open-telecom.co.uk/
149.202.166.135301 Moved Permanently 162 B IP 149.202.166.135:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: open-telecom.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Mon, 26 Sep 2022 04:25:37 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://open-telecom.co.uk/
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 04:15:18 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: e0s3dv2tuiv3FnBV9sveRBuQAdpmXxHgvSP6LumDYPNhBzXEcbq7QA==
Age: 619
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7110
Expires: Mon, 26 Sep 2022 06:24:07 GMT
Date: Mon, 26 Sep 2022 04:25:37 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: HrfJq_-UcSCSKxuauwuS01Il4DOYf_F0UZKsB-rUTa02oJVuDLD5iQ==
age: 85823
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ffba2c7ac72acf6e252c13fdd16cf1a8
efbc19f56bd964577a102cd8baeacb28f53f175a
6a6bf478dd041671632bdc9d406aa004d0e6d38a6b135d82fa332676911bbe36
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A6BF478DD041671632BDC9D406AA004D0E6D38A6B135D82FA332676911BBE36"
Last-Modified: Sun, 25 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21550
Expires: Mon, 26 Sep 2022 10:24:48 GMT
Date: Mon, 26 Sep 2022 04:25:38 GMT
Connection: keep-alive
open-telecom.co.uk/
149.202.166.135200 OK 141 B IP 149.202.166.135:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 7d049bb7289f099088876fa51669f58d
493cfa3929aced21e82a0598d5f562363330fdf3
ef8a38d01cb9eb2fb311d33593bde6627face5c27c14735071fe10c33ea3489e
GET / HTTP/1.1
Host: open-telecom.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/html
content-length: 141
x-accel-version: 0.01
last-modified: Sun, 14 Jun 2020 10:13:47 GMT
etag: "9e-5a80890e81308-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 26 Sep 2022 04:04:17 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Mon, 26 Sep 2022 04:22:50 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: RZwj-OFR7CbpU5fJtwury6BjXCy8MrN-MzFoQFcdQ95Tnbtxcg5_mg==
Age: 1281
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4044
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:38 GMT
Last-Modified: Mon, 26 Sep 2022 03:18:14 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6a6438b6f2ca38d3369792b3809dcb21
f297485741611ab6c4176ce67221e33dce99cc2f
28f2e9b6dd61d7c23aeb1111891c89cf6c781a4ad7966d23fcf5dda03d1174db
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "28F2E9B6DD61D7C23AEB1111891C89CF6C781A4AD7966D23FCF5DDA03D1174DB"
Last-Modified: Sun, 25 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21544
Expires: Mon, 26 Sep 2022 10:24:42 GMT
Date: Mon, 26 Sep 2022 04:25:38 GMT
Connection: keep-alive
www.didcomms.co.uk/
149.202.166.135200 OK 22 kB IP 149.202.166.135:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 9ab80b6c4289d19a033417cc0871ce44
6fbf200bd4904dd95ec08c6640c9d88c4a328b4d
044ecef8acf2e1e8f1b2765552a650356dec1d23ec9b495cb7de8e3a07ccc41a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Connection: keep-alive
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/html; charset=UTF-8
content-length: 21718
vary: Accept-Encoding,Cookie
cache-control: max-age=3, must-revalidate
content-encoding: gzip
last-modified: Mon, 26 Sep 2022 04:24:25 GMT
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.89.17.198101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.89.17.198:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 88iC4KvkR0mZYVEdnnKWRQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BooMd26gOhOr7bOC24lLU7fNgI0=
www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/starter/assets/css/starter-main.css?ver=4.8.3
149.202.166.135200 OK 365 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/starter/assets/css/starter-main.css?ver=4.8.3
IP 149.202.166.135:0
Hash 2ffbc7cbe67ccaa03556cbb55b70c20a
be0dabbd7c2b9898a1150df38b3b2b0a3e189f7d
a79ac30db08fde6a59b03a59be7b4797ef62f91986be40afd290dde2b53baa67
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/email-subscribers-premium/starter/assets/css/starter-main.css?ver=4.8.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
content-length: 365
x-accel-version: 0.01
last-modified: Wed, 29 Sep 2021 11:38:44 GMT
etag: "31f-5cd20c5c691fa-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.didcomms.co.uk/wp-content/plugins/sendpress/css/front-end.css?ver=6.0.2
149.202.166.135200 OK 459 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/sendpress/css/front-end.css?ver=6.0.2
IP 149.202.166.135:0
Hash 27d5b3ebf571e3ea4161f681ca635af3
df3d4b08802d3640df5f6be6020a8ecac3172cbd
58c3884010ef864d1b34c8a28326be41f69a335932909d7d2fb1524bb9d34318
GET /wp-content/plugins/sendpress/css/front-end.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: text/css
content-length: 459
x-accel-version: 0.01
last-modified: Thu, 31 Mar 2022 16:25:33 GMT
etag: "3d3-5db861c7c02b4-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/addthis-all/frontend/build/addthis_wordpress_public.min.css?ver=6.0.2
149.202.166.135200 OK 284 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/addthis-all/frontend/build/addthis_wordpress_public.min.css?ver=6.0.2
IP 149.202.166.135:0
File type ASCII text, with very long lines (504)
Hash 12711e1c856d6b459fda3d6bd0bf6eda
bd6750d02ccb8f9a340d77b35f4cbf53284c3488
e9f5c7fe2e69f18c19d456bb52706b71bb6a858a15019822ee6f5385c593e9f9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addthis-all/frontend/build/addthis_wordpress_public.min.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: text/css
content-length: 284
x-accel-version: 0.01
last-modified: Mon, 30 May 2022 16:21:45 GMT
etag: "24b-5e03d0d643a80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15
149.202.166.135200 OK 8.4 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15
IP 149.202.166.135:0
Hash feba0b4c65aa9b35169889aa6fb0ca21
6534e7ff60649fb16793a3d9e4574919760f51c6
eaa9475dc75bc80d6ea3429f0c44722b1d5750659f50499b4c03fb427955d7d5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Wed, 11 May 2022 15:10:52 GMT
etag: W/"627bd1fc-1f7d7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/css/dist/block-library/style.css?ver=6.0.2
149.202.166.135200 OK 24 kB URL HTTP/2 www.didcomms.co.uk/wp-includes/css/dist/block-library/style.css?ver=6.0.2
IP 149.202.166.135:0
Hash 36e8d379dc8dab31a74b8049b889922b
a03646c6aa6c93306eca5ec0ab9cfb340900a2dd
8646afa09061cf2dbcb7733567f9c47c7e1f55a35cdfa83dd08ec97e61fac134
