Overview

URLzepedalawfirm.com/2014-executive-action.html
IP 199.34.228.65 (United States)
ASN#27647 WEEBLY
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-15 02:46:31 UTC
StatusLoading report..
IDS alerts0
Blocklist alert13
urlquery alerts No alerts detected
Tags None

Domain Summary (18)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 54.148.190.4
cdn2.editmysite.com (6) 11564 2012-11-02 14:27:29 UTC 2020-04-29 06:59:26 UTC 151.101.85.46
img-getpocket.cdn.mozilla.net (7) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
r3.o.lencr.org (7) 344 No data No data 23.36.76.226
firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-11-14 06:01:23 UTC 34.102.187.140
zepedalawfirm.com (1) 0 2017-03-27 05:03:20 UTC 2022-11-15 01:09:26 UTC 199.34.228.65 Unknown ranking
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-14 06:01:12 UTC 34.117.237.239
www.zepedalawfirm.com (19) 0 No data No data 199.34.228.65 Unknown ranking
ocsp.sca1b.amazontrust.com (2) 1015 2017-03-03 15:20:51 UTC 2019-03-27 04:05:54 UTC 54.230.245.118
ec.editmysite.com (2) 12806 2018-09-03 10:26:45 UTC 2020-04-22 02:18:25 UTC 35.82.13.103
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
fonts.gstatic.com (2) 0 2014-09-09 00:40:21 UTC 2022-11-14 23:26:00 UTC 172.217.21.163 Domain (gstatic.com) ranked at: 540
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
ocsp.globalsign.com (1) 2075 2012-07-20 17:46:16 UTC 2020-05-02 20:58:10 UTC 104.18.21.226
ocsp.pki.goog (10) 175 2018-07-01 06:43:07 UTC 2020-05-02 20:58:16 UTC 142.250.74.3
ajax.googleapis.com (1) 12905 2013-08-16 09:51:31 UTC 2022-11-14 22:05:13 UTC 142.250.74.106
ssl.google-analytics.com (1) 275 2018-06-15 20:32:37 UTC 2022-11-15 01:50:25 UTC 142.250.74.72
fonts.googleapis.com (2) 8877 2013-06-10 20:14:26 UTC 2022-11-14 17:53:40 UTC 142.250.74.10

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-15 2 zepedalawfirm.com/2014-executive-action.html Malware
2022-11-15 2 www.zepedalawfirm.com/2014-executive-action.html Malware
2022-11-15 2 www.zepedalawfirm.com/2014-executive-action.html Malware
2022-11-15 2 www.zepedalawfirm.com/files/main_style.css?1549320163 Malware
2022-11-15 2 www.zepedalawfirm.com/files/templateArtifacts.js?1549320163 Malware
2022-11-15 2 www.zepedalawfirm.com/uploads/2/2/8/3/22837988/7192290.jpg?138 Malware
2022-11-15 2 www.zepedalawfirm.com/uploads/2/2/8/3/22837988/2784085.png?1416452180 Malware
2022-11-15 2 www.zepedalawfirm.com/files/theme/search-text.png?1549320163 Malware
2022-11-15 2 www.zepedalawfirm.com/files/theme/search-button.png?1549320163 Malware
2022-11-15 2 www.zepedalawfirm.com/uploads/2/2/8/3/22837988/618700.jpg?103 Malware
2022-11-15 2 www.zepedalawfirm.com/uploads/2/2/8/3/22837988/4503207.jpg?247 Malware
2022-11-15 2 www.zepedalawfirm.com/files/theme/nav-saperator-light.jpg?1549320163 Malware
2022-11-15 2 www.zepedalawfirm.com/uploads/2/2/8/3/22837988/6099172.png?121 Malware

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.34.228.65
Date UQ / IDS / BL URL IP
2023-01-30 11:50:15 +0000 0 - 1 - 0 www.philscomputerlab.com/uploads/3/7/2/3/3723 (...) 199.34.228.65
2023-01-30 11:50:15 +0000 0 - 1 - 0 www.philscomputerlab.com/uploads/3/7/2/3/3723 (...) 199.34.228.65
2023-01-30 11:50:14 +0000 0 - 1 - 0 www.philscomputerlab.com/uploads/3/7/2/3/3723 (...) 199.34.228.65
2023-01-30 11:50:11 +0000 0 - 1 - 0 www.philscomputerlab.com/uploads/3/7/2/3/3723 (...) 199.34.228.65
2023-01-30 11:50:09 +0000 0 - 1 - 0 www.philscomputerlab.com/uploads/3/7/2/3/3723 (...) 199.34.228.65


Last 5 reports on ASN: WEEBLY
Date UQ / IDS / BL URL IP
2023-01-31 16:43:46 +0000 0 - 0 - 10 att-103193-101421.square.site/ 199.34.228.39
2023-01-31 16:34:09 +0000 0 - 0 - 3 www.diversifiedcareerservices.com/about-us.html 199.34.228.159
2023-01-31 16:01:49 +0000 0 - 0 - 13 xills.weebly.com/ 199.34.228.54
2023-01-31 16:01:30 +0000 0 - 0 - 12 loginscreeninc.square.site/ 199.34.228.40
2023-01-31 15:52:26 +0000 0 - 0 - 5 att-105198-104351.weeblysite.com/ 199.34.228.97


