oe1p0&_p=1646584031&cid=33110345.1675088811&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675088811&sct=1&seg=0&dl=https%3A%2F%2Fwww.bihmfirm.com%2F&dt=Conroe%20Divorce%20Lawyer%20%7C%20Texas%20%7C%20The%20Bihm%20Firm%2C%20PLLC&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bihmfirm.com
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.bihmfirm.com
date: Mon, 30 Jan 2023 14:26:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4259
Expires: Mon, 30 Jan 2023 15:37:38 GMT
Date: Mon, 30 Jan 2023 14:26:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4259
Expires: Mon, 30 Jan 2023 15:37:38 GMT
Date: Mon, 30 Jan 2023 14:26:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4259
Expires: Mon, 30 Jan 2023 15:37:38 GMT
Date: Mon, 30 Jan 2023 14:26:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4259
Expires: Mon, 30 Jan 2023 15:37:38 GMT
Date: Mon, 30 Jan 2023 14:26:39 GMT
Connection: keep-alive
www.bihmfirm.com/media/jui/js/jquery.min.js
192.254.147.113200 OK 97 kB URL HTTP/1.1 www.bihmfirm.com/media/jui/js/jquery.min.js
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32077)
Hash 4f252523d4af0b478c810c2547a63e19
5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb
668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404
Analyzer Verdict Alert fortinet Phishing
GET /media/jui/js/jquery.min.js HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:38 GMT
Server: Apache
Last-Modified: Thu, 18 Jun 2020 03:28:16 GMT
Accept-Ranges: bytes
Content-Length: 97163
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 8bec493a-9c81-4cfd-b6e9-66f4f3d55cb7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOOJQEZSoAMFb1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf2a3b-5f0c9f3e4cac1ba26c802050;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 00:45:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3uybP14DBtrEK8ieNWHaQfz3Zl_JMl0_L9CGZgcusTjVCFIIaTpwIQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 00:23:18 GMT
age: 50601
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3e04b9eaf7449828136ad59e4c9d69f1
b820be4ed885dcf288eb6460c57e1fa7b1c7c476
df75cf7183d401a19655aab025d08ad2c498573c88b32e9b258d951d2993b936
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bb7921c-8aaf-40cd-bf87-43903c3f1a74.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7679
x-amzn-requestid: 0c7983d5-6040-44e9-b394-21c3784702a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEtEfHoAMFaNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-54c55dbd09ca642048af8916;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Wx-qjsrMLYpLmE-8QmpR46BeRySbUGL2Rrr6LqhEQ8jaEEj_6Aj0qg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:52:09 GMT
age: 59670
etag: "b820be4ed885dcf288eb6460c57e1fa7b1c7c476"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 51aa950d5eed7b90cab6632107092edc
e4388ced02e5576867e77547496dec1ac2338ef7
588830e5f725e8e56270565e40f817f2658b0ee7c0425d138e5f65a17ff40483
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df754eb-70f9-4576-ac48-68a6ae719511.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9457
x-amzn-requestid: 7c48e5ca-2128-43da-ba83-fd91568af1ef
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkBOGHVoAMFQtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6d4-1b850ffd543f51f92dec3894;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: soTFEnYjNcti77h3FpnztwzR7ypv68NbyoI6DxS0NhU412ykFsWAgA==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:00:38 GMT
age: 59161
etag: "e4388ced02e5576867e77547496dec1ac2338ef7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fe31ee140c2fd62e616c8a1edc9e78bb
7aa5fbdc8156514770ae620e81f1afef1c77890f
799af4bf9fa07ed27ebdc9d1a3344ee8a2b6529f076c263495b93290c47a1cc4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52796f60-dafe-46ba-9c7a-a08ce5e16c34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8464
x-amzn-requestid: bf2cf356-ebb1-469b-ba35-a79bb009cad6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj3qGeboAMFzNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e697-7c96841f52b6a96d1b0eaf34;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: UNub7Gd4S0ogn5EJhtJVu8q1qML5_4eL2lIPQXiAuXy_q-XiR4s-5w==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:21 GMT
