r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 5eb7c9bc996a0ff420e58af45526f053
8c2614832b8efe1c9da0bbd465d6f3f172d95a9e
c085cf277dd0429fe15e4a4bce5595636e9f2204d5a8e77220f8bf88adf4068f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C085CF277DD0429FE15E4A4BCE5595636E9F2204D5A8E77220F8BF88ADF4068F"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13199
Expires: Tue, 31 Jan 2023 15:15:57 GMT
Date: Tue, 31 Jan 2023 11:35:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14907
Expires: Tue, 31 Jan 2023 15:44:25 GMT
Date: Tue, 31 Jan 2023 11:35:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 11:35:53 GMT
content-type: application/json
age: 5
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10198
Expires: Tue, 31 Jan 2023 14:25:56 GMT
Date: Tue, 31 Jan 2023 11:35:58 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: tmmk71+QBzcmyvVWLI6dP9VuAkMqbNgrBbSyBhfEm3yMIqnq3Gla5RYQuPk+E1KTWXbChZEbiow=
x-amz-request-id: TS9DFW0H25NR9J2N
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 10:51:08 GMT
age: 2690
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 11:35:58 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 10:41:42 GMT
age: 3256
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html
188.114.97.1301 Moved Permanently 0 B URL HTTP/1.1 bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html
IP 188.114.97.1:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html HTTP/1.1
Host: bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 31 Jan 2023 11:35:58 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirect-By: WordPress
Vary: Accept-Encoding
Location: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=W4v8krWNmBy8hQNEZym2E6NNAIGNovE%2BozYWkq5RfJPMu%2FW1BMXB3DmgD6pVGGa5ylHeegHk8VFhKBxz8sMuxxGRPPBtgeADTXetVIhHCHmHHhv%2BX%2Fie91V5OB8SmvGm%2FXY2rgXi"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 7922259a482bfab8-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13486
Expires: Tue, 31 Jan 2023 15:20:44 GMT
Date: Tue, 31 Jan 2023 11:35:58 GMT
Connection: keep-alive
push.services.mozilla.com/
34.216.140.79101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.216.140.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: yLCbu+kKSe524GIPgj7hwA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 3q64KgvIBRF/CWDc3MR6zJxjdr8=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 11:35:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
104.21.92.156200 OK 16 kB URL HTTP/1.1 www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
IP 104.21.92.156:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14357)
Hash 79b3ee1db89073165c4265ec13ef78f2
a4d8e4e0693bbc9611daa2d67f45b8b7303f127f
a11d08d824d1628e52d3574cf84ee025a1c92e6b1a0bd9708b19b08fa4683db4
Analyzer Verdict Alert fortinet Phishing
GET /wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/ HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:35:59 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Link: <https://www.bestinjurylawyer.co/index.php?rest_route=/>; rel="https://api.w.org/", <https://www.bestinjurylawyer.co/index.php?rest_route=/wp/v2/pages/6>; rel="alternate"; type="application/json", <https://www.bestinjurylawyer.co/>; rel=shortlink
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LKX8TdRa%2FLpd2QAwpe7lLwa1%2BtZXRwKQ0Y%2Btg3f1UKZCCQheFDtjTRH5SU0ENFo5Oy7nLFesRuoesa%2FpY%2FrqO3W7MqAAUSlhRebGKbuLMVyl%2BmjANfKRIZeRmeQm3hJw%2F3GUWN%2FQktTQ%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792225a09d8d1bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
104.21.92.156200 OK 3.9 kB URL HTTP/1.1 www.bestinjurylawyer.co/cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js
IP 104.21.92.156:0
File type ASCII text, with very long lines (12331)
Hash 54c87b7a9007d256c837e382cab4170d
6c8f44204021f68596af9ae5a742c3ad1b76a6ec
3a09f98b09786cd8fbe71cc17d07660e767fc1c8d2ea467f912bc328766a54a1
Analyzer Verdict Alert fortinet Phishing
GET /cdn-cgi/scripts/7d0fa10a/cloudflare-static/rocket-loader.min.js HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:35:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 23 Jan 2023 11:05:52 GMT
ETag: W/"63ce6a10-302c"
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8phZXFVXNTMhkootfYTGaZ0JWorqXncyzwZVmpYeGoOy%2B%2FXcDCeX%2F1QPwa3HoTq01vH1s3XQK%2F3AOKZZhjF48NBoFqLdIfel4Z5SuxTtLBzlXw%2B4C2dDY0Ci7kIH03lq89tq3lfT459mKQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225a7dd441bfe-OSL
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Expires: Thu, 02 Feb 2023 11:35:59 GMT
Cache-Control: max-age=172800, public
Content-Encoding: gzip
fonts.googleapis.com/css?family=PT+Sans+Narrow%3Aregular%2C700%7CDroid+Sans%3Aregular%2C700%7CLato%3A100%2C100italic%2C300%2C300italic%2Cregular%2Citalic%2C700%2C700italic%2C900%2C900italic&ver=6.1.1
142.250.74.106200 OK 1.3 kB URL HTTP/2 fonts.googleapis.com/css?family=PT+Sans+Narrow%3Aregular%2C700%7CDroid+Sans%3Aregular%2C700%7CLato%3A100%2C100italic%2C300%2C300italic%2Cregular%2Citalic%2C700%2C700italic%2C900%2C900italic&ver=6.1.1
IP 142.250.74.106:0
Hash 46020c4240f561972d5f691b1c03238e
74adada3ab1ed47b45f0a5410d6fb59b1eaa4106
12ed869f71252b3a2b052ed8dafd67c0690f51c9c355724f138a3cf5b414333e
