Report - sheppardmullin.com

Report Overview

Submitted URL
sheppardmullin.com
IP
216.157.108.97
ASN
#13768 COGECO-PEER1
Submitted
2022-12-08 23:21:30
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
accessibilityserver.org	31676	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	375 B	16 kB	54.230.111.32
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	55 kB	34.120.237.76
cdn.userway.org	5301	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	57 kB	185.76.9.19
www.rumiview.com	25977	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	85 kB	199.185.0.231
stats.g.doubleclick.net	96	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	495 B	679 B	108.177.14.155
61282775.global.siteimproveanalytics.io	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	616 B	615 B	3.123.165.229
api.userway.org	5194	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	495 B	560 B	34.208.21.161
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
snap.licdn.com	1044	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	388 B	4.9 kB	95.101.11.48
www.sheppardmullin.com	462077	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.3 kB	2.3 MB	216.157.108.97
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	700 B	2.0 kB	143.204.42.165
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.76.226
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.82.48.240
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	4.2 kB	142.250.74.131
assets.adobedtm.com	512	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	414 B	16 kB	2.18.172.233
ocsp.godaddy.com	698	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	2.3 kB	192.124.249.41
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.9 kB	93.184.220.29
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	390 B	80 kB	142.250.74.40
sheppardmullin.com	234522	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	798 B	210 B	216.157.108.97
siteimproveanalytics.com	3559	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	393 B	8.6 kB
cdn.linkedin.oribi.io	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	917 B	54.230.111.8
px.ads.linkedin.com	522	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	978 B	2.3 kB	13.107.42.14
www.linkedin.com	608	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	587 B	2.6 kB	13.107.42.14
secure.adnxs.com	396	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	3.2 kB	37.252.171.149
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	666 B	569 B	216.239.32.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (18)

	URL	Size	First Seen	Last Seen
	www.googletagmanager.com/gtag/js?id=G-FYRCP36T9Y	229 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-FYRCP36T9Y IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:54:53 Last Seen2023-03-08 22:54:53 Times Seen1 Hash 02e57e3b0c5496d57ae2b20ed0d5d745 0d340ce6acccece5aef654f9ceb2631f15987710 f000626bfed6550beb0c67a435fca39154edc7c2d83fb18b0b74cd148008b085 Loading...

	assets.adobedtm.com/175f7caa2b90/a8aab8c8bd8e/launch-9c4e72b5984c.min.js	48 kB	2023-03-08	2023-03-08
Pretty URL assets.adobedtm.com/175f7caa2b90/a8aab8c8bd8e/launch-9c4e72b5984c.min.js IP 2.18.172.233 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:54:53 Last Seen2023-03-08 22:54:53 Times Seen1 Hash 20253f9bc8293d67b845bf5e087783ed 79e17ae722558f4e442c4e5846ceabcada694312 767d927785319dd3ba715d16e83481b7fea9c8e11e67a9348af2f1a6ffef01a3 Loading...

	www.sheppardmullin.com/	153 B	2023-03-08	2023-03-08
Pretty URL www.sheppardmullin.com/ IP 216.157.108.97 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:54:53 Last Seen2023-03-08 22:54:53 Times Seen1 Hash 4b507a269275be33c56ff0339ea5416f da0ca8f1de783c962cb3ef616703fb810f9e45bc ae8936d4b8ff6de144929811679b467f6e67746924175914e66e68b7276117b1 Loading...

	siteimproveanalytics.com/js/siteanalyze_61282775.js	26 kB	2023-03-08	2023-06-02
Pretty URL siteimproveanalytics.com/js/siteanalyze_61282775.js IP ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:54:53 Last Seen2023-06-02 04:33:58 Times Seen7 Hash e7022bb7b82fab245345ac0f2e99e706 57a02f6526e489caf7ac57cfe73bdb76985890d4 bea8c96a09ccc169aa39cb7dd717db4fdb7f85e353c814083977751f7e3dd56a Loading...

	www.sheppardmullin.com/js-t1670529335/combined.js	179 kB	2023-03-08	2023-03-08
Pretty URL www.sheppardmullin.com/js-t1670529335/combined.js IP 216.157.108.97 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:54:53 Last Seen2023-03-08 22:54:53 Times Seen1 Hash 2c8aa37d0291c8593b30e75de46063b9 5b46fc0c8f19bf2cc799bfe6be7d894da4ce2703 128a1e10b28a73721ffaf8281b804af131d0abb56299edce0fe315f752c992e4 Loading...

	www.rumiview.com/ppms.js	73 kB	2023-03-07	2023-11-27
Pretty URL www.rumiview.com/ppms.js IP 199.185.0.231 ASN #21592 MULTIVIEW Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:51:28 Last Seen2023-11-27 02:01:09 Times Seen443 Hash bd565ee8cee400a791a78493a80df143 561b997b29f10b9ed30b36f91767e8da41e6d614 6995c7720622636886885ab1e7f235f19386adf19c0681bf48cebf5fb48e1ef4 Loading...

	www.sheppardmullin.com/	467 B	2023-03-08	2023-06-02
Pretty URL www.sheppardmullin.com/ IP 216.157.108.97 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:54:53 Last Seen2023-06-02 04:33:58 Times Seen4 Hash 510c89f21a4d451127a9991cc430a2dc 271fd09b6b65bfbf5bf224e42596039173a6e223 56edfafedff575411bbb8633eea26c5ef25eebebc24ef535c0f8ca39e87282fa Loading...

	www.sheppardmullin.com/	284 B	2023-03-08	2023-06-02
Pretty URL www.sheppardmullin.com/ IP 216.157.108.97 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:54:53 Last Seen2023-06-02 04:33:58 Times Seen4 Hash 41452ba1b23118350410700875a8ca07 782d923fe6a1dfe7c161d0607e94c00ac9083493 90eb8fd2c3f03e6bf473755382c62e28c5b84b90873355d7863fe0e4531ac596 Loading...

	accessibilityserver.org/widget.js	1.4 kB	2023-03-08	2023-03-09
Pretty URL accessibilityserver.org/widget.js IP 54.230.111.32 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 21:34:19 Last Seen2023-03-09 08:55:11 Times Seen1 Hash 8794e6def696372210802b66339a52c7 5d799f6b9e809d61bfdfab615750ffd18acf1ace 728830fa61bcea4b277572c309dd855e1d224eb3546d1080fa0c7be42b3e8058 Loading...

	www.sheppardmullin.com/	254 B	2023-03-07	2024-04-25
Pretty URL www.sheppardmullin.com/ IP 216.157.108.97 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:30 Last Seen2024-04-25 12:11:35 Times Seen1583 Hash 38d526d4f322e3a550fe39e8206c36d5 f3a2c9e4f91a094f51c4499ad2d8aaa29dd791d5 eb9084d853891411ee7b809cca094411a91190f54f9bbf6adfad39ffaa6cbe49 Loading...

	www.rumiview.com/containers/cff24e32-8a6d-4985-99fd-07cc3a6116d5.js	222 kB	2023-03-08	2023-03-08
Pretty URL www.rumiview.com/containers/cff24e32-8a6d-4985-99fd-07cc3a6116d5.js IP 199.185.0.231 ASN #21592 MULTIVIEW Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:54:53 Last Seen2023-03-08 22:54:53 Times Seen1 Hash e0a77d5882c09062b57d77be1bf8b649 1bac9e1b1a25f27dd8391d08bf91afc2c76fae05 1c9877ce55d691c668158dff22d68b39e0b69421dff0f8ef36bc7db0f2eaf2d4 Loading...

	ssl.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL ssl.google-analytics.com/ga.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	secure.adnxs.com/px?id=1196081&t=1	0 B	2023-03-07	2024-04-25
Pretty URL secure.adnxs.com/px?id=1196081&t=1 IP 37.252.171.149 ASN #29990 ASN-APPNEX Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 18:55:29 Times Seen37070372 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	www.sheppardmullin.com/	205 B	2023-03-08	2023-03-08
Pretty URL www.sheppardmullin.com/ IP 216.157.108.97 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:54:53 Last Seen2023-03-08 22:54:53 Times Seen1 Hash 1bf40899fb5235f0e1031ba8364c69f2 f65e2466f4d3c5d8cc7f03597140ccb1ab506747 08cfef3ea8ceb61a1d053359c7f4259a3fc03332e3ac91cac62ba9bba34de3bc Loading...

	www.sheppardmullin.com/	1.3 kB	2023-03-08	2023-03-08
Pretty URL www.sheppardmullin.com/ IP 216.157.108.97 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:54:53 Last Seen2023-03-08 22:54:53 Times Seen1 Hash c0d89fd0a08d358fed4a4949c1c178d5 9aeb692d73bc05eb435f27f7723688a1dbc09072 fb7b694329a4b13cbf2d29c7e169d35da676d8675be9bbf7c5310f47655648b3 Loading...

	www.sheppardmullin.com/	174 B	2023-03-08	2023-03-08
Pretty URL www.sheppardmullin.com/ IP 216.157.108.97 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:54:53 Last Seen2023-03-08 22:54:53 Times Seen1 Hash ca78c2996c208005eff207843bd1c122 0b393f6742067c3506b7d4d52305e22d306182d0 462660474d9ff3908e3f4fcb8b847acf07f1944a827c923c096633a09a4f4df6 Loading...

	www.sheppardmullin.com/	575 B	2023-03-08	2023-03-08
Pretty URL www.sheppardmullin.com/ IP 216.157.108.97 ASN #13768 COGECO-PEER1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 22:54:53 Last Seen2023-03-08 22:54:53 Times Seen1 Hash c56be14701e0a77ef759bbeb2fec1f59 ec1c9e5755582af66f365c607bba007d618fa810 df77e08cf105fecdbe45cf40e966e6494dc3a5d42efbfca466b564da8c1d3c48 Loading...

	snap.licdn.com/li.lms-analytics/insight.min.js	13 kB	2023-03-08	2023-03-12
Pretty URL snap.licdn.com/li.lms-analytics/insight.min.js IP 95.101.11.48 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:40 Last Seen2023-03-12 12:54:15 Times Seen1 Hash 795b6295a518e0a829d7b29695163231 9cada4433e63280a008cbb0a2a0bdb5af5e57206 641153b2ad78e5d095645419060a4ea0854b1b3ec5ff27e99644c9f8d461610c Loading...