etag: "7aa5fbdc8156514770ae620e81f1afef1c77890f"
content-type: image/jpeg
age: 59478
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5190c0bdc6abe0ee258e9f8c20ddaf51
d60f280f8a742480527dbc32d08f321f972d4fcf
874b38a04aa3736e65aaef72da2cc2efceb208618267107a495bdfe51ec58e58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12507
x-amzn-requestid: 85c9adcd-b997-48ca-bbfb-ccdeaf3e8cfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhklyFaJoAMFqKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-2bcdd8c353d8429d2b1e95f6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UDJKl99GiUxTW_EgWFDjLaJZbKFhfaJR-XRLsbQphwHuCXczDlxrDA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:54:37 GMT
age: 59522
etag: "d60f280f8a742480527dbc32d08f321f972d4fcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: skGKI_MWvDwpAbGibUcr8wTlimgoPU9ZYhEHltd3uhdJZ_GoNznVAA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:53:08 GMT
age: 59611
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.bihmfirm.com/images/ico_quote.png
192.254.147.113200 OK 1.2 kB URL HTTP/1.1 www.bihmfirm.com/images/ico_quote.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 108 x 98, 8-bit/color RGBA, non-interlaced\012- data
Hash 0d280dd7e6296c8a6a81d5ed1b87cd88
8e7c26c8f48ad4e495125bdcc7b1fd436d60d137
fd3583b7f63c5b91c54d9385745291fe8f7c01ff203504ff417701129e74bf87
GET /images/ico_quote.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:39 GMT
Server: Apache
Last-Modified: Mon, 02 May 2022 15:50:34 GMT
Accept-Ranges: bytes
Content-Length: 1230
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/bdg_avvo.png
192.254.147.113200 OK 13 kB URL HTTP/1.1 www.bihmfirm.com/images/bdg_avvo.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 189 x 97, 8-bit/color RGBA, non-interlaced\012- data
Hash 2e88dbb546cabbaa10c408338ff4aa2f
63fbe66c0f8dec041050632170a0a311eccd52cb
4a826fa0c6b9cf689942e910b8f5e5ac3181e3bcc08b3b885a7f526e003e3f5b
GET /images/bdg_avvo.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:39 GMT
Server: Apache
Last-Modified: Mon, 02 May 2022 11:38:36 GMT
Accept-Ranges: bytes
Content-Length: 12681
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/soc_twt.png
192.254.147.113200 OK 605 B URL HTTP/1.1 www.bihmfirm.com/images/soc_twt.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 29 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash eb1e0daa553bcc99334cfd4904e32922
d276de901e01a5f1eadfc41d37237333f00ba3e3
8a1da64538451c64fa24f0f42b7ffadb709d4fa3944a8d48277d2df3609317ce
GET /images/soc_twt.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:39 GMT
Server: Apache
Last-Modified: Mon, 02 May 2022 11:38:36 GMT
Accept-Ranges: bytes
Content-Length: 605
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/bdg_elite_lawyer.png
192.254.147.113200 OK 5.8 kB URL HTTP/1.1 www.bihmfirm.com/images/bdg_elite_lawyer.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 223 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 353fad31a5514a3ed1dc04167d4fb879
f2ae4b675d54aa96af0065747ae076a7bec64e61
8d2ff31fc40644ad0e90d7628e5bb5def2e498049c0a9fd59d5dff94188e826a
GET /images/bdg_elite_lawyer.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:39 GMT
Server: Apache
Last-Modified: Mon, 02 May 2022 11:38:36 GMT
Accept-Ranges: bytes
Content-Length: 5800
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/logo.png
192.254.147.113200 OK 3.8 kB URL HTTP/1.1 www.bihmfirm.com/images/logo.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 151 x 89, 8-bit/color RGBA, non-interlaced\012- data
Hash 1ed6a6bcbdde6c10704b7ba710a2cc9d
aac231eafc66cd87204369066634d64157a6896b
303f0c6e3807f50b302dbc0993f012ec6b0b3ed47c02fcbd15682702bf0406e6
GET /images/logo.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:39 GMT
Server: Apache
Last-Modified: Mon, 02 May 2022 11:38:36 GMT
Accept-Ranges: bytes
Content-Length: 3792
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/bdg_sbt.png