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 15:11:16 GMT
etag: W/"62cee094-193c1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/download-after-email/css/download.css?ver=1658675449
149.202.166.135200 OK 4.1 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/download-after-email/css/download.css?ver=1658675449
IP 149.202.166.135:0
File type ASCII text, with CRLF line terminators
Hash 188569f448c99cbc70f0032d56ed38e2
92a8d97e71c205421a764c5c10fdda8681985c4c
72411a7662b00daddfbeba8a7616baa39c4268c4ec4442da1a9e563167dc2608
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/download-after-email/css/download.css?ver=1658675449 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Sun, 24 Jul 2022 15:10:49 GMT
etag: W/"62dd60f9-23ac"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/voice-fax-and-messaging-150x150.jpg
149.202.166.135200 OK 5.7 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/voice-fax-and-messaging-150x150.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 9dcf8d65c5e2efd998f7151be11ef934
0154dac0a1170dcc7d5ccb0951ec564436ea17ab
93979278701da357f3dde0b21ea5e294540267e97a616d27452cb9dea1c9ad1f
GET /wp-content/uploads/2017/02/voice-fax-and-messaging-150x150.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: image/jpeg
content-length: 5740
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-166c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/excited-2-150x150.jpg
149.202.166.135200 OK 5.9 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/excited-2-150x150.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash df0447ddb11e35e34cdfa5facfd90670
493a2e1175ee34698cb1fae24e5e31084986b57b
6f7987b397991ef7e1bd161679a66744932c82bc7debe6f1137d3c75c566d610
GET /wp-content/uploads/2017/02/excited-2-150x150.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: image/jpeg
content-length: 5931
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-172b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/download-after-email/css/all.css?ver=6.0.2
149.202.166.135200 OK 12 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/download-after-email/css/all.css?ver=6.0.2
IP 149.202.166.135:0
Hash 864b81222c55dd16423ea5c10f517733
2d8c9bd5ef3cc91f1a9066646b6d688e9282c105
dadf50fc3aac367b6571bd1446730e705ee6de2aaac5a602763f7c88247cd3c9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/download-after-email/css/all.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Sun, 24 Jul 2022 15:10:49 GMT
etag: W/"62dd60f9-11345"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/sendpress//img/ajax-loader.gif
149.202.166.135200 OK 673 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/sendpress//img/ajax-loader.gif
IP 149.202.166.135:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 73e57937304d89f251e7e540a24b095a
a3243ca6a628b77b3523a18aff6bafae85b45adc
43a526a07a078d736e5c9d67d8479dd54072b7e5c6ddd2cd466f86a086e49ef5
GET /wp-content/plugins/sendpress//img/ajax-loader.gif HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: image/gif
content-length: 673
x-accel-version: 0.01
last-modified: Thu, 31 Mar 2022 16:25:33 GMT
etag: "2a1-5db861c7da895"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/solutions-banner-1-150x150.jpg
149.202.166.135200 OK 3.4 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/solutions-banner-1-150x150.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 0e838c03281b5cf7a8cb02dc5a26048e
c489e1ccbb3f301bd868adc775c555eb7ce3e338
1f96d854de09e82fe81a463e221795bee01b7fcd3e4c98a4507fce1b76374509
GET /wp-content/uploads/2017/02/solutions-banner-1-150x150.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: image/jpeg
content-length: 3403
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-d4b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-169366328-1
142.250.74.72200 OK 42 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-169366328-1
IP 142.250.74.72:0
File type ASCII text, with very long lines (1720)
Hash 68e216bebb7a9763e0ad3a87ddebd72c
a209b8a0536ee1bcb3406a45ca028a453003f613
25c1293bcaea89d10f3b672878330c48e949be6defa250a1ed09a080da494453
GET /gtag/js?id=UA-169366328-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 26 Sep 2022 04:25:39 GMT
expires: Mon, 26 Sep 2022 04:25:39 GMT
cache-control: private, max-age=900
last-modified: Mon, 26 Sep 2022 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 42257
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/search-in-place/css/codepeople_shearch_in_place.min.css?ver=1.0.103
149.202.166.135200 OK 117 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/search-in-place/css/codepeople_shearch_in_place.min.css?ver=1.0.103
IP 149.202.166.135:0
File type ASCII text, with very long lines (2781), with no line terminators
Size 117 kB (117096 bytes)
Hash 0e89e2e96d64b8727a4889e3a48c0292
7d07800787215e3b48634226bc8076e6d6c5f078
6162b9f9484aad8a487086cbb49a0113cc277ff1a8fe568e2b27be8660d5ea6a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/search-in-place/css/codepeople_shearch_in_place.min.css?ver=1.0.103 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Wed, 07 Sep 2022 16:18:36 GMT
etag: W/"6318c45c-add"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.2
149.202.166.135200 OK 451 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.2
IP 149.202.166.135:0
Hash 2cbb2b431f51472b160ee5177f584f6a
0a7dc89f53c513fa63437a6d42e7612ef4072994
542ff8abd5797378bf66e504fbcd1ba9adb45e57369fe71ccc903d534ed13dc6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: application/javascript
content-length: 451
x-accel-version: 0.01
last-modified: Wed, 13 Jul 2022 15:11:09 GMT
etag: "378-5e3b131e280bb-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=6.0.2
149.202.166.135200 OK 291 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=6.0.2
IP 149.202.166.135:0
Hash 00021be9910089c4ac4192ff08025905
b9056c380e58263a10319539d83cd7adadee5c69
dfaffd20072b35ac0f06f5ae7e3cba0e6c87346b46016b346f1f277ce9bf6042
GET /wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: application/javascript
content-length: 291
x-accel-version: 0.01
last-modified: Wed, 13 Jul 2022 15:11:09 GMT
etag: "21f-5e3b131e280bb-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4474bfba80fa3257384d1c908e1353bf
9a2869a3888743d575e6f87d2a7479d5d97fa123