Last 5 reports on domain: zepedalawfirm.com
Date UQ / IDS / BL URL IP
2022-12-13 03:50:04 +0000 0 - 0 - 13 zepedalawfirm.com/immigration.html 199.34.228.65
2022-12-04 03:11:52 +0000 0 - 0 - 8 zepedalawfirm.com/contact-us.html 199.34.228.65
2022-11-22 01:58:58 +0000 0 - 0 - 11 zepedalawfirm.com/visa-bulletin.html 199.34.228.65
2022-11-15 02:46:31 +0000 0 - 0 - 13 zepedalawfirm.com/2014-executive-action.html 199.34.228.65
2022-11-08 03:19:04 +0000 0 - 0 - 8 zepedalawfirm.com/dallas-immigration-court.html 199.34.228.65


No other reports with similar screenshot

JavaScript

Executed Scripts (22)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (68)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9C297CCFD178EEC7E472FB64A6B2E34D4C7A6DEC32870F49982353E590196BA0"
Last-Modified: Mon, 14 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7100
Expires: Tue, 15 Nov 2022 04:44:39 GMT
Date: Tue, 15 Nov 2022 02:46:19 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3782
Cache-Control: max-age=118080
Date: Tue, 15 Nov 2022 02:46:19 GMT
Etag: "637218f5-1d7"
Expires: Wed, 16 Nov 2022 11:34:19 GMT
Last-Modified: Mon, 14 Nov 2022 10:31:17 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "314BA27975F458E13917B2BE91C9D5989A3E57C9E94B5A84DD52D0E21D27AE7F"
Last-Modified: Mon, 14 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12441
Expires: Tue, 15 Nov 2022 06:13:40 GMT
Date: Tue, 15 Nov 2022 02:46:19 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Alert, Retry-After, Content-Length, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 15 Nov 2022 02:44:20 GMT
cache-control: public,max-age=3600
age: 119
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    4736bac84ca28f2b1e961159fb4ea098
Sha1:   1319612979f53896fcfeacd4215c2715d4951e4c
Sha256: 5e81213e111ddf68c7f884f72b4e06fc4dc95eb902c3cf0762236b2418840dba
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: g0P8X6y5AxEESD6N9cJs1kJGl10/ERShWvXJCQTmCVetJ47XMzDwmIhhe5nSE3cKHETkZbv2xdo=
x-amz-request-id: HB341133ZKHFR06T
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 15 Nov 2022 02:14:05 GMT
age: 1934
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /2014-executive-action.html HTTP/1.1 
Host: zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         199.34.228.65
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=iso-8859-1
                                        
Date: Tue, 15 Nov 2022 02:46:19 GMT
Server: Apache
Location: http://www.zepedalawfirm.com/2014-executive-action.html
Content-Length: 263
Keep-Alive: timeout=10, max=73
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   263
Md5:    f918625fdb4a204e9ef6bbf51d2d3d2b
Sha1:   c5a47ac640051055a35942b3e1b719030bef8376
Sha256: d13cbaba19864f35d4bef8d1e571645e6b627236d0957fcc1a0f393461836115

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 15 Nov 2022 02:46:19 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.102.187.140
HTTP/2 200 OK
content-type: application/json
                                        
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Cache-Control, Retry-After, Content-Length, Expires, ETag, Pragma, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 15 Nov 2022 02:25:01 GMT
cache-control: public,max-age=3600
age: 1278
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /2014-executive-action.html HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         199.34.228.65
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 15 Nov 2022 02:46:19 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.zepedalawfirm.com
Vary: X-W-SSL,User-Agent
Location: https://www.zepedalawfirm.com/2014-executive-action.html
X-Host: blu138.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 470
Keep-Alive: timeout=10, max=67
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   470
Md5:    e9b73b6d6c0b1b6d76eb99cdf2803942
Sha1:   c9ec653e57bc632334de7518078f71829deb5f74
Sha256: 915463e04f8672810f867c1412b2574c7c626aad4a62d45c455d707c09790102

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6011
Cache-Control: max-age=115252
Date: Tue, 15 Nov 2022 02:46:20 GMT
Etag: "63720535-1d7"
Expires: Wed, 16 Nov 2022 10:47:12 GMT
Last-Modified: Mon, 14 Nov 2022 09:07:01 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: +z+ObZs/FKHCkmEPoJCy1A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.148.190.4
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hS1gjIJebeDxpL8SCm4IYKusxlI=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "75030B06314B844FD0C72B821BDD66ADF15979C0BBD2A34F630A3D542CDDCDE4"
Last-Modified: Tue, 15 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 15 Nov 2022 08:46:20 GMT
Date: Tue, 15 Nov 2022 02:46:20 GMT
Connection: keep-alive

                                        
                                            GET /2014-executive-action.html HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 15 Nov 2022 02:46:20 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.zepedalawfirm.com language=en; expires=Tue, 29-Nov-2022 02:46:20 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"860fa39efd6bddaba5668181a5b67fff-gzip"
Content-Encoding: gzip
X-Host: grn143.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 9318
Keep-Alive: timeout=10, max=73
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3794), with CRLF, LF line terminators
Size:   9318
Md5:    796f9d4f588a234dd515dd48b9e51402
Sha1:   5aacd1efb77fe9b776ed9d0f2ae5ceae0c042741
Sha256: 7c16fbfd1db224ed97d1bca43cb82cd1b57e9556ff1ba80dcb28bc4eba76ac5b