192.254.147.113200 OK 23 kB URL HTTP/1.1 www.bihmfirm.com/images/bdg_sbt.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 337 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 5abf159e0bfb9dd1f97d48ade5940ab2
5cd9a7b1afb8ed65788197c7e7f9b54b7fcd0112
a9e7fc3f9ff277a4d6df5a0d8a5872a50419af8b2ea08dddde818109101249b3
GET /images/bdg_sbt.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:39 GMT
Server: Apache
Last-Modified: Mon, 02 May 2022 11:38:36 GMT
Accept-Ranges: bytes
Content-Length: 22867
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/ico_laurel.png
192.254.147.113200 OK 8.3 kB URL HTTP/1.1 www.bihmfirm.com/images/ico_laurel.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 169 x 169, 8-bit/color RGBA, non-interlaced\012- data
Hash 8df4c313001f1e15c831fbe99efc2bc5
dd26ea873bc70a48254ef5a5c7f6d12693601b1e
c8a2936eb03b0d5ca683e80b71930914f79946982aa82eda0cb8dc34280af56c
GET /images/ico_laurel.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Mon, 02 May 2022 11:38:36 GMT
Accept-Ranges: bytes
Content-Length: 8269
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/bdg_tbc.png
192.254.147.113200 OK 13 kB URL HTTP/1.1 www.bihmfirm.com/images/bdg_tbc.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 146 x 112, 8-bit/color RGBA, non-interlaced\012- data
Hash 57d9ff0338c85cf96aeeb78ce70ae1c3
594a417c247806f5aea396100cc70d9c51a33242
ae88f92c9881f1bf2351c201d7966003491299348a04b5a6b813041afd643182
GET /images/bdg_tbc.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Mon, 02 May 2022 11:38:36 GMT
Accept-Ranges: bytes
Content-Length: 13211
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/soc_fbk.png
192.254.147.113200 OK 525 B URL HTTP/1.1 www.bihmfirm.com/images/soc_fbk.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 29 x 29, 8-bit/color RGBA, non-interlaced\012- data
Hash db79a9db59db5a7bada4e041e1fce576
3f2ed930ffc97c4ddd80ca91700e1c902c898782
74b1ec320b6242ea3d35d5c756e0f05e9a32b03fb55645128ebdbc593e66c80e
GET /images/soc_fbk.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Mon, 02 May 2022 11:38:36 GMT
Accept-Ranges: bytes
Content-Length: 525
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/banner.jpg
192.254.147.113200 OK 91 kB URL HTTP/1.1 www.bihmfirm.com/images/banner.jpg
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1922x807, components 3\012- data
Hash 526fef43e33a22f5655e37ab4b6abef5
f15460583d55085c5e9e421fd73cb135fde4d6da
ee74765d68754714e3f1f298b9fbef7ad3fed3b79b1cae8750f0fdd34f4c1951
GET /images/banner.jpg HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac; _ga_RBPHX8QC8J=GS1.1.1675088811.1.0.1675088811.0.0.0; _ga=GA1.1.33110345.1675088811
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Thu, 12 May 2022 21:31:32 GMT
Accept-Ranges: bytes
Content-Length: 90567
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/jpeg
www.bihmfirm.com/images/main_bg.jpg
192.254.147.113200 OK 67 kB URL HTTP/1.1 www.bihmfirm.com/images/main_bg.jpg
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 982x792, components 3\012- data
Hash 0916cf9e9d529baeadf16e45d23a5def
ecce8ec55afc863e5e820a1dead16d66eb375f5d
8deaa55b7a3b490ef51d3c8948cb17e2680eba122bc3fe0dab6608de129e5123
GET /images/main_bg.jpg HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac; _ga_RBPHX8QC8J=GS1.1.1675088811.1.0.1675088811.0.0.0; _ga=GA1.1.33110345.1675088811
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Thu, 12 May 2022 21:31:32 GMT
Accept-Ranges: bytes
Content-Length: 66940
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash 77caa815c3e9c56caf4e418989b840b4
854d22135689f8cd66d35307f9449cdd4114c47a
3505316e5a373eb870505d70f0a57d657d6758f49216f9b7923957da7ef94d1d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 14:26:40 GMT
Last-Modified: Mon, 30 Jan 2023 13:58:38 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Anqu77gSfymHNK4qNfz-dm0TvpPQl4Z3VAWyHbW3Fhr6mJBuLZhCwA==
Age: 1682
www.bihmfirm.com/images/hp_att.png
192.254.147.113200 OK 124 kB URL HTTP/1.1 www.bihmfirm.com/images/hp_att.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 496 x 711, 8-bit colormap, non-interlaced\012- data
Size 124 kB (123522 bytes)