63378e949c0ea9564e7660ea0522ce7a59727a0a5232b81b77f8525899f67a2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash f09a18ffd47757d6303864753f40a57c
6f056a04785c83dae4a4f40eaac5ac34a5a391f2
9969afe37e2b095cd931423fcc9dbfaa9a751d81a055bcd8f77a1aa7a51bd72e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 1db3e1d6bf7a5e2d0c87eab75a6e52fe
b923a169beb9248ea6a5070a04b57bc0aa44799b
f35aafc9c21937ac03d9b711aa18ef518aaaec6d0f9dbcecb42f757a0e70915c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 4474bfba80fa3257384d1c908e1353bf
9a2869a3888743d575e6f87d2a7479d5d97fa123
63378e949c0ea9564e7660ea0522ce7a59727a0a5232b81b77f8525899f67a2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.didcomms.co.uk/arc-widget
149.202.166.135200 OK 3.3 kB URL HTTP/2 www.didcomms.co.uk/arc-widget
IP 149.202.166.135:0
File type ASCII text, with very long lines (7592), with no line terminators
Hash 2dc4886f46ca93af108691cdcb06c0ca
214571cae82e04eedc33cb07d2f75767bf117f98
9ae1c6da94260ea461bfa797f4a4631c0b9dba36546e0b7177673cfc16869bf2
Analyzer Verdict Alert fortinet Phishing
GET /arc-widget HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: application/javascript
content-length: 3334
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=3600, stale-while-revalidate=864000
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 174c08439d0479ee62deefc2d025760e.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-C1
x-amz-cf-id: pDl32HGZWvYjRPGdvIOmaZgfn4d6K-PQe3XvJZRexGxHxSK84GI6nQ==
age: 751
set-cookie: PHPSESSID=h55oblpd60k66dcpf1jpl5s7h5; path=/
last-modified: Fri, 23 Sep 2022 19:22:46 GMT
etag: "632e0786-d06-gzip"
content-encoding: gzip
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/style.php?ver=6.0.2
149.202.166.135200 OK 1.4 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/style.php?ver=6.0.2
IP 149.202.166.135:0
File type CSV text\012- assembler source, ASCII text
Hash 24607870e46c70bfe5136b31661ed2c0
3ba45eeb1df537842520297bcbacbfd461570d76
24a9099241e2f45fcf5f239b58c0d5758b0d4e25dc8a62dcb67e91442e0429ad
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/style.php?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: text/css;charset=UTF-8
content-length: 1401
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding,Cookie
set-cookie: PHPSESSID=eh92irceuj2rbqq17fojp8fnkl; path=/
content-encoding: gzip
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/voice-fax-and-messaging.jpg
149.202.166.135200 OK 263 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/voice-fax-and-messaging.jpg
IP 149.202.166.135:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2017:02:16 01:07:28], baseline, precision 8, 1920x790, components 3\012- data
Size 263 kB (263168 bytes)
Hash 1288b087e575183e2d9c693d825588f6
d514a07529eac9a1d6e18279791686cf61be37d8
b02fe5020a61c01c3d5f1fe1decec64b5f96fe58b7b3403d0e367274fbb11809
GET /wp-content/uploads/2017/02/voice-fax-and-messaging.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: image/jpeg
content-length: 263168
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-40400"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/js/wp-emoji.js?ver=6.0.2
149.202.166.135200 OK 3.7 kB URL HTTP/2 www.didcomms.co.uk/wp-includes/js/wp-emoji.js?ver=6.0.2
IP 149.202.166.135:0
File type ASCII text, with very long lines (786)
Hash dfea75e752f5909add3fc234ed6b4380
b6c9d35b760e539844f3a750bfacfb202062ba3e
2790969987cb9aace8dcd821ad99a885844435de361acc822fda590ec2b187a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji.js?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: application/javascript
last-modified: Sun, 14 Jun 2020 14:53:55 GMT
etag: W/"5ee63a03-231d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.didcomms.co.uk/wp-content/plugins/sendpress/js/sendpress.signup.js?ver=1.22.3.31
149.202.166.135200 OK 53 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/sendpress/js/sendpress.signup.js?ver=1.22.3.31
IP 149.202.166.135:0
Hash cae6c734236979c4e20770d337c069cc
582cff17a30ee992fb7e2191dcafee864ca9dfcd
70965f4794f56c3cacaf0df3333b5fcc2b1aad8bec31f3efbeb36696712c1b04
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sendpress/js/sendpress.signup.js?ver=1.22.3.31 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: application/javascript
last-modified: Thu, 31 Mar 2022 16:25:33 GMT
etag: W/"6245d5fd-168e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 18:01:25 GMT
expires: Sun, 24 Sep 2023 18:01:25 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
age: 123854
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/images/readmore-arrow.png
149.202.166.135200 OK 1.0 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/images/readmore-arrow.png
IP 149.202.166.135:0
File type PNG image data, 10 x 7, 8-bit/color RGBA, non-interlaced\012- data
Hash d5940b0dda3b40b10e0c01887d9aa091
42f977d0b8967f43c5a73141c12af115dd3bf64a
860ed06a94501ee5238c61b93df4da6a5cb48cc8903606ccf33c619d3953d0bd
GET /wp-content/themes/accesspress-pro/images/readmore-arrow.png HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/wp-content/themes/accesspress-pro/style.css?ver=6.0.2
Cookie: PHPSESSID=eh92irceuj2rbqq17fojp8fnkl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: image/png
content-length: 1017
x-accel-version: 0.01
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "3f9-5a80c7a7dae17"
accept-ranges: bytes
x-powered-by: PleskLin
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/fonts/fontawesome-webfont.woff2?v=4.5.0
149.202.166.135200 OK 67 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/fonts/fontawesome-webfont.woff2?v=4.5.0
IP 149.202.166.135:0
File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data
Hash db812d8a70a4e88e888744c1c9a27e89
638c652d623280a58144f93e7b552c66d1667a11
ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/font-awesome.min.css?ver=6.0.2
Cookie: PHPSESSID=eh92irceuj2rbqq17fojp8fnkl
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: font/woff2
content-length: 66624
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-10440"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/connecting-people-worldwide.jpg
149.202.166.135200 OK 245 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/connecting-people-worldwide.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2017:02:16 01:11:43], baseline, precision 8, 1920x788, components 3\012- data