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 15 Nov 2022 02:46:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 15 Nov 2022 02:46:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 15 Nov 2022 02:46:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/site/main.js?buildTime=1549326559 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Fri, 28 Oct 2022 22:29:29 GMT
etag: "635c57c9-74804"
expires: Tue, 15 Nov 2022 07:43:44 GMT
cache-control: max-age=1209600
x-host: grn99.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 15 Nov 2022 02:46:20 GMT
age: 1191756
x-served-by: cache-sjc10083-SJC, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 21, 1
x-timer: S1668480381.981870,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 146400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32147)
Size:   146400
Md5:    81b8673c5d3aa3ab8c0574f2a8f0e3b4
Sha1:   2e0661bc7907d9e2703b3347c3fec579f0aef5d6
Sha256: 0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
                                        
                                            GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 15 Nov 2022 00:57:43 GMT
expires: Wed, 15 Nov 2023 00:57:43 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 6518
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65483)
Size:   33593
Md5:    a54a444f20643b131117dc2112cca05f
Sha1:   074964746b12ff1d30f7656310d6154ae1cc98b5
Sha256: aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
                                        
                                            GET /css/sites.css?buildTime=1549326559 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
last-modified: Wed, 02 Nov 2022 00:21:45 GMT
etag: W/"6361b819-347ac"
expires: Wed, 16 Nov 2022 08:07:39 GMT
cache-control: max-age=1209600
x-host: blu141.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 15 Nov 2022 02:46:20 GMT
age: 1103921
x-served-by: cache-sjc10048-SJC, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 164, 1
x-timer: S1668480381.988731,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29746
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   29746
Md5:    d10158b22b553f723d99dc78eaee6390
Sha1:   80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
Sha256: 939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
                                        
                                            GET /files/main_style.css?1549320163 HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/2014-executive-action.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: blu46.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text, with very long lines (368)
Size:   2258
Md5:    d780f430ac96a22c1015c9db12ca3090
Sha1:   2731a5961ccdfa8196eac7c39a931c20da0ac671
Sha256: 387070d8c3c76b567b27088a01c2f719325cb62718a0552a4d3014013cae92c5

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 15 Nov 2022 02:46:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "B2F5CBA5114A656FD8C05C57FBD663969C5ECF1B"
Expires: Tue, 15 Nov 2022 13:00:00 GMT
Last-Modified: Tue, 15 Nov 2022 01:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1032
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76a4a7eda854b51d-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    68119a18e59ffb310e918693a33ed591
Sha1:   9957839e11f091725149345a50d4330a4da50223
Sha256: 007713587154dfd26baa52aa19442a4d9f8512c3623962b2fd36dd82c5210d62
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 15 Nov 2022 02:46:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 15 Nov 2022 02:46:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/lang/en/stl.js?buildTime=1549326559& HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Mon, 07 Nov 2022 17:11:35 GMT
etag: "63693c47-2c1b7"
expires: Tue, 22 Nov 2022 10:09:02 GMT
cache-control: max-age=1209600
x-host: blu38.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 15 Nov 2022 02:46:21 GMT
age: 578238
x-served-by: cache-sjc10021-SJC, cache-bma1676-BMA
x-cache: HIT, MISS
x-cache-hits: 133, 0
x-timer: S1668480381.976837,VS0,VE171
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 32708
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65024)
Size:   32708
Md5:    47ecd46fdd9dc84622ce1294541d92ef
Sha1:   7aeda09a697e41f88f4cbad0843d94bb3fdb7a50
Sha256: ec251328b1cb905ffb368b273ab84ca8cf4f451218ed3412024ab56b48d0fbd0
                                        
                                            GET /css/old/fancybox.css?1549318948 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.85.46
HTTP/2 200 OK
content-type: text/css
                                        
server: nginx
last-modified: Tue, 08 Nov 2022 22:59:53 GMT
etag: "636adf69-f47"
expires: Wed, 23 Nov 2022 15:35:25 GMT
cache-control: max-age=1209600
x-host: grn142.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 15 Nov 2022 02:46:21 GMT
age: 472256
x-served-by: cache-sjc10045-SJC, cache-bma1676-BMA
x-cache: HIT, MISS
x-cache-hits: 72, 0
x-timer: S1668480381.988836,VS0,VE183
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1218
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3910)
Size:   1218
Md5:    b644e92258f4c7c0b4270047652d1e60
Sha1:   93734d52ee9e86a768159e514076051813c39cd9
Sha256: 29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
                                        
                                            GET /js/site/main-customer-accounts-site.js?buildTime=1549326559 HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Fri, 11 Nov 2022 17:05:34 GMT
etag: "636e80de-82588"
expires: Mon, 28 Nov 2022 13:31:51 GMT
cache-control: max-age=1209600
x-host: grn107.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 15 Nov 2022 02:46:21 GMT
age: 47669
x-served-by: cache-sjc10047-SJC, cache-bma1676-BMA
x-cache: HIT, MISS
x-cache-hits: 64, 0
x-timer: S1668480381.976239,VS0,VE204
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 159020
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32007)
Size:   159020
Md5:    19fd4a473c58275a9e8110c598292a56
Sha1:   3ff56cbf5a3677387aef743acdf1a8abf822d28d
Sha256: 89b155f71eeef3fb8d9c95ff95288c29a0b5b722d9c0a3dfdeadfea8b8032884
                                        