Hash 58465f4315da01d2194a74eea2fe2161
95e53ff1172b06d3e5e51df8b6cb549f94849995
f0401246b0949cc7d3e6504da9e01144a78850af83a6c6790d44edfe952effdf
GET /images/hp_att.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Wed, 18 May 2022 21:47:13 GMT
Accept-Ranges: bytes
Content-Length: 123522
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/zoom.png
192.254.147.113200 OK 412 B URL HTTP/1.1 www.bihmfirm.com/images/zoom.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 19 x 19, 8-bit/color RGBA, non-interlaced\012- data
Hash 10296a9fb11595d6b6160c444a2b8911
a740e6e8165cdc5997d3c1da2e64c26041af9cf5
eb60062e48f921dc34b41398ad40c8e294a1295c7e48f197095b7f69e3f11079
GET /images/zoom.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Mon, 02 May 2022 11:38:36 GMT
Accept-Ranges: bytes
Content-Length: 412
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/fam_bg.jpg
192.254.147.113200 OK 98 kB URL HTTP/1.1 www.bihmfirm.com/images/fam_bg.jpg
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1005, components 3\012- data
Hash 7dcc82d358cf5e2c89b4cbee005d4d91
31d7f225edf22edf82125137d1a2cf63be81ae5e
aabe63ba8db6896028664fa702761ad103b02dcafaff78611a8adf36ed768a54
GET /images/fam_bg.jpg HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac; _ga_RBPHX8QC8J=GS1.1.1675088811.1.0.1675088811.0.0.0; _ga=GA1.1.33110345.1675088811
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Thu, 12 May 2022 21:31:32 GMT
Accept-Ranges: bytes
Content-Length: 97919
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
www.bihmfirm.com/images/LP_MakePayment_CCs.jpg
192.254.147.113200 OK 4.1 kB URL HTTP/1.1 www.bihmfirm.com/images/LP_MakePayment_CCs.jpg
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 209x66, components 3\012- data
Hash 6fe7a6e57c50763958f51a77f306a671
9d1935f6a947242a570e07ef17e22c352244e7a0
ba592d5156d5cdaf33b8482f5d19b69f5f65f4a7c9b050984bbf4878f7b1dbd6
GET /images/LP_MakePayment_CCs.jpg HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Thu, 12 May 2022 21:31:31 GMT
Accept-Ranges: bytes
Content-Length: 4052
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/jpeg
www.bihmfirm.com/images/ovc.png
192.254.147.113200 OK 2.0 kB URL HTTP/1.1 www.bihmfirm.com/images/ovc.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 99 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 96daa51d41472ef7079b9c498d206821
f9b81b51dcfa96990a4fce4295ebd3c3ff546b2b
27ab22908deb13031a7fbad158691630d36a3b0685f213db79932642d3d78576
GET /images/ovc.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Mon, 02 May 2022 11:38:36 GMT
Accept-Ranges: bytes
Content-Length: 2038
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/fixed_ovccf.png
192.254.147.113200 OK 1.7 kB URL HTTP/1.1 www.bihmfirm.com/images/fixed_ovccf.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 33 x 133, 8-bit/color RGBA, non-interlaced\012- data
Hash 403fb55f6273c1f17a463a534bb35db8
7fa89b14ab04689e38cc330bd94fbbeb925f8172
21613352ed4d459ab320edeb4648674d68160889e4beaebc1bd793f18bc2b6dc
GET /images/fixed_ovccf.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Mon, 02 May 2022 11:39:12 GMT
Accept-Ranges: bytes
Content-Length: 1738
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/banner_att.png
192.254.147.113200 OK 183 kB URL HTTP/1.1 www.bihmfirm.com/images/banner_att.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 943 x 795, 8-bit colormap, non-interlaced\012- data
Size 183 kB (183224 bytes)
Hash 745d47f353a4babad473b04ea297de68
11cfa7f8787a9dd2996824d07ec5958b72619a4b
e06880fbfe76afaab7caf14484a3e74efdb5f497831a2751433143643d05caa0
GET /images/banner_att.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Wed, 18 May 2022 21:41:03 GMT
Accept-Ranges: bytes
Content-Length: 183224
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
api.userway.org/api/tunings/UKnzp3ILbY
54.200.47.15200 OK 937 B URL HTTP/2 api.userway.org/api/tunings/UKnzp3ILbY
IP 54.200.47.15:0
File type JSON data\012- , ASCII text, with very long lines (937), with no line terminators
Hash 31d79f142881adc465e7c8004d623d60
d3367fe7e302400ab087f728b00a7708f95f9421
d5bea01f159546d18e973d72385f79962ef806a0d167b6f65b13389df5b7d552