GET /css?family=PT+Sans+Narrow%3Aregular%2C700%7CDroid+Sans%3Aregular%2C700%7CLato%3A100%2C100italic%2C300%2C300italic%2Cregular%2Citalic%2C700%2C700italic%2C900%2C900italic&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 31 Jan 2023 11:35:59 GMT
date: Tue, 31 Jan 2023 11:35:59 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 21c026173f311c36df56e61751992e08
d24102e79ee2c735877d01e789aabf0caf2e404c
2ac3838c186ca2d9d8c02a9c1ab4a3fb86ac60c4505171eebac63ce3d1a3ed87
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "2AC3838C186CA2D9D8C02A9C1AB4A3FB86AC60C4505171EEBAC63CE3D1A3ED87"
Last-Modified: Tue, 31 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21567
Expires: Tue, 31 Jan 2023 17:35:27 GMT
Date: Tue, 31 Jan 2023 11:36:00 GMT
Connection: keep-alive
e1.o.lencr.org/
95.101.11.115200 OK 346 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 39fa5ba51e3c7e59a1838ad720a8913d
6bdabeb6a6ff3ef5a47f48fc9e1b2798c8c765b5
e2e9d7b5ef062f65024c443a1360d81ba087b4dbcbfe053e4e6476f45abe5415
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "E2E9D7B5EF062F65024C443A1360D81BA087B4DBCBFE053E4E6476F45ABE5415"
Last-Modified: Tue, 31 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Tue, 31 Jan 2023 17:36:00 GMT
Date: Tue, 31 Jan 2023 11:36:00 GMT
Connection: keep-alive
www.bestinjurylawyer.co/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3
104.21.92.156200 OK 991 B URL HTTP/1.1 www.bestinjurylawyer.co/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3
IP 104.21.92.156:0
Hash 48a092d27760dd9665773bf3c7101a26
0eec7acd8fefd9525899f6d525b2748418a4b913
2250e24b66506a924122bbd1226a3a0122419c5fb07ef4999f7712fe139bc212
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.7.3 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:00 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 05:44:22 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wTHHtKkFM6YefeAQ29YdYbli8XkGGNwpSbfYL5ztZyp17PCQ08o%2FEi4ye%2B7sXc5qrm%2BV9Eq7YKfhLAQbmxqSg0GNcldxE%2FwdbNNlCwKzfJY%2BcZRfBIYLVtjQRl1u8DhTQH3NMZHUdcdqdg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225a76e3bb4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/wp-includes/css/classic-themes.min.css?ver=1
104.21.92.156200 OK 188 B URL HTTP/1.1 www.bestinjurylawyer.co/wp-includes/css/classic-themes.min.css?ver=1
IP 104.21.92.156:0
Hash 8ac085745a5bcc97c54f8088973df029
4e065566e82d4623d0f5b4d9275d3ee29e15acd1
a0b69c3418ce7d86bcd33d370dec1ba31f2d9c143d932f52de7c4f98427a813f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:00 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 25 Oct 2022 13:45:16 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4Y09V1HQBO0UKzjSiz2bO3xkKdCKHCHi31HH253%2FIbX2itdUPDH9rodr%2B4gC6R4xUZR6rsqk6k4Y6bdVr4CnnJqONORSDBa69I8o02wbmlVIL4SeQPMgWAta5UDiSW6nCWNWkQ9fi5QOeg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225a75b71fab8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9817
Expires: Tue, 31 Jan 2023 14:19:37 GMT
Date: Tue, 31 Jan 2023 11:36:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9817
Expires: Tue, 31 Jan 2023 14:19:37 GMT
Date: Tue, 31 Jan 2023 11:36:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9817
Expires: Tue, 31 Jan 2023 14:19:37 GMT
Date: Tue, 31 Jan 2023 11:36:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3acb4fe3-f1dd-417b-ac1c-9269bcff18d1.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3acb4fe3-f1dd-417b-ac1c-9269bcff18d1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cbc9f50b0a96fb69fa2e948aa3125413
e7f13a6e81263e73ac5777959d63b567f50848d5
2e3411687a31211dbf0aa732f8d93a3c5a4748afb264e695d36782700c8e8b5d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3acb4fe3-f1dd-417b-ac1c-9269bcff18d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12906
x-amzn-requestid: a1b3b104-14dc-4cc9-a3fb-b2fcc8f7700c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fiPRrGSOIAMF-5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d72c0a-6e5a348670f401e076a59286;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 02:31:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: TqLNvyBKeFgNPTUSFH__8lKjIc22VLORy0pTdCvkHsmiS8WpEd1aMQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 22:32:23 GMT
age: 47017
etag: "e7f13a6e81263e73ac5777959d63b567f50848d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 00:33:02 GMT
age: 39778
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2797bfd35b7ec24888de84be14f7f2ec
8e315ac5856967286eaa8769e081d827fb4ca39e
b99f3bd73eb4395194bc7bb6a1b801750182239e5b70f3207f99e494b60b72ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11129
x-amzn-requestid: 74f2a4dd-7d5d-4839-90a8-d2e74f6d785d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffDBZGRPoAMFedg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e53b-3de444596550bb41188ada5b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:17:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9Fga247EZZqiGmdMJ72resdBZR2KLgflGDBPESmuw9cFVs4hSzMzTw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:50:52 GMT
age: 27908
etag: "8e315ac5856967286eaa8769e081d827fb4ca39e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1925abe-5fa6-440b-8e23-d92b1e3bf273.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1925abe-5fa6-440b-8e23-d92b1e3bf273.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 63486f2a937aa8fd013fc2c2d1b32f2d