                                            GET /files/templateArtifacts.js?1549320163 HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/2014-executive-action.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:21 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn129.sf2p.intern.weebly.net
Content-Encoding: gzip


--- Additional Info ---
Magic:  exported SGML document, ASCII text, with very long lines (1630)
Size:   1632
Md5:    e0836e8203c22b8e4086f27e91e86f5a
Sha1:   28235e77f5a895c8cd411aff4a6ef4e6f7d419c2
Sha256: 32dbc4a2eeca39a57d35670f00e2cf59e03c279521e47506c56c5c36d8b664b6

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12794
Expires: Tue, 15 Nov 2022 06:19:35 GMT
Date: Tue, 15 Nov 2022 02:46:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12794
Expires: Tue, 15 Nov 2022 06:19:35 GMT
Date: Tue, 15 Nov 2022 02:46:21 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12794
Expires: Tue, 15 Nov 2022 06:19:35 GMT
Date: Tue, 15 Nov 2022 02:46:21 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa4cc31a8-ba2e-4cc0-bf6e-0daaf01962d2.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7504
x-amzn-requestid: 553a2ee3-9dcb-44ac-b0e1-e8ea660eedcc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bOAmqGAyoAMFv5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6368ae2a-7af9fba56c5ae9ca5f513668;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 07:05:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rRrM6hW5gFH8bLxrzQv5emBacEQrqldwEfD1M0YycB4XphG-XXwRuA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 03:32:33 GMT
age: 83628
etag: "78118517bfffe997c85f08bd9b7b7ac9270d9b02"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7504
Md5:    9459d8c5ec4b22476e1470e5476f70f7
Sha1:   78118517bfffe997c85f08bd9b7b7ac9270d9b02
Sha256: 647d0898ed6a38191ff91ca316e90a72d9a5ce563c3602a8d4c477c64f096be4
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1F54C0FA57EA62F131E173D4A365D6D2D4D10E0993EB69EAF9E27D3788A5DAF8"
Last-Modified: Sat, 12 Nov 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12794
Expires: Tue, 15 Nov 2022 06:19:35 GMT
Date: Tue, 15 Nov 2022 02:46:21 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af930b9-b854-4316-8425-07c6aa06477a.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11715
x-amzn-requestid: 20e508bd-6568-4225-9bee-c683a49d44f6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bdMhUHkpIAMFfJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636ec13b-7dc726b94a37fc667e2e6646;Sampled=0
x-amzn-remapped-date: Fri, 11 Nov 2022 21:40:11 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lp5eW92D8SbFtcQLk-LRSaSKNMNFYCW7XTALdNdrJxN6ebgdH8_1Dw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:52:43 GMT
age: 17618
etag: "5109c156b180727767fc03c411190ccc0d3fb5fc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11715
Md5:    cd5bdc050716bb76afe8090fc81617e7
Sha1:   5109c156b180727767fc03c411190ccc0d3fb5fc
Sha256: 9b13e7838946c6654dda17886c2ca8d42de934acb93f4bddb1008dfa1bd1ea99
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2600ea13-5799-4002-b4c4-17346e546f28.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7086
x-amzn-requestid: b38b60d9-78ed-449e-9549-89ec04332e12
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bOA1oE3HIAMF2Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6368ae8a-43dc43062e6d5cad5ef4ffa5;Sampled=0
x-amzn-remapped-date: Mon, 07 Nov 2022 07:06:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7kVtivZWvWnMU-gl8Kl-EmdIujRdKuQivxkaHoUI-giAdSV3LhaJEw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:51:33 GMT
age: 17688
etag: "ff06053f1c335644228a81b6caaae5a3e6f749fc"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7086
Md5:    cd518be3073897688dda8b3e1fe3ec4a
Sha1:   ff06053f1c335644228a81b6caaae5a3e6f749fc
Sha256: 25e9e36eca5fe29b7b37b6cd506c38c6a684f5c37d7c859d45d286a089315619
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31dd31c5-7b83-42d7-b534-fb8391ac7086.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10594
x-amzn-requestid: 528e9b30-ba34-4aef-b5b0-71cad9580bd0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bKuo_EXhoAMFtEA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63675e39-71222ac908406eeb061848f2;Sampled=0
x-amzn-remapped-date: Sun, 06 Nov 2022 07:11:53 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: vjOM-57TBG0yPsmFlS2ch7_ylKWffHpajgmCM7A7dVxQetoKYPXo6w==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:47:57 GMT
age: 17904
etag: "7da0425161b8c34ccf9837a56bf77d498cdb65ad"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10594
Md5:    e02b1cef4506be68e4a6fb309a88698c
Sha1:   7da0425161b8c34ccf9837a56bf77d498cdb65ad
Sha256: c886c7d128895c62a8ecde5202f4383d22555298d78ef91d63b5d3ebedf448a7
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b12e479-a09c-431c-aecf-6e63c60a01f1.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5882
x-amzn-requestid: a9d913e4-c9c1-4054-a9ff-c5ff5287c854
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bhQZ2H2loAMFsmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6370610b-63cf663851f2e04b7f2cb70a;Sampled=0
x-amzn-remapped-date: Sun, 13 Nov 2022 03:14:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 0DjdK2du8K9O1d0rcWaDO6yqWBuHYSSiEJmscryUraTH73vwcwubNg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 03:32:26 GMT
age: 83635
etag: "746804d683bea55f44d5f6456a7e69d0048e4f58"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5882
Md5:    fe4f5dc12e097182fed4de0161bc5b8a
Sha1:   746804d683bea55f44d5f6456a7e69d0048e4f58
Sha256: d8a2095cd57455bab301ae68b7478997f3db056039886d85301eb85d7d196cf4
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbdf53960-f239-44a8-b66a-ca2ce9268f98.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 15206
x-amzn-requestid: a04dc971-de49-4dc4-8bc2-2d3244d33ace
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bnEhpEJkoAMFV9A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6372b470-632efaa725c2b959692e9e77;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 21:34:40 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ucLWmapHlWoKDoeb_ff2qbZOKGJLLQuq6RoP9mpFWOCVAJ70t13yw==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:45:53 GMT
age: 18028
etag: "a5283e68020826f085fb4f06e3dcd36cef9eb067"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   15206
Md5:    962f43862a852bfa6766b9a2d8bfb99d
Sha1:   a5283e68020826f085fb4f06e3dcd36cef9eb067
Sha256: 7eee8aa0f5c6bce04a86fa16fb5d3e632d54792d79c550b044a40a6f070b89d4
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 15 Nov 2022 02:46:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/quattrocento/v17/OZpEg_xvsDZQL_LKIF7q4jP3w2j6.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.zepedalawfirm.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.217.21.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 35872
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 10 Nov 2022 00:05:26 GMT
expires: Fri, 10 Nov 2023 00:05:26 GMT
cache-control: public, max-age=31536000
age: 441655
last-modified: Wed, 27 Apr 2022 16:12:18 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 35872, version 1.0\012- data
Size:   35872
Md5:    62d2afa37918c2d8841c75898eadd68f
Sha1:   d6da38ee9ba1db21b7ee298f0018c2010d5ad882
Sha256: fe65e8f74381d5afc5a63c298f62b26c4b68531e9e2792e6fa63f4af24842596
                                        