POST /api/tunings/UKnzp3ILbY HTTP/1.1
Host: api.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1419
Origin: https://www.bihmfirm.com
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:26:40 GMT
content-type: application/json; charset=utf-8
content-length: 937
x-service-version: uw-pr
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, PATCH, POST, DELETE
access-control-allow-headers: *
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
x-service-request-id: usra792debae4f4431
etag: W/"3a9-0zZ/5+MCQAqwh/cosAp3CPlflCE"
X-Firefox-Spdy: h2
www.bihmfirm.com/images/back2top.png
192.254.147.113200 OK 1.3 kB URL HTTP/1.1 www.bihmfirm.com/images/back2top.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 51 x 51, 8-bit/color RGBA, non-interlaced\012- data
Hash 48b0ed6796f0183e1371757aeb52a5e0
f5f8e608fe392ac5643cea2799709257327f05c8
8619f7a924f19372dd765d0b44c7ec8ec1eff6880ec165825282f69306729f06
GET /images/back2top.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Mon, 02 May 2022 11:38:36 GMT
Accept-Ranges: bytes
Content-Length: 1257
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/cc_bg.jpg
192.254.147.113200 OK 25 kB URL HTTP/1.1 www.bihmfirm.com/images/cc_bg.jpg
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 960x481, components 3\012- data
Hash b03bf0b4f466e558cb50a747dd2b238e
013ba13548415fa2fd5443cfb10ab273ba2adf31
452e29c205c9924d9eeaa3fb5c99a1da5103ee3cb0cb4ea8096d135713b8a69e
GET /images/cc_bg.jpg HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac; _ga_RBPHX8QC8J=GS1.1.1675088811.1.0.1675088811.0.0.0; _ga=GA1.1.33110345.1675088811
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Thu, 12 May 2022 21:31:32 GMT
Accept-Ranges: bytes
Content-Length: 25232
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/jpeg
www.bihmfirm.com/images/lines.png
192.254.147.113200 OK 21 kB URL HTTP/1.1 www.bihmfirm.com/images/lines.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 698 x 685, 8-bit/color RGBA, non-interlaced\012- data
Hash 5fb7e9f13210491e620847b79b6be405
6c8dc58937d94c81d8226803e7ca1a520ec7f8aa
633d4b021534337cb30d9421c276a0f47486f263c2ce5b0ae56527a11001af8a
GET /images/lines.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac; _ga_RBPHX8QC8J=GS1.1.1675088811.1.0.1675088811.0.0.0; _ga=GA1.1.33110345.1675088811
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Mon, 02 May 2022 11:38:36 GMT
Accept-Ranges: bytes
Content-Length: 20745
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/logo_social.png
192.254.147.113301 Moved Permanently 236 B URL HTTP/1.1 www.bihmfirm.com/images/logo_social.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ad9fdd92d7fb852d349b61cea3f77998
92f542fb7f61527c9400cf15fe4874bb1b796320
187b63b7a618d41a33935c14f5113dd6db8964504f3962b38e3a4b621c28aba5
GET /images/logo_social.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 301 Moved Permanently
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Location: https://www.bihmfirm.com/404
Content-Length: 236
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
www.bihmfirm.com/images/cs_bg.jpg
192.254.147.113200 OK 52 kB URL HTTP/1.1 www.bihmfirm.com/images/cs_bg.jpg
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 960x481, components 3\012- data
Hash da5421ce8fd1f38ca9824bef87176cc7
2902c3451d692aa31d8fbae6e8120ca585f2ad90
57844cf5d5dfb245db327e61a8eaafaa5fa749c4b5bb8c9afadd2a8c7a9c8f2a
GET /images/cs_bg.jpg HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac; _ga_RBPHX8QC8J=GS1.1.1675088811.1.0.1675088811.0.0.0; _ga=GA1.1.33110345.1675088811
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Thu, 12 May 2022 21:31:32 GMT
Accept-Ranges: bytes
Content-Length: 52081
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
www.bihmfirm.com/templates/myssm/favicon.png?v=9713
192.254.147.113200 OK 664 B URL HTTP/1.1 www.bihmfirm.com/templates/myssm/favicon.png?v=9713
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 2365b1477cd355773de74968a1898aa8
3986fdb7bf943fe0221b4607472bbc84362f67d6
0310814d69f31ca789f4f983040a58b5c23ecba2394d892a096d8aa2916368db