e8868de34c2f79348c1edad764259eb70bebd7a6
fa6e5ce374031c0df3b3f2d6de823cf1fe08fdaf9957a0722770867cfdec0ed1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1925abe-5fa6-440b-8e23-d92b1e3bf273.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13639
x-amzn-requestid: 8131c878-620a-4972-ba8f-1456859acae2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fYcJSF0SIAMFe1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d340a1-18c7280940d508c440c0182c;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 03:10:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: L6MnX0h8Bn9-ufqI6yOzQAPhqc4SoJKySgzlm756NaiVrfJpnftIWQ==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 06:29:38 GMT
age: 18382
etag: "e8868de34c2f79348c1edad764259eb70bebd7a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4a2d26da68a313cc65958fc2692351c2
798c3538f3147ca77d317676ddd1bf040bd0f93b
76ce30224803d680c0115e987a712ce5552b2760beadf796a96b17439fb20797
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10898
x-amzn-requestid: e29f8dfc-07d4-4136-afaf-e1e067eea2ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zxGshIAMFw5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-5e87d2a44722af9e4e86c3d4;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XYo_QvM8GWDyulOtUb5nVjS9PxOinaRJ3lYvCreeqd_9tHI5yv5xcQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:48:21 GMT
age: 49659
etag: "798c3538f3147ca77d317676ddd1bf040bd0f93b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c4934be94898028e2ab696561b51462
6cf734e2d29938688913daacfb75506d8e004a94
239adcbb538b7a6d1483c65c7694d4a9f9fa9cadf456ab5681c4b764185e3596
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 67109f87-6073-4991-b540-cdeedc2d7b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flYlPF9uIAMFXMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86e21-60ac2c7b37c72e6e54a5c69d;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:25:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Gif_csWkacU59D_hnOrJpK6u2aPI8Ylf2JyQEJZ2RLNMCrXSmmMa9w==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:56:35 GMT
age: 34765
etag: "6cf734e2d29938688913daacfb75506d8e004a94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.bestinjurylawyer.co/wp-includes/css/dashicons.min.css?ver=6.1.1
104.21.92.156200 OK 36 kB URL HTTP/1.1 www.bestinjurylawyer.co/wp-includes/css/dashicons.min.css?ver=6.1.1
IP 104.21.92.156:0
File type ASCII text, with very long lines (58981)
Hash 7ff2574ffb6fc63b8083fdd5e17c5477
080b346c56ee6b5b19918d23595f32d25395bd20
ba1177b8eb3bc2eeab00ba00000549a772b19a5233cd3b3b2a52879ac43caabb
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.min.css?ver=6.1.1 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:00 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 03 Mar 2021 21:16:22 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mIcjptGFtisTMPF9lUH%2F9FFF1%2BcMC%2BuKCpVulB8NmlBG64qcTEfYCW6IdCvvXjcpKhZYE5a6UzbV7TKkJeA5aeD5%2BudAFTcaQ4No2ZR%2FiFgUe%2FvfD4UX06HrEKPOyjcb0qOvkYUqzTyeJg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225a76e88b52d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
104.21.92.156200 OK 12 kB URL HTTP/1.1 www.bestinjurylawyer.co/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 104.21.92.156:0
File type ASCII text, with very long lines (47826)
Hash 7e9e687043fdd4b588771cdee5a77722
1ab50c2316fddfc06a6ea7b6758c5aab94abe0e1
5c8b185b1081a3ecd3ecd89c65ebb80a0e5cbb55d5b1eec84b5b59e8fbc5dc3e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:00 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 11 Nov 2022 14:56:45 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=q3nTukVuMhunsIswlcmOuCInSx2ahIQJYBrLD7tGAZ8fNB97f9V%2FhLWqo0iW%2BTQbNPotUFddBRhy9azvZwpfyVFctFvVr8Z0mq1YWcoNOkYRK157snkT7MF%2F6rZBlVE0olncCReGPt5%2BmA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225a75e020b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/wp-content/uploads/2017/10/best.png
104.21.92.156200 OK 14 kB URL HTTP/2 www.bestinjurylawyer.co/wp-content/uploads/2017/10/best.png
IP 104.21.92.156:0
File type PNG image data, 450 x 121, 8-bit/color RGBA, non-interlaced\012- data
Hash 1ff68a8538c690eaf9f003c48463bff7
1cfc797fdb8c3758721778376aa5486601e28d96
ad2014d0e4800c9e8fe22d070ca9861309540b1ec2b2d64c40287510ebce4111
GET /wp-content/uploads/2017/10/best.png HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 11:36:00 GMT
content-type: image/png
content-length: 14335
last-modified: Fri, 13 Oct 2017 19:18:07 GMT
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6ZWlZsaMq1aWNy%2BtQmDFPBE4MU9C5vOKuKPVKz%2BxwkLdWmxYfTHWS%2FbmSSX9wwpNnmkpMlElLR1muQesFbkFRkWyzrpZy6pEIXMl6%2BlGB7mCgAQ4xIUE2MtJs%2B6CN%2Fh1QZFXUVS183i4xQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 792225a78959b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.bestinjurylawyer.co/wp-content/themes/Divi/style.css?ver=3.24
104.21.92.156200 OK 71 kB URL HTTP/1.1 www.bestinjurylawyer.co/wp-content/themes/Divi/style.css?ver=3.24
IP 104.21.92.156:0
File type ASCII text, with very long lines (64930)
Hash 2ed7a1cab3be2626edb4a8d5ec80bd3e
2cee476c6f54881175b991a2d725817577078e81
4f7a800d1e41f2329f49715d7baf499c48705c03ae1197feb0c9dc4f783375d4