                                            GET /s/rosario/v27/xfux0WDhWW_fOEoY2FP9zQ.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.zepedalawfirm.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         172.217.21.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 32332
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 09:20:20 GMT
expires: Wed, 08 Nov 2023 09:20:20 GMT
cache-control: public, max-age=31536000
age: 581161
last-modified: Mon, 18 Jul 2022 19:46:02 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 32332, version 1.0\012- data
Size:   32332
Md5:    8ea83423eb421b5c10afec23c4327753
Sha1:   4310fcd99af0f4c2ce00f4b448e61047032aedae
Sha256: 88cd1f5c17d40565f6eff217d07528a0ac35bf441a490ca73ea4ce7246886cea
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 15 Nov 2022 02:46:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 15 Nov 2022 02:46:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /uploads/2/2/8/3/22837988/7192290.jpg?138 HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/2014-executive-action.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:21 GMT
Content-Length: 9765
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 06:36:42 GMT
x-rgw-object-type: Normal
ETag: "ee15c51e7f7020bf0cb4d6a78bb6b8e7"
x-amz-request-id: tx0000000000000326fa027-006372fd7d-c695612-sfo1
X-Storage-Bucket: z80f2
X-Storage-Object: 80f2ccc1e946559a4cc1f0796c4d42bcf623cf90fbdfa4ff7425780634b54f7f
X-Host: grn44.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 136x130, components 3\012- data
Size:   9765
Md5:    ee15c51e7f7020bf0cb4d6a78bb6b8e7
Sha1:   454efc7785680617a6276aa06544fee92e77f051
Sha256: 80f2ccc1e946559a4cc1f0796c4d42bcf623cf90fbdfa4ff7425780634b54f7f

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /files/theme/social-icons.png?1549320163 HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/files/main_style.css?1549320163
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: image/png; charset=binary
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:21 GMT
Content-Length: 7646
Connection: keep-alive
Last-Modified: Sun, 03 May 2020 00:17:43 GMT
x-rgw-object-type: Normal
ETag: "509096dfbbb8959a0d90ec5c30664785"
x-amz-request-id: tx00000000000003cf82fb6-0063200aa4-c033918-sfo1
X-Storage-Bucket: z321c
X-Storage-Object: 321c9df01792ab2f80f171cf3549e04d9e1a1a26c436c2dade7c7bb997f97147
X-Host: grn133.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 336 x 29, 8-bit/color RGBA, non-interlaced\012- data
Size:   7646
Md5:    509096dfbbb8959a0d90ec5c30664785
Sha1:   39f4ea15ef6e016ee98727c6e071f1f62a0f9ff4
Sha256: 321c9df01792ab2f80f171cf3549e04d9e1a1a26c436c2dade7c7bb997f97147
                                        
                                            GET /uploads/2/2/8/3/22837988/2784085.png?1416452180 HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/2014-executive-action.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:21 GMT
Content-Length: 45457
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 06:36:40 GMT
x-rgw-object-type: Normal
ETag: "8e461fc99096a47863ff6584c0ce6ae1"
x-amz-request-id: tx000000000000031309eba-006372fd7d-c6aed46-sfo1
X-Storage-Bucket: z12c3
X-Storage-Object: 12c39016ead95445a6b6d86155bd2fd6572fb595c87d58815241989f97b31d01
X-Host: blu149.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes


--- Additional Info ---
Magic:  PNG image data, 409 x 286, 8-bit/color RGBA, non-interlaced\012- data
Size:   45457
Md5:    8e461fc99096a47863ff6584c0ce6ae1
Sha1:   1a422eadb6d28fc8cf4349de57d326cbe5f1d689
Sha256: 12c39016ead95445a6b6d86155bd2fd6572fb595c87d58815241989f97b31d01

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /files/theme/search-text.png?1549320163 HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/files/main_style.css?1549320163
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: image/png; charset=binary
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:22 GMT
Content-Length: 3594
Connection: keep-alive
Last-Modified: Sun, 03 May 2020 00:17:43 GMT
x-rgw-object-type: Normal
ETag: "99aad15300538264ab34f322f2ff0a78"
x-amz-request-id: tx000000000000024d407b5-0062fbc6cf-c033918-sfo1
X-Storage-Bucket: ze913
X-Storage-Object: e913eec1c945141dc25fc50c708bea790d519624579ae1c2698d119e67e73c91
X-Host: blu61.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 174 x 33, 8-bit/color RGBA, non-interlaced\012- data
Size:   3594
Md5:    99aad15300538264ab34f322f2ff0a78
Sha1:   625b24d45a5b2a41b32f268266e1fb8dadaddc81
Sha256: e913eec1c945141dc25fc50c708bea790d519624579ae1c2698d119e67e73c91

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /files/theme/search-button.png?1549320163 HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/files/main_style.css?1549320163
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: image/png; charset=binary
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:22 GMT
Content-Length: 2120
Connection: keep-alive
Last-Modified: Sun, 03 May 2020 00:17:43 GMT
x-rgw-object-type: Normal
ETag: "294a38867b268184cd8a7532379a48a1"
x-amz-request-id: tx00000000000000c4f70fa-006333c6eb-c699baa-sfo1
X-Storage-Bucket: zd551
X-Storage-Object: d55102feb442a4ad04ae617dd3c1461fc126b29e7110cd83cedebeeb1120b06e
X-Host: grn110.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 33 x 33, 8-bit/color RGBA, non-interlaced\012- data
Size:   2120
Md5:    294a38867b268184cd8a7532379a48a1
Sha1:   add1bb60d909c2ca910470ca31d8807535ad6d5c
Sha256: d55102feb442a4ad04ae617dd3c1461fc126b29e7110cd83cedebeeb1120b06e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         54.230.245.118
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=146416
Date: Tue, 15 Nov 2022 02:46:22 GMT
Etag: "63727e24-1d7"
Expires: Wed, 16 Nov 2022 19:26:38 GMT
Last-Modified: Mon, 14 Nov 2022 17:43:00 GMT
Server: ECS (nyb/1D07)
X-Cache: Miss from cloudfront
Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FJfQ7fuqzYOKh_qspaV1CKSoYlSjb2LHtnVmXIT9EtGfe_5Tu_Eyrg==
Age: 6218

                                        
                                            POST / HTTP/1.1 
Host: ocsp.sca1b.amazontrust.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         54.230.245.118
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=145312
Date: Tue, 15 Nov 2022 02:46:22 GMT
Etag: "63727e24-1d7"
Expires: Wed, 16 Nov 2022 19:08:14 GMT
Last-Modified: Mon, 14 Nov 2022 17:43:00 GMT
Server: ECS (bsa/EB19)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: bILMr00zDp1Rxuiv1YohfWhmHKIH4gv5KkX7U2RjU90N9dLEZq4WDA==
Age: 5114

                                        
                                            GET /uploads/2/2/8/3/22837988/background-images/378837242.jpg HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/2014-executive-action.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:22 GMT
Content-Length: 3739
Connection: keep-alive
ETag: "61c39c46-e9b"
X-Host: grn61.sf2p.intern.weebly.net


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (368)
Size:   3739
Md5:    2eeb3e560ca8f369be20ceb5858a4701
Sha1:   6c53e6b66c1bc6d0b93116e14fb79c30424bf36c
Sha256: ac2d9485acf7e9c29d94d31f19d3aedda958cd4f6119ddc888fbbde52d6078dd
                                        
                                            GET /uploads/2/2/8/3/22837988/618700.jpg?103 HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/2014-executive-action.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:22 GMT
Content-Length: 6839
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 06:36:36 GMT
x-rgw-object-type: Normal
ETag: "42a87b6feabad7e7bafd15257a8cbbb1"
x-amz-request-id: tx0000000000000321a7808-006372fd7e-c696eea-sfo1
X-Storage-Bucket: zd25b
X-Storage-Object: d25bc56ffb1dd04ed127c051467907730620f05f21a75a766d96b27d127bea8a
X-Host: blu65.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 103x139, components 3\012- data
Size:   6839
Md5:    42a87b6feabad7e7bafd15257a8cbbb1
Sha1:   6e5645e4402ba1acdfc3cf06fd7df6ee87b83226
Sha256: d25bc56ffb1dd04ed127c051467907730620f05f21a75a766d96b27d127bea8a