GET /templates/myssm/favicon.png?v=9713 HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac; _ga_RBPHX8QC8J=GS1.1.1675088811.1.0.1675088811.0.0.0; _ga=GA1.1.33110345.1675088811
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:41 GMT
Server: Apache
Last-Modified: Tue, 03 May 2022 11:09:38 GMT
Accept-Ranges: bytes
Content-Length: 664
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
www.bihmfirm.com/images/test_bg.png
192.254.147.113200 OK 289 kB URL HTTP/1.1 www.bihmfirm.com/images/test_bg.png
IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 1067 x 888, 8-bit colormap, non-interlaced\012- data
Size 289 kB (289243 bytes)
Hash 921aaeb380c01badbdf7523d2136746d
a93c839be37737a4a61e2f63813d560c05084863
fa1a81d4723a12214546cca3343e5fb8110a233282413549395d90fc48869e19
GET /images/test_bg.png HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac; _ga_RBPHX8QC8J=GS1.1.1675088811.1.0.1675088811.0.0.0; _ga=GA1.1.33110345.1675088811
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:40 GMT
Server: Apache
Last-Modified: Thu, 12 May 2022 20:05:41 GMT
Accept-Ranges: bytes
Content-Length: 289243
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:26:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:26:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:26:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 75bf326700e29b1b06e57fb96ee2b064
4f979f28905b65637a058cd44be6c25bb51a42e4
385f7a9c4112c4d674264d02229719e7f82e7039e681db8aaa6685ebab2be0c1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:26:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.userway.org/widgetapp/images/spin_wh.svg
185.76.9.26200 OK 1.6 kB URL HTTP/2 cdn.userway.org/widgetapp/images/spin_wh.svg
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
Hash b22bd526091d73db5d2108e7af5e25a6
563fb12571ad6891b6ddedb473e1f8a5b7a955e6
955dfa46ee301f51824d7f3f31c8c5aa3090a91d2275e2bdaf4510c50bf461a5
GET /widgetapp/images/spin_wh.svg HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:26:41 GMT
content-type: image/svg+xml
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Fri, 13 Jan 2023 11:00:14 GMT
etag: W/"8e0a35946bf39d10f46a1f1653366a0a"
cache-control: max-age=25920000, public
vary: Accept-Encoding
via: 1.1 7c454612f54f08da25a4d31583e0451e.cloudfront.net (CloudFront)
x-amz-cf-pop: CPH50-P1
x-amz-cf-id: 9u6hnSPHC1IqSZpLExCZYPgFRuKgoKKW54nvoFln0Y0ZdCevQnUcVg==
age: 14
x-accel-expires: @1699529254
server: CDN77-Turbo
x-77-nzt: AblMCRT0U1v/e5MWAA
x-77-nzt-ray: af585630f7176c6ea1d3d763c2609f20
x-cache: HIT
x-age: 1479547
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:26:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:26:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bihmfirm.com/404
192.254.147.113200 OK 25 kB IP 192.254.147.113:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 42ee4d4fcceb5e26ae255fcc5282c678
88e9fb0820bfd3a4bcffa1ee965adf035cdd25da
998bb3027778f58887b3a226d89662873eb0ba3edb6491414a7af45d74a12fbb
Analyzer Verdict Alert fortinet Phishing
GET /404 HTTP/1.1
Host: www.bihmfirm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.bihmfirm.com/
Connection: keep-alive
Cookie: f71334b0d1ad83e07ec772dba1efefe6=eae9a06398661ece3d8cb0bc79cf0bac; _ga_RBPHX8QC8J=GS1.1.1675088811.1.0.1675088811.0.0.0; _ga=GA1.1.33110345.1675088811
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 14:26:41 GMT
Server: Apache
Content-Encoding: gzip
Expires: Wed, 17 Aug 2005 00:00:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Last-Modified: Mon, 30 Jan 2023 14:26:41 GMT
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:26:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:26:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2
216.58.207.227200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 19860, version 1.0\012- data
Hash a95e391373ad634c3b7dbaf77de3f40e
ddc4638bc28c21a400fcd2df94448743f198a257
fa3d5a0422c9b413abb4c78f8ff80de8a8ed58766f7110c82febf5296e899b47
GET /s/playfairdisplay/v30/nuFvD-vYSZviVYUb_rj3ij__anPXJzDwcbmjWBN2PKdFvXDXbtM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bihmfirm.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 15:34:19 GMT