HTTP Transactions (79)

	URL	IP	Response	Size
	sheppardmullin.com/	216.157.108.97	302 Found	0 B
URL HTTP/1.1 sheppardmullin.com/ IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 302 Found Cache-Control: no-cache Content-length: 0 Location: https://sheppardmullin.com/`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f2acd891dc6eb1f09f57a2b086791781 1e2088306501a61edcca1ade62c4d54f23b3b083 51148fed95cc00d60dc3640350f135b1b2763ff0e3cfbffc40f0948317894be9 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "51148FED95CC00D60DC3640350F135B1B2763FF0E3CFBFFC40F0948317894BE9" Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9417 Expires: Fri, 09 Dec 2022 01:58:15 GMT Date: Thu, 08 Dec 2022 23:21:18 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash aea93551fa9deb76ae49a3b4019d64fe e3b8862057ebe839959228e42246d7b1807fc90c 7e210f03b140418085e94ec20c1d27d6ecf7a404cbd323e16476ae5ae95d6dac HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "7E210F03B140418085E94EC20C1D27D6ECF7A404CBD323E16476AE5AE95D6DAC" Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7426 Expires: Fri, 09 Dec 2022 01:25:04 GMT Date: Thu, 08 Dec 2022 23:21:18 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 14cd9a0afb6ba9a763651d5112760d1e 75d7b104ab9ab11fbb73c3f348b43b0119b5adfa 4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Thu, 08 Dec 2022 23:08:14 GMT content-type: application/json age: 784 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 4ee537977be9c03702f8ffe0025bf1fe 21637881c4aa34c4add703f8bff4eff573159f45 4819229fd8f502a0c68c80bd7409e104c1b4d1a98ca8a6cd9deba629b1511aea HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "4819229FD8F502A0C68C80BD7409E104C1B4D1A98CA8A6CD9DEBA629B1511AEA" Last-Modified: Thu, 08 Dec 2022 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21234 Expires: Fri, 09 Dec 2022 05:15:12 GMT Date: Thu, 08 Dec 2022 23:21:18 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 53341dea33f4f3d9b4966f80589f429a 20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d 651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: ZQupyCZPUuGm3jLetoUk/bo3WBIh6fxrq0DtCLiq5auc5wBrZ6NFDogefFhY7yejr52G2bf9wRE= x-amz-request-id: MRBGD8B7DS00EV0Q content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Thu, 08 Dec 2022 22:48:05 GMT age: 1993 last-modified: Wed, 30 Nov 2022 10:06:34 GMT etag: "53341dea33f4f3d9b4966f80589f429a" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Thu, 08 Dec 2022 23:21:18 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 54e9a331a099406a34f2ee4024c2dcc7 d8cb3219757679817496231c462e8c901a01b81f 3d418357f06a6a6c669f43d5734d830ddb99d4925f3674ec86a10c238405c055 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "3D418357F06A6A6C669F43D5734D830DDB99D4925F3674EC86A10C238405C055" Last-Modified: Wed, 07 Dec 2022 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21520 Expires: Fri, 09 Dec 2022 05:19:59 GMT Date: Thu, 08 Dec 2022 23:21:19 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Thu, 08 Dec 2022 23:07:55 GMT age: 804 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	sheppardmullin.com/	216.157.108.97	302 Found	0 B
URL HTTP/1.1 sheppardmullin.com/ IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET / HTTP/1.1 Host: sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/1.1 302 Found Cache-Control: no-cache Content-length: 0 Location: https://www.sheppardmullin.com/`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash fd55f4aaaab6ec40bc7dc10252cd819a a72523f60be265a391fa9edc43e0a93418ad1fd0 bae354b3db14f4fd115311a0c412c9b5e436dd9e0a151afd8b9c18831dd8c2dd HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 540 Cache-Control: max-age=122073 Content-Type: application/ocsp-response Date: Thu, 08 Dec 2022 23:21:19 GMT Etag: "6391a92c-1d7" Expires: Sat, 10 Dec 2022 09:15:52 GMT Last-Modified: Thu, 08 Dec 2022 09:06:52 GMT Server: ECS (ska/F71A) X-Cache: HIT Content-Length: 471`

	push.services.mozilla.com/	35.82.48.240	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 35.82.48.240:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: noMcs4zKCCyTOASXpuiMiA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: i4agwJpJ/dwNojp6V9WFmORHqQM=`

	www.sheppardmullin.com/	216.157.108.97	200 OK	6.3 kB
URL HTTP/1.1 www.sheppardmullin.com/ IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8935), with CRLF, LF line terminators Size 6.3 kB (6333 bytes) Hash b67ae3781bd5991f155328802d1bab4b 2960a13b338454c2ddcfcd06048c1268940907b8 92f66de7bbd1769a0d20ebd97817e078c5a6555a73c43cd57f15848e16b6b767 HTTP Headers `GET / HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Vary: accept-encoding Last-Modified: Thu, 08 Dec 2022 23:21:07 GMT ETag: "18bd-5ef594aa9b213" Accept-Ranges: bytes Content-Length: 6333 X-Frame-Options: SAMEORIGIN Content-Encoding: gzip Pragma: X-UA-Compatible: IE=Edge Content-Type: text/html x-content-type-options: nosniff`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash bf8858fa52de668b0013cf9ce66d290c 9c319173ee6a48c6e717e9e8764008564aabe7ba 93df528ead5887cbbcf51f83c9e6ffa451861ae3145296ab3dfc269067080933 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 08 Dec 2022 23:21:20 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	assets.adobedtm.com/175f7caa2b90/a8aab8c8bd8e/launch-9c4e72b5984c.min.js	2.18.172.233	200 OK	16 kB
URL HTTP/2 assets.adobedtm.com/175f7caa2b90/a8aab8c8bd8e/launch-9c4e72b5984c.min.js IP 2.18.172.233:0 ASN #16625 AKAMAI-AS File type ASCII text, with very long lines (32766) Size 16 kB (15826 bytes) Hash 202d67b42c52df2b0e778c0f62acf05a b507bf46001db6772592116e483dffb81f9e2ce4 64b8e70743dbd119b410a81e01525b9c5e87c724ebc6d117bbfa733483b58248 HTTP Headers `GET /175f7caa2b90/a8aab8c8bd8e/launch-9c4e72b5984c.min.js HTTP/1.1 Host: assets.adobedtm.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK accept-ranges: bytes content-type: application/x-javascript etag: "20253f9bc8293d67b845bf5e087783ed:1608218966.760747" last-modified: Thu, 17 Dec 2020 15:29:26 GMT server: AkamaiNetStorage vary: Accept-Encoding content-encoding: gzip cache-control: max-age=3600 expires: Fri, 09 Dec 2022 00:21:20 GMT date: Thu, 08 Dec 2022 23:21:20 GMT content-length: 15826 access-control-allow-origin: https://www.sheppardmullin.com timing-allow-origin: * X-Firefox-Spdy: h2`

	www.googletagmanager.com/gtag/js?id=G-FYRCP36T9Y	142.250.74.40	200 OK	79 kB
URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-FYRCP36T9Y IP 142.250.74.40:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (26337) Size 79 kB (78938 bytes) Hash 331a3d9836246f21528a69a764d2db2c d7a965b59784f4e8737383f082bc4868e1a9a2aa bc4991e007976e05a0a712d96351ecfffd42781f7ea502fad5f9faddc82348e3 HTTP Headers `GET /gtag/js?id=G-FYRCP36T9Y HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Thu, 08 Dec 2022 23:21:20 GMT expires: Thu, 08 Dec 2022 23:21:20 GMT cache-control: private, max-age=900 strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 78938 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	secure.adnxs.com/px?id=1196081&t=1	37.252.171.149	307 Redirection	0 B
URL HTTP/1.1 secure.adnxs.com/px?id=1196081&t=1 IP 37.252.171.149:0 ASN #29990 ASN-APPNEX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /px?id=1196081&t=1 HTTP/1.1 Host: secure.adnxs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 307 Redirection Server: nginx/1.21.3 Date: Thu, 08 Dec 2022 23:21:20 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE" X-XSS-Protection: 0 Location: https://secure.adnxs.com/bounce?%2Fpx%3Fid%3D1196081%26t%3D1 AN-X-Request-Uuid: d65a7ed4-d68f-42f8-8137-738a3316611f Set-Cookie: uuid2=3538538187862446787; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 08-Mar-2023 23:21:20 GMT; Domain=.adnxs.com; Secure; HttpOnly X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 0c89743226644fddacbe5d50c110b950 b343ae9eb9047cf764b518083d612ffd3652b209 1bf675bb6e12e913a98cd8849c1af9a0c50b0bb8bfa670c86419b41782e06e47 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 08 Dec 2022 23:21:20 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	secure.adnxs.com/seg?add=20047830&t=1	37.252.171.149	307 Redirection	0 B
URL HTTP/1.1 secure.adnxs.com/seg?add=20047830&t=1 IP 37.252.171.149:0 ASN #29990 ASN-APPNEX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /seg?add=20047830&t=1 HTTP/1.1 Host: secure.adnxs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 307 Redirection Server: nginx/1.21.3 Date: Thu, 08 Dec 2022 23:21:20 GMT Content-Type: text/html; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE" X-XSS-Protection: 0 Access-Control-Allow-Credentials: true Access-Control-Allow-Origin: * Location: https://secure.adnxs.com/bounce?%2Fseg%3Fadd%3D20047830%26t%3D1 AN-X-Request-Uuid: 0b19ff6c-7016-48e1-bcde-3c3a8150dbf3 Set-Cookie: uuid2=7565902696082449535; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 08-Mar-2023 23:21:20 GMT; Domain=.adnxs.com; Secure; HttpOnly X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

	secure.adnxs.com/bounce?%2Fpx%3Fid%3D1196081%26t%3D1	37.252.171.149	200 OK	0 B
URL HTTP/1.1 secure.adnxs.com/bounce?%2Fpx%3Fid%3D1196081%26t%3D1 IP 37.252.171.149:0 ASN #29990 ASN-APPNEX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /bounce?%2Fpx%3Fid%3D1196081%26t%3D1 HTTP/1.1 Host: secure.adnxs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.sheppardmullin.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Server: nginx/1.21.3 Date: Thu, 08 Dec 2022 23:21:20 GMT Content-Type: application/javascript; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE" X-XSS-Protection: 0 Access-Control-Allow-Credentials: true Access-Control-Allow-Origin: * AN-X-Request-Uuid: 5c9e58ff-a7c5-4cd6-83f1-21a7a8cb2afb X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