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /uploads/2/2/8/3/22837988/4503207.jpg?247 HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/2014-executive-action.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:22 GMT
Content-Length: 11664
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 06:36:45 GMT
x-rgw-object-type: Normal
ETag: "d6b94b8ef13b1b55b6b636253f9fc969"
x-amz-request-id: tx00000000000003150a0aa-006372fd7e-c67eadd-sfo1
X-Storage-Bucket: zf08e
X-Storage-Object: f08e52b71190ce8d30a064c12ce7809504467d512721db5ead50f95f79330530
X-Host: grn129.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 247x160, components 3\012- data
Size:   11664
Md5:    d6b94b8ef13b1b55b6b636253f9fc969
Sha1:   5fb08668657c3ab51a8189f6f94dc0075d2665be
Sha256: f08e52b71190ce8d30a064c12ce7809504467d512721db5ead50f95f79330530

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /files/theme/nav-bg-light.jpg?1549320163 HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/files/main_style.css?1549320163
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: image/jpeg; charset=binary
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:22 GMT
Content-Length: 1329
Connection: keep-alive
Last-Modified: Sun, 03 May 2020 00:17:41 GMT
x-rgw-object-type: Normal
ETag: "d4ddabca61f0c44928a69625931c3508"
x-amz-request-id: tx00000000000001e01bd96-006351d8cd-c696eea-sfo1
X-Storage-Bucket: z5a60
X-Storage-Object: 5a60fdcd631baba9a887b8528bd6e031305290aa300d5e5448cac22c105487ec
X-Host: grn147.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 30x45, components 3\012- data
Size:   1329
Md5:    d4ddabca61f0c44928a69625931c3508
Sha1:   cf1054b74d23fd9ff6a53af78318b0cd5ea490e1
Sha256: 5a60fdcd631baba9a887b8528bd6e031305290aa300d5e5448cac22c105487ec
                                        
                                            GET /files/theme/nav-saperator-light.jpg?1549320163 HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/files/main_style.css?1549320163
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: image/jpeg; charset=binary
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:22 GMT
Content-Length: 1238
Connection: keep-alive
Last-Modified: Sun, 03 May 2020 00:17:42 GMT
x-rgw-object-type: Normal
ETag: "64711fe311ff7aba6791b6d394c65c44"
x-amz-request-id: tx00000000000002dde1fd8-00636c142e-c699baa-sfo1
X-Storage-Bucket: zffbc
X-Storage-Object: ffbcfce943bb665b5c6016b179e2d4e88b9baadfceb77c84e8b9eb6e13fe5087
X-Host: grn147.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2x45, components 3\012- data
Size:   1238
Md5:    64711fe311ff7aba6791b6d394c65c44
Sha1:   cef16e21c769b6f042a14d231a26e6e386242d60
Sha256: ffbcfce943bb665b5c6016b179e2d4e88b9baadfceb77c84e8b9eb6e13fe5087

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /uploads/2/2/8/3/22837988/6099172.png?121 HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/2014-executive-action.html
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:22 GMT
Content-Length: 28913
Connection: keep-alive
Last-Modified: Thu, 14 Nov 2019 06:37:02 GMT
x-rgw-object-type: Normal
ETag: "8fdd41b7bc12d594c1c8922564a8e8ee"
x-amz-request-id: tx0000000000000323a862b-006372fd7e-c669cc6-sfo1
X-Storage-Bucket: zd279
X-Storage-Object: d27919573e25f15d103e8651370855ecdf9bf6e49c6836af0cca9bf076d00bac
X-Host: grn133.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes


--- Additional Info ---
Magic:  PNG image data, 121 x 163, 8-bit/color RGBA, non-interlaced\012- data
Size:   28913
Md5:    8fdd41b7bc12d594c1c8922564a8e8ee
Sha1:   e8c4c8e7be23fb0765cdb37a7b3a0f88e485db00
Sha256: d27919573e25f15d103e8651370855ecdf9bf6e49c6836af0cca9bf076d00bac

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.zepedalawfirm.com/
Origin: https://www.zepedalawfirm.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         35.82.13.103
HTTP/2 200 OK
                                        
date: Tue, 15 Nov 2022 02:46:22 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.zepedalawfirm.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 600
X-Firefox-Spdy: h2

                                        
                                            GET /files/theme/button.png?1549320163 HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/files/main_style.css?1549320163
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: image/png; charset=binary
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:22 GMT
Content-Length: 7282
Connection: keep-alive
Last-Modified: Sun, 03 May 2020 00:17:39 GMT
ETag: "12c692b0e68aac7dd5447ab68db321c5"
x-amz-request-id: tx0000000000000e930dd4e-005fece58a-131dd7c-las
X-Storage-Bucket: z7262
X-Storage-Object: 7262ccbcd3ca0a08d46a87f7dbcf73b52047be07cb375b98df31642bdee77b7a
X-Host: blu31.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 500 x 228, 8-bit/color RGBA, non-interlaced\012- data
Size:   7282
Md5:    12c692b0e68aac7dd5447ab68db321c5
Sha1:   82619856de28877adab6976cc9f60bb7503a6acd
Sha256: 7262ccbcd3ca0a08d46a87f7dbcf73b52047be07cb375b98df31642bdee77b7a
                                        