expires: Fri, 26 Jan 2024 15:34:19 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:06:33 GMT
content-type: font/woff2
age: 341542
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
cdn.userway.org/widgetapp/2023-01-27/locales/en-US.json
185.76.9.26200 OK 17 kB URL HTTP/2 cdn.userway.org/widgetapp/2023-01-27/locales/en-US.json
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
Hash 48e6bcb926d5c274bf52650e16b6b3ec
da06cedb59be989239f97cf5c4f8ac9d41c12512
baffb7ae0f24ac6cefee4d8ed0783be08026666b8319c2ec6c283f18d3021098
GET /widgetapp/2023-01-27/locales/en-US.json HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.bihmfirm.com
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:26:41 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Fri, 27 Jan 2023 11:39:56 GMT
etag: W/"0c4b53012957584c54e80867ff489590"
cache-control: max-age=25920000, public
via: 1.1 6e0da02f02a5cb102417e895dead977a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: ZdONpAQnOEiGwrOOxLQFyY5OirmPIGpgSGo-qO-McxrwR9dben1T5w==
age: 38
x-accel-expires: @1700740037
server: CDN77-Turbo
x-77-nzt: AblMCRRkh33/3BkEAA
x-77-nzt-ray: af585630f7176c6ea1d3d76323f60402
x-cache: HIT
x-age: 268764
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
fonts.gstatic.com/s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
216.58.207.227200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17908, version 1.0\012- data
Hash e46b4e2e3b47cc232937ebf72b4c537e
2675bc06ee643b8c935370325a327efb74746e6a
d8543b5dcaea1fc4a0301dc12b5b2adc9079e0794dd6a45879588fb844f3438e
GET /s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.bihmfirm.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 12:51:14 GMT
expires: Sat, 27 Jan 2024 12:51:14 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 18 Jul 2022 19:23:34 GMT
content-type: font/woff2
age: 264927
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash db3290a85d0ba4da27406ae9636aa618
4c69da45eddd66a1e26fce5562fc45eda7005309
19db4d0cc84bff9586883a5fa69c426af0b5fc1c2760ee7c259b0307c8afa6b2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 14:26:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg
34.120.237.76200 OK 3.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e8d680cbaee5ef3e7b8e09b174ed6ecf
6651a0d3041920798240ea67e827c3d458769fa9
4c74e8ebff95e67da678248d3dc1d3f42d98c8a0d33d54d9d2bde36314c9f952
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4bfbdca6-432c-4f19-887a-3165827e4bc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 3678
x-amzn-requestid: 21cd1ae3-b769-418a-b7f8-5efa486db859
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEvE-RIAMFpmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-6998009c289996563d78616a;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:43 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Or8AGZIZTzP_EuRHaCfCNrdPQIw2OQW37MKvOTFQIQgO0h18ct0-Xg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:34:10 GMT
age: 57156
etag: "6651a0d3041920798240ea67e827c3d458769fa9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cdn.userway.org/widget.js
185.76.9.26200 OK 0 B URL HTTP/2 cdn.userway.org/widget.js
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /widget.js HTTP/1.1
Host: cdn.userway.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.bihmfirm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 14:26:40 GMT
content-type: application/javascript
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD, PUT, POST, DELETE
access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type
access-control-max-age: 3000
last-modified: Fri, 27 Jan 2023 11:58:39 GMT
etag: W/"474e19c0d37064545a688a8e3e1a0477"
cache-control: max-age=3600, public
vary: Accept-Encoding
via: 1.1 a370d34019720f60dd35cbe89cb3994a.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: IaLJOUdgFviPOQ_dbIZNYkg6QunNV7Czjnv2fY1l1uhZt_7mfGFatw==
age: 2256
x-accel-expires: @1675091873
server: CDN77-Turbo
x-77-nzt: AblMCRRfacH/DwIAAA
x-77-nzt-ray: af585630f7176c6ea0d3d76398bb2309
x-cache: HIT
x-age: 527
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2