	www.sheppardmullin.com/css-t1670529335/screen-style.css	216.157.108.97	200 OK	22 kB
URL HTTP/1.1 www.sheppardmullin.com/css-t1670529335/screen-style.css IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type Unicode text, UTF-8 text, with very long lines (1498) Size 22 kB (21916 bytes) Hash 46b5f6dc152880cba4b1d7087d98b25d ef0c8d2d8d8ca780ece85f69c5e947143619150a 8c6c4adb8764982fcdeb96bb1694a77d86a67d91a48e8fb2565d698376283d17 HTTP Headers `GET /css-t1670529335/screen-style.css HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Vary: accept-encoding Last-Modified: Thu, 08 Dec 2022 19:55:55 GMT Accept-Ranges: bytes Content-Length: 21916 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Encoding: gzip Pragma: Content-Type: text/css x-content-type-options: nosniff`

	secure.adnxs.com/bounce?%2Fseg%3Fadd%3D20047830%26t%3D1	37.252.171.149	200 OK	0 B
URL HTTP/1.1 secure.adnxs.com/bounce?%2Fseg%3Fadd%3D20047830%26t%3D1 IP 37.252.171.149:0 ASN #29990 ASN-APPNEX File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /bounce?%2Fseg%3Fadd%3D20047830%26t%3D1 HTTP/1.1 Host: secure.adnxs.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.sheppardmullin.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Server: nginx/1.21.3 Date: Thu, 08 Dec 2022 23:21:20 GMT Content-Type: application/javascript; charset=utf-8 Content-Length: 0 Connection: keep-alive Cache-Control: no-store, no-cache, private Pragma: no-cache Expires: Sat, 15 Nov 2008 16:00:00 GMT P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE" X-XSS-Protection: 0 Access-Control-Allow-Credentials: true Access-Control-Allow-Origin: * AN-X-Request-Uuid: 82509ae9-5fd2-472b-a1ad-5be82dfa313e Set-Cookie: anj=dTM7k!M4/8CxrEQF']wIg2In1pnE=x!]tbP6j2F-XstGt!@D].$h`p+; SameSite=None; Path=/; Max-Age=7776000; Expires=Wed, 08-Mar-2023 23:21:20 GMT; Domain=.adnxs.com; Secure; HttpOnly X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 984.bm-nginx-loadbalancer.mgmt.fra1.adnexus.net; adnxs.com

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash 2bdce0ebae06314ccde958379ef9eb63 53705df0f35709871be609a110307b5cfc7c3ee7 d99cdd7689b58b710c19e1f14646fab55baced6ff5e12cf4376509480f428486 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 145 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Thu, 08 Dec 2022 23:21:20 GMT Last-Modified: Thu, 08 Dec 2022 23:18:55 GMT Server: ECS (amb/6B8E) X-Cache: HIT Content-Length: 278`

	www.sheppardmullin.com/i-t1670529335/footer-twitter.svgz	216.157.108.97	200 OK	375 B
URL HTTP/1.1 www.sheppardmullin.com/i-t1670529335/footer-twitter.svgz IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (549), with no line terminators Size 375 B (375 bytes) Hash f6e1e0417396e1623ccd727bfb35213d 4d11afa351c58737cb3d391f11495514b6aac2d7 9626701a7dd4be15d663f6361f047cc5314ff50837c943ce315f0f1ad8770a77 HTTP Headers `GET /i-t1670529335/footer-twitter.svgz HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Last-Modified: Fri, 27 Sep 2019 22:28:00 GMT Accept-Ranges: bytes Content-Length: 375 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Type: image/svg+xml Content-Encoding: gzip x-content-type-options: nosniff`

	siteimproveanalytics.com/js/siteanalyze_61282775.js			8.6 kB
URL siteimproveanalytics.com/js/siteanalyze_61282775.js IP :0 ASN #0 File type gzip compressed data, max speed, from FAT filesystem (MS-DOS, OS/2, NT)\012- data Size 8.6 kB (8566 bytes) Hash a81d8161f8c792ad64a56254edb7f8be ce1380f91297ebb4e3544e340bbecabefb0f947b da34e8de4a1e3d0b3de07e826c9b11bfaa4fb09c162b66ad822a84f744c69321 HTTP Headers `GET /js/siteanalyze_61282775.js HTTP/1.1 Host: siteimproveanalytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site`

	ocsp.digicert.com/	93.184.220.29	200 OK	278 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 278 B (278 bytes) Hash 2bdce0ebae06314ccde958379ef9eb63 53705df0f35709871be609a110307b5cfc7c3ee7 d99cdd7689b58b710c19e1f14646fab55baced6ff5e12cf4376509480f428486 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 145 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Thu, 08 Dec 2022 23:21:20 GMT Last-Modified: Thu, 08 Dec 2022 23:18:55 GMT Server: ECS (ska/F71A) X-Cache: HIT Content-Length: 278`

	www.sheppardmullin.com/assets/images-t1670529335/45815.jpeg	216.157.108.97	200 OK	174 kB
URL HTTP/1.1 www.sheppardmullin.com/assets/images-t1670529335/45815.jpeg IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1070, components 3\012- data Size 174 kB (173794 bytes) Hash 2b7657f9d8ba4b8c8537d8a0f4aa215e 78e18d8e5345ed2c08040d9add71f961c58582cd d26476822dd747f5723de95883e083e1071828abf54047e63a57332e611303ac HTTP Headers `GET /assets/images-t1670529335/45815.jpeg HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Last-Modified: Mon, 17 Feb 2020 16:46:45 GMT Accept-Ranges: bytes Content-Length: 173794 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Type: image/jpeg x-content-type-options: nosniff`

	www.sheppardmullin.com/sp_class/assets-t1670529335/fonts/roboto/Roboto-Regular-webfont.woff2	216.157.108.97	200 OK	15 kB
URL HTTP/1.1 www.sheppardmullin.com/sp_class/assets-t1670529335/fonts/roboto/Roboto-Regular-webfont.woff2 IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type Web Open Font Format (Version 2), TrueType, length 14584, version 2.0\012- data Size 15 kB (14584 bytes) Hash 7e367be02cd17a96d513ab74846bafb3 1eb572d023f15389ce0aa4bc54fdd28c9f717223 f7bbc8461b2f4cc870743729ee5d44ce0466ca67618f89a8942b655f8a644e68 HTTP Headers GET /sp_class/assets-t1670529335/fonts/roboto/Roboto-Regular-webfont.woff2 HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://www.sheppardmullin.com/css-t1670529335/screen-style.css Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Last-Modified: Tue, 29 Sep 2015 16:31:31 GMT Accept-Ranges: bytes Content-Length: 14584 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Type: font/woff2 x-content-type-options: nosniff`

	www.sheppardmullin.com/js-t1670529335/combined.js	216.157.108.97	200 OK	58 kB
URL HTTP/1.1 www.sheppardmullin.com/js-t1670529335/combined.js IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type ASCII text, with very long lines (32058) Size 58 kB (58538 bytes) Hash 38fac8498cabbc67e20a550eee50b219 6d42cc24fae4f45de6a6f68174b2145f56315e84 35ddfc0d5c6c08eae70ba4c59133f4bd67d6a124b4c621a6d6fd18fa54b33683 HTTP Headers `GET /js-t1670529335/combined.js HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Vary: accept-encoding Last-Modified: Thu, 08 Dec 2022 19:55:55 GMT Accept-Ranges: bytes Content-Length: 58538 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Encoding: gzip Pragma: Content-Type: text/javascript x-content-type-options: nosniff`

	www.sheppardmullin.com/i-t1670529335/icon-search.svgz	216.157.108.97	200 OK	293 B
URL HTTP/1.1 www.sheppardmullin.com/i-t1670529335/icon-search.svgz IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (428), with no line terminators Size 293 B (293 bytes) Hash ddcc41a1359b1e1421f3aa9bf71a94f3 1c9a862c16bd8dc1db83fa6a382b84d7c305acaa 5d82c30f57d3a20be1c7a295e28725a9643675748b72049a3f082fb19116ca9f HTTP Headers `GET /i-t1670529335/icon-search.svgz HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Last-Modified: Mon, 03 Feb 2020 17:14:33 GMT Accept-Ranges: bytes Content-Length: 293 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Type: image/svg+xml Content-Encoding: gzip x-content-type-options: nosniff`

	www.sheppardmullin.com/i-t1670529335/logo.svgz	216.157.108.97	200 OK	1.4 kB
URL HTTP/1.1 www.sheppardmullin.com/i-t1670529335/logo.svgz IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with very long lines (3108), with no line terminators Size 1.4 kB (1387 bytes) Hash b4b3a1288a6a601456ff0847a72fbe96 32d204c991f2c3825012fd2f0a6f276a5a619ec1 b8c841f3fcf26a5c9cfab5586175b020ec84837fce92ab956c4071960db4a3ad HTTP Headers `GET /i-t1670529335/logo.svgz HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Last-Modified: Fri, 27 Sep 2019 19:34:09 GMT Accept-Ranges: bytes Content-Length: 1387 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Type: image/svg+xml Content-Encoding: gzip x-content-type-options: nosniff`

	www.sheppardmullin.com/i-t1670529335/bullet-icon.svgz	216.157.108.97	200 OK	182 B
URL HTTP/1.1 www.sheppardmullin.com/i-t1670529335/bullet-icon.svgz IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators Size 182 B (182 bytes) Hash e10019fe3305ec3c4d143b09237eb2a3 1c6abe232b630f2a1676cd1110226b94660ab2de b4eabdb48893f50328fd8e42fb33090bce20c9cfa0576bb9aa93c7bca955fe97 HTTP Headers `GET /i-t1670529335/bullet-icon.svgz HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/css-t1670529335/screen-style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Last-Modified: Sat, 23 Nov 2019 00:06:47 GMT Accept-Ranges: bytes Content-Length: 182 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Type: image/svg+xml Content-Encoding: gzip x-content-type-options: nosniff`