Size 245 kB (245304 bytes)
Hash 0105bae5289e4e8542776d465b5d8e78
ccebf03d275bdd88b68399efaf5d1c4018b96207
bb4a063a10157cd7ba5030111569152829a1ff6a0f0aabd1d5974c3237bca60f
GET /wp-content/uploads/2017/02/connecting-people-worldwide.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: image/jpeg
content-length: 245304
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-3be38"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/images/bgheader.jpg
149.202.166.135200 OK 173 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/images/bgheader.jpg
IP 149.202.166.135:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=55, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=8], baseline, precision 8, 8x55, components 3\012- data
Size 173 kB (173147 bytes)
Hash 0e35c3342cf1058222adf41a18739538
a2975d85d0c5211235a1aa2edfe61e48ebb7ebbb
7dc65aa448ec9880d46e658d8ad71dbd11dd61c230f1f8c59d0d2ba4eac5e8a2
GET /wp-content/themes/accesspress-pro/images/bgheader.jpg HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/wp-content/themes/accesspress-pro/style.css?ver=6.0.2
Cookie: PHPSESSID=eh92irceuj2rbqq17fojp8fnkl
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: image/jpeg
content-length: 173147
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-2a45b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/solutions-banner-1.jpg
149.202.166.135200 OK 199 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/solutions-banner-1.jpg
IP 149.202.166.135:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2017:02:20 12:22:33], baseline, precision 8, 1920x894, components 3\012- data
Size 199 kB (198910 bytes)
Hash 431fd9ecaa2e2a20498c71c8b029b087
5cecdf51fe3efecb6cf391ffab04275c57a7f0e0
911401860c1b8006ba2eff80fd8962da6a502ea00027fe428f90abbef1dff048
GET /wp-content/uploads/2017/02/solutions-banner-1.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: image/jpeg
content-length: 198910
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-308fe"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/excited-2.jpg
149.202.166.135200 OK 381 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/excited-2.jpg
IP 149.202.166.135:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2017:02:15 21:53:17], baseline, precision 8, 1920x1012, components 3\012- data
Size 381 kB (380816 bytes)
Hash 94ce85345d41251a57d0c56d1af29f95
4c6e8349ce423d9254de3c27d0336f4c1e866d02
68f1710c4e64553d48ea88056e057228ab7e2c6f107c7a5d2bcd6cf3ee8ded41
GET /wp-content/uploads/2017/02/excited-2.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: image/jpeg
content-length: 380816
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-5cf90"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/economic-1050731_1920.jpg
149.202.166.135200 OK 370 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/economic-1050731_1920.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size 370 kB (370398 bytes)
Hash 92f359f2af7c8b6831178ee4b1206459
4bc5c109d5d9f35c9a192b3e719ae3c321b0e0ac
fb83ee64d1bccf3cbb1c0c42eea92705fd3f22bcec6fd7e26a82e067c3fe742e
GET /wp-content/uploads/2017/02/economic-1050731_1920.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: image/jpeg
content-length: 370398
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-5a6de"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6f6c9b3c88b8339cddd1dd0bb625f7f4
4d8cc5dfce520e15d783e914aa6677225a5ecb5e
66d8c21eb4e56437f3153be7972103b024ee0ddb9551544ffafedfe0209fb4b3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "66D8C21EB4E56437F3153BE7972103B024EE0DDB9551544FFAFEDFE0209FB4B3"
Last-Modified: Sat, 24 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12519
Expires: Mon, 26 Sep 2022 07:54:18 GMT
Date: Mon, 26 Sep 2022 04:25:39 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d1256b6452c58ffb05e1db44d9d37a5f
04538f69abefe1019a0c4c6cc1fd3ffe5a5b2cfd
4bf592b24e41cf58e4ea973378a8559c4011a25ccdc51cc7a31457cc6561d22b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/lite/public/css/email-subscribers-public.css?ver=4.8.3
149.202.166.135200 OK 1.1 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/lite/public/css/email-subscribers-public.css?ver=4.8.3
IP 149.202.166.135:0
Hash 74a40a493af5f07a5717faab5041fa8a
df6c3a04b3d24fd703aeb2b52a3ad29c40651057
6d2f5b2863602b6ac56443d938bd2f492835a65747e1c27e7ac7a6b7d6ab914a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/email-subscribers-premium/lite/public/css/email-subscribers-public.css?ver=4.8.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Wed, 29 Sep 2021 11:38:44 GMT
etag: W/"61545044-71e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.74200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.74:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 04:08:36 GMT
expires: Mon, 26 Sep 2022 05:08:36 GMT
cache-control: public, max-age=3600
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
age: 1023
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.didcomms.co.uk/arc-sw?propertyId=7DEbpruv&seeder=true
149.202.166.135200 OK 1.4 kB URL HTTP/2 www.didcomms.co.uk/arc-sw?propertyId=7DEbpruv&seeder=true
IP 149.202.166.135:0
File type ASCII text, with very long lines (3351), with no line terminators
Hash bd4728fd091146312db3659d9d72fabb
506e705786c99f15dad2598a3dcb6355440cbe9d
178e2994e65363f4498d2605abf14c75a43f5926af3f1f58b30f2d9933ec52cd
GET /arc-sw?propertyId=7DEbpruv&seeder=true HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: PHPSESSID=eh92irceuj2rbqq17fojp8fnkl
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: application/javascript
content-length: 1385
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=3600, must-revalidate
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6fae8bd757404c66b9999cfeaff203bc.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-C1
x-amz-cf-id: OVeKdOGC8ESgPlbwFkxDIyaPPcA1HG4BRH4NiK595oF87SM-zX2NGg==
age: 3448
last-modified: Sat, 31 Jul 2021 01:05:06 GMT
etag: "6104a1c2-569-gzip"
content-encoding: gzip
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2013/03/favicon.ico
149.202.166.135200 OK 94 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2013/03/favicon.ico
IP 149.202.166.135:0
File type MS Windows icon resource - 13 icons, 48x48, 2 colors, 32x32, 2 colors\012- data
Hash 6b98af29bf7e6d2868d199beada953e2
e1cb20fab08d99205d9b05ed7319f3e852700dd2