GET /wp-content/themes/Divi/style.css?ver=3.24 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:00 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 11 Jun 2019 16:25:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=koA6GxfP7G0YfVTEXLbBddsW1kVpauDrcYWVi61jlZogHCILWXV4PFlFacS4LNmwHwpW74rlyZfGIKFuY4HXF%2BUmJH%2Btr999MPIgx6OjnmXyDZteLBK9zLRSvqxvnRQgmAJQIVlp7e6BpA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225a76b77b4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 11:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/ptsansnarrow/v17/BngRUXNadjH0qYEzV7ab-oWlsbCGwR0.woff2
142.250.74.35200 OK 36 kB URL HTTP/2 fonts.gstatic.com/s/ptsansnarrow/v17/BngRUXNadjH0qYEzV7ab-oWlsbCGwR0.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 36220, version 1.0\012- data
Hash 703384eb990fa92cab3b11662e55234f
825232b537f04761e3f866599f3abb7c14d32d60
38ba9bd69a8f6114511656eed8cf0f4e3d45d9e2c9aa0a22fb978d5da5ac250b
GET /s/ptsansnarrow/v17/BngRUXNadjH0qYEzV7ab-oWlsbCGwR0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.bestinjurylawyer.co
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 36220
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:20:39 GMT
expires: Sun, 28 Jan 2024 10:20:39 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:03:05 GMT
content-type: font/woff2
age: 263722
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2
142.250.74.35200 OK 21 kB URL HTTP/2 fonts.gstatic.com/s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 21224, version 1.0\012- data
Hash 13bdfb843f942ccd9f485eb6c0bc1934
2bad44362ff7569f24f2a3df2521b27a97ec1297
7a291479495fbb281655d5e870c6d118dc6b7ed18e8c235aef5974c1e9de4e6c
GET /s/droidsans/v18/SlGVmQWMvZQIdix7AFxXkHNSbQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.bestinjurylawyer.co
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21224
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 00:13:08 GMT
expires: Fri, 26 Jan 2024 00:13:08 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 19 Apr 2022 18:04:18 GMT
content-type: font/woff2
age: 472973
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 11:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
142.250.74.35200 OK 24 kB URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Hash e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.bestinjurylawyer.co
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 04:29:08 GMT
expires: Wed, 31 Jan 2024 04:29:08 GMT
cache-control: public, max-age=31536000
age: 25613
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/ptsansnarrow/v17/BngSUXNadjH0qYEzV7ab-oWlsbg95AiFW_0.woff2
142.250.74.35200 OK 51 kB URL HTTP/2 fonts.gstatic.com/s/ptsansnarrow/v17/BngSUXNadjH0qYEzV7ab-oWlsbg95AiFW_0.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 51132, version 1.0\012- data
Hash ebf9aaf2e7ed2dc812dcd308b5b807e2
821884be5d80ad6e3310c47ec68a172f3aebfe32
f54e39446dc1a3407191e704a37aa5da2d12fbdeac8842b6c3a5648377f3e688
GET /s/ptsansnarrow/v17/BngSUXNadjH0qYEzV7ab-oWlsbg95AiFW_0.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.bestinjurylawyer.co
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 51132
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:20:37 GMT
expires: Sun, 28 Jan 2024 10:20:37 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 16:09:38 GMT
content-type: font/woff2
age: 263724
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2
142.250.74.35200 OK 22 kB URL HTTP/2 fonts.gstatic.com/s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 22376, version 1.0\012- data
Hash e6af16165f9bfda6aafd0088b8c01daa
c9c0ee8309619643e65ba1b22bfffcd1a7ca1e51
e803cd8c5031ac6b0d099a2d96ba1c3ee44782649a7f7c6f0d09b6410d93e216
GET /s/droidsans/v18/SlGWmQWMvZQIdix7AFxXmMh3eDs1Zw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.bestinjurylawyer.co
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22376
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 06:41:01 GMT
expires: Fri, 26 Jan 2024 06:41:01 GMT
cache-control: public, max-age=31536000
age: 449700
last-modified: Tue, 19 Apr 2022 18:25:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 11:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 2ac1bcdceabf1fc4e07017906aa8a815
ba00b737325fc50b35af8d851ced0fe13d1cba22
c6c54f5dbbfc40b454b9c67a7972827f500d83b10a1594f7cb56c69158278c08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 11:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 11:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 11:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6Lf3y6cUAAAAAH3lUOqIDBaPJE74sIVe4EuVi6zf&ver=3.0
142.250.74.132200 OK 587 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6Lf3y6cUAAAAAH3lUOqIDBaPJE74sIVe4EuVi6zf&ver=3.0
IP 142.250.74.132:0
File type ASCII text, with very long lines (884), with no line terminators
Hash 6af6d885674fe8185f802bd8df391eda
23a5c0f0217589f296fa9884eaad028d86c3850c
a9c85c3977b6c5a4982eb58ec897fbb9186e2fd56ac619dd455ed9ffd57d023b
GET /recaptcha/api.js?render=6Lf3y6cUAAAAAH3lUOqIDBaPJE74sIVe4EuVi6zf&ver=3.0 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Tue, 31 Jan 2023 11:36:01 GMT
date: Tue, 31 Jan 2023 11:36:01 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 587
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 11:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.bestinjurylawyer.co/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.3