	www.sheppardmullin.com/i-t1670529335/arrow-yellow.svgz	216.157.108.97	200 OK	214 B
URL HTTP/1.1 www.sheppardmullin.com/i-t1670529335/arrow-yellow.svgz IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators Size 214 B (214 bytes) Hash 7b658840b20763e2d620854e7a1ff5ea 986a4c51aa90a95c3020335e9b82595e1440b4da 268ebd376e83d3927ff2a711f1911541bc94e75e4729f7321856f0ef17fba14e HTTP Headers `GET /i-t1670529335/arrow-yellow.svgz HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/css-t1670529335/screen-style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Last-Modified: Mon, 03 Feb 2020 17:14:33 GMT Accept-Ranges: bytes Content-Length: 214 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Type: image/svg+xml Content-Encoding: gzip x-content-type-options: nosniff`

	accessibilityserver.org/widget.js	54.230.111.32	200 OK	15 kB
URL HTTP/2 accessibilityserver.org/widget.js IP 54.230.111.32:0 ASN #16509 AMAZON-02 File type ASCII text, with very long lines (1366), with no line terminators Size 15 kB (15170 bytes) Hash 3a26bea876b19b08c04c442267a5d445 d6c1601d24c9cb2e893788d435848aac658fffea f9e34d85f0eca9b4d2887707efb00b9c5b2fd589e2450c14eeb1d607785599af HTTP Headers `GET /widget.js HTTP/1.1 Host: accessibilityserver.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: application/javascript access-control-allow-origin: * access-control-allow-methods: GET, HEAD, PUT, POST, DELETE access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type access-control-max-age: 3000 last-modified: Wed, 07 Dec 2022 16:52:56 GMT via: 1.1 8f20db43ba7579b7216cf908572d5054.cloudfront.net (CloudFront), 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront) server: CDN77-Turbo x-77-nzt: AZySIRlb8K3/2ggAAA x-77-nzt-ray: cf87872770ea3eb885de9163112f4904 x-age: 2266 x-77-pop: frankfurtDE x-77-cache: HIT content-encoding: br date: Thu, 08 Dec 2022 23:06:15 GMT cache-control: max-age=3600, public etag: W/"8794e6def696372210802b66339a52c7" vary: Accept-Encoding x-cache: Hit from cloudfront x-amz-cf-pop: FRA2-C1, OSL50-P1 x-amz-cf-id: YOz3a9ygG2nTAtcrXLPaPvqS1S6Dfqbp-02OFueJNWXIft7a6UELFQ== age: 1728 X-Firefox-Spdy: h2

	www.sheppardmullin.com/assets/images-t1670529335/45781.jpeg	216.157.108.97	200 OK	339 kB
URL HTTP/1.1 www.sheppardmullin.com/assets/images-t1670529335/45781.jpeg IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1070, components 3\012- data Size 339 kB (339032 bytes) Hash 123fb44ef96be178ffa26822fab3bb9c 04900db5129e229a0e87385e12d449be2bc864bb 9b5569f7778d3044391309c9c6624ab95b796d9d4d42c7834025844189ec178c HTTP Headers `GET /assets/images-t1670529335/45781.jpeg HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Last-Modified: Mon, 17 Feb 2020 17:05:41 GMT Accept-Ranges: bytes Content-Length: 339032 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Type: image/jpeg x-content-type-options: nosniff`

	ocsp.godaddy.com/	192.124.249.41	200 OK	1.8 kB
URL HTTP/1.1 ocsp.godaddy.com/ IP 192.124.249.41:0 ASN #30148 SUCURI-SEC File type data Size 1.8 kB (1777 bytes) Hash 9ad778a8dca0d635d53ace2291ba7f7c 63da720b16a8f8b4611abffc61c6f1d99a726b9f 1a069a4dd9dbc19ab07f5dc56b74571fcba356e4bd76910d2129c74b2963ca8b HTTP Headers `POST / HTTP/1.1 Host: ocsp.godaddy.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 75 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: Sucuri/Cloudproxy Date: Thu, 08 Dec 2022 23:21:20 GMT Content-Type: application/ocsp-response Content-Length: 1777 Connection: keep-alive X-Sucuri-ID: 19041 Content-Transfer-Encoding: Binary Cache-Control: public, no-transform, must-revalidate Last-Modified: Thu, 08 Dec 2022 22:26:09 GMT Expires: Fri, 09 Dec 2022 22:26:09 GMT ETag: "63da720b16a8f8b4611abffc61c6f1d99a726b9f" P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"`

	ocsp.sca1b.amazontrust.com/	143.204.42.165	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.165:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash ec11877317da7e1a13c8d5ce44a0bc3c c1024c5f89e971d277105240820e55cb9c11d822 570d7a75186728cdc400c75c75f4a1e28aafe01c8223c161d0192b0dacb379f3 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=90947 Date: Thu, 08 Dec 2022 23:21:20 GMT Etag: "6391183b-1d7" Expires: Sat, 10 Dec 2022 00:37:07 GMT Last-Modified: Wed, 07 Dec 2022 22:48:27 GMT Server: ECS (nyb/1D34) X-Cache: Miss from cloudfront Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: OcZ23KOhhD7caFnvyftz-zwxrgH1HR_jyEuQXIq5Ug2H9KEFmCqr5A== Age: 6520

	61282775.global.siteimproveanalytics.io/image.aspx?url=https%3A%2F%2Fwww.sheppardmullin.com%2F&title=Sheppard%20Mullin&res=1280x1024&accountid=61282775&rt=2110&prev=e4dab9f9-ecca-3b47-08eb-68d14c584ca1&luid=48ad3a65-0952-bdd4-aa0c-55e0254d87a2&rnd=87651	3.123.165.229	200 OK	34 B
URL HTTP/2 61282775.global.siteimproveanalytics.io/image.aspx?url=https%3A%2F%2Fwww.sheppardmullin.com%2F&title=Sheppard%20Mullin&res=1280x1024&accountid=61282775&rt=2110&prev=e4dab9f9-ecca-3b47-08eb-68d14c584ca1&luid=48ad3a65-0952-bdd4-aa0c-55e0254d87a2&rnd=87651 IP 3.123.165.229:0 ASN #16509 AMAZON-02 File type GIF image data, version 89a, 1 x 1\012- data Size 34 B (34 bytes) Hash a82ba3a9d42148e9cf209df13d8c3f3d dba80835d31175bdcf0bcad1abafefb06d86e304 1e85ec81b9800b4c443d39caca0d0926089a3ac201120db1ceb45b93789480b8 HTTP Headers GET /image.aspx?url=https%3A%2F%2Fwww.sheppardmullin.com%2F&title=Sheppard%20Mullin&res=1280x1024&accountid=61282775&rt=2110&prev=e4dab9f9-ecca-3b47-08eb-68d14c584ca1&luid=48ad3a65-0952-bdd4-aa0c-55e0254d87a2&rnd=87651 HTTP/1.1 Host: 61282775.global.siteimproveanalytics.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK date: Thu, 08 Dec 2022 23:21:20 GMT content-type: image/gif content-length: 34 set-cookie: AWSALB=g/wnBccx81oDSQIkQ418IhD8KvW/6mt8oDLqaT+E7bwXXyUE080qVleo/07iAHDOVbTTmhL03T1UUHVV1V/uUWxtoNQMDRgbTwNX8QLrjAn80RbamLAa9FyZw2AQ; Expires=Thu, 15 Dec 2022 23:21:20 GMT; Path=/ AWSALBCORS=g/wnBccx81oDSQIkQ418IhD8KvW/6mt8oDLqaT+E7bwXXyUE080qVleo/07iAHDOVbTTmhL03T1UUHVV1V/uUWxtoNQMDRgbTwNX8QLrjAn80RbamLAa9FyZw2AQ; Expires=Thu, 15 Dec 2022 23:21:20 GMT; Path=/; SameSite=None; Secure cache-control: max-age=0 expires: Thu, 08 Dec 2022 23:21:20 UTC X-Firefox-Spdy: h2

	www.sheppardmullin.com/i-t1670529335/footer-facebook.svgz	216.157.108.97	200 OK	263 B
URL HTTP/1.1 www.sheppardmullin.com/i-t1670529335/footer-facebook.svgz IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with no line terminators Size 263 B (263 bytes) Hash b15e277f7faa3e13ca7eda4022450b67 d64cdee873891751f656a2b5096cc037aae8175f f392b34dd0600d36449cb21f9c26e5a9a41185feccc0887bb5a9906ff068355c HTTP Headers `GET /i-t1670529335/footer-facebook.svgz HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Last-Modified: Fri, 27 Sep 2019 22:28:00 GMT Accept-Ranges: bytes Content-Length: 263 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Type: image/svg+xml Content-Encoding: gzip x-content-type-options: nosniff`

	www.sheppardmullin.com/i-t1670529335/footer-linkedin.svgz	216.157.108.97	200 OK	303 B
URL HTTP/1.1 www.sheppardmullin.com/i-t1670529335/footer-linkedin.svgz IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (381), with no line terminators Size 303 B (303 bytes) Hash b8700ea6e8946390dc3f08f14d3b1eb3 3e113471486f2c14a43bb6706855df5dad50fad7 1303a34ccb952a59de3e26cbdb679f79349252252dffb0a0aa85a286f43355ca HTTP Headers `GET /i-t1670529335/footer-linkedin.svgz HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Last-Modified: Fri, 27 Sep 2019 22:28:00 GMT Accept-Ranges: bytes Content-Length: 303 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Type: image/svg+xml Content-Encoding: gzip x-content-type-options: nosniff`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38" Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5788 Expires: Fri, 09 Dec 2022 00:57:49 GMT Date: Thu, 08 Dec 2022 23:21:21 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38" Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5788 Expires: Fri, 09 Dec 2022 00:57:49 GMT Date: Thu, 08 Dec 2022 23:21:21 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38" Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5788 Expires: Fri, 09 Dec 2022 00:57:49 GMT Date: Thu, 08 Dec 2022 23:21:21 GMT Connection: keep-alive`

	www.sheppardmullin.com/assets/miscimages-t1670529335/homenewsimage.jpeg	216.157.108.97	200 OK	14 kB
URL HTTP/1.1 www.sheppardmullin.com/assets/miscimages-t1670529335/homenewsimage.jpeg IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 430x53, components 3\012- data Size 14 kB (13641 bytes) Hash a73d750c66948e57f588dc1f5cf043dc e42b5c46b6b7e5538e6af145907be272ef6c582f 2ddd24bd8e0217d240ef0c185cff03cb779837f4fa473a0df7e22ca62d2c003f HTTP Headers `GET /assets/miscimages-t1670529335/homenewsimage.jpeg HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Last-Modified: Mon, 21 Oct 2019 18:15:46 GMT ETag: "3549-5956fac34e7a3" Accept-Ranges: bytes Content-Length: 13641 X-Frame-Options: SAMEORIGIN Content-Type: image/jpeg x-content-type-options: nosniff`