5a9b47478e6ee04c110d42ed20d211ae8a50464464c2d0ce713099ff810b9a4a
GET /wp-content/uploads/2013/03/favicon.ico HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: image/vnd.microsoft.icon
content-length: 94198
last-modified: Sun, 14 Jun 2020 14:53:49 GMT
etag: "5ee639fd-16ff6"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Mon, 26 Sep 2022 04:25:39 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
z.moatads.com/addthismoatframe568911941483/moatframe.js
23.38.201.146200 OK 948 B URL HTTP/2 z.moatads.com/addthismoatframe568911941483/moatframe.js
IP 23.38.201.146:0
File type ASCII text, with very long lines (523)
Hash f14b4e1f799b14f798a195f43cf58376
b6fd3b3d407fb4c0a00fb8a31862235e2a6e0a86
92ed3e9fda5fa4d738ff4d9023846b56633617363dda6a750cacb4fba53241ac
GET /addthismoatframe568911941483/moatframe.js HTTP/1.1
Host: z.moatads.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: e0HboiVQpjIDEK8WTxqU5+8G8wOtu9bNCFY72alTHLP0/Yb+qoiTOxu6fad89ebRofzHxENxOOg=
x-amz-request-id: 61EC92F13BB22DD4
last-modified: Fri, 08 Nov 2019 20:13:52 GMT
etag: "f14b4e1f799b14f798a195f43cf58376"
content-encoding: gzip
accept-ranges: bytes
content-type: application/x-javascript
content-length: 948
server: AmazonS3
vary: Accept-Encoding
cache-control: max-age=48190
date: Mon, 26 Sep 2022 04:25:39 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 295378998d8c9b8331ba999d05005e60
1e1836a0226bfca04b94c8cdf9bedb9b2837c220
eff125c19507fbe1b89654ec55a9f67bac7740257fbcf91cf5b0a601db51d950
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1956
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:40 GMT
Last-Modified: Mon, 26 Sep 2022 03:53:04 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 1d095ec6a56142cb2084481b06881ef4
82ff236023008fbfb871aaa7c1e976e0cf15e91a
791ac45152415413d4af27f3dde61a021c9c57dcf7ca5b0e65300ebc3cd8815d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 295378998d8c9b8331ba999d05005e60
1e1836a0226bfca04b94c8cdf9bedb9b2837c220
eff125c19507fbe1b89654ec55a9f67bac7740257fbcf91cf5b0a601db51d950
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1956
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:40 GMT
Last-Modified: Mon, 26 Sep 2022 03:53:04 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/superfish.css?ver=6.0.2
149.202.166.135200 OK 30 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/superfish.css?ver=6.0.2
IP 149.202.166.135:0
Hash ee89c978517fdad091cc01db8beb3d53
439058592389722c96ee8bc10f8c15be7369ffb6
68aa7f6f92b289ddde06bce81f63d8ed01e872cbd0340e555eeda4c9923300b0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/superfish.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-95a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/responsive.css?ver=6.0.2
149.202.166.135200 OK 4.8 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/responsive.css?ver=6.0.2
IP 149.202.166.135:0
File type assembler source, ASCII text, with CRLF line terminators
Hash 090fc3fe77cfd02ec0d44b3ab1197a7b
eef2f1d8ccc68bfcd038fce09761cb135e4cb8fd
a93fcd29f8b72fdde563d78a26b632e94c28dc5350cc0d2a4d53fcbb0168b5c8
GET /wp-content/themes/accesspress-pro/css/responsive.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-3418"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/jquery.bxslider.css?ver=6.0.2
149.202.166.135200 OK 85 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/jquery.bxslider.css?ver=6.0.2
IP 149.202.166.135:0
Hash 60957f55eca2a4bbc07bf28ac39d33d0
7a32846fa7bd371ca3419b18754b119fcae4bd45
ff3617e03e78d20cc510903602a01677f47bdcdc14c0f8bb2a0597a50359cb1b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/jquery.bxslider.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-11d0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 295378998d8c9b8331ba999d05005e60
1e1836a0226bfca04b94c8cdf9bedb9b2837c220
eff125c19507fbe1b89654ec55a9f67bac7740257fbcf91cf5b0a601db51d950
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1956
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:40 GMT
Last-Modified: Mon, 26 Sep 2022 03:53:04 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
s.w.org/images/core/emoji/14.0.0/svg/1f942.svg
192.0.77.48200 OK 1.6 kB URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f942.svg
IP 192.0.77.48:0
Hash 75f3ccb3b607ff809657ded7db49c687
dfe3fefbd45f7008a97481341f2187dc4b9f8986
55df4f4a36d0af1064f8c4ed0ae802d84c86aadca576cef348e21f624e00535c
GET /images/core/emoji/14.0.0/svg/1f942.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:40 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Tue, 12 Apr 2022 03:50:38 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 2
x-content-type-options: nosniff
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10288
Expires: Mon, 26 Sep 2022 07:17:08 GMT
Date: Mon, 26 Sep 2022 04:25:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10288
Expires: Mon, 26 Sep 2022 07:17:08 GMT
Date: Mon, 26 Sep 2022 04:25:40 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10288
Expires: Mon, 26 Sep 2022 07:17:08 GMT
Date: Mon, 26 Sep 2022 04:25:40 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 968b9c138702fb5994d1d9eab1a697fa
9660bb2d38079182efbd11d7a687bfc7f9d30751
5ba74820ad451747c8ed25529f06b037bebf4c0616a1f2165c9197c1171db7a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11728
x-amzn-requestid: bf60e58f-c4f4-45c7-923b-0d1539f720f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGw7oAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-32043c1b1411544f5d00edc0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: H4KXhBaRw3SvzBrbl30mV6R_vJ8bXBkyicb8fQiTp6YSBHjE8iFkNQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:49:56 GMT
etag: "9660bb2d38079182efbd11d7a687bfc7f9d30751"
content-type: image/jpeg
age: 20144
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 5a6097201b7da81f6e9a6d99a7353a0c
d4240fe80c76013b9f7b6fd09963aa47151b8d6a
519e9b47ddfa1e1fe047f4dc7df88e3011817f88144fcc3853a7984a781c2070
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "519E9B47DDFA1E1FE047F4DC7DF88E3011817F88144FCC3853A7984A781C2070"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10288
Expires: Mon, 26 Sep 2022 07:17:08 GMT
Date: Mon, 26 Sep 2022 04:25:40 GMT
Connection: keep-alive
v1.addthisedge.com/live/boost/ra-536530f652c04fc6/_ate.track.config_resp
23.38.200.123200 OK 828 B URL HTTP/2 v1.addthisedge.com/live/boost/ra-536530f652c04fc6/_ate.track.config_resp
