williamslawpanama.com/
46.250.220.133301 Moved Permanently 3.1 kB IP 46.250.220.133:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2036), with CRLF, LF line terminators
Hash 923fea37882dd70c5a6dcabfac04988d
3f483a7009b7698fa28ee3d274df36d369c39c85
5dae04dea691ac7361d4fc8918753ee8b631867ee031260393f6081b52e01f6d
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 3145
date: Sat, 26 Nov 2022 08:25:19 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
location: https://williamslawpanama.com/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14745
Expires: Sat, 26 Nov 2022 12:31:04 GMT
Date: Sat, 26 Nov 2022 08:25:19 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4029
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:19 GMT
Last-Modified: Sat, 26 Nov 2022 07:18:10 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 26 Nov 2022 08:17:32 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 467
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8c63b226725ca6e92e3ef586ac19e603
d21ae42a1927501e5293ff3564f52b49f6b0decc
141ac47acc3800e5d35a82012fa4b044277abad3a95dc24415f66fb72c972ae6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "141AC47ACC3800E5D35A82012FA4B044277ABAD3A95DC24415F66FB72C972AE6"
Last-Modified: Wed, 23 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6024
Expires: Sat, 26 Nov 2022 10:05:43 GMT
Date: Sat, 26 Nov 2022 08:25:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: XrJLvLqc57NfxS2vDEe49bwZ4z0kSCUqEkXloxxJ9i2nIrlphQOA0w3okD+ajtwfsE21k7NOnHg=
x-amz-request-id: 83J00SP1ZAHCQX7V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 26 Nov 2022 07:41:07 GMT
age: 2652
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 26 Nov 2022 08:25:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b33fb2a07c04cdd193c0d684373f29eb
f832db1cfc4beccdabc95f835f237b0e825985fb
a2a3c352382a61d7d86e394236f501ad3025b6002882db67a8c56aab39f56000
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A2A3C352382A61D7D86E394236F501AD3025B6002882DB67A8C56AAB39F56000"
Last-Modified: Sat, 26 Nov 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 26 Nov 2022 14:25:19 GMT
Date: Sat, 26 Nov 2022 08:25:19 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 26 Nov 2022 08:08:54 GMT
cache-control: public,max-age=3600
age: 985
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6241
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:19 GMT
Last-Modified: Sat, 26 Nov 2022 06:41:18 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b33fb2a07c04cdd193c0d684373f29eb
f832db1cfc4beccdabc95f835f237b0e825985fb
a2a3c352382a61d7d86e394236f501ad3025b6002882db67a8c56aab39f56000
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A2A3C352382A61D7D86E394236F501AD3025B6002882DB67A8C56AAB39F56000"
Last-Modified: Sat, 26 Nov 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21599
Expires: Sat, 26 Nov 2022 14:25:19 GMT
Date: Sat, 26 Nov 2022 08:25:20 GMT
Connection: keep-alive
push.services.mozilla.com/
34.223.160.237101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.223.160.237:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Ix6suUJ5L1swPatnqU+hxQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: bDeV8b3+JNQ/X2hM5tBqn9fTmls=
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 9bb1d65fb9faafd7528fdb6c7d17dbf0
cf9ef51d7cd4b6b8410757528aded7955a43f3b4
5b8e887fd5954443117faecaabc4cbaaeb7751c3a9fcd4b5bec14a8e8093c49e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:20 GMT
Etag: "6380d2f5-118"
Server: ECS (amb/6B8C)
Content-Length: 280
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtm.js?id=GTM-5KGMTLS
142.250.74.168200 OK 65 kB URL HTTP/2 www.googletagmanager.com/gtm.js?id=GTM-5KGMTLS
IP 142.250.74.168:0
File type ASCII text, with very long lines (2926)
Hash f0dea1c433fd180bddecdd689ee43e85
f9a662b39b8f6787ee3af212f5d0d754c4b6e98c
9eeb36267d9364f999713ccd4c3a6aac75ea92d86ce934f26a5ae208d5dc0eb5
GET /gtm.js?id=GTM-5KGMTLS HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 26 Nov 2022 08:25:20 GMT
expires: Sat, 26 Nov 2022 08:25:20 GMT
cache-control: private, max-age=900
last-modified: Sat, 26 Nov 2022 06:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65249
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e388353a642bc503beff27c23339e2b5
7849301df8cbfa3f9c019b1d4033b66e0f44c4bd
5e595e9ce96c6147c3ff79ebba0068ddb0d997237a671936cb05d9575c59a424
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Sat, 26 Nov 2022 06:41:08 GMT
expires: Sat, 26 Nov 2022 08:41:08 GMT
cache-control: public, max-age=7200
age: 6253
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/viewthroughconversion/701882080/?random=1669451120120&cv=11&fst=1669451120120&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwilliamslawpanama.com%2F&tiba=Home%20%7C%20Williams%20%26%20Associates&auid=1243186729.1669451120&rfmt=3&fmt=4
142.250.74.162200 OK 863 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/701882080/?random=1669451120120&cv=11&fst=1669451120120&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwilliamslawpanama.com%2F&tiba=Home%20%7C%20Williams%20%26%20Associates&auid=1243186729.1669451120&rfmt=3&fmt=4
IP 142.250.74.162:0
File type ASCII text, with very long lines (1827), with no line terminators
Hash 95efdc9d9c50eb2b64dc3917646e756a
fb491c5b6221eeab583d171f66ca55d552972bb0
c5c7d580f6aca4b9aaa1835a55e14ef4eccadbb0c53e39cb07051995ee025e4b
GET /pagead/viewthroughconversion/701882080/?random=1669451120120&cv=11&fst=1669451120120&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fwilliamslawpanama.com%2F&tiba=Home%20%7C%20Williams%20%26%20Associates&auid=1243186729.1669451120&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 08:25:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 863
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sat, 26-Nov-2022 08:40:21 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a22bc94a1116f343d9c3377cfd4fc5b2
b0bad6a620abd0c33a96c32721ad87849da9f9e6
294cd4b44650b17a93cbe9a4de887ad1da8ab8c11105707cccff17812a8d5890
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
williamslawpanama.com/
46.250.220.133200 OK 18 kB IP 46.250.220.133:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1827), with CRLF, LF line terminators
Hash a4d65c46c2730fe72f0bdbc03ac638fa
abad2472bafda9054703bfbf5da268b09b39820a
2cc8b247b4aeebddaa5dc04a7414958dcdf2a34b109c4580b69fcb45f03f2f8f
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
access-control-allow-origin: *
content-type: text/html; charset=UTF-8
link: <https://williamslawpanama.com/wp-json/>; rel="https://api.w.org/", <https://williamslawpanama.com/wp-json/wp/v2/pages/1622>; rel="alternate"; type="application/json", <https://williamslawpanama.com/>; rel=shortlink
x-litespeed-cache-control: public,max-age=578304
x-litespeed-tag: b27_HTTP.200,b27_front,b27_URL.6666cd76f96956469e7be39d750cc7d9,b27_F,b27_Po.1622,b27_PGS,b27_
etag: "8024-1669424625;br"
x-litespeed-cache: hit
vary: Accept-Encoding
x-qc-cache: miss
content-length: 18243
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
williamslawpanama.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
46.250.220.133200 OK 30 kB URL HTTP/2 williamslawpanama.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 46.250.220.133:0
File type ASCII text, with very long lines (65447)
Hash 34f918ada1fe4f01c5a4b90065bbc37a
a731f6ce2d413805e39ae45994012b1bd5ea1e2b
eba158d5ab26a5a54a3dcfcea1072c636f44e92fc2eb30a3f27cd5be3f891dfc
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:20 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:32:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643857-1669451120;br"
x-qc-cache: hit
content-encoding: br
content-length: 30273
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 619fa0039b94697fc8a5bd24f57e8aa2
53a366391a51d625029cc6d32fb4e8b6060990fd
dff604305831a0399aa44b2fac806e43512afa846569ba6e5685eca6495d9fa5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
williamslawpanama.com/wp-content/plugins/wysija-newsletters/css/validationEngine.jquery.css?ver=2.13
46.250.220.133200 OK 994 B URL HTTP/2 williamslawpanama.com/wp-content/plugins/wysija-newsletters/css/validationEngine.jquery.css?ver=2.13
IP 46.250.220.133:0
File type ASCII text, with very long lines (4684)
Hash 7a1874f262d50da5043539fad5cb1c86
d2424e2fd906cba60dedfb3f2b5adfd029f91265
0c8ded67a06f5f60097b9a51acb149933bad9da812e49a3ea6c16a7a7cc3889f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wysija-newsletters/css/validationEngine.jquery.css?ver=2.13 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: text/css
last-modified: Wed, 21 Aug 2019 22:25:55 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643859-1669451121;br"
x-qc-cache: miss
content-length: 994
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 30f833b25d6e5af2229d9584c6f6cf97
ee79c3fa994d53c1d0687ca61353d63cce459e25
1bc091991c4663dbc86ae735e47ddc3e887a24661050ad9f24b8d458bfd11a6b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash e7106558cabb7265be8f5d5e6c9320c8
122cb16bb0ad18bac3a89771e43e9d7e6d5842ac
43e46d3bbea748fd7ca4300afc1ab9b0956c44a33696464e880cf6c288ea0dad
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6Ld-rfkUAAAAAPGEb6RBrDXQAc0BXo9IT2VY1qtG&ver=3.0
142.250.74.164200 OK 585 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6Ld-rfkUAAAAAPGEb6RBrDXQAc0BXo9IT2VY1qtG&ver=3.0
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash f7c39e1348ef27b4ebf1e398e3ea121e
d5910cd7382b0cf3601821c7a74e7f7b7d60c3b8
4e6060f1e75e0578a58fc0fface942b2bb71f00cd33406e731d26e441268ed24
GET /recaptcha/api.js?render=6Ld-rfkUAAAAAPGEb6RBrDXQAc0BXo9IT2VY1qtG&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
expires: Sat, 26 Nov 2022 08:25:21 GMT
date: Sat, 26 Nov 2022 08:25:21 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 585
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12912
Expires: Sat, 26 Nov 2022 12:00:33 GMT
Date: Sat, 26 Nov 2022 08:25:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12912
Expires: Sat, 26 Nov 2022 12:00:33 GMT
Date: Sat, 26 Nov 2022 08:25:21 GMT
Connection: keep-alive
www.gstatic.com/firebasejs/3.7.5/firebase.js
142.250.74.163200 OK 101 kB URL HTTP/2 www.gstatic.com/firebasejs/3.7.5/firebase.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (1811)
Size 101 kB (101051 bytes)
Hash f0a9e7214762cbe4d3044ca8e71ff645
7eea4d28df0b412f1636deb746e232bbbd4270dd
02f69d854a5a0ef957511c90dd3216cf0c8c0d764d5d669235d90f0fdb544cd3
GET /firebasejs/3.7.5/firebase.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 101051
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 19 Nov 2022 10:20:40 GMT
expires: Sun, 19 Nov 2023 10:20:40 GMT
cache-control: public, max-age=31536000
age: 597881
last-modified: Tue, 04 Apr 2017 22:06:09 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googleadservices.com/pagead/conversion.js
142.250.74.66200 OK 17 kB URL HTTP/2 www.googleadservices.com/pagead/conversion.js
IP 142.250.74.66:0
File type ASCII text, with very long lines (2772)
Hash ac7574cbc5b2e85b7ddfa76b8657e59d
2bbeec5531576d6352b1c2b74e0e05c1ea10251d
bdf1e52afba9d671ea698707f97e8609de6360c502dc7b6eed2f40f979e08387
GET /pagead/conversion.js HTTP/1.1
Host: www.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Sat, 26 Nov 2022 08:25:21 GMT
expires: Sat, 26 Nov 2022 08:25:21 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 16359567893097152046
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 16827
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8bb181e3f5ca898c6e31a8efc2e28291
eda3a91f8e2cbc5467da08ad85e6f6a30702b66c
0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0"
Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12912
Expires: Sat, 26 Nov 2022 12:00:33 GMT
Date: Sat, 26 Nov 2022 08:25:21 GMT
Connection: keep-alive
fonts.googleapis.com/css?family=Libre+Baskerville%3A700
142.250.74.10200 OK 862 B URL HTTP/2 fonts.googleapis.com/css?family=Libre+Baskerville%3A700
IP 142.250.74.10:0
Hash 0d067b574e1aa42d792ccd996d7839bf
cb875aa01e2e1e170e30ca1262e3551e43f66377
75c1d617b0e004f3e421a5b3190185eb6f0f69fb0b9cfacf0fc980cd4cc68483
GET /css?family=Libre+Baskerville%3A700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 08:25:21 GMT
date: Sat, 26 Nov 2022 08:25:21 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
34.120.237.76200 OK 3.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a783df85f30f9c555f9df6b99f61744d
61f9bed607e81606be78285596acdc5e0e4f4994
19db42201d0fa059f680d890ede6683c04e893e6308a2256d0203f826a7f34de
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcf04cc9f-ee4b-42fd-914f-cd86b9dc30eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3502
x-amzn-requestid: ca3f2610-e03c-48a7-abb3-fbbab76f63d2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCvYUHO5IAMFqDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637dc5ce-7e36137711dc4668278c1c94;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 07:03:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QS3ZKYetcm87GNwSr34eRPF2d4r8ppwf3fT19aV-u84f7ObX4bU8wQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 07:13:26 GMT
age: 4315
etag: "61f9bed607e81606be78285596acdc5e0e4f4994"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lawyers-attorneys.vamtam.com/wp-content/uploads/2014/09/icon-2.png
172.66.43.80200 OK 306 B URL HTTP/2 lawyers-attorneys.vamtam.com/wp-content/uploads/2014/09/icon-2.png
IP 172.66.43.80:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 28337dcb31074a8c653384703c756c95
6b525bf1d82af5187a5ec28711f5f8dd9caff7e3
3545faf8cb3700df00e7bf49844f9d5c23505e2f72735a2b8a01c70ed43b6ead
GET /wp-content/uploads/2014/09/icon-2.png HTTP/1.1
Host: lawyers-attorneys.vamtam.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Sat, 26 Nov 2022 08:25:21 GMT
content-type: image/webp
content-length: 306
cache-control: max-age=315360000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=1571
content-disposition: inline; filename="icon-2.webp"
access-control-allow-origin: *
etag: "5421e233-623"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 23 Sep 2014 21:12:19 GMT
referrer-policy: no-referrer, strict-origin-when-cross-origin
vary: Accept
x-content-type-options: nosniff
x-download-options: noopen
x-powered-by: WordOps
x-xss-protection: 1; mode=block
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5dMKczrNzGFeuOfmxhuMjJSrUzQ9lei9Fr%2FFN87mv%2F1RKu3MsqRtPXXNMnH0Iwozw4IxkICXfgXmhNtDACagQRo8N%2Bv2iNQalJ73M2yfzJrqufj6sjpE4DqSg6oz5B0VkTYt8uOZGCfnVW%2FWFvE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 77013ba4cb67fac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5088223f5973e3cd56f03f50a1e84b79
0b6c9b51d10762a4747286ab5b1c2354fa39c622
8159e4f7eec7bea518bb29e3fdb070bab4fb70116205577f7b7d74ad4d0dfbc7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcc7a5b86-3ad1-40c7-b173-8a9ac078c227.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8913
x-amzn-requestid: d0a9414c-eccf-44e8-adb7-92654544eeb5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLWWXEpeIAMFnzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381375b-5825510666b3e80a5f83cafa;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:44:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LDrq5UcFhG63XFZhmeS5Z_mEkwrvuQ2bLfT8hV9I3E1s1lJLZF5Dww==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:46:24 GMT
age: 38337
etag: "0b6c9b51d10762a4747286ab5b1c2354fa39c622"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b1c6878914466cfece680fa7cb73502
47fac81a2dd809df5c42ca1362f71d553572d2b1
6458883dfa2bdfd483e92e5f847a229508ef00ce1dbd11f49eec369d0bd3160a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f5318cc-4728-4160-afd1-9d20b79b7de9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9914
x-amzn-requestid: 4db4ed29-20b4-4ca7-8835-2463d0989d5b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVFHQYIAMFc4Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135b9-613da006118724124e345b29;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7cJmhEGkKqLUQUMqGuYtWBeu_1nlEUAxgTMy4ABekPJYrJP95wE6Jg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:59:05 GMT
age: 37576
etag: "47fac81a2dd809df5c42ca1362f71d553572d2b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A400
142.250.74.10200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400
IP 142.250.74.10:0
Hash 11426188ae3b7c8667d77e97aaef72c4
ff9b466f7dcb3992219a8f600f468bf863140495
a3bca3144c5084e74a81e8bc5e3af89ab9b0e12e4937b1b1add42700d579c6c8
GET /css?family=Open+Sans%3A400 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 08:25:21 GMT
date: Sat, 26 Nov 2022 08:25:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8dc4b8a7e9f7f4f84f0da568b43392b
3d32bff85cb7ec118c4496d0c3802829fdc9af3b
4b0ffde427085c796a7a5823604b29a4af43dbb93e99ec41f34feb37f52ac7d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F34ec689c-96b7-450b-b77e-e0ecb4d89c3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9049
x-amzn-requestid: 6cbd9639-c29d-4ff4-8091-3168f64f4c78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cLVVGHzKoAMFSuA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638135ba-100ea4235fdf1df8491041c8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 21:38:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OJZkZ18TlSgdBWsmSroQPIcYIvBFvz5-7hu9_GravTcz6zqxKXHZrg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 21:43:36 GMT
age: 38505
etag: "3d32bff85cb7ec118c4496d0c3802829fdc9af3b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: 47c2739d-73c5-4d91-914c-fe635cb09772
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b1U8xGxgIAMF-qQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63786851-6fbe19dc5c4c20dd657604e3;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 05:23:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ezHvyK3va4SioabOjSittTiLQRs_Q8k4TPxkiGp_svtZ8omDPTUN-A==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 26 Nov 2022 05:04:28 GMT
age: 12053
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e922b25acaba2d7f8921ebe973a4b261
5dd4c237c84a652cbcf3db163529f3788ceafc46
a7856c7777aa01b671ddae097494f2b031cbbddc7b244fe8714a8c02b85d8589
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b05606331c6f88a724d9e404e62974e4
72176bc6b618fbbe567b5746ed54e14d381a9815
7179b3d4ee227d9bf6d768a5fb1a9499f285d5949d21893c9a6997da8ea7b026
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 69b4c95baca69139e9e4f7e5ffa6bace
a33af721a9defcb815716234aafdb69de7169455
9f752625bea112bc5402067fd695ba893590e6de9844de640a663e4e8fdc1475
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:21 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 9bb1d65fb9faafd7528fdb6c7d17dbf0
cf9ef51d7cd4b6b8410757528aded7955a43f3b4
5b8e887fd5954443117faecaabc4cbaaeb7751c3a9fcd4b5bec14a8e8093c49e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4880
Cache-Control: max-age=113556
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:21 GMT
Etag: "6380d2f5-118"
Expires: Sun, 27 Nov 2022 15:57:57 GMT
Last-Modified: Fri, 25 Nov 2022 14:36:37 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 280
williamslawpanama.com/wp-content/litespeed/js/3e2994a162df44d5a7017b6c73788e23.js?ver=3741e
46.250.220.133200 OK 286 kB URL HTTP/2 williamslawpanama.com/wp-content/litespeed/js/3e2994a162df44d5a7017b6c73788e23.js?ver=3741e
IP 46.250.220.133:0
File type ASCII text, with very long lines (27187)
Size 286 kB (286304 bytes)
Hash 21c6f77aad1d7a65b6bd69a0841796fd
d224cb24bf30bf343bcc8c82f98a8bc785c376e4
7fa5dd88b24872b8c788bf489bfca3ea52bc2045377003c1ae08b51761497ebe
Analyzer Verdict Alert fortinet Malware
GET /wp-content/litespeed/js/3e2994a162df44d5a7017b6c73788e23.js?ver=3741e HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Fri, 25 Nov 2022 21:02:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643858-1669451121;br"
x-qc-cache: miss
content-length: 286304
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/vc-extensions-bundle/css/admin_icon.css?ver=6.0.3
46.250.220.133200 OK 977 B URL HTTP/2 williamslawpanama.com/wp-content/plugins/vc-extensions-bundle/css/admin_icon.css?ver=6.0.3
IP 46.250.220.133:0
Hash 680f76cb8d2a19a977ea8db51b79218f
19df5fd7c3effbc4ac4eba4fa23a9c212dd3a34e
085f85405910c74b9bcf2432600b5d63b2921633c35628f8ca5e6bd42ae94008
GET /wp-content/plugins/vc-extensions-bundle/css/admin_icon.css?ver=6.0.3 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: text/css
last-modified: Wed, 21 Aug 2019 21:12:52 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643860-1669451121;br"
x-qc-cache: miss
content-length: 977
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
46.250.220.133200 OK 848 B URL HTTP/2 williamslawpanama.com/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 46.250.220.133:0
Hash c962ba8e7d42ff9da18392b41dad5151
7b89bc5e6ad161df2e6d7f7fb3ad894aa04b827f
322a4949c5bdd82eb80c13bbbd407ce30a7ad226685c54270d246cb6960e524e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: text/css
last-modified: Tue, 06 Sep 2022 20:57:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643861-1669451121;br"
x-qc-cache: miss
content-length: 848
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/themes/lawyers-attorneys/wpv_theme/assets/css/select2.css?ver=6.0.3
46.250.220.133200 OK 2.2 kB URL HTTP/2 williamslawpanama.com/wp-content/themes/lawyers-attorneys/wpv_theme/assets/css/select2.css?ver=6.0.3
IP 46.250.220.133:0
Hash 9f48ce9bfc3bf777496a68513edbd08e
b4c4a6f82fec84a854c3b674a3e0e4ee80997b29
d1aa243c76ef84ddf3529b90c47b491eeff4e453c29f1a9b637bbe11fc90dfb8
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/lawyers-attorneys/wpv_theme/assets/css/select2.css?ver=6.0.3 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 19:55:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643862-1669451121;br"
x-qc-cache: miss
content-length: 2171
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.3.0.2
46.250.220.133200 OK 9.5 kB URL HTTP/2 williamslawpanama.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.3.0.2
IP 46.250.220.133:0
File type Unicode text, UTF-8 text, with very long lines (7136)
Hash 8128c8c07a7fe04c1fb66034012cd20e
dcc0b9c6e5080b15e42abdd67af8ae65552a8e09
8405885cbfb61f8bcf59dc2ee8e70f2fc0e66616c042d168d31e074ed15f7349
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.3.0.2 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: text/css
last-modified: Wed, 21 Aug 2019 21:11:25 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643864-1669451121;br"
x-qc-cache: miss
content-length: 9548
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=6.0.3
46.250.220.133200 OK 4.5 kB URL HTTP/2 williamslawpanama.com/wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=6.0.3
IP 46.250.220.133:0
File type ASCII text, with very long lines (27639), with no line terminators
Hash 9a93ae1de173786cb8670757ce07ed80
170b12a94a2ca458187d9f25c707c3f870bec587
b260eed4f4b87de1f3bbdbf96abfb9c75eba4ae837e75cf089bf52e2ef26108d
GET /wp-content/uploads/smile_fonts/Defaults/Defaults.css?ver=6.0.3 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: text/css
last-modified: Fri, 24 May 2019 17:47:11 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643865-1669451121;br"
x-qc-cache: miss
content-length: 4453
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/themes/lawyers-attorneys/wpv_theme/assets/css/magnific.css?ver=6.0.3
46.250.220.133200 OK 1.5 kB URL HTTP/2 williamslawpanama.com/wp-content/themes/lawyers-attorneys/wpv_theme/assets/css/magnific.css?ver=6.0.3
IP 46.250.220.133:0
Hash 22a08a7638f0a2a831456bdc2ff631d1
684562c8ba309bd993f1a1eb969f92fc730c7e97
16e591d9baebed0084aa1301054da03b24af2aa49b066a626c420165effd9b00
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/lawyers-attorneys/wpv_theme/assets/css/magnific.css?ver=6.0.3 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 19:55:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643866-1669451121;br"
x-qc-cache: miss
content-length: 1475
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
46.250.220.133200 OK 4.0 kB URL HTTP/2 williamslawpanama.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 46.250.220.133:0
File type ASCII text, with very long lines (11126)
Hash 7e058b51f939eacfa31cdface14dded5
9d732e5afdeb42edef9e1b9631b7e95e054787cc
4ece5b00423755d8f4121ce382c8ea4dc44c241f28f150abe19caa85d0b0acc1
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:32:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643867-1669451121;br"
x-qc-cache: miss
content-length: 3995
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/wp-retina-2x/app/picturefill.min.js?ver=1662497879
46.250.220.133200 OK 5.0 kB URL HTTP/2 williamslawpanama.com/wp-content/plugins/wp-retina-2x/app/picturefill.min.js?ver=1662497879
IP 46.250.220.133:0
File type ASCII text, with very long lines (11620)
Hash 411c530cfa9e62142f61a8f81e615801
d460651ff7bc2e837ddd34b050af0891d8f2f4b9
26d9ebb86902a4e3cbd2a6dc4a030d2054406c804c27fe9ed4296174937973d3
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/wp-retina-2x/app/picturefill.min.js?ver=1662497879 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:57:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643871-1669451121;br"
x-qc-cache: miss
content-length: 4958
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/uploads/2017/03/Logo.png
46.250.220.133200 OK 6.1 kB URL HTTP/2 williamslawpanama.com/wp-content/uploads/2017/03/Logo.png
IP 46.250.220.133:0
File type PNG image data, 600 x 100, 8-bit colormap, non-interlaced\012- data
Hash 25f7fb1a1625d93b4932302d99b7bc43
9a702e427e9f8b5282290efe71c58bf1ddeef99d
9295ccf37f99449c529c28bd29de439ce866e702e97e10a97f42ec0090d0a86b
GET /wp-content/uploads/2017/03/Logo.png HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: image/png
last-modified: Mon, 15 Aug 2022 23:55:23 GMT
accept-ranges: bytes
etag: "13643872-1669451121;;;"
x-qc-cache: miss
content-length: 6136
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/uploads/2017/03/logo_williams_icon_bw.png
46.250.220.133200 OK 8.1 kB URL HTTP/2 williamslawpanama.com/wp-content/uploads/2017/03/logo_williams_icon_bw.png
IP 46.250.220.133:0
File type PNG image data, 600 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 0175ba2c055d291fc1e3d5a3914f6245
7b355fca426991248bdc2e09f975d6f3f038b103
ba4bbeeba2515c2545867e3a3b15320e3602b9926e4d62c32692163dda948805
GET /wp-content/uploads/2017/03/logo_williams_icon_bw.png HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: image/png
last-modified: Mon, 15 Aug 2022 23:55:20 GMT
accept-ranges: bytes
x-litespeed-tag: 2188113_IMG
etag: "13643873-1669451121;;;"
x-qc-cache: miss
content-length: 8118
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/qtranslate-x/flags/gb.png
46.250.220.133200 OK 398 B URL HTTP/2 williamslawpanama.com/wp-content/plugins/qtranslate-x/flags/gb.png
IP 46.250.220.133:0
File type PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash c37d7808c8c177a0074f40217bc3bb02
19d5ebaaca76dcfdeb4566466fadafdb75579bba
78cba0d68a87a8db2d5fd6b38d222ab74c4af7a11fe8c716dee390ec0582aecd
GET /wp-content/plugins/qtranslate-x/flags/gb.png HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: image/png
last-modified: Wed, 21 Aug 2019 21:12:28 GMT
accept-ranges: bytes
etag: "13643874-1669451121;;;"
x-qc-cache: miss
content-length: 398
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/qtranslate-x/flags/es.png
46.250.220.133200 OK 202 B URL HTTP/2 williamslawpanama.com/wp-content/plugins/qtranslate-x/flags/es.png
IP 46.250.220.133:0
File type PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 3658c3d48f41cd6fd98e61a3e34e76ca
d9fdb16a11ac1a54b2ae60ed34a67fa723b2529b
e4f0e60f0eac484185763cb71b42c3157427ed4b26aff7bc67018e5fc85ab1f6
GET /wp-content/plugins/qtranslate-x/flags/es.png HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: image/png
last-modified: Wed, 21 Aug 2019 21:12:28 GMT
accept-ranges: bytes
etag: "13643875-1669451121;;;"
x-qc-cache: miss
content-length: 202
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/qtranslate-x/flags/cn.png
46.250.220.133200 OK 186 B URL HTTP/2 williamslawpanama.com/wp-content/plugins/qtranslate-x/flags/cn.png
IP 46.250.220.133:0
File type PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 04608ee34d6507d37fc007add27c32be
8636fa68516d523dcb1e5fae675dc3bc0f0372f3
74458416cb45a2fa485021ca3e505eb8b3d7bda4cf1ec845cd73dacd499d3b00
GET /wp-content/plugins/qtranslate-x/flags/cn.png HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: image/png
last-modified: Wed, 21 Aug 2019 21:12:28 GMT
accept-ranges: bytes
etag: "13643876-1669451121;;;"
x-qc-cache: miss
content-length: 186
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/qtranslate-x/flags/ru.png
46.250.220.133200 OK 123 B URL HTTP/2 williamslawpanama.com/wp-content/plugins/qtranslate-x/flags/ru.png
IP 46.250.220.133:0
File type PNG image data, 18 x 12, 8-bit/color RGB, non-interlaced\012- data
Hash 6f7a9742764fbce308570ad82303612a
d12bd1b8deecc984118e7207cd3dff85f2e11573
f80cf07a16232db71901a60aee87bd82a695eb5f55b139806c55b712c3ed4a87
GET /wp-content/plugins/qtranslate-x/flags/ru.png HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: image/png
last-modified: Wed, 21 Aug 2019 21:12:28 GMT
accept-ranges: bytes
etag: "13643877-1669451121;;;"
x-qc-cache: miss
content-length: 123
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/revslider/admin/assets/images/dummy.png
46.250.220.133200 OK 114 B URL HTTP/2 williamslawpanama.com/wp-content/plugins/revslider/admin/assets/images/dummy.png
IP 46.250.220.133:0
File type PNG image data, 240 x 240, 1-bit colormap, non-interlaced\012- data
Hash 9b4f2764cc40c19e43530e22ef1b8ed4
4cd56b1e08a161bd37a677c1a550276701430963
5ff59ca4be4e1202223fc8725a3ce04fd7ee56b7d54f77f23e24330d81174a53
GET /wp-content/plugins/revslider/admin/assets/images/dummy.png HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: image/png
last-modified: Wed, 21 Aug 2019 21:11:33 GMT
accept-ranges: bytes
etag: "13643878-1669451121;;;"
x-qc-cache: miss
content-length: 114
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/themes/lawyers-attorneys/vamtam/assets/cubeportfolio/css/cubeportfolio.min.css?ver=4.4.0
46.250.220.133200 OK 12 kB URL HTTP/2 williamslawpanama.com/wp-content/themes/lawyers-attorneys/vamtam/assets/cubeportfolio/css/cubeportfolio.min.css?ver=4.4.0
IP 46.250.220.133:0
File type ASCII text, with very long lines (65254)
Hash 586560bfdcdda5c3f60a63d6035567aa
2adc16ae4dd9ded86e26d243c0b4bf075cd0feb2
336eab3cf226680dc55f2a094b88dd321f860cd95297504272901ee350753770
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/lawyers-attorneys/vamtam/assets/cubeportfolio/css/cubeportfolio.min.css?ver=4.4.0 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 19:55:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_CSS
etag: "13643879-1669451121;br"
x-qc-cache: miss
content-length: 12080
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
46.250.220.133200 OK 2.8 kB URL HTTP/2 williamslawpanama.com/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 46.250.220.133:0
File type ASCII text, with very long lines (9680), with no line terminators
Hash 8a91034fce0e4a2464d2170d38d31382
f00c20cfcbd136ee9aa20d07085c10f470548fe4
1a8f0bcd2b76caf977b08ed30bdd29eb77405ca4c1fe2315b41f8fe2542f1528
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:57:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643880-1669451121;br"
x-qc-cache: miss
content-length: 2799
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
46.250.220.133200 OK 3.7 kB URL HTTP/2 williamslawpanama.com/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 46.250.220.133:0
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash b3777786fbf0ac18aa59c687154a9db8
3f24b0cfae49dc3e70f149edaf203a661cd59c88
8e3993f3b5eb33611a7c40d80d1cb048b4329ebb9ad0d9e8eb583e48fda70bb5
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:57:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643881-1669451121;br"
x-qc-cache: miss
content-length: 3689
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-includes/js/underscore.min.js?ver=1.13.3
46.250.220.133200 OK 7.2 kB URL HTTP/2 williamslawpanama.com/wp-includes/js/underscore.min.js?ver=1.13.3
IP 46.250.220.133:0
File type ASCII text, with very long lines (18876)
Hash 8f44fac7de7704cc9c42ca9cf95071b8
1fa95065580a736700586a6c6ba1e0c3304d301c
89d8fb5c9897186f5d8295777f8eecd5c9a8ec5a40b0e01b9afe3e6ff851a4a1
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/underscore.min.js?ver=1.13.3 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:32:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643882-1669451121;br"
x-qc-cache: miss
content-length: 7176
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-includes/js/backbone.min.js?ver=1.4.1
46.250.220.133200 OK 7.7 kB URL HTTP/2 williamslawpanama.com/wp-includes/js/backbone.min.js?ver=1.4.1
IP 46.250.220.133:0
File type ASCII text, with very long lines (23894)
Hash 7adec3527f7cdf949085c85784ad08ad
3b60e86a447ba244a22abfd7d594ff36d7115ea2
ed4beccc17dfc1a133f264156de1043072fd12d028f775930481abfef9b3b884
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/backbone.min.js?ver=1.4.1 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:32:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643883-1669451121;br"
x-qc-cache: miss
content-length: 7723
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/themes/lawyers-attorneys/vamtam/assets/js/plugins/thirdparty/jquery.transit.min.js?ver=0.9.9
46.250.220.133200 OK 2.7 kB URL HTTP/2 williamslawpanama.com/wp-content/themes/lawyers-attorneys/vamtam/assets/js/plugins/thirdparty/jquery.transit.min.js?ver=0.9.9
IP 46.250.220.133:0
File type ASCII text, with very long lines (7831)
Hash b162b6066ab10dae984002a05379c83e
813a7295c9350e70fbbe6d414de669ab8ec4c9d1
9482a17c9d73428cecaade522d1739d0bbb5a933bcdfc44353e4bcbf6dc21b5b
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/lawyers-attorneys/vamtam/assets/js/plugins/thirdparty/jquery.transit.min.js?ver=0.9.9 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 19:55:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643884-1669451121;br"
x-qc-cache: miss
content-length: 2737
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-7QEC057BDQ>m=2oeb90&_p=33596928&cid=191969027.1669451120&ul=en-us&sr=1280x1024&_s=1&sid=1669451120&sct=1&seg=0&dl=https%3A%2F%2Fwilliamslawpanama.com%2F&dt=Home%20%7C%20Williams%20%26%20Associates&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-7QEC057BDQ>m=2oeb90&_p=33596928&cid=191969027.1669451120&ul=en-us&sr=1280x1024&_s=1&sid=1669451120&sct=1&seg=0&dl=https%3A%2F%2Fwilliamslawpanama.com%2F&dt=Home%20%7C%20Williams%20%26%20Associates&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-7QEC057BDQ>m=2oeb90&_p=33596928&cid=191969027.1669451120&ul=en-us&sr=1280x1024&_s=1&sid=1669451120&sct=1&seg=0&dl=https%3A%2F%2Fwilliamslawpanama.com%2F&dt=Home%20%7C%20Williams%20%26%20Associates&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://williamslawpanama.com
Connection: keep-alive
Referer: https://williamslawpanama.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://williamslawpanama.com
date: Sat, 26 Nov 2022 08:25:21 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/themes/lawyers-attorneys/vamtam/assets/js/plugins/thirdparty/jquery.matchheight.min.js?ver=0.5.1
46.250.220.133200 OK 1.1 kB URL HTTP/2 williamslawpanama.com/wp-content/themes/lawyers-attorneys/vamtam/assets/js/plugins/thirdparty/jquery.matchheight.min.js?ver=0.5.1
IP 46.250.220.133:0
File type ASCII text, with very long lines (512)
Hash 181a6ac805abf21ac4dbf8c2c57921bd
ce5e6b3bef079b0d5801d1f1cd6cdeea5966ff2b
8233a833b53bd4b60a548bdd0dc607a0e13decbbd261b60b5e7c31ec36908f98
GET /wp-content/themes/lawyers-attorneys/vamtam/assets/js/plugins/thirdparty/jquery.matchheight.min.js?ver=0.5.1 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 19:55:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643885-1669451121;br"
x-qc-cache: miss
content-length: 1106
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/vamtam-push-menu/js/dist/push-menu.min.js?ver=2.0.9
46.250.220.133200 OK 2.4 kB URL HTTP/2 williamslawpanama.com/wp-content/plugins/vamtam-push-menu/js/dist/push-menu.min.js?ver=2.0.9
IP 46.250.220.133:0
File type ASCII text, with very long lines (6859), with no line terminators
Hash 6bd4a9811a91b74f7e0133bcf65a373e
11d73fc4381aec1d8ff2b8069e58b4994c57626e
69c994e224032e6c763856ccfc61c0a74a0075452d807b363d1ed9e1ee90ef8c
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/vamtam-push-menu/js/dist/push-menu.min.js?ver=2.0.9 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Wed, 21 Aug 2019 21:11:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643889-1669451121;br"
x-qc-cache: miss
content-length: 2358
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
46.250.220.133200 OK 6.6 kB URL HTTP/2 williamslawpanama.com/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 46.250.220.133:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 139a41f01d192d239e7dce15ca307983
62a3e7c0c77209832dc649bc5583e5e0b4918bf5
d796462a5d212cd93b315b43dafb6e77dbe1c3aa567964dc40c1ab0e2c28f405
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:32:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643886-1669451121;br"
x-qc-cache: miss
content-length: 6637
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1
46.250.220.133200 OK 6.3 kB URL HTTP/2 williamslawpanama.com/wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1
IP 46.250.220.133:0
File type ASCII text, with very long lines (15439)
Hash 46c619da94a7689538602b22b02cb0d2
d161ff0b1a1cf9728c94a45d6e506b85dcebc84a
40fba14e5b02855b7773e2a364d90e178087c768ae4192f593a895a4c4b0d5e9
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/jquery/ui/effect.min.js?ver=1.13.1 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:32:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643888-1669451121;br"
x-qc-cache: miss
content-length: 6306
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
46.250.220.133200 OK 2.4 kB URL HTTP/2 williamslawpanama.com/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 46.250.220.133:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 4e773d7cec56bacab6d2db420be6f262
c95573d884c1caec0ec9c6f3e2a8c0fbf28d939a
5c8839d0b02f21e8d83d856bbf85a6b87fbedf9ba0b70711b11a1c378d5443e7
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:32:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643891-1669451121;br"
x-qc-cache: miss
content-length: 2354
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
46.250.220.133200 OK 6.9 kB URL HTTP/2 williamslawpanama.com/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 46.250.220.133:0
File type Unicode text, UTF-8 text, with very long lines (19138), with no line terminators
Hash 1f5152610686781567fb3008c4429792
d0c0bddf5fb8603ed8e55c32f3093c2207f72471
75806ece853d0d76e655a433bd03548d3be6237ea1e4cacd5963f528bbe0d192
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:32:04 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643892-1669451121;br"
x-qc-cache: miss
content-length: 6872
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.3
46.250.220.133200 OK 439 B URL HTTP/2 williamslawpanama.com/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.3
IP 46.250.220.133:0
File type ASCII text, with very long lines (999), with no line terminators
Hash 941c9d44f1c480a37006540de948ef9a
29bc99b84660341fc37d60774b3083025a19147c
d297692ee1e68d1e2499576903508be06859340a25eded15b2565631a592851e
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.6.3 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:57:59 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643893-1669451121;br"
x-qc-cache: miss
content-length: 439
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0
46.250.220.133200 OK 5.5 kB URL HTTP/2 williamslawpanama.com/wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0
IP 46.250.220.133:0
File type ASCII text, with very long lines (20421)
Hash d48c12651f356f3f1cdd4087d2ef2c49
7a0f750e920bc550c7146dee7f0ee780ae18d05e
904f279f6af016bdffe96c88bdf7d567c654194dd1514bcca8c72c7680a150b6
GET /wp-content/plugins/js_composer/assets/js/dist/js_composer_front.min.js?ver=6.5.0 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:51:56 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643894-1669451121;br"
x-qc-cache: miss
content-length: 5547
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
46.250.220.133200 OK 4.6 kB URL HTTP/2 williamslawpanama.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.3
IP 46.250.220.133:0
File type ASCII text, with very long lines (15660)
Hash 0232689bd203f330529b36a437f41a68
9046583f7469ad38297969f10a9513eb895d5316
feea9f30a6e454579bbeabf236b7abdb0c7de84dd2852422555ad67348c5e886
Analyzer Verdict Alert fortinet Malware
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.3 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Tue, 06 Sep 2022 20:32:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643896-1669451121;br"
x-qc-cache: miss
content-length: 4619
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.3.0.2
46.250.220.133200 OK 16 kB URL HTTP/2 williamslawpanama.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.3.0.2
IP 46.250.220.133:0
File type ASCII text, with very long lines (32001)
Hash b009e367d3f48377ee1faa64e7b935fb
d0cdab923a2610a0c1fbc3768ac9c4ea9266a81d
4c7539249997db67bc31512e9cdc026d6a1f6dd956a5e82ffec7fc793d32562d
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.revolution.min.js?ver=5.3.0.2 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Wed, 21 Aug 2019 21:11:15 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643870-1669451121;br"
x-qc-cache: miss
content-length: 15974
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.3.0.2
46.250.220.133200 OK 36 kB URL HTTP/2 williamslawpanama.com/wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.3.0.2
IP 46.250.220.133:0
File type ASCII text, with very long lines (27184)
Hash 79be0f7527a8d300b13c0209c23f4ba7
a8634309147db2a7ed9fc6aee9e9ed04fd0c1940
c0ce0ff634eaab8d0051ad13037f282e921a50bcfe6d0ab7f69f189e98896fe4
GET /wp-content/plugins/revslider/public/assets/js/jquery.themepunch.tools.min.js?ver=5.3.0.2 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Wed, 21 Aug 2019 21:13:14 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643869-1669451121;br"
x-qc-cache: miss
content-length: 36070
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/themes/lawyers-attorneys/vamtam/assets/js/all.min.js?ver=24
46.250.220.133200 OK 23 kB URL HTTP/2 williamslawpanama.com/wp-content/themes/lawyers-attorneys/vamtam/assets/js/all.min.js?ver=24
IP 46.250.220.133:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 981e36f3fb6786a34c183177cd86adb5
dc595c79d3876ac2ad13bc52a91986d066e2e04e
0bb7921622b300b290a7a844395ed4a4c998cde8d6d48addfb5f92d17cddcf9f
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/lawyers-attorneys/vamtam/assets/js/all.min.js?ver=24 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 19:55:34 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643887-1669451121;br"
x-qc-cache: miss
content-length: 23264
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/themes/lawyers-attorneys/vamtam/assets/cubeportfolio/js/jquery.cubeportfolio.min.js?ver=4.4.0
46.250.220.133200 OK 19 kB URL HTTP/2 williamslawpanama.com/wp-content/themes/lawyers-attorneys/vamtam/assets/cubeportfolio/js/jquery.cubeportfolio.min.js?ver=4.4.0
IP 46.250.220.133:0
File type ASCII text, with very long lines (65259)
Hash 7b6f50fb32c571ce2146ef67b64084bb
bfe453004a9ce2d920d8c0f822d6e317e73f5613
344c4930bb27a63065526050a5ab96787ff537c46796e01fb0b5ebd77c00edbe
GET /wp-content/themes/lawyers-attorneys/vamtam/assets/cubeportfolio/js/jquery.cubeportfolio.min.js?ver=4.4.0 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 19:55:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643895-1669451121;br"
x-qc-cache: miss
content-length: 18688
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/uploads/js_composer/js_composer_front_custom.css?ver=6.5.0
46.250.220.133200 OK 45 kB URL HTTP/2 williamslawpanama.com/wp-content/uploads/js_composer/js_composer_front_custom.css?ver=6.5.0
IP 46.250.220.133:0
File type ASCII text, with very long lines (684), with CRLF line terminators
Hash de0f34be9536a52d5a69f98ce81c654c
45f3687d17efa6457779ead8c76ebc8d2c94b016
6cb2fc3cac96774b9f765b700800d4deb5b7c34654be8664aa285009d02c14d9
Analyzer Verdict Alert fortinet Malware
GET /wp-content/uploads/js_composer/js_composer_front_custom.css?ver=6.5.0 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: text/css
last-modified: Fri, 24 May 2019 17:47:21 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_CSS
etag: "13643863-1669451121;br"
x-qc-cache: miss
content-length: 44804
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/themes/lawyers-attorneys/samples/all-default.css?ver=1620163050
46.250.220.133200 OK 48 kB URL HTTP/2 williamslawpanama.com/wp-content/themes/lawyers-attorneys/samples/all-default.css?ver=1620163050
IP 46.250.220.133:0
Hash f06dbf1ee6f3cfd5fb1d286413e74081
3b623c12acda5b7f972acf288e4eee07d65747b0
9497e164e03bc2d1e26a2034aae865accef09025b866729318e37c67bfa1a39a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/lawyers-attorneys/samples/all-default.css?ver=1620163050 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: text/css
last-modified: Thu, 13 Jan 2022 19:55:48 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_CSS
etag: "13643868-1669451121;br"
x-qc-cache: miss
content-length: 48103
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/uploads/2017/03/Splash-Icon.png
46.250.220.133200 OK 2.0 kB URL HTTP/2 williamslawpanama.com/wp-content/uploads/2017/03/Splash-Icon.png
IP 46.250.220.133:0
File type PNG image data, 102 x 100, 8-bit colormap, non-interlaced\012- data
Hash 08d2ef73c74477aca30cf7b429773b2d
bc5c88a3368dce3135357966a1b24c1f7821fb2e
4925edcfe7e71bd47bc9e6e22786bc53ac774201bc3b870b635375601cac627f
GET /wp-content/uploads/2017/03/Splash-Icon.png HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:20 GMT
content-type: image/png
last-modified: Mon, 15 Aug 2022 23:55:20 GMT
accept-ranges: bytes
etag: "13643856-1669451120;;;"
x-qc-cache: hit
content-length: 1991
date: Sat, 26 Nov 2022 08:25:22 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
216.58.207.195200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://williamslawpanama.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 16:40:18 GMT
expires: Fri, 24 Nov 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 143104
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/librebaskerville/v14/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxM.woff2
216.58.207.195200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/librebaskerville/v14/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxM.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 27120, version 1.0\012- data
Hash 43e7d3f1dec74478587a2b3cfa272631
c065f24ac428353854ebd6715c49966fc4f4c762
6c6c9c3fad669c3d32227f5cc3467735c8211ddcf4f8c184c2e62e7f3ef7af44
GET /s/librebaskerville/v14/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://williamslawpanama.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 21:28:47 GMT
expires: Fri, 24 Nov 2023 21:28:47 GMT
cache-control: public, max-age=31536000
age: 125795
last-modified: Tue, 26 Apr 2022 16:42:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/themes/lawyers-attorneys/vamtam/assets/js/plugins/thirdparty/select2.min.js?ver=1.4.1
46.250.220.133200 OK 31 kB URL HTTP/2 williamslawpanama.com/wp-content/themes/lawyers-attorneys/vamtam/assets/js/plugins/thirdparty/select2.min.js?ver=1.4.1
IP 46.250.220.133:0
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/lawyers-attorneys/vamtam/assets/js/plugins/thirdparty/select2.min.js?ver=1.4.1 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:21 GMT
content-type: application/javascript
last-modified: Thu, 13 Jan 2022 19:55:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643890-1669451121;br"
x-qc-cache: miss
content-length: 17606
content-encoding: br
date: Sat, 26 Nov 2022 08:25:21 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/themes/lawyers-attorneys/wpv_theme/assets/fonts/icons/theme-icons.ttf
46.250.220.133200 OK 45 kB URL HTTP/2 williamslawpanama.com/wp-content/themes/lawyers-attorneys/wpv_theme/assets/fonts/icons/theme-icons.ttf
IP 46.250.220.133:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, theme-iconsVersion 1.0theme-iconshm-cn \012- data
Hash 63cce95e1af6ed2539672db4080142c5
6fd40386fbca89289b065e90f522b205e97d4e5a
c4802cf58e007699d49d3ff14745608121d6c39128d0e16e276678dd89598e36
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/lawyers-attorneys/wpv_theme/assets/fonts/icons/theme-icons.ttf HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/wp-content/themes/lawyers-attorneys/samples/all-default.css?ver=1620163050
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:22 GMT
content-type: font/ttf
last-modified: Thu, 13 Jan 2022 19:55:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: b27_
etag: "13643897-1669451122;br"
x-qc-cache: miss
content-length: 44722
content-encoding: br
date: Sat, 26 Nov 2022 08:25:22 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/uploads/2017/03/icon-asset.png
46.250.220.133200 OK 1.6 kB URL HTTP/2 williamslawpanama.com/wp-content/uploads/2017/03/icon-asset.png
IP 46.250.220.133:0
File type PNG image data, 100 x 55, 8-bit colormap, non-interlaced\012- data
Hash 4f1b2c65896f275c5e44cc3e2c25ea1b
7ed212dd6a14f5242e6befa09bb776987b88639a
4de95e19f868a5fc5b9b110842f8eb5171586971c4179a7867b963067527c771
GET /wp-content/uploads/2017/03/icon-asset.png HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:22 GMT
content-type: image/png
last-modified: Mon, 15 Aug 2022 23:55:20 GMT
accept-ranges: bytes
x-litespeed-tag: 2188113_IMG
etag: "13643899-1669451122;;;"
x-qc-cache: miss
content-length: 1573
date: Sat, 26 Nov 2022 08:25:22 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/uploads/2017/03/icon-passport.png
46.250.220.133200 OK 3.0 kB URL HTTP/2 williamslawpanama.com/wp-content/uploads/2017/03/icon-passport.png
IP 46.250.220.133:0
File type PNG image data, 100 x 55, 8-bit colormap, non-interlaced\012- data
Hash 6ac7717d1f36b11998cdfa4985246ba1
227225160ca41cccf86315c9a1e3af27953a0aa7
f90b9072dd1e8f6956b5490e5834a8a54594b9e73aa46099446bcf7488d4299c
GET /wp-content/uploads/2017/03/icon-passport.png HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:22 GMT
content-type: image/png
last-modified: Mon, 15 Aug 2022 23:55:19 GMT
accept-ranges: bytes
x-litespeed-tag: 2188113_IMG
etag: "13643900-1669451122;;;"
x-qc-cache: miss
content-length: 2999
date: Sat, 26 Nov 2022 08:25:22 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/uploads/2017/03/icon-vessel.png
46.250.220.133200 OK 1.7 kB URL HTTP/2 williamslawpanama.com/wp-content/uploads/2017/03/icon-vessel.png
IP 46.250.220.133:0
File type PNG image data, 100 x 55, 8-bit colormap, non-interlaced\012- data
Hash 80a632c29640905893095d224840df8b
0554377c377753ca9e55b77cbf64110c95662d28
94c6c61df9edf8bb0a46790345560502dfea058e81332e76a4871048721eb57c
GET /wp-content/uploads/2017/03/icon-vessel.png HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:22 GMT
content-type: image/png
last-modified: Mon, 15 Aug 2022 23:55:19 GMT
accept-ranges: bytes
x-litespeed-tag: 2188113_IMG
etag: "13643901-1669451122;;;"
x-qc-cache: miss
content-length: 1651
date: Sat, 26 Nov 2022 08:25:22 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/themes/lawyers-attorneys/vamtam/assets/fonts/icons/icons.ttf
46.250.220.133200 OK 60 kB URL HTTP/2 williamslawpanama.com/wp-content/themes/lawyers-attorneys/vamtam/assets/fonts/icons/icons.ttf
IP 46.250.220.133:0
File type TrueType Font data, 13 tables, 1st "FFTM", 12 names, Macintosh, type 1 string\012- data
Hash 87880dd4d6d441e7bd031932f594c5dd
b56ab14eb5d7c56e415bcd92f7bf10f017712a02
3637aa2e36741017bc5cc15f0d864654a0d3e7effa9c7131d6e3f14d5fb333fc
Analyzer Verdict Alert fortinet Malware
GET /wp-content/themes/lawyers-attorneys/vamtam/assets/fonts/icons/icons.ttf HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/wp-content/themes/lawyers-attorneys/samples/all-default.css?ver=1620163050
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:22 GMT
content-type: font/ttf
last-modified: Thu, 13 Jan 2022 19:55:12 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: b27_
etag: "13643898-1669451122;br"
x-qc-cache: miss
content-length: 60513
content-encoding: br
date: Sat, 26 Nov 2022 08:25:22 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3A400%2C700
142.250.74.10200 OK 28 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3A400%2C700
IP 142.250.74.10:0
Hash f4c1dd4d7bd877f7da352f0e2f40a293
2834fb111c087cdc2ec15e02027be16cefb1b953
6786d081d986a522c3a59813067088fe084540c67932e2c01bf5cefadbb6b02b
GET /css?family=Montserrat%3A400%2C700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 08:25:21 GMT
date: Sat, 26 Nov 2022 08:25:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js
46.250.220.133200 OK 6.4 kB URL HTTP/2 williamslawpanama.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js
IP 46.250.220.133:0
File type ASCII text, with very long lines (28128)
Hash b1d40493665e2aa09fde467040151b4c
6e7fc8a918eb0aabea5578c410a7fb61fc6584d3
f208bff0cc4b6beef7f4358753ea695b96cf995f51f4240f16f814c7d560daf4
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.slideanims.min.js HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:22 GMT
content-type: application/javascript
last-modified: Wed, 21 Aug 2019 21:11:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643902-1669451122;br"
x-qc-cache: miss
content-length: 6383
content-encoding: br
date: Sat, 26 Nov 2022 08:25:22 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js
46.250.220.133200 OK 11 kB URL HTTP/2 williamslawpanama.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js
IP 46.250.220.133:0
File type ASCII text, with very long lines (32013)
Hash 87cad64e3e429eb90f2241aced58c3b8
bd2cb68e7c67f447b1650df4b7364c904f703d6a
31ed66e8f577d0bbe81ef0d919c28fce3c50650c0248722565a06ab20b250fce
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.layeranimation.min.js HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:22 GMT
content-type: application/javascript
last-modified: Wed, 21 Aug 2019 21:11:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643903-1669451122;br"
x-qc-cache: miss
content-length: 11404
content-encoding: br
date: Sat, 26 Nov 2022 08:25:22 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.kenburn.min.js
46.250.220.133200 OK 1.3 kB URL HTTP/2 williamslawpanama.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.kenburn.min.js
IP 46.250.220.133:0
File type ASCII text, with very long lines (3100)
Hash f5b8353b06c302e367639fbe22b31c0e
05c12f58a3ff9cd13afd7c843e26086df64a47fe
1c28866e908957999b852bf8f019c0eda7f8f9516f2fdcd6be9721be9f3f8e2a
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.kenburn.min.js HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:22 GMT
content-type: application/javascript
last-modified: Wed, 21 Aug 2019 21:11:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643904-1669451122;br"
x-qc-cache: miss
content-length: 1281
content-encoding: br
date: Sat, 26 Nov 2022 08:25:22 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js
46.250.220.133200 OK 6.7 kB URL HTTP/2 williamslawpanama.com/wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js
IP 46.250.220.133:0
File type ASCII text, with very long lines (25682)
Hash b0930b5f9e9a8dcb73dbf145572c700f
0831b18218cd738e27ac00a181f8352a7b67729c
4479e2af4ebbf1edd8282e8cac3044406359d07c13fc69304e0a38a5ba753c54
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/js/extensions/revolution.extension.navigation.min.js HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:22 GMT
content-type: application/javascript
last-modified: Wed, 21 Aug 2019 21:11:13 GMT
accept-ranges: bytes
vary: Accept-Encoding
x-litespeed-tag: 2188113_JS
etag: "13643905-1669451122;br"
x-qc-cache: miss
content-length: 6678
content-encoding: br
date: Sat, 26 Nov 2022 08:25:22 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/favicon.ico
46.250.220.133200 OK 255 B URL HTTP/2 williamslawpanama.com/favicon.ico
IP 46.250.220.133:0
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash ce02d15668cb7037ee2a94cfc770bbcd
6d03781f94922ca699dc7085d64202cf54bc185f
daf62be0b8289f8049e6228d8d60a944eaa20c8d7718c4267847b33a1ce7d057
GET /favicon.ico HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.1.1669451121.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:22 GMT
content-type: image/x-icon
last-modified: Thu, 28 Feb 2019 19:38:22 GMT
accept-ranges: bytes
vary: Accept-Encoding
etag: "13643906-1669451122;br"
x-qc-cache: miss
content-length: 255
content-encoding: br
date: Sat, 26 Nov 2022 08:25:22 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-96360896-1&cid=191969027.1669451120&jid=1825748197&gjid=246508880&_gid=920384945.1669451122&_u=ICDAgEABAAAAAEAAI~&z=331707954
142.251.1.157200 OK 4 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-96360896-1&cid=191969027.1669451120&jid=1825748197&gjid=246508880&_gid=920384945.1669451122&_u=ICDAgEABAAAAAEAAI~&z=331707954
IP 142.251.1.157:0
File type ASCII text, with no line terminators
Hash 48c0473b7821185d937e685216e2168b
3743e47f8a429a5e87b86cb582d78940733d9d2e
570c4d4674fd20602189c548c145ba1f8ac34bc2e4599a71471969028aa1e25a
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j98&tid=UA-96360896-1&cid=191969027.1669451120&jid=1825748197&gjid=246508880&_gid=920384945.1669451122&_u=ICDAgEABAAAAAEAAI~&z=331707954 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://williamslawpanama.com
Connection: keep-alive
Referer: https://williamslawpanama.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://williamslawpanama.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Sat, 26 Nov 2022 08:25:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 4
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/701882080/?random=1669451121582&cv=11&fst=1669449600000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwilliamslawpanama.com%2F&tiba=Home%20%7C%20Williams%20%26%20Associates&fmt=3&is_vtc=1&random=1952916503&rmt_tld=1&ipr=y
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/701882080/?random=1669451121582&cv=11&fst=1669449600000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwilliamslawpanama.com%2F&tiba=Home%20%7C%20Williams%20%26%20Associates&fmt=3&is_vtc=1&random=1952916503&rmt_tld=1&ipr=y
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/701882080/?random=1669451121582&cv=11&fst=1669449600000&bg=ffffff&guid=ON&async=1>m=2wgb90&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fwilliamslawpanama.com%2F&tiba=Home%20%7C%20Williams%20%26%20Associates&fmt=3&is_vtc=1&random=1952916503&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sat, 26 Nov 2022 08:25:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f3424fd0abb5ab18be62cd209cb3d3dc
dbb2a21b12e92c8837c4346b6d052454bb6dffd6
e69548655278cf6a48fce549928656eb5a91d787e7b1afc12959e2bffb58990b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 26 Nov 2022 08:25:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
williamslawpanama.com/wp-content/uploads/2017/03/panama-bella-vista.jpg
46.250.220.133200 OK 321 kB URL HTTP/2 williamslawpanama.com/wp-content/uploads/2017/03/panama-bella-vista.jpg
IP 46.250.220.133:0
File type JPEG image data, progressive, precision 8, 1920x960, components 3\012- data
Size 321 kB (320939 bytes)
Hash ee6723494668014923fd86e3ebc07ce8
000de6e3d271b305ca3cf76507aabd2de78ab02d
c8d208b9b0898aa82299b053682148cc3ac02374905ee973be634e8cc2c942d6
GET /wp-content/uploads/2017/03/panama-bella-vista.jpg HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.1.1669451121.0.0.0; _ga=GA1.2.191969027.1669451120; _gid=GA1.2.920384945.1669451122; _gat=1; _gat_UA-25912950-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:23 GMT
content-type: image/jpeg
last-modified: Mon, 15 Aug 2022 23:55:15 GMT
accept-ranges: bytes
x-litespeed-tag: 2188113_IMG
etag: "13643907-1669451123;;;"
x-qc-cache: miss
content-length: 320939
date: Sat, 26 Nov 2022 08:25:23 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/uploads/2018/06/1528294296-300.jpg
46.250.220.133200 OK 141 kB URL HTTP/2 williamslawpanama.com/wp-content/uploads/2018/06/1528294296-300.jpg
IP 46.250.220.133:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=[*0*], xresolution=98, yresolution=106, resolutionunit=1, software=Adobe Photoshop CC 2015.5 (Macintosh), datetime=2018:06:05 12:00:05], baseline, precision 8, 1920x600, components 3\012- data
Size 141 kB (141309 bytes)
Hash a8dcccbf58003746a51fee9b4a31bd75
93b6d38b927ea6b2eb769d7d88adf176538dad10
f5c3dcb9d2477da33b9b2aeaffae082bf9ff8ac8ceaed2dc32e2a0efb09bd350
GET /wp-content/uploads/2018/06/1528294296-300.jpg HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.1.1669451121.0.0.0; _ga=GA1.2.191969027.1669451120; _gid=GA1.2.920384945.1669451122; _gat=1; _gat_UA-25912950-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:23 GMT
content-type: image/jpeg
last-modified: Mon, 15 Aug 2022 23:25:17 GMT
accept-ranges: bytes
x-litespeed-tag: 2188113_IMG
etag: "13643908-1669451123;;;"
x-qc-cache: miss
content-length: 141309
date: Sat, 26 Nov 2022 08:25:23 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/uploads/2018/04/slide-3.jpg
46.250.220.133200 OK 237 kB URL HTTP/2 williamslawpanama.com/wp-content/uploads/2018/04/slide-3.jpg
IP 46.250.220.133:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=[*0*], xresolution=98, yresolution=106, resolutionunit=1, software=Adobe Photoshop CC 2015 (Macintosh), datetime=2018:03:27 00:08:01], baseline, precision 8, 1950x750, components 3\012- data
Size 237 kB (237269 bytes)
Hash 75711e383a65782fece2933e99ab3fb9
3143e9b2133478e56e1a13ea3e3321249bd78c66
64e0181f6cf719ec7f678de3a3137763ae451db3c8f0c8a9dc7db1f847762e63
GET /wp-content/uploads/2018/04/slide-3.jpg HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.1.1669451121.0.0.0; _ga=GA1.2.191969027.1669451120; _gid=GA1.2.920384945.1669451122; _gat=1; _gat_UA-25912950-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:23 GMT
content-type: image/jpeg
last-modified: Mon, 15 Aug 2022 23:42:08 GMT
accept-ranges: bytes
x-litespeed-tag: 2188113_IMG
etag: "13643909-1669451123;;;"
x-qc-cache: miss
content-length: 237269
date: Sat, 26 Nov 2022 08:25:23 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
46.250.220.133200 OK 7.5 kB URL HTTP/2 williamslawpanama.com/wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888
IP 46.250.220.133:0
File type Web Open Font Format, TrueType, length 7536, version 1.0\012- data
Hash 04eb8fc57f27498e5ae37523e3bfb2c7
d942ae11706c3f7e511e3c49b0e4574d7ad199c4
f7b9c3065e55fa3b9e320093612e7b30dcb14355a44ec461247b495a3e729686
Analyzer Verdict Alert fortinet Malware
GET /wp-content/plugins/revslider/public/assets/fonts/revicons/revicons.woff?5510888 HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://williamslawpanama.com/wp-content/plugins/revslider/public/assets/css/settings.css?ver=5.3.0.2
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.1.1669451121.0.0.0; _ga=GA1.2.191969027.1669451120; _gid=GA1.2.920384945.1669451122; _gat=1; _gat_UA-25912950-1=1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:23 GMT
content-type: font/woff
last-modified: Wed, 21 Aug 2019 21:11:13 GMT
accept-ranges: bytes
x-litespeed-tag: b27_
etag: "13643910-1669451123;;;"
x-qc-cache: miss
content-length: 7536
date: Sat, 26 Nov 2022 08:25:23 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-content/uploads/2018/04/slide-4.jpg
46.250.220.133200 OK 178 kB URL HTTP/2 williamslawpanama.com/wp-content/uploads/2018/04/slide-4.jpg
IP 46.250.220.133:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Macintosh), datetime=2018:02:26 16:58:02], baseline, precision 8, 1950x750, components 3\012- data
Size 178 kB (178510 bytes)
Hash d8a49ca8005a42e69059866b6bae9c9c
cd8b9e840e4c6090f1efa4f2abd120597fcc599d
9a4eb852c029ad375d84595a20aa1e7aaf372cf9e168e332ef8585b0040beefb
GET /wp-content/uploads/2018/04/slide-4.jpg HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.1.1669451121.0.0.0; _ga=GA1.2.191969027.1669451120; _gid=GA1.2.920384945.1669451122; _gat=1; _gat_UA-25912950-1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Sat, 03 Dec 2022 08:25:23 GMT
content-type: image/jpeg
last-modified: Mon, 01 Apr 2019 19:32:44 GMT
accept-ranges: bytes
x-litespeed-tag: 2188113_IMG
etag: "13643911-1669451123;;;"
x-qc-cache: miss
content-length: 178510
date: Sat, 26 Nov 2022 08:25:23 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-json/contact-form-7/v1/contact-forms/9947/feedback/schema
46.250.220.133200 OK 154 B URL HTTP/2 williamslawpanama.com/wp-json/contact-form-7/v1/contact-forms/9947/feedback/schema
IP 46.250.220.133:0
File type JSON data\012- , ASCII text, with very long lines (398), with no line terminators
Hash b114c3acdd9d81d0a887cc0972a1b8ca
426859f77938b835da69d64cd453f04dc34a9561
83bd107f2c09bd9cfc6e1b1d9ead64d36af28643db06f78aa8f613fc114f233a
Analyzer Verdict Alert fortinet Malware
GET /wp-json/contact-form-7/v1/contact-forms/9947/feedback/schema HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://williamslawpanama.com/
Connection: keep-alive
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.0.1669451120.0.0.0; _ga=GA1.1.191969027.1669451120
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
set-cookie: qtrans_front_language=en; expires=Sun, 26-Nov-2023 08:25:23 GMT; Max-Age=31536000; path=/; secure
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-robots-tag: noindex
link: <https://williamslawpanama.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
x-litespeed-tag: b27_HTTP.200
vary: Origin,Accept-Encoding
x-litespeed-cache-control: no-cache
content-length: 154
content-encoding: br
date: Sat, 26 Nov 2022 08:25:23 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
williamslawpanama.com/wp-json/contact-form-7/v1/contact-forms/9947/refill
46.250.220.133200 OK 6 B URL HTTP/2 williamslawpanama.com/wp-json/contact-form-7/v1/contact-forms/9947/refill
IP 46.250.220.133:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b07a5ba9b682a99be1b186affef4c1b5
f5204461f75a489f887bc06fe3814233eda79b37
61b42daf28736e5f75372490c99c5a0601653e2935ae55c1d462d2474ed94f10
Analyzer Verdict Alert fortinet Malware
GET /wp-json/contact-form-7/v1/contact-forms/9947/refill HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://williamslawpanama.com/
Connection: keep-alive
Cookie: _lscache_vary=916511ecca8d5f08d3e88617eeae32fd; _gcl_au=1.1.1243186729.1669451120; _ga_7QEC057BDQ=GS1.1.1669451120.1.1.1669451121.0.0.0; _ga=GA1.2.191969027.1669451120; _gid=GA1.2.920384945.1669451122; _gat=1; _gat_UA-25912950-1=1; qtrans_front_language=en
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
set-cookie: qtrans_front_language=en; expires=Sun, 26-Nov-2023 08:25:23 GMT; Max-Age=31536000; path=/; secure
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
x-robots-tag: noindex
link: <https://williamslawpanama.com/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
x-litespeed-tag: b27_HTTP.200
vary: Origin,Accept-Encoding
x-litespeed-cache-control: no-cache
content-length: 6
content-encoding: br
date: Sat, 26 Nov 2022 08:25:23 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3Anormal%2Cbold%7CLibre+Baskerville%3Abold%2Citalic%2Cnormal&subset=latin&ver=24
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3Anormal%2Cbold%7CLibre+Baskerville%3Abold%2Citalic%2Cnormal&subset=latin&ver=24
IP 142.250.74.10:0
GET /css?family=Montserrat%3Anormal%2Cbold%7CLibre+Baskerville%3Abold%2Citalic%2Cnormal&subset=latin&ver=24 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://williamslawpanama.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 26 Nov 2022 08:25:21 GMT
date: Sat, 26 Nov 2022 08:25:21 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
williamslawpanama.com/
46.250.220.133200 OK 0 B IP 46.250.220.133:0
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: williamslawpanama.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
x-powered-by: PHP/7.4.33
x-dns-prefetch-control: on
access-control-allow-origin: *
content-type: text/html; charset=UTF-8
link: <https://williamslawpanama.com/wp-json/>; rel="https://api.w.org/", <https://williamslawpanama.com/wp-json/wp/v2/pages/1622>; rel="alternate"; type="application/json", <https://williamslawpanama.com/>; rel=shortlink
x-litespeed-cache-control: public,max-age=566488
x-litespeed-tag: b27_HTTP.200,b27_front,b27_URL.6666cd76f96956469e7be39d750cc7d9,b27_F,b27_Po.1622,b27_PGS,b27_guest,b27_,b27_MIN.213f04a81df0ab0f5b90aff73693b1c4.css,b27_MIN.3e2994a162df44d5a7017b6c73788e23.js
etag: "7913-1669412807;br"
x-litespeed-cache: hit
vary: Accept-Encoding
x-qc-cache: miss
content-encoding: br
date: Sat, 26 Nov 2022 08:25:20 GMT
server: LiteSpeed
x-qc-pop: EU-NO-SVG-73
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2