104.21.92.156200 OK 509 B URL HTTP/1.1 www.bestinjurylawyer.co/wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.3
IP 104.21.92.156:0
File type ASCII text, with very long lines (999), with no line terminators
Hash 9f562b18c789f9fc5f889bcbcd5618dc
cc9b9bd811cc08a2ee38fe67d92ff4e6ead94ed9
f737b508a32de4ff6f6d814fd18c15cf9681f394fb6c6975d043be3c3e9edff0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/modules/recaptcha/index.js?ver=5.7.3 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 05:44:22 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BqJFNLMogx8jMmFi1X5ppJHz6%2BO574jOI1AO5%2BgnzobgMxRFnh4Ot%2BnKQWlsIcjUDnEWYPmNjUMU6hFaVtgtCRPItLYZVVH%2BFCb8Ue3Z1aEwvow2b9bsn6UC%2BPSnoO04BNUzeTVVhGmMtA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225aebdfcb4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3
104.21.92.156200 OK 4.1 kB URL HTTP/1.1 www.bestinjurylawyer.co/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3
IP 104.21.92.156:0
File type HTML document, ASCII text, with very long lines (12761), with no line terminators
Hash 703faa686a0766068b353c71a99846d4
0073fa179629a0fc3a53156955ed298a1dd351f5
a718109b2906e8635f0439c7cfe49eab4d04e63b6f1f1da729ef46ac2fc8f386
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.7.3 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 05:44:22 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ECLrh5eHDwbhjTJ5R25HA3oMVoTlln3DktYRI3nZGNAB184TcxGfDjVKgZDAa49QdGV7Pr9guveqiKzs4ZJTp5Nhk7wmpn2lgEH0ACHWEwiNz0jULT5uElTjrTB85wi%2BRdlwKZsLA6esRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225aecb9a1bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
104.21.92.156200 OK 2.4 kB URL HTTP/1.1 www.bestinjurylawyer.co/wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9
IP 104.21.92.156:0
File type ASCII text, with very long lines (6475), with no line terminators
Hash 6b0c5288bb5f4619cd7d10c077b2858b
f5fa1550d81a04d13d0d7273c32005722b910022
69c224d56ae4f660970896b60da2cabeb296fd95673a8ea23519db8f4f285b24
GET /wp-includes/js/dist/vendor/regenerator-runtime.min.js?ver=0.13.9 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Apr 2022 12:04:30 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JfNOanfoVwL1%2BsMLve%2B7lqpqukAy%2Fu3MER2lQvxR9Pe9fbj%2FBayae%2BJhWvdTgXYas6zz6rX8NBM6CqLFKUJiX0COK9NM2XlW8dJ6Ht%2B9ShyjoQVYp4f%2FYbcKxFPGTRWsUOJ3B0BH%2F%2BT2Yw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225aecd810b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/wp-content/themes/Divi/core/admin/js/common.js?ver=3.24
104.21.92.156200 OK 581 B URL HTTP/1.1 www.bestinjurylawyer.co/wp-content/themes/Divi/core/admin/js/common.js?ver=3.24
IP 104.21.92.156:0
Hash aad2ff88b007e293d43fd863b0649201
9f882d07b2d3e4813321472cd45fe3aa23c70f82
e0b8a3838822b97bfa6723a399b71747899cd40307b65d8d8bac6649b3680786
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/js/common.js?ver=3.24 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 11 Jun 2019 16:25:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k5i54jmRdpAS8lu2Y9as3A7RU4%2FJqR7Zk%2Bf1GuecVD3kz7%2BbQWA0KYz41Aa9wMHbcuO3aS79ZjX%2FJKQrpHI%2FZd8hg45NO9R3ncBCicvVzpqQxUpqatRH28hwtZ9yP8y6bxBbqi6ZyOoFxQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225aec980b4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.sca1b.amazontrust.com/
54.230.245.100200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.100:0
Hash eacad8cf451aae7c458dfa79e7763c6d
c9f5adc41653e2fbdec1e647a5cdef81870d2212
761db5f8f1c217bc0035c0e9d2f84f35594d760c80953e52dbd521aab024a173
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=92449
Date: Tue, 31 Jan 2023 11:36:01 GMT
Etag: "63d7b9e5-1d7"
Expires: Wed, 01 Feb 2023 13:16:50 GMT
Last-Modified: Mon, 30 Jan 2023 12:36:53 GMT
Server: ECS (dcb/7F5E)
X-Cache: Miss from cloudfront
Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: biSyW_xdpPol0pvUAv-lj6mtO_Wjnfc9Zq6b1xOcVG-9s_9uNG_VnA==
Age: 2397
www.bestinjurylawyer.co/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
104.21.92.156200 OK 6.5 kB URL HTTP/1.1 www.bestinjurylawyer.co/wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0
IP 104.21.92.156:0
File type Unicode text, UTF-8 text, with very long lines (17819), with no line terminators
Hash 91f8030d1b051a5df8a937d988b8a4c5
4f575833d376de84ba5066e96064ea251f9ede90
bcf567eae295f5bb83287da56bb542163ef4a7e1c0d03608887508f9f0ad9294
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/dist/vendor/wp-polyfill.min.js?ver=3.15.0 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 15:43:29 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BC2Fo%2FssHZ%2BICLLDL44FSQz9AUjOn9NI6oU5a6ziWTEx6kk4yrdpcMgydvdDLaaK2zWZgJ7SnVRkETKckhwVkcM6m6Vwrd49uCFnsGK08Ebr%2F3FobSGvlB4VDJWpux9hWHqVxkktPJ8YAQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225aecdccb52d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
e1.o.lencr.org/
95.101.11.115200 OK 344 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 21c026173f311c36df56e61751992e08
d24102e79ee2c735877d01e789aabf0caf2e404c
2ac3838c186ca2d9d8c02a9c1ab4a3fb86ac60c4505171eebac63ce3d1a3ed87
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 344
ETag: "2AC3838C186CA2D9D8C02A9C1AB4A3FB86AC60C4505171EEBAC63CE3D1A3ED87"