IP 23.38.200.123:0
File type ASCII text, with very long lines (3062), with no line terminators
Hash ba94fade66020915f1a3ce11e9783996
79494cd664dadd75d13c6f360fa6baf4c28b1634
cdbc91041e44222df9fae4547d7a69a521793dec4678636a8094eaabcc63aa4b
GET /live/boost/ra-536530f652c04fc6/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 828
etag: -435331386--gzip
content-disposition: attachment; filename=1.txt
content-encoding: gzip
cache-control: public, max-age=39, s-maxage=86400
date: Mon, 26 Sep 2022 04:25:40 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2fe8c4f0c70fb6c1f4259eabedc7015e
85e378d0fff856832a8dd01743516b9476fed8c6
508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 22524
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bd5ecd8-fafe-452d-ae17-9df7d4cb5682.webp
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bd5ecd8-fafe-452d-ae17-9df7d4cb5682.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 720fc80bd0ff9b71f20c8e0c13e1084e
6ff5d7ce0608a8c1b1f4c731a94295e7a56dfe50
e84bcabd01425354050fe8ba5f4b29a97f05e6f5f15d26d0706c174136de30e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3bd5ecd8-fafe-452d-ae17-9df7d4cb5682.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8931
x-amzn-requestid: 9255ee80-ae19-4b47-882b-01e663e857ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG-EmZoAMFyWw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-70cc0bc87ed2480879ba081a;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Md06h9jRAN491M1gOjvAXN4Zp2msjqH-dYNVxyH6xJ2G8pf50tyHeQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:32:56 GMT
age: 21164
etag: "6ff5d7ce0608a8c1b1f4c731a94295e7a56dfe50"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:35 GMT
age: 24485
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.didcomms.co.uk
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.didcomms.co.uk
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash aa228863765c3263e12f1d7c71015518
619739a12e0f16eab26a43a913b35779edea57a6
cf9a241903646ee9b88b76da2bb3e11d16f36246f7bbc53bbe2c98466e5ea12a
GET /widgets/widget_iframe.c4bdc17e77719578b594d5555bee90db.html?origin=https%3A%2F%2Fwww.didcomms.co.uk HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 2187749
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Mon, 26 Sep 2022 04:25:40 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 31 Aug 2022 20:40:57 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F706)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 431ff1171a3d7c60a31cc1c3f62164ee
4b32113aaf50132b38c8034017a6eb5a32d7040b
65d598db252fb3979d3df3cb8d052861bb31d6187552f9c694ec27a322b308c9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a7e9af9-ebe4-49ea-9af4-d118f2ef0b43.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8851
x-amzn-requestid: dbe6ba4c-3d38-48e8-9d08-088d8e26e7a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUDAE23oAMF_yg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd46-4f3b85952fa3109d2921d0e1;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wbbfzE5nQkhK_nsXX8XGJbOl3Yf6NDA1r_AC-0dOzqJDkLQ2BLxK9A==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 23:15:06 GMT
age: 18634
etag: "4b32113aaf50132b38c8034017a6eb5a32d7040b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js?hash=e44d905fa03553e76749807cfb62a1ef
157.240.200.14200 OK 89 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=e44d905fa03553e76749807cfb62a1ef
IP 157.240.200.14:0
File type ASCII text, with very long lines (18598)
Hash 94f61ac4f93532ba02a5740d2848e6b2
57ac453454f2af048d34968f2f28c6c2e746b602
d43fff6e9fdb8db6d20fcac749014c6584bf3cd0075a8c3668730146e74b821b
GET /en_US/sdk.js?hash=e44d905fa03553e76749807cfb62a1ef HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 9d91365ef50229fa1a2862d9f804f575
etag: "6f22b711c52d6dd5601788a75b12e17c"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Tue, 26 Sep 2023 03:32:14 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: lPYaxPk1MroCpXQNKEjmsg==
x-fb-debug: sZw07QpLjztzGJQx01ok8UcPk43dJLGnBOCeikibNGzNVjYn4HOSnBnh4JHVJ3JT9lgdPZ0B9zhdfEBzeh77OQ==
content-length: 88800
x-fb-trip-id: 1679558926
date: Mon, 26 Sep 2022 04:25:40 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.arc.io/widget/js/widget-ui.js?784632c0
194.242.11.186200 OK 24 kB URL HTTP/2 static.arc.io/widget/js/widget-ui.js?784632c0
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type Unicode text, UTF-8 text, with very long lines (41203), with no line terminators
Hash 07e0adb5da4f639d5d30f8df40e2be47
0b8c4f19116b3f12685e9141e1eb621be526bba5
9e422bb767df7ab10bb7348eeeea35cb836fe6590430f70e9d1fb87f0a5c0d12
GET /widget/js/widget-ui.js?784632c0 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:40 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"7b9dc001ae1d02594045f630c0c9760a"
last-modified: Thu, 01 Sep 2022 19:21:28 GMT
x-amz-id-2: sso+CjRy526e+aJLRNdKq8RjhZ6KoGwR6Y604T67KYRlvAXyQ4xEXLctgzgvzzy4W5PmUrRFebM=
x-amz-request-id: 0RKQT4A1JEK82HB5
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/01/2022 19:27:00
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 8f9b8337b097ac45ff809df3881ace87
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/css/widget.css?d715632
194.242.11.186200 OK 8.8 kB URL HTTP/2 static.arc.io/widget/css/widget.css?d715632
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (13367)
Hash 0a986c16566d92f2309cbf8820cfe357
3a012dcfb9fb3cfa402e1083a4c599e83a0bf9e9
0e96827ea6af3ae9e81e0cca9a04fd00d57da5a9e2cd2caaec114bb398c079f2
GET /widget/css/widget.css?d715632 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:40 GMT
content-type: text/css
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-allow-methods: GET, HEAD
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"ce66dd39d9339eebd65264a9ecc334be"
last-modified: Fri, 23 Sep 2022 19:23:05 GMT
x-amz-id-2: fHBqYMPdmH0I0x7hpBK5z2xU3L95IK9B6Q9CC4ubEGxdkVU6omt1Z5ES2F5jrsjWu53xYByZgYI=
x-amz-request-id: DD35FSZDHFAY1K4Y
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/23/2022 19:27:21
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1ad79ce8f2bfa2ecc32a1618445d2bed
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
browser.sentry-cdn.com/6.2.2/bundle.min.js
151.101.66.217200 OK 21 kB URL HTTP/2 browser.sentry-cdn.com/6.2.2/bundle.min.js
IP 151.101.66.217:0