	r3.o.lencr.org/	23.36.76.226	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7b8c1870f03a90aac6370fc69516f95f 1e94fd7c9a2f9fe4867e21ab217879a2180a9cdb f43702cd363447680d545d928f9ea6f997a770228108b4c9312999b76891bb38 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "F43702CD363447680D545D928F9EA6F997A770228108B4C9312999B76891BB38" Last-Modified: Wed, 07 Dec 2022 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5788 Expires: Fri, 09 Dec 2022 00:57:49 GMT Date: Thu, 08 Dec 2022 23:21:21 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg	34.120.237.76	200 OK	6.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.6 kB (6578 bytes) Hash 8546542f00ea29ef4df6ab8d3c7c2164 5c8ffe91490006a9890188b53f875568c2b6bd8f 7fb11750ac339ac283da62fd370862c6b95a103a585ca5dd8c90038718d818a1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6a20bda5-6ca4-42c4-8729-6e975652e66a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6578 x-amzn-requestid: 6392feb9-e33e-42fa-bc10-b5e31e654c9b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cw4beGG7oAMF8hA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63903aaf-2c890b7b0a16617346a0f7e7;Sampled=0 x-amzn-remapped-date: Wed, 07 Dec 2022 07:03:11 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: H067kZXU_djWxbWO34bYMqa0xZ-WF9ntEBhZ-kV_TDoJFXQL_J1hqQ== via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google date: Thu, 08 Dec 2022 07:11:47 GMT age: 58174 etag: "5c8ffe91490006a9890188b53f875568c2b6bd8f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg	34.120.237.76	200 OK	7.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.2 kB (7217 bytes) Hash 955c6ac69b89f6cbd497df53fcb2ae1b 2506152cdd1056533116feb9350124356e570e54 fca1b303a554aa9cdd13c4769a1088e1905ef888ed703de17864fe76ff880abe HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf3829a8-4b4d-433d-9452-46c3ffc7ea6e.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7217 x-amzn-requestid: be9196fc-3d43-49db-8522-8781cbf5a247 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: csUEDEWpIAMFqUQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-638e66e6-04b24220213872ba378d3538;Sampled=0 x-amzn-remapped-date: Mon, 05 Dec 2022 21:47:18 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 4QlJZW4ZiPNVhOJbcRldanR8veym3l0sIBGa1Ym-4FOTT_utMQeZQg== via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google date: Thu, 08 Dec 2022 08:39:07 GMT age: 52934 etag: "2506152cdd1056533116feb9350124356e570e54" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (12748 bytes) Hash 730ba1a8edb79ba6f83b46d1ba5aed7b 55a236fedf6f5f7ca2bb88ae13e20846a50fd36d f8043e76265c59073d111987fd4c08d05a3ac80989af9269cca9ebcc21af4013 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf07b4f3-8986-4a9c-8c85-b126338852d2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12748 x-amzn-requestid: edd028e3-c23e-4985-b12d-d3ebe760df47 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cjuciEptIAMFj9A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-638af783-1c151eb66f590c9c0e0c4c82;Sampled=0 x-amzn-remapped-date: Sat, 03 Dec 2022 07:15:15 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: -y4-_OwHl5_OFykJYYZSqwIopjKoYy1MhaGTpVXd4Grq2EsUP2c3IA== via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google date: Thu, 08 Dec 2022 13:49:59 GMT age: 34282 etag: "55a236fedf6f5f7ca2bb88ae13e20846a50fd36d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf0d40ad-816d-4ea8-aef7-00a5af1b8c9b.png	34.120.237.76	200 OK	4.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf0d40ad-816d-4ea8-aef7-00a5af1b8c9b.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.8 kB (4840 bytes) Hash 34a9b9b25e57f612db5560cd05e44cce 433e295328d6c821a1df907c232bff4195e2860b 139dc677e5725c98a5d90d19b206a34a4c9f43ad87cf1d322881381e992bd5b5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faf0d40ad-816d-4ea8-aef7-00a5af1b8c9b.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4840 x-amzn-requestid: 26914070-22ad-49fd-bacb-7842dcb203b8 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: c2LZPGd-oAMF5OA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63925907-5c62555a65327ff934ae232e;Sampled=0 x-amzn-remapped-date: Thu, 08 Dec 2022 21:37:11 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: gGT6ZP9a7ENOcyGNek_ac8WlyRoiYeB4KdqC2UHHlwLdWBQUhHsw7w== via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google date: Thu, 08 Dec 2022 22:00:01 GMT age: 4880 etag: "433e295328d6c821a1df907c232bff4195e2860b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8ff35a0-24dc-4158-b67e-a5f03f5a9022.jpeg	34.120.237.76	200 OK	1.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8ff35a0-24dc-4158-b67e-a5f03f5a9022.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 1.6 kB (1584 bytes) Hash 4f6cfc43170be4dd0264f2b0b6bcc329 9ad22ea868f3b72832243fd11315c68117c7542b f5cc67d46241c2f5aebc2515bf8828889f8ceda8112b78cdf925a260b82fd833 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb8ff35a0-24dc-4158-b67e-a5f03f5a9022.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 1584 x-amzn-requestid: 7743c8a6-118c-4c69-b833-a9e2f5561a54 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cw5VEGV8IAMFcOQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63903c20-41fdf6d004b388f51fa70833;Sampled=0 x-amzn-remapped-date: Wed, 07 Dec 2022 07:09:20 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: whmRQYshKD6d2Pz3Z0ZCCFr_MEPR1rEek7nVZqf5XeiWpt1LIcjvBQ== via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google date: Thu, 08 Dec 2022 07:34:55 GMT age: 56786 etag: "9ad22ea868f3b72832243fd11315c68117c7542b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10205 bytes) Hash 45e0c1638ad919bde19731f7987ab064 1e492807c665e6e6b24ec6ce19035fdfc6f23b92 f0d3738ec8406958470c8fd152a02a123d7654c30f974c1df5c4977a380c2d62 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe7732c6-dc98-445c-86c6-d413942250ea.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10205 x-amzn-requestid: c5704c7a-60c4-402b-8018-5885a8dae971 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cwVM_F9BIAMF3ow= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63900252-3e9573d900714e3250f43e17;Sampled=0 x-amzn-remapped-date: Wed, 07 Dec 2022 03:02:42 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: CkWS1pSf-evNBrlSFKCUz1eheHhVu-Hx8wY3Zd9JgxyF-1zBs9bnzA== via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google date: Thu, 08 Dec 2022 00:33:37 GMT age: 82064 etag: "1e492807c665e6e6b24ec6ce19035fdfc6f23b92" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	143.204.42.165	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 143.204.42.165:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 8766f46925708a9c14c6b25914bf13cb 0a6262eb48b1a09666d35aabf74728360781fd98 d7327edab996c37152690063283befd8c772f085087d2136e80649c3f7938037 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=126311 Date: Thu, 08 Dec 2022 23:21:21 GMT Etag: "6391a7d0-1d7" Expires: Sat, 10 Dec 2022 10:26:32 GMT Last-Modified: Thu, 08 Dec 2022 09:01:04 GMT Server: ECS (nyb/1D0C) X-Cache: Miss from cloudfront Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: pdwiUfwZ50TtyOfhLvSfTQsgzH8Q976BLSwilVSvIOviSay2hC_jIA== Age: 5128

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 795e67bdfadc3c890a663080413b56b7 fdefde3befb6aceac3c337c34c8d738f5091908c 8375b55cfc13989b0cf96293b7bead2ce5811a993b3445da1776ca7015c36985 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 08 Dec 2022 23:21:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	region1.google-analytics.com/g/collect?v=2&tid=G-FYRCP36T9Y&gtm=2oebu0&_p=609361515&cid=1970526219.1670541680&ul=en-us&sr=1280x1024&_s=1&sid=1670541679&sct=1&seg=0&dl=https%3A%2F%2Fwww.sheppardmullin.com%2F&dt=Sheppard%20Mullin&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1	216.239.32.36	204 No Content	0 B
URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-FYRCP36T9Y&gtm=2oebu0&_p=609361515&cid=1970526219.1670541680&ul=en-us&sr=1280x1024&_s=1&sid=1670541679&sct=1&seg=0&dl=https%3A%2F%2Fwww.sheppardmullin.com%2F&dt=Sheppard%20Mullin&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 IP 216.239.32.36:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers POST /g/collect?v=2&tid=G-FYRCP36T9Y&gtm=2oebu0&_p=609361515&cid=1970526219.1670541680&ul=en-us&sr=1280x1024&_s=1&sid=1670541679&sct=1&seg=0&dl=https%3A%2F%2Fwww.sheppardmullin.com%2F&dt=Sheppard%20Mullin&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1 Host: region1.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.sheppardmullin.com Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Content-Length: 0 HTTP/2 204 No Content access-control-allow-origin: https://www.sheppardmullin.com date: Thu, 08 Dec 2022 23:21:21 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate access-control-allow-credentials: true content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	www.sheppardmullin.com/i-t1670529335/home-spot-arrow.svgz	216.157.108.97	200 OK	219 B
URL HTTP/1.1 www.sheppardmullin.com/i-t1670529335/home-spot-arrow.svgz IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type SVG Scalable Vector Graphics image\012- HTML document, ASCII text, with no line terminators Size 219 B (219 bytes) Hash 7776f2f2d676c69bfbdef1a951e9ea11 c34bf56f7d7bb0b1ecb6b71ccb14e7e3ede5fcb5 b843c9fba57e759f5914d0ddbb38e2d7c349bfb8ecfed829ad623b8a054753cc HTTP Headers `GET /i-t1670529335/home-spot-arrow.svgz HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/css-t1670529335/screen-style.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:21 GMT Server: Apache Last-Modified: Mon, 21 Oct 2019 18:47:28 GMT Accept-Ranges: bytes Content-Length: 219 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:21 GMT X-Frame-Options: SAMEORIGIN Content-Type: image/svg+xml Content-Encoding: gzip x-content-type-options: nosniff`