                                            POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 
Host: ec.editmysite.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1817
Origin: https://www.zepedalawfirm.com
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         35.82.13.103
HTTP/2 200 OK
content-type: text/plain; charset=UTF-8
                                        
date: Tue, 15 Nov 2022 02:46:22 GMT
content-length: 2
server: nginx
set-cookie: sp=036da9a2-6e78-408e-9481-d37e5f83cd75; Expires=Wed, 15 Nov 2023 02:46:22 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.zepedalawfirm.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   2
Md5:    444bcb3a3fcf8389296c49467f27e1d6
Sha1:   7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
Sha256: 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 15 Nov 2022 02:46:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /files/theme/banner-short.jpg?1549320163 HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/files/main_style.css?1549320163
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: image/jpeg; charset=binary
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:22 GMT
Content-Length: 46198
Connection: keep-alive
Last-Modified: Fri, 20 Nov 2020 15:38:33 GMT
x-rgw-object-type: Normal
ETag: "dd45f19d23b3c7fdba119bb4cb51a6ca"
x-amz-request-id: tx000000000000001fc810a-006284ccc0-b9fbc77-sfo1
X-Storage-Bucket: za794
X-Storage-Object: a7948dd4822eca38581c8c21065da681cbc0285fb53f233aedf07b8664e4038b
X-Host: blu68.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 960x144, components 3\012- data
Size:   46198
Md5:    dd45f19d23b3c7fdba119bb4cb51a6ca
Sha1:   10f94a6bc2979735ba48f53531b54f9ed027f374
Sha256: a7948dd4822eca38581c8c21065da681cbc0285fb53f233aedf07b8664e4038b
                                        
                                            GET /ga.js HTTP/1.1 
Host: ssl.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.72
HTTP/2 200 OK
content-type: text/javascript
                                        
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Tue, 15 Nov 2022 02:32:37 GMT
expires: Tue, 15 Nov 2022 04:32:37 GMT
cache-control: public, max-age=7200
age: 825
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1305)
Size:   17168
Md5:    01d5892e6e243b52998310c2925b9f3a
Sha1:   58180151b6a6ee4af73583a214b68efb9e8844d4
Sha256: 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 15 Nov 2022 02:46:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/2014-executive-action.html
Cookie: is_mobile=0; language=en; _snow_ses.464e=*; _snow_id.464e=c5410620-f2da-4141-9fa1-7a0d32cf3716.1668480382.1.1668480382.1668480382.e9c2b05b-292a-4c07-a015-f63cfb5149bb
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Server: nginx
Date: Tue, 15 Nov 2022 02:46:22 GMT
Content-Length: 4286
Connection: keep-alive
Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT
x-rgw-object-type: Normal
ETag: "4d27526198ac873ccec96935198e0fb9"
x-amz-request-id: tx000000000000001aecdb2-00628475f6-b9fbc64-sfo1
X-Storage-Bucket: z40a2
X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
X-Host: blu143.sf2p.intern.weebly.net
Accept-Ranges: bytes


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size:   4286
Md5:    4d27526198ac873ccec96935198e0fb9
Sha1:   b98d8b73ad6a0f7477c3397561b4aab37bf262aa
Sha256: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4
                                        
                                            POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1 
Host: www.zepedalawfirm.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.zepedalawfirm.com
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/2014-executive-action.html
Cookie: is_mobile=0; language=en; _snow_ses.464e=*; _snow_id.464e=c5410620-f2da-4141-9fa1-7a0d32cf3716.1668480382.1.1668480382.1668480382.e9c2b05b-292a-4c07-a015-f63cfb5149bb
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

search
                                         199.34.228.65
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Date: Tue, 15 Nov 2022 02:46:22 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn68.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=69
Connection: Keep-Alive


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Size:   348
Md5:    a944dd688c99d2901d6719be713271c0
Sha1:   4f5454d5d434829baf46671638610791758725d9
Sha256: adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9b23464-6c45-4e45-acd1-ac75bde164c7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7982
x-amzn-requestid: 35753773-2e2d-4def-a9ef-6224343d62e0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bklm8E9qoAMFQgQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371b62c-46372f151eb5ba9f0f5ec3a0;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 03:29:48 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T8ocx27r2N_V74-jyk23ATbGtw9TJBqSRB0MK0Kahre8ESS5kM_9lQ==
via: 1.1 0bb842bd5868b86440983b936bb0adee.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 14 Nov 2022 21:47:48 GMT
age: 23634
etag: "0d61ccdb959e45368a9f6ada26679974374d81a2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7982
Md5:    508368e91f7702272c5610f905e4204b
Sha1:   0d61ccdb959e45368a9f6ada26679974374d81a2
Sha256: bd3b3d55264bccbbf647577e3f93c35dd56840967713fcb948e67426c8a71b38
                                        
                                            GET /css?family=Rosario:400,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 15 Nov 2022 02:46:21 GMT
date: Tue, 15 Nov 2022 02:46:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /js/lang/en/stl.js?buildTime=1549318948& HTTP/1.1 
Host: cdn2.editmysite.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         151.101.85.46
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
last-modified: Tue, 08 Nov 2022 22:58:39 GMT
etag: "636adf1f-2c7b5"
expires: Wed, 23 Nov 2022 09:27:30 GMT
cache-control: max-age=1209600
x-host: grn14.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 15 Nov 2022 02:46:20 GMT
age: 494330
x-served-by: cache-sjc10042-SJC, cache-bma1676-BMA
x-cache: HIT, HIT
x-cache-hits: 31, 1
x-timer: S1668480381.983023,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33036
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /css?family=Quattrocento:400,700&subset=latin,latin-ext HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.zepedalawfirm.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 15 Nov 2022 02:46:21 GMT
date: Tue, 15 Nov 2022 02:46:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---