File type ASCII text, with very long lines (65448)
Hash a948fc086ec14683f3f2270913c7f702
945e9d1a6a70d4e3f87dbd1058879bcddcb40a1d
0bb5309b61da0b307549c7c9edd6a61766a86d3dd317d093525fddeebeb212e9
GET /6.2.2/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 17 Mar 2023 07:22:09 GMT
last-modified: Thu, 11 Mar 2021 09:25:54 GMT
etag: "a948fc086ec14683f3f2270913c7f702"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Mon, 26 Sep 2022 04:25:40 GMT
age: 16664610
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20633
X-Firefox-Spdy: h2
s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
23.38.200.123200 OK 78 kB URL HTTP/2 s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
IP 23.38.200.123:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 9a77dff666eebb6cf4bbc4c67c7b563b
9e98d7824a7b4e34665c2690d6f52caddad1fe4b
6cdf8e597f3cbe759531153fd926d51aeaebd836a1c9bc1436e079645bfd3ad7
GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77672
date: Mon, 26 Sep 2022 04:25:40 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
googleads.g.doubleclick.net/pagead/html/r20220921/r20190131/zrt_lookup.html
142.250.74.130200 OK 4.4 kB URL HTTP/2 googleads.g.doubleclick.net/pagead/html/r20220921/r20190131/zrt_lookup.html
IP 142.250.74.130:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Hash 682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f
GET /pagead/html/r20220921/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Mon, 26 Sep 2022 03:27:15 GMT
expires: Mon, 10 Oct 2022 03:27:15 GMT
cache-control: public, max-age=1209600
age: 3505
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
arc.io/arc-sw-core.js
54.230.111.70200 OK 68 kB IP 54.230.111.70:0
File type ASCII text, with very long lines (22448)
Hash b62d64ef6acb7d9e69619926d12987fd
d17547ac81a5b9ec9d3cfaa7fbecd563233af351
e82a5776a21790a3b2855755cb37d2aea37274b04b5b4e4ee48c318e8127d7e2
GET /arc-sw-core.js HTTP/1.1
Host: arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 67725
last-modified: Sat, 31 Jul 2021 01:05:06 GMT
content-encoding: br
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
date: Mon, 26 Sep 2022 04:03:06 GMT
cache-control: public, max-age=3600, must-revalidate
etag: "6104a1c2-1088d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: HFHzKEC_H2jChdmh8BXgPqFjCkYEvb7IE6_7yrreGG1SZJb5ZVGdYQ==
age: 1354
X-Firefox-Spdy: h2
www.facebook.com/tr/?id=1698963343673272&ev=PageView&dl=https%3A%2F%2Fwww.didcomms.co.uk%2F&rl=&if=false&ts=1664166338887&sw=1280&sh=1024&v=2.9.84&r=stable&a=wordpress-6.0.2-3.0.7&ec=0&o=30&fbp=fb.2.1664166338886.902293463&it=1664166338500&coo=false&rqm=GET
157.240.200.35200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1698963343673272&ev=PageView&dl=https%3A%2F%2Fwww.didcomms.co.uk%2F&rl=&if=false&ts=1664166338887&sw=1280&sh=1024&v=2.9.84&r=stable&a=wordpress-6.0.2-3.0.7&ec=0&o=30&fbp=fb.2.1664166338886.902293463&it=1664166338500&coo=false&rqm=GET
IP 157.240.200.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1698963343673272&ev=PageView&dl=https%3A%2F%2Fwww.didcomms.co.uk%2F&rl=&if=false&ts=1664166338887&sw=1280&sh=1024&v=2.9.84&r=stable&a=wordpress-6.0.2-3.0.7&ec=0&o=30&fbp=fb.2.1664166338886.902293463&it=1664166338500&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Mon, 26 Sep 2022 04:25:40 GMT
X-Firefox-Spdy: h2
static.arc.io/broker/js/chunk-vendors.5e1d8045.js
194.242.11.186200 OK 20 kB URL HTTP/2 static.arc.io/broker/js/chunk-vendors.5e1d8045.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type Unicode text, UTF-8 text, with very long lines (36366)
Hash cefa6602489020b4b7593dd9bf90cb7c
00d8637cc8b2ce6268d4560bfbb56825d374b1ba
0d180af7e76f276d9c992607de55414b951f24f2fcb871a8797fcf1a14134bab
GET /broker/js/chunk-vendors.5e1d8045.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:40 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"7baaa27cb0e1201fe90ecc5efca8fbcf"
last-modified: Wed, 19 Jan 2022 23:33:03 GMT
x-amz-id-2: Lg09pm0SMLA2gDpgvbsYLOJ6t8VM7iye6bHwugpdkzqKL5tqPfuDc6xQsPbM2BumjX36g9SpKpc=
x-amz-request-id: K2YYHZ7GZXR992N5
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 06/29/2022 22:31:25
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: d67f6f89266af30e5a0514b31698d327
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=www.didcomms.co.uk&callback=_gfp_s_&client=ca-pub-2896365872506862
172.217.21.162200 OK 204 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.didcomms.co.uk&callback=_gfp_s_&client=ca-pub-2896365872506862
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash 7de45c35926004d22852dfa8334c0b8d
8093189160862a44dddaa0075782c685c086864a
dbcb8403dd1ab3ee56508e72e661fb025f149ff39460556e0068de41950bc7b7
GET /gampad/cookie.js?domain=www.didcomms.co.uk&callback=_gfp_s_&client=ca-pub-2896365872506862 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 26 Sep 2022 04:25:40 GMT
server: cafe
cache-control: private
content-length: 204
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.com/adsid/integrator.js?domain=www.didcomms.co.uk
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.didcomms.co.uk
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.didcomms.co.uk HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 26 Sep 2022 04:25:40 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.didcomms.co.uk
216.58.207.226200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.didcomms.co.uk
IP 216.58.207.226:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.didcomms.co.uk HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 26 Sep 2022 04:25:40 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 83ce30306f9844b38a8e5d4c9146e333
a2a8a135c949784b4d2153954593411074fd0425
939a3899d3ba41e4868adabbfe5f0c49ecaa1bce8b1cb109327dc2dd6311ad5b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
static.arc.io/broker/js/lazy-modules.a169b1ec.js
194.242.11.186200 OK 16 kB URL HTTP/2 static.arc.io/broker/js/lazy-modules.a169b1ec.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (25027)
Hash c1b6790e8d0a418af0f58d400e3e3a00
fe14bfda7cc02c601717e1c38bc89270225ff63e
5406c055b9ddd8e4b6fa721c86e497649aea3d029697861d1ae4ddf414a8da9a
GET /broker/js/lazy-modules.a169b1ec.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:40 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"32ab6174f553ec44ff554a5a2406b76d"