	www.sheppardmullin.com/assets/miscimages-t1670529335/homeblogimage.jpeg	216.157.108.97	200 OK	8.1 kB
URL HTTP/1.1 www.sheppardmullin.com/assets/miscimages-t1670529335/homeblogimage.jpeg IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 430x53, components 3\012- data Size 8.1 kB (8115 bytes) Hash f3017c4795b49b85bd6ae9d6f80e3433 b8ac0a33e7c27f932daa0092a15f20df0a624657 aa35e1650adf694a61733511eadb19aae70611854a2d6ed191cba15023967844 HTTP Headers `GET /assets/miscimages-t1670529335/homeblogimage.jpeg HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:21 GMT Server: Apache Last-Modified: Mon, 02 Mar 2020 21:39:32 GMT ETag: "1fb3-59fe605d6a778" Accept-Ranges: bytes Content-Length: 8115 X-Frame-Options: SAMEORIGIN Content-Type: image/jpeg x-content-type-options: nosniff`

	www.sheppardmullin.com/assets/miscimages-t1670529335/homepublicationimage.jpeg	216.157.108.97	200 OK	11 kB
URL HTTP/1.1 www.sheppardmullin.com/assets/miscimages-t1670529335/homepublicationimage.jpeg IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 430x53, components 3\012- data Size 11 kB (10915 bytes) Hash f0ae63c8e89ea7f75714e5ab27664a69 d838e153f09165d07207f267c2e3c9d449845c7c 13cf65f5dfd962cd1c59916e1e1a4a370162744ac62b0846bab8d73da8d64756 HTTP Headers `GET /assets/miscimages-t1670529335/homepublicationimage.jpeg HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:21 GMT Server: Apache Last-Modified: Mon, 21 Oct 2019 18:15:46 GMT ETag: "2aa3-5956fac3564a3" Accept-Ranges: bytes Content-Length: 10915 X-Frame-Options: SAMEORIGIN Content-Type: image/jpeg x-content-type-options: nosniff`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 795e67bdfadc3c890a663080413b56b7 fdefde3befb6aceac3c337c34c8d738f5091908c 8375b55cfc13989b0cf96293b7bead2ce5811a993b3445da1776ca7015c36985 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 08 Dec 2022 23:21:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	cdn.userway.org/widgetapp/2022-12-07/widget_app_base_1670431810099.js	185.76.9.19	200 OK	37 kB
URL HTTP/2 cdn.userway.org/widgetapp/2022-12-07/widget_app_base_1670431810099.js IP 185.76.9.19:0 ASN #60068 Datacamp Limited File type ASCII text, with very long lines (31963) Size 37 kB (36932 bytes) Hash 199987225d48cba90237200cfe575a10 85d7f1bfe270e211191c8b6f58d2ecd357f6956a ca63453941b0e2e3872cfbaadcba822a9a7a4e902dbc501e4027ebc44806fcf9 HTTP Headers `GET /widgetapp/2022-12-07/widget_app_base_1670431810099.js HTTP/1.1 Host: cdn.userway.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Thu, 08 Dec 2022 23:21:20 GMT content-type: application/javascript access-control-allow-origin: * access-control-allow-methods: GET, HEAD, PUT, POST, DELETE access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type access-control-max-age: 3000 last-modified: Wed, 07 Dec 2022 16:52:53 GMT etag: W/"a9f1c7d7780cd7a28c608b7254f7af53" cache-control: max-age=25920000, public vary: Accept-Encoding via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 3crT04T0EcMRIk5tvET17F1nWr7Q5rBlohH54T09FzEhmGIiRa8uOQ== age: 290 x-accel-expires: @1696352364 server: CDN77-Turbo x-77-nzt: AblMCQ1RJBL/BKsBAA x-77-nzt-ray: c0a4cc281fa66a9370719263c1eb6c21 x-cache: HIT x-age: 109316 x-77-pop: stockholmSE x-77-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	www.rumiview.com/containers/cff24e32-8a6d-4985-99fd-07cc3a6116d5.js	199.185.0.231	200 OK	60 kB
URL HTTP/1.1 www.rumiview.com/containers/cff24e32-8a6d-4985-99fd-07cc3a6116d5.js IP 199.185.0.231:0 ASN #21592 MULTIVIEW File type Unicode text, UTF-8 text, with very long lines (32031) Size 60 kB (60054 bytes) Hash 217682214c708ca6a42522c4430a4b25 974a0b9555f4e4fb824a77bcfcd0175fd0e2721b 66b80d107b4d5a3e11d83c697916d36f1e1f722e75e2753ff82c62fbc99eae4c HTTP Headers `GET /containers/cff24e32-8a6d-4985-99fd-07cc3a6116d5.js HTTP/1.1 Host: www.rumiview.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK date: Thu, 08 Dec 2022 23:21:21 GMT content-type: application/javascript; charset=utf-8 transfer-encoding: chunked cache-control: public, must-revalidate, max-age=360 vary: Accept-Encoding, Accept-Encoding, Cookie x-robots-tag: none content-encoding: gzip`

	www.sheppardmullin.com/assets/images-t1670529335/45769.jpeg	216.157.108.97	200 OK	748 kB
URL HTTP/1.1 www.sheppardmullin.com/assets/images-t1670529335/45769.jpeg IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1070, components 3\012- data Size 748 kB (747906 bytes) Hash 39926644dbe1cd246ff66dab7c46e88f 3a79535b4ca771bca3b77602d8d3ba3f828219b8 f1b45acbb994c1c777d7f843f4019deb53451404585af8854500992d76741857 HTTP Headers `GET /assets/images-t1670529335/45769.jpeg HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Last-Modified: Thu, 06 Feb 2020 22:45:32 GMT Accept-Ranges: bytes Content-Length: 747906 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Type: image/jpeg x-content-type-options: nosniff`

	www.sheppardmullin.com/assets/images-t1670529335/45818.jpeg	216.157.108.97	200 OK	260 kB
URL HTTP/1.1 www.sheppardmullin.com/assets/images-t1670529335/45818.jpeg IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1070, components 3\012- data Size 260 kB (260497 bytes) Hash e6ac136c60f3ac4c768782eddf40e02e c557bacd8e3a32a7406832455f19e8724b933941 fce27a09a868eecec92d533d2ad9dc2b78e08a630a6fba340ef5fd5ce865853b HTTP Headers `GET /assets/images-t1670529335/45818.jpeg HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Last-Modified: Mon, 17 Feb 2020 16:43:40 GMT Accept-Ranges: bytes Content-Length: 260497 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Type: image/jpeg x-content-type-options: nosniff`

	www.sheppardmullin.com/assets/images-t1670529335/45772.jpeg	216.157.108.97	200 OK	603 kB
URL HTTP/1.1 www.sheppardmullin.com/assets/images-t1670529335/45772.jpeg IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1070, components 3\012- data Size 603 kB (603169 bytes) Hash 4cb3644daa50892e2fdb8587c532edc2 459e558e86bd6acc5fe733d780907fb9b7a73bed 310a89990c493002176f135457ebbe9a65ba565c73efe5d5dcc512f2fbae4423 HTTP Headers `GET /assets/images-t1670529335/45772.jpeg HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:20 GMT Server: Apache Last-Modified: Thu, 06 Feb 2020 22:46:38 GMT Accept-Ranges: bytes Content-Length: 603169 Cache-Control: max-age=31536000 Expires: Fri, 08 Dec 2023 23:21:20 GMT X-Frame-Options: SAMEORIGIN Content-Type: image/jpeg x-content-type-options: nosniff`

	snap.licdn.com/li.lms-analytics/insight.min.js	95.101.11.48	200 OK	4.6 kB
URL HTTP/2 snap.licdn.com/li.lms-analytics/insight.min.js IP 95.101.11.48:0 ASN #20940 Akamai International B.V. File type ASCII text, with very long lines (12961) Size 4.6 kB (4581 bytes) Hash c1a25b303b61b25e995516f5559bcdea 3c16a6fa3a2a6dc59d57a9ea1588c4f259884688 2063d2d1415ce9437e9331cb9a798714a5b2e106a65d6dc0ef0d426a5a4c30f2 HTTP Headers `GET /li.lms-analytics/insight.min.js HTTP/1.1 Host: snap.licdn.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK last-modified: Thu, 17 Nov 2022 18:52:45 GMT accept-ranges: bytes content-type: application/x-javascript;charset=utf-8 vary: Accept-Encoding content-encoding: gzip cache-control: max-age=30522 date: Thu, 08 Dec 2022 23:21:21 GMT content-length: 4581 x-cdn: AKAM X-Firefox-Spdy: h2`

	cdn.userway.org/widgetapp/2022-12-07/locales/en-US.json	185.76.9.19	200 OK	17 kB
URL HTTP/2 cdn.userway.org/widgetapp/2022-12-07/locales/en-US.json IP 185.76.9.19:0 ASN #60068 Datacamp Limited File type JSON data\012- , ASCII text, with very long lines (433), with no line terminators Size 17 kB (17351 bytes) Hash f44b8a3c4b26184dd1e91dd95f2bc4e2 23c1b77f969f0da0203b7a913470c6d504bed294 f069c7317ac4b8bdf80fcf3d1e20a4f293ff510d93683e71bdd4e74d1df3ad7b HTTP Headers `GET /widgetapp/2022-12-07/locales/en-US.json HTTP/1.1 Host: cdn.userway.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://www.sheppardmullin.com Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Thu, 08 Dec 2022 23:21:21 GMT content-type: application/json access-control-allow-origin: * access-control-allow-methods: GET, HEAD, PUT, POST, DELETE access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type access-control-max-age: 3000 last-modified: Wed, 07 Dec 2022 16:52:53 GMT etag: W/"0c4b53012957584c54e80867ff489590" cache-control: max-age=25920000, public via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: Mtps4l2WStlA7fBxct6SwDxqxgd_UoGxnWvW8QNxRkOI6iEzB2589Q== age: 375 x-accel-expires: @1696352465 server: CDN77-Turbo x-77-nzt: AblMCQ0HwSP/oKoBAA x-77-nzt-ray: c0a4cc281ba1159871719263f4b4291b x-cache: HIT x-age: 109216 x-77-pop: stockholmSE x-77-cache: HIT content-encoding: br X-Firefox-Spdy: h2