Last-Modified: Tue, 31 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21566
Expires: Tue, 31 Jan 2023 17:35:27 GMT
Date: Tue, 31 Jan 2023 11:36:01 GMT
Connection: keep-alive
www.bestinjurylawyer.co/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
104.21.92.156200 OK 31 kB URL HTTP/1.1 www.bestinjurylawyer.co/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 104.21.92.156:0
File type ASCII text, with very long lines (65447)
Hash 25a014e67e9b2eafb7ecc86f1e30d77d
f4227f827cba0c787a4e08ccc6427d27c95873e2
63a06e24fbd59edc5ca7cff61c8cbb3f67c2a684c2a407ba891af34f737f15b9
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 19 Sep 2022 14:16:24 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nDeCvYF%2FF7ReJbO6ioWz%2BHy8JjSMjjFLvrAry1Lp5EJJQ%2BA0oQQAoBxVVQiR2bicUjiPJXryHtxLT5qN2ChkTSff2%2FHz7MqcUYeB%2BriqrFL5wbFabr%2BkK7JSAGPXphFfWgxSmc2CtIF5oQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225b0cfe50b02-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
104.21.92.156200 OK 4.2 kB URL HTTP/1.1 www.bestinjurylawyer.co/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 104.21.92.156:0
File type ASCII text, with very long lines (11126)
Hash 0d5bb2a36d1fc2e095235bc201eb5579
98f0154e2ed5322a9f65077f954868d6c800b337
fe6382620c35c12aa4f3f96fe395e5813defe330c1d95fd3de1e94f8f5d1f0a5
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 18 Nov 2020 09:06:06 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dtK8vsagZc9G5hF5etDduc2H6OGW9byXPSlESQZI88ZD6JBpKLvR4OBQTSlEcGaL7T6Koq0SDq0u1TF92Fr8C6Cjhp22u%2BB818xYCwUlp7hz2Hpfhsdsfqbg5dXBugeyrFlOLRUrBy5aPw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225b0cd3c1bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3
104.21.92.156200 OK 3.0 kB URL HTTP/1.1 www.bestinjurylawyer.co/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3
IP 104.21.92.156:0
File type ASCII text, with very long lines (10565), with no line terminators
Hash 95f1e9d038d909a270a9b758b314a6f2
2d3be92347f7f537e4cad883fea9894d71df0da6
132937168fa73e1a5df911d4c1e5391ee565c9cdda9348b541a8e46d00fef094
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.7.3 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Fri, 27 Jan 2023 05:44:22 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SsDjEvLWKXIFvQev1hboMEUlO36OkGySQ6cwE1GYjzzVu1aDCkYrZNREb0ALA2zvYvDAIMA6D27kjrOBNLqdcKObIcG%2FojsuTtTtLS3ttTSZXootjeZ24SnbzFBbMrayxrvnnDX6J6lGAA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225b0b8d7b4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/wp-content/themes/Divi/js/custom.min.js?ver=3.24
104.21.92.156200 OK 63 kB URL HTTP/1.1 www.bestinjurylawyer.co/wp-content/themes/Divi/js/custom.min.js?ver=3.24
IP 104.21.92.156:0
File type Unicode text, UTF-8 text, with very long lines (20990)
Hash a265be30d5da43ac794f67b114238417
a0e325719a2a51ffb37bdc862ec6f8e85f8cf8af
f2973c6b1215ba08a069268a4203e0a977206c83478f29b61e262e793f094562
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/js/custom.min.js?ver=3.24 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:01 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 11 Jun 2019 16:25:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9SPZ2NJA2k9b13MOTgh16agV7A4PxzgstU5SO99chwsCN%2FUMR1%2BRb%2Fs8eVC2RZA5gyPi%2B0WnSSpGaUp2Uf4dlWjlnjyYWjaYx8VWzGl8NoFTx0ad2nCL3vFoCVvBYQJ6Z8J6m5UVoQ%2BsnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225aec9cafab8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/wp-content/themes/Divi/core/admin/fonts/modules.ttf
104.21.92.156200 OK 38 kB URL HTTP/1.1 www.bestinjurylawyer.co/wp-content/themes/Divi/core/admin/fonts/modules.ttf
IP 104.21.92.156:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, modules \012- data
Hash 5c659f2cf2301c2a53ae145505957a5e
98e1d8476beb6a1e423d69e2f7832d132223ba99
74bf275335e69dfd80ddb77de985ad00cb0804407f547e2998966cc1812f979d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/Divi/core/admin/fonts/modules.ttf HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wp-content/themes/Divi/style.css?ver=3.24
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:02 GMT
Content-Type: font/ttf
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 11 Jun 2019 16:25:56 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yt2X09F091ByBzJGtQ1Nw2gS1BEiVIoq4yWCQfUMo1d%2FoiV%2BKlqrrONywoujiqe2sodZNv2qUji1fNzg1VV2gFnhQpAwTCfN1V1h7PM1M4M9tnqa4Ji5F5NChTpy%2BFkiYWsPNFpDcxYL8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225b0cc6ab4ed-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/favicon.ico
104.21.92.156301 Moved Permanently 0 B URL HTTP/1.1 www.bestinjurylawyer.co/favicon.ico
IP 104.21.92.156:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 301 Moved Permanently
Date: Tue, 31 Jan 2023 11:36:04 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Redirect-By: WordPress
Vary: Accept-Encoding
Location: http://www.bestinjurylawyer.co/favicon.ico/
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6i5B6lD6w6VxCj4f0oZFYkeQWmq5IECzQc2qaPa5fJAZ9i%2B9ALpreN5nR6iMwSyCXuyRkn8KvXFd5hnNsFCrjT5NBdS5OqMp0Xs40Z7QYFAlIBbcjNwxzRvdMzyJL7gO8QNBvWagqBK9Jw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792225bdbd17b4fa-OSL
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
104.21.92.156200 OK 5.0 kB URL HTTP/1.1 www.bestinjurylawyer.co/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 104.21.92.156:0
File type ASCII text, with very long lines (15660)
Hash bbb097231c0fb01c0d2f6b36ed6671f8
c816b9446535131259db1107069b5096354f993b
aca781b166c02a50a9de1f82c51f0ebbd808b59e58e6dfe5f29ae84c881926c5
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 12 Apr 2022 05:56:23 GMT
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dE8yRFKemZtIeDuDbVRR0H0CtvtUx%2Bf53H9cXAI3aqDHSFpkuVdicKcB9Shwqy1MCggGfKU4rJkXPvqXlXVdoc6jE9xZ1eo3JpH3UkszWo0M0cIhJOfxiAoekdac16iL5VPNtFyDIgghwg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 792225ca4956fab8-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/favicon.ico/
104.21.92.156200 OK 16 kB URL HTTP/1.1 www.bestinjurylawyer.co/favicon.ico/
IP 104.21.92.156:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (14357)
Hash 1f505ab024eb4d314ee67105d4a98778
89f5de624d70a93479132d006c03d8b7090b31c5
3f0be4b5f048526047384b889a8067244c9b6cce410737b4cb7173c8ed1dde5a
Analyzer Verdict Alert fortinet Phishing
GET /favicon.ico/ HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
Connection: keep-alive
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Link: <https://www.bestinjurylawyer.co/index.php?rest_route=/>; rel="https://api.w.org/", <https://www.bestinjurylawyer.co/index.php?rest_route=/wp/v2/pages/6>; rel="alternate"; type="application/json", <https://www.bestinjurylawyer.co/>; rel=shortlink
Vary: Accept-Encoding
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0NJf51inbzplCLIyTrcPJWh65saDH4MHZUBJHzSjiQR3%2BFBeMXKMgF9B8C5IR8eMAvCa7R%2Fx9KUWWVuvN3L%2FszSzsXzSzR7h%2F5NAQpOQsT6qrf8WwdBuzTIUfVQUkzLLmZ1vPJaYkphVwA%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792225c6086cb4fa-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
www.bestinjurylawyer.co/?wordfence_lh=1&hid=BF7E5DFA306141B52678E39830E2FB6B&r=0.6073086983464043
104.21.92.156200 OK 34 kB URL HTTP/1.1 www.bestinjurylawyer.co/?wordfence_lh=1&hid=BF7E5DFA306141B52678E39830E2FB6B&r=0.6073086983464043
IP 104.21.92.156:0
Hash e0ac65c8c00da17cd5ae48e36eb0f9b3
eeda20029ce4bf8d7707d16d164cbac8f230fd73
153f5ed1ae33acd2dd34c4c41130ecf6cedab2d91487e3a28b7ddc063ca46e3c
GET /?wordfence_lh=1&hid=BF7E5DFA306141B52678E39830E2FB6B&r=0.6073086983464043 HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/wer28fnd48s/TD/95d7b5b439b3ad330189fb27d5cb7940/confirm.html/
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 11:36:06 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 0
Connection: keep-alive
Link: <https://www.bestinjurylawyer.co/index.php?rest_route=/>; rel="https://api.w.org/", <https://www.bestinjurylawyer.co/index.php?rest_route=/wp/v2/pages/6>; rel="alternate"; type="application/json", <https://www.bestinjurylawyer.co/>; rel=shortlink
X-Robots-Tag: noindex
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AszBML7hegwaIxVXAjMbv%2BE9FcGnlbkP5wf8VxXJX%2BKZ%2FI7KZs%2FbnrURvJieJHItz9L9aa5MNfbdysEXGcGrWvM51Q09lr45Ln%2F32%2FpfUBhs46bm8CNuRkXNv%2F0ViDReN7YRJ2oCAMfAqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 792225cb5befb4ed-OSL
alt-svc: h2=":443"; ma=60
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
142.250.74.99200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP 142.250.74.99:0
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.bestinjurylawyer.co
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 11:09:22 GMT
expires: Wed, 31 Jan 2024 11:09:22 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
age: 1604
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.35200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 395283
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.35200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:40:43 GMT
expires: Fri, 26 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 413723
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.bestcomplawyers.com/wp-content/uploads/2017/10/lawyer-logo-best-4.png
172.67.198.94301 Moved Permanently 0 B URL HTTP/2 www.bestcomplawyers.com/wp-content/uploads/2017/10/lawyer-logo-best-4.png
IP 172.67.198.94:0
GET /wp-content/uploads/2017/10/lawyer-logo-best-4.png HTTP/1.1
Host: www.bestcomplawyers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 31 Jan 2023 11:36:01 GMT
content-type: text/html; charset=UTF-8
location: https://bestcomplawyers.com/wp-content/uploads/2017/10/lawyer-logo-best-4.png
expires: Tue, 31 Jan 2023 12:36:01 GMT
cache-control: max-age=14400
x-redirect-by: WordPress
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oxD1JBja00zui35D7IUa8RrFHeEK6jyD0qg8sZIzm%2F3VaB7Y9VI5kMAvfwh6sQBeK6fNmP5A2ec4MedP7N99FdRqnjTuBJasPIOwVD1OSSkIKeBB5RcPFZFSyfp0rd%2BXTCoVXZYCMBg4cw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792225a90cc50afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
platform.clientchatlive.com/chat/init/LoUOL0/prompt.js
34.235.92.93200 OK 0 B URL HTTP/2 platform.clientchatlive.com/chat/init/LoUOL0/prompt.js
IP 34.235.92.93:0
GET /chat/init/LoUOL0/prompt.js HTTP/1.1
Host: platform.clientchatlive.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 11:36:01 GMT
content-type: application/javascript
server: nginx/1.14.0 (Ubuntu)
access-control-allow-origin: *
access-control-allow-methods: GET
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
vary: Accept-Encoding, Origin
set-cookie: __device__=y1pI4WGFl769R7xAdJgn9sEJFKHA8pqbSfPEVSIQguPypZ6XZ1NZTUB4I1SqwzxUvnZwwFCcmEE3uuX1Paq0K26gnIeesKBTwUNYrYbRAQWlmhG69GCfSpCUxNoh5jnf; expires=Fri, 28-Jan-2033 11:36:01 GMT; Max-Age=315360000; Path=/
content-encoding: gzip
X-Firefox-Spdy: h2
www.bestcomplawyers.com/wp-content/uploads/2017/10/we-win.png
172.67.198.94301 Moved Permanently 0 B URL HTTP/2 www.bestcomplawyers.com/wp-content/uploads/2017/10/we-win.png
IP 172.67.198.94:0
GET /wp-content/uploads/2017/10/we-win.png HTTP/1.1
Host: www.bestcomplawyers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 31 Jan 2023 11:36:01 GMT
content-type: text/html; charset=UTF-8
location: https://bestcomplawyers.com/wp-content/uploads/2017/10/we-win.png
expires: Tue, 31 Jan 2023 12:36:01 GMT
cache-control: max-age=14400
x-redirect-by: WordPress
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WyTSdbN9TBQdR52R5YYCxYmsbqTTQYY4p23Ryy%2Fl%2F6nigUCQeKIwwu5PCRPNgGnk%2FxkdcCztwDQbirc9opHPiivAbksgCwf%2FkFo3DL%2BaJmpreyOrlyLZcUmeXSRa7RBZ51GCpOq%2BIEyqRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792225a90cc60afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.bestcomplawyers.com/wp-content/uploads/2017/10/gara.jpg
172.67.198.94301 Moved Permanently 0 B URL HTTP/2 www.bestcomplawyers.com/wp-content/uploads/2017/10/gara.jpg
IP 172.67.198.94:0
GET /wp-content/uploads/2017/10/gara.jpg HTTP/1.1
Host: www.bestcomplawyers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 31 Jan 2023 11:36:02 GMT
content-type: text/html; charset=UTF-8
location: https://bestcomplawyers.com/wp-content/uploads/2017/10/gara.jpg
expires: Tue, 31 Jan 2023 12:36:02 GMT
cache-control: max-age=14400
x-redirect-by: WordPress
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6NGPxWTnSWbPrlUjzTrL9gp0X2q8HSqJqUaehXVUVllg6eRSdNcsu7MvCdDJp472tODY6Sd1huuPidu374LKEem9zKPsGoRedSKZ79KWy0BeKpptqWlsKBiKmt2OrPLoaTizlcu68AL7jQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792225aeaa4e0afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.bestcomplawyers.com/wp-content/uploads/2017/10/philly.jpg
172.67.198.94301 Moved Permanently 0 B URL HTTP/2 www.bestcomplawyers.com/wp-content/uploads/2017/10/philly.jpg
IP 172.67.198.94:0
GET /wp-content/uploads/2017/10/philly.jpg HTTP/1.1
Host: www.bestcomplawyers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 31 Jan 2023 11:36:02 GMT
content-type: text/html; charset=UTF-8
location: https://bestcomplawyers.com/wp-content/uploads/2017/10/philly.jpg
expires: Tue, 31 Jan 2023 12:36:02 GMT
cache-control: max-age=14400
x-redirect-by: WordPress
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D%2FCLq458Xoe%2BzapnD8ScWCKjPXPmNOGpwr3TE%2BNRlRQzGtlzRZKGOK5Rb4JolOmcHb92IFZF20nQWHBrzkUveIOPt0nUSnTGmXD5rxLOCuZAbcHqyivqq%2BqY5MI0iBIBm5DZt%2BMwyQHMgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792225aeaa410afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.bestcomplawyers.com/wp-content/uploads/2017/10/risk.jpg
172.67.198.94301 Moved Permanently 0 B URL HTTP/2 www.bestcomplawyers.com/wp-content/uploads/2017/10/risk.jpg
IP 172.67.198.94:0
GET /wp-content/uploads/2017/10/risk.jpg HTTP/1.1
Host: www.bestcomplawyers.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.bestinjurylawyer.co/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Tue, 31 Jan 2023 11:36:02 GMT
content-type: text/html; charset=UTF-8
location: https://bestcomplawyers.com/wp-content/uploads/2017/10/risk.jpg
expires: Tue, 31 Jan 2023 12:36:02 GMT
cache-control: max-age=14400
x-redirect-by: WordPress
vary: Accept-Encoding
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=veC8htnNJ8vTTP7O13yfYkA%2Fk973VP3VXxlBChnf3sMAyu8hGD5yENH4dBltVU0h3W4uqtfO4bHjAK8bgRHY%2FmkSsmvGd7WpQmo%2F1yY7g9NHljwqzn33vkNB0s4QJkiSltcEfVDhn9pPJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792225aeaa520afe-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.bestinjurylawyer.co/index.php?rest_route=/contact-form-7/v1/contact-forms/90/feedback/schema
104.21.92.156200 OK 0 B URL HTTP/2 www.bestinjurylawyer.co/index.php?rest_route=/contact-form-7/v1/contact-forms/90/feedback/schema
IP 104.21.92.156:0
Analyzer Verdict Alert fortinet Phishing
GET /index.php?rest_route=/contact-form-7/v1/contact-forms/90/feedback/schema HTTP/1.1
Host: www.bestinjurylawyer.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, */*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.bestinjurylawyer.co/
Origin: http://www.bestinjurylawyer.co
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 11:36:06 GMT
content-type: application/json; charset=UTF-8
x-robots-tag: noindex
link: <https://www.bestinjurylawyer.co/index.php?rest_route=/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
allow: GET
access-control-allow-origin: http://www.bestinjurylawyer.co
access-control-allow-methods: OPTIONS, GET, POST, PUT, PATCH, DELETE
access-control-allow-credentials: true
vary: Origin,Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iOkb5FJVK2EF9EuQeRHxrybKdtOfBfWVzumrQHC8mbhGFKAIU8oRYIfAvIkkdZPu0tSwhAgJRdlP8zosgYG2cfmnETaVz5EN3vk93dS%2FVqVz5wtbG6wgexyEyjNRvPXSgdkhCQ4kutuqEQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 792225cb6cc0b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2