last-modified: Wed, 19 Jan 2022 23:33:03 GMT
x-amz-id-2: 1HPOvli1UWDpUZXFWu6CwdlYyQUcdV4wPGgPy4nfB7B6fDlC7Q604ob7CUR3XzVeynp2AAE8mww=
x-amz-request-id: ST1DTDBD2C8CBP39
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/16/2022 07:43:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c873ee32ea8c30e110bb17737d8f65ce
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9f61c5ada09e4fa747144a96e95a943f
e7f3119b4d75a72dd0409673b9789ac1f3233d23
95afa75f054462b0db7b7b59ebadecc07ce8e4eac12b07e76645848983c52bcf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash cae538dcce82598fbe43c0bf443e62dd
cc68ac6be9c5e0087a0000e5735b83270ace30f5
954b9e9d9744e1319c51760780a35de2dec353afffac705c2cca6d836a5e056d
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 19826
date: Mon, 26 Sep 2022 02:41:09 GMT
expires: Mon, 26 Sep 2022 04:41:09 GMT
cache-control: public, max-age=7200
age: 6271
last-modified: Sun, 11 Sep 2022 13:50:09 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash c29810e7b34472452d3e8edd46811445
98f043a5647ef8c9f008da0c82f1cf00964765d7
528ab2bbab65f11b39703705ebb002a3521e217e799d40820c27579c3d5045c5
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4062
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:40 GMT
Last-Modified: Mon, 26 Sep 2022 03:17:58 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313
www.didcomms.co.uk/wp-content/plugins/google-language-translator/images/flags.png
149.202.166.135200 OK 55 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/google-language-translator/images/flags.png
IP 149.202.166.135:0
File type PNG image data, 169 x 520, 8-bit/color RGBA, non-interlaced\012- data
Hash 89c95031b56b90591fd4ef80558f8c25
9599f52c93b38f3e68686f299b3184be0a9de63a
d64c12a76a61096f3a14aa795d12c3fc0de8e5781ef2e1af3b66517e65d7f00e
GET /wp-content/plugins/google-language-translator/images/flags.png HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Referer: https://www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15
Connection: keep-alive
Cookie: PHPSESSID=eh92irceuj2rbqq17fojp8fnkl; __atuvc=1%7C39; __atuvs=633129c1050cf2b7000; _fbp=fb.2.1664166338886.902293463; __gads=ID=13f68bf5f095096e-227b14672ece00a3:T=1664166340:RT=1664166340:S=ALNI_MYNDIijw7QlJyZAgiLnJZY3Zs7tWw; _ga=GA1.3.359749759.1664166339; _gid=GA1.3.1526244503.1664166339; _gat_gtag_UA_169366328_1=1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:40 GMT
content-type: image/png
content-length: 54996
last-modified: Wed, 11 May 2022 15:10:52 GMT
etag: "627bd1fc-d6d4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=6a23c22d0de13be70d5658d3a96af0d5904fb9ca
104.244.42.8200 OK 327 B URL HTTP/2 syndication.twitter.com/settings?session_id=6a23c22d0de13be70d5658d3a96af0d5904fb9ca
IP 104.244.42.8:0
File type JSON data\012- , ASCII text, with very long lines (771), with no line terminators
Hash 21b37ea7072f5ae3a8fefdf555c10764
a509a3feca059bd0dc935c1ac59d600db3a68cb1
4d533bada6157ca9a0def76cc78590afd015569b76f1e3444d95be7c5fbd3b5b
GET /settings?session_id=6a23c22d0de13be70d5658d3a96af0d5904fb9ca HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:40 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Mon, 26 Sep 2022 04:25:40 GMT
content-length: 327
content-encoding: gzip
x-transaction-id: 9bf2a4b82d892059
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 103
x-connection-hash: a589f417191aabcd4c4e0686472b5ff7376c9ae8172c0cf883fe7a50a6978344
X-Firefox-Spdy: h2
www.didcomms.co.uk/sp-push-worker-fb.js
149.202.166.135200 OK 92 B URL HTTP/2 www.didcomms.co.uk/sp-push-worker-fb.js
IP 149.202.166.135:0
Hash 1902a3e2a076a7729233d182aad3b2e3
e059fc8edd8d29932537d6664f5baaeca8a0508e
16befdcfd3d3803a0502c90beb25df05329d6ac6ddab12b71cf46e7b46312a4d
Analyzer Verdict Alert fortinet Phishing
GET /sp-push-worker-fb.js HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Cookie: PHPSESSID=eh92irceuj2rbqq17fojp8fnkl; __atuvc=1%7C39; __atuvs=633129c1050cf2b7000; _fbp=fb.2.1664166338886.902293463; __gads=ID=13f68bf5f095096e-227b14672ece00a3:T=1664166340:RT=1664166340:S=ALNI_MYNDIijw7QlJyZAgiLnJZY3Zs7tWw; _ga=GA1.3.359749759.1664166339; _gid=GA1.3.1526244503.1664166339; _gat_gtag_UA_169366328_1=1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:41 GMT
content-type: application/javascript
content-length: 92
x-accel-version: 0.01
last-modified: Sun, 14 Jun 2020 14:53:48 GMT
etag: "49-5a80c7a4d7635-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
arc.io/arc-sw-core.js
54.230.111.25200 OK 68 kB IP 54.230.111.25:0
File type ASCII text, with very long lines (22448)
Hash b62d64ef6acb7d9e69619926d12987fd
d17547ac81a5b9ec9d3cfaa7fbecd563233af351
e82a5776a21790a3b2855755cb37d2aea37274b04b5b4e4ee48c318e8127d7e2
GET /arc-sw-core.js HTTP/1.1
Host: arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67725
last-modified: Sat, 31 Jul 2021 01:05:06 GMT
content-encoding: br
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
date: Mon, 26 Sep 2022 04:03:06 GMT
cache-control: public, max-age=3600, must-revalidate
etag: "6104a1c2-1088d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 8ac66e1d6983a0f44cf391b1ec3b1cce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: YTp7T8O5_UwJg2iG0o56EdciNprcwQKrseRfCzPH8YDIILN2ai56Ng==
age: 1355
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/normalize/8.0.0/normalize.min.css
104.17.25.14200 OK 631 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/normalize/8.0.0/normalize.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (1796)
Hash c27520fe60c6f5f7cba22d6912e04494
59bdd4f097d44825326bfa7fdf075669deabaa09
bfbb841e763e8cd7a378b0a6bb83b08251eb3ee0afd7bfcb6d55dae63f6f514d
GET /ajax/libs/normalize/8.0.0/normalize.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:41 GMT
content-type: text/css; charset=utf-8
content-length: 631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f2b-732"
last-modified: Mon, 04 May 2020 16:13:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1902797
expires: Sat, 16 Sep 2023 04:25:41 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XQu6qrceDT1EvSJOCsZGjWFjjgkLJU0D7%2BMn2V4qlsO%2FhUcAxF6std8%2FvbIS0GkIV5iYCGwTXgpCnbU84EufudHrYAZG3wIS8jIXC9x%2BGCyZqzyIBrwYowG%2FpsM%2F2YTixmlc74jB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 75093cb4bad71c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash a347d1a00b963f1d6a2a1ede4a5a7922
f853fc68ad