	www.sheppardmullin.com/favicon.ico	216.157.108.97	200 OK	1.4 kB
URL HTTP/1.1 www.sheppardmullin.com/favicon.ico IP 216.157.108.97:0 ASN #13768 COGECO-PEER1 File type MS Windows icon resource - 1 icon, 16x16\012- data Size 1.4 kB (1406 bytes) Hash b70fcc316e83e9ee78ec77f75942c9cd 44a8d9d46556adb0915439e7a2eb557447ea194c 644889564c268003086315de9de5ce2c8e00d681e8656d6f1565dfa885ffa298 HTTP Headers GET /favicon.ico HTTP/1.1 Host: www.sheppardmullin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Cookie: _ga_FYRCP36T9Y=GS1.1.1670541679.1.0.1670541679.0.0.0; _ga=GA1.1.1970526219.1670541680; nmstat=e4dab9f9-ecca-3b47-08eb-68d14c584ca1; stg_returning_visitor=Thu%2C%2008%20Dec%202022%2023:21:20%20GMT; stg_traffic_source_priority=1; stg_externalReferrer= Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 08 Dec 2022 23:21:21 GMT Server: Apache Last-Modified: Wed, 07 Aug 2019 18:28:44 GMT Accept-Ranges: bytes Content-Length: 1406 Cache-Control: max-age=604800 Expires: Thu, 15 Dec 2022 23:21:21 GMT X-Frame-Options: SAMEORIGIN Content-Type: image/vnd.microsoft.icon x-content-type-options: nosniff`

	www.rumiview.com/ppms.js	199.185.0.231	200 OK	24 kB
URL HTTP/1.1 www.rumiview.com/ppms.js IP 199.185.0.231:0 ASN #21592 MULTIVIEW File type data Size 24 kB (23901 bytes) Hash c9d7df0fac7477821d28595ad2bd36f1 4a7723baffc9d470c948923338012fe280e0c3b0 a75006830c6a8a90d3ddf7d1d06d5eff76ec3bce7d4d0c4b268459e7ad6752aa HTTP Headers `GET /ppms.js HTTP/1.1 Host: www.rumiview.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/1.1 200 OK date: Thu, 08 Dec 2022 23:21:21 GMT content-type: application/javascript last-modified: Tue, 20 Jul 2021 10:53:42 GMT transfer-encoding: chunked vary: Accept-Encoding etag: W/"60f6ab36-11bae" expires: Fri, 09 Dec 2022 05:21:21 GMT cache-control: max-age=21600 x-content-type-options: nosniff content-encoding: gzip`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 2556512b197b09798af71bea10bb4bbb 23b647aca5f8294ae82fa8cc7e2215ebe3347b60 3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 08 Dec 2022 23:21:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-8608794-1&cid=1970526219.1670541680&jid=227128844&_v=5.7.2&z=1967333278	108.177.14.155	200 OK	35 B
URL HTTP/2 stats.g.doubleclick.net/r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-8608794-1&cid=1970526219.1670541680&jid=227128844&_v=5.7.2&z=1967333278 IP 108.177.14.155:0 ASN #15169 GOOGLE File type GIF image data, version 89a, 1 x 1\012- data Size 35 B (35 bytes) Hash 28d6814f309ea289f847c69cf91194c6 0f4e929dd5bb2564f7ab9c76338e04e292a42ace 8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015 HTTP Headers `GET /r/collect?v=1&aip=1&t=dc&_r=3&tid=UA-8608794-1&cid=1970526219.1670541680&jid=227128844&_v=5.7.2&z=1967333278 HTTP/1.1 Host: stats.g.doubleclick.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.sheppardmullin.com/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * strict-transport-security: max-age=10886400; includeSubDomains; preload date: Thu, 08 Dec 2022 23:21:21 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT x-content-type-options: nosniff content-type: image/gif cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 35 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	cdn.linkedin.oribi.io/partner/2839212/domain/sheppardmullin.com/token	54.230.111.8	200 OK	0 B
URL HTTP/2 cdn.linkedin.oribi.io/partner/2839212/domain/sheppardmullin.com/token IP 54.230.111.8:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /partner/2839212/domain/sheppardmullin.com/token HTTP/1.1 Host: cdn.linkedin.oribi.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: GET Access-Control-Request-Headers: content-type Referer: https://www.sheppardmullin.com/ Origin: https://www.sheppardmullin.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK content-length: 0 date: Thu, 08 Dec 2022 10:05:46 GMT access-control-allow-origin: * access-control-allow-methods: GET access-control-allow-headers: content-type access-control-max-age: 1800 allow: GET, HEAD, POST, PUT, DELETE, OPTIONS, PATCH x-cache: Hit from cloudfront via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: iWIguVjpcTJrIASaADLQSNcDmz_hoSCiAyb0rPfCufrtaf5tRQJV5g== age: 47735 X-Firefox-Spdy: h2`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 2556512b197b09798af71bea10bb4bbb 23b647aca5f8294ae82fa8cc7e2215ebe3347b60 3b5bd592342d978bcf8919d1a1e2f87295e2e4af5b5b266e6017b7a25725d08d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 08 Dec 2022 23:21:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	px.ads.linkedin.com/collect?v=2&fmt=js&pid=2839212&time=1670541680752&url=https%3A%2F%2Fwww.sheppardmullin.com%2F	13.107.42.14	302 Found	0 B
URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2839212&time=1670541680752&url=https%3A%2F%2Fwww.sheppardmullin.com%2F IP 13.107.42.14:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /collect?v=2&fmt=js&pid=2839212&time=1670541680752&url=https%3A%2F%2Fwww.sheppardmullin.com%2F HTTP/1.1 Host: px.ads.linkedin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 302 Found location: https://www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2839212%26time%3D1670541680752%26url%3Dhttps%253A%252F%252Fwww.sheppardmullin.com%252F%26liSync%3Dtrue set-cookie: UserMatchHistory=AQJJmzSghuQQtQAAAYT0CyRWRyE5vy6P3oYKhBSv8qfMkr4Bp1-c8hoDpwq9wwc3FZ9J7ZTWaqxI0g; Max-Age=2592000; Expires=Sat, 07 Jan 2023 23:21:21 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure AnalyticsSyncHistory=AQLziBLkKKULngAAAYT0CyRWyVhdJ4tdosn094_thgB6ITCVcyf-Gwfa7-e6wo5DCYUXD6veF319I6-jvtjwHw; Max-Age=2592000; Expires=Sat, 07 Jan 2023 23:21:21 GMT; SameSite=None; Path=/; Domain=.linkedin.com; Secure lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&b2a5e2db-9087-4be9-8347-5baec22be71c"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 08-Dec-2023 23:21:21 GMT; SameSite=None lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2432:u=1:x=1:i=1670541681:t=1670628081:v=2:sig=AQGyaedB9gQuFAsPG6c3k9daaR56MFAt"; Expires=Fri, 09 Dec 2022 23:21:21 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure linkedin-action: 1 x-li-fabric: prod-ltx1 x-li-source-fabric: prod-lva1 x-li-pop: afd-prod-lva1-x x-li-proto: http/2 x-li-uuid: AAXvWUuFcUrdwPZXIKoHVA== x-cache: CONFIG_NOCACHE x-msedge-ref: Ref A: 9DC6E32F52644C498574C99D7DCF73F2 Ref B: OSL30EDGE0505 Ref C: 2022-12-08T23:21:21Z date: Thu, 08 Dec 2022 23:21:21 GMT content-length: 0 X-Firefox-Spdy: h2

	www.rumiview.com/ppms.php?action_name=Sheppard%20Mullin&idsite=cff24e32-8a6d-4985-99fd-07cc3a6116d5&rec=1&r=844794&h=23&m=21&s=20&url=https%3A%2F%2Fwww.sheppardmullin.com%2F&_id=1b916276c23e6f52&_idts=1670541681&_idvc=1&_idn=0&_viewts=1670541681&send_image=1&cookie=1&res=1280x1024&gt_ms=153&pv_id=8kNqab	199.185.0.231	200 OK	43 B
URL HTTP/1.1 www.rumiview.com/ppms.php?action_name=Sheppard%20Mullin&idsite=cff24e32-8a6d-4985-99fd-07cc3a6116d5&rec=1&r=844794&h=23&m=21&s=20&url=https%3A%2F%2Fwww.sheppardmullin.com%2F&_id=1b916276c23e6f52&_idts=1670541681&_idvc=1&_idn=0&_viewts=1670541681&send_image=1&cookie=1&res=1280x1024&gt_ms=153&pv_id=8kNqab IP 199.185.0.231:0 ASN #21592 MULTIVIEW File type GIF image data, version 89a, 1 x 1\012- data Size 43 B (43 bytes) Hash df3e567d6f16d040326c7a0ea29a4f41 ea7df583983133b62712b5e73bffbcd45cc53736 548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87 HTTP Headers GET /ppms.php?action_name=Sheppard%20Mullin&idsite=cff24e32-8a6d-4985-99fd-07cc3a6116d5&rec=1&r=844794&h=23&m=21&s=20&url=https%3A%2F%2Fwww.sheppardmullin.com%2F&_id=1b916276c23e6f52&_idts=1670541681&_idvc=1&_idn=0&_viewts=1670541681&send_image=1&cookie=1&res=1280x1024&gt_ms=153&pv_id=8kNqab HTTP/1.1 Host: www.rumiview.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site `HTTP/1.1 200 OK date: Thu, 08 Dec 2022 23:21:21 GMT content-type: image/gif content-length: 43 content-encoding: none`

	www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2839212%26time%3D1670541680752%26url%3Dhttps%253A%252F%252Fwww.sheppardmullin.com%252F%26liSync%3Dtrue	13.107.42.14	302 Found	0 B
URL HTTP/2 www.linkedin.com/px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2839212%26time%3D1670541680752%26url%3Dhttps%253A%252F%252Fwww.sheppardmullin.com%252F%26liSync%3Dtrue IP 13.107.42.14:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /px/li_sync?redirect=https%3A%2F%2Fpx.ads.linkedin.com%2Fcollect%3Fv%3D2%26fmt%3Djs%26pid%3D2839212%26time%3D1670541680752%26url%3Dhttps%253A%252F%252Fwww.sheppardmullin.com%252F%26liSync%3Dtrue HTTP/1.1 Host: www.linkedin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.sheppardmullin.com/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 302 Found cache-control: no-cache, no-store pragma: no-cache expires: Thu, 01 Jan 1970 00:00:00 GMT location: https://px.ads.linkedin.com/collect?v=2&fmt=js&pid=2839212&time=1670541680752&url=https%3A%2F%2Fwww.sheppardmullin.com%2F&liSync=true set-cookie: lang=v=2&lang=en-us; Domain=linkedin.com; Path=/; Secure; SameSite=None bcookie="v=2&dd2b89a8-f276-483d-8d37-51f3202c8e18"; Domain=.linkedin.com; Expires=Fri, 08-Dec-2023 23:21:21 GMT; Path=/; Secure; SameSite=None bscookie="v=1&202212082321217e9c2625-2c77-4871-8add-3d0c80a133cdAQGUv5VUDp60i4pXRwO2ggCV1p8BSCre"; Domain=.www.linkedin.com; Expires=Fri, 08-Dec-2023 23:21:21 GMT; Path=/; HttpOnly; Secure; SameSite=None li_gc=MTswOzE2NzA1NDE2ODE7MjswMjEyzQnN7Fjs7nTg7u5u7KHzJz44zuoozVno+ap6iiipGA==; Domain=.linkedin.com; Expires=Tue, 06 Jun 2023 23:21:21 GMT; Path=/; Secure; SameSite=None lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2432:u=1:x=1:i=1670541681:t=1670628081:v=2:sig=AQGyaedB9gQuFAsPG6c3k9daaR56MFAt"; Expires=Fri, 09 Dec 2022 23:21:21 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure linkedin-action: 1 x-li-fabric: prod-ltx1 content-security-policy: default-src ; connect-src 'self' .licdn.com .linkedin.com wss://.linkedin.com dpm.demdex.net/id lnkd.demdex.net blob: accounts.google.com/gsi/status linkedin.sc.omtrdc.net/b/ss/ .qualtrics.com .adyen.com; img-src data: blob: ; font-src data: ; style-src 'unsafe-inline' 'self' static-src.linkedin.com .licdn.com; script-src 'report-sample' 'unsafe-inline' 'unsafe-eval' 'self' spdy.linkedin.com static-src.linkedin.com .ads.linkedin.com .licdn.com static.chartbeat.com bcvipva02.rightnowtech.com www.bizographics.com sjs.bizographics.com js.bizographics.com d.la4-c1-was.salesforceliveagent.com platform.linkedin.com platform-akam.linkedin.com platform-ecst.linkedin.com platform-azur.linkedin.com; object-src 'none'; media-src blob: ; worker-src blob: 'self'; frame-src blob: lnkd-communities: voyager: *; frame-ancestors 'self' teams.microsoft.com client.learningapp.microsoft.com onyx.www.linkedin.com x-frame-options: sameorigin x-content-type-options: nosniff strict-transport-security: max-age=31536000 expect-ct: max-age=86400, report-uri="https://www.linkedin.com/platform-telemetry/ct" x-li-source-fabric: prod-lva1 x-li-pop: afd-prod-lva1-x x-li-proto: http/2 x-li-uuid: AAXvWUuIzE7WENJrBwYbAw== x-cache: CONFIG_NOCACHE x-msedge-ref: Ref A: 82F6F79AFE6E4D10885586ADBA80053F Ref B: OSL30EDGE0505 Ref C: 2022-12-08T23:21:21Z date: Thu, 08 Dec 2022 23:21:21 GMT content-length: 0 X-Firefox-Spdy: h2

	px.ads.linkedin.com/collect?v=2&fmt=js&pid=2839212&time=1670541680752&url=https%3A%2F%2Fwww.sheppardmullin.com%2F&liSync=true	13.107.42.14	200 OK	0 B
URL HTTP/2 px.ads.linkedin.com/collect?v=2&fmt=js&pid=2839212&time=1670541680752&url=https%3A%2F%2Fwww.sheppardmullin.com%2F&liSync=true IP 13.107.42.14:0 ASN #8068 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /collect?v=2&fmt=js&pid=2839212&time=1670541680752&url=https%3A%2F%2Fwww.sheppardmullin.com%2F&liSync=true HTTP/1.1 Host: px.ads.linkedin.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.sheppardmullin.com/ Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: application/javascript set-cookie: lang=v=2&lang=en-us; SameSite=None; Path=/; Domain=ads.linkedin.com; Secure bcookie="v=2&6697a44f-85ea-467c-85df-44256f0e1c42"; domain=.linkedin.com; Path=/; Secure; Expires=Fri, 08-Dec-2023 23:21:22 GMT; SameSite=None lidc="b=TGST09:s=T:r=T:a=T:p=T:g=2432:u=1:x=1:i=1670541682:t=1670628082:v=2:sig=AQFZsq5EiN0Z0njAJBlbgdJcaRBB_t_A"; Expires=Fri, 09 Dec 2022 23:21:22 GMT; domain=.linkedin.com; Path=/; SameSite=None; Secure linkedin-action: 1 x-li-fabric: prod-ltx1 x-li-source-fabric: prod-lva1 x-li-pop: afd-prod-lva1-x x-li-proto: http/2 x-li-uuid: AAXvWUuLTL5jMfD8X7izxQ== x-cache: CONFIG_NOCACHE x-msedge-ref: Ref A: FEBF904EC6D240AFB75C6F3EC0282956 Ref B: OSL30EDGE0505 Ref C: 2022-12-08T23:21:22Z date: Thu, 08 Dec 2022 23:21:21 GMT content-length: 0 X-Firefox-Spdy: h2

	api.userway.org/api/a11y-data/v0/page/https%3A%2F%2Fwww.sheppardmullin.com%2F/DESKTOP/WIDGET_OFF/status	34.208.21.161	200 OK	77 B
URL HTTP/2 api.userway.org/api/a11y-data/v0/page/https%3A%2F%2Fwww.sheppardmullin.com%2F/DESKTOP/WIDGET_OFF/status IP 34.208.21.161:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with no line terminators Size 77 B (77 bytes) Hash f3b84edcbb7d7e1cf47c38c8fe97788f c182d12eb6d689d4709df844be807e636534e0d6 d2f13447bd89c56bad76bac2e4e551ac6b611f40503104b70ee26812afe5a94c HTTP Headers `GET /api/a11y-data/v0/page/https%3A%2F%2Fwww.sheppardmullin.com%2F/DESKTOP/WIDGET_OFF/status HTTP/1.1 Host: api.userway.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.sheppardmullin.com/ Origin: https://www.sheppardmullin.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK date: Thu, 08 Dec 2022 23:21:27 GMT content-type: application/json; charset=utf-8 content-length: 77 x-service-version: seo-w-aafc8284 access-control-allow-origin: * access-control-allow-methods: GET, HEAD, PUT, PATCH, POST, DELETE access-control-allow-headers: * access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type access-control-max-age: 3000 etag: W/"4d-wYLRLrbWidRwnfhEvoB+Y2U04NY" vary: Accept-Encoding X-Firefox-Spdy: h2`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c8ed2c5-144c-4fce-bb57-7d9918c1ab31.jpeg	34.120.237.76	200 OK	4.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c8ed2c5-144c-4fce-bb57-7d9918c1ab31.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.0 kB (4049 bytes) Hash 44ed82780732ed682ee46b2df52b3ca2 0b3fe77e142178561b28c93b94b1aea2e1c395a5 383da5ca2927044c69ff1d10b630fe3439ca48f1845031ef1b6607fcd054c54b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9c8ed2c5-144c-4fce-bb57-7d9918c1ab31.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK server: nginx content-length: 4049 x-amzn-requestid: dbde9a26-7609-43b7-a9a5-6e4d2f559989 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cpwRFHIooAMFVmw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-638d60d3-5f5131b8315a458d18cdc70f;Sampled=0 x-amzn-remapped-date: Mon, 05 Dec 2022 03:09:07 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 6_KiAcPwtB6XJyanlunX6qvT9jdlEgMPMdGHM10HmJwQ2Ue_pDsCXg== via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google date: Thu, 08 Dec 2022 12:37:33 GMT age: 38634 etag: "0b3fe77e142178561b28c93b94b1aea2e1c395a5" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	cdn.linkedin.oribi.io/partner/2839212/domain/sheppardmullin.com/token	54.230.111.8	200 OK	0 B
URL HTTP/2 cdn.linkedin.oribi.io/partner/2839212/domain/sheppardmullin.com/token IP 54.230.111.8:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET /partner/2839212/domain/sheppardmullin.com/token HTTP/1.1 Host: cdn.linkedin.oribi.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: * Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Origin: https://www.sheppardmullin.com Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK content-type: application/json date: Thu, 08 Dec 2022 23:21:13 GMT access-control-allow-origin: * cache-control: public, max-age=3600 content-encoding: gzip vary: accept-encoding x-cache: Hit from cloudfront via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: rjYpifKU8APTk3SDiFs9bAelbfFPfVGLhvPvxEiTdxoB2ne4XUvrWA== age: 8 X-Firefox-Spdy: h2`

	cdn.userway.org/widgetapp/images/spin_wh.svg	185.76.9.19	200 OK	0 B
URL HTTP/2 cdn.userway.org/widgetapp/images/spin_wh.svg IP 185.76.9.19:0 ASN #60068 Datacamp Limited File type Size 0 B (0 bytes) Hash HTTP Headers `GET /widgetapp/images/spin_wh.svg HTTP/1.1 Host: cdn.userway.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://www.sheppardmullin.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK date: Thu, 08 Dec 2022 23:21:21 GMT content-type: image/svg+xml access-control-allow-origin: * access-control-allow-methods: GET, HEAD, PUT, POST, DELETE access-control-expose-headers: Content-Range, Content-Length, ETag, Content-Type access-control-max-age: 3000 last-modified: Mon, 22 Aug 2022 17:36:51 GMT etag: W/"8e0a35946bf39d10f46a1f1653366a0a" cache-control: max-age=25920000, public vary: Accept-Encoding via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: DxB0P-W-atmDbNPGbe5LMzrIecJ01oHt3VD2TyO1jovTzx0V9uASmw== age: 104462 x-accel-expires: @1696184120 server: CDN77-Turbo x-77-nzt: AblMCQ3LfDj/OTwEAA x-77-nzt-ray: c0a4cc281fa66a937171926306ba4e3a x-cache: HIT x-age: 277561 x-77-pop: stockholmSE x-77-cache: HIT content-encoding: br X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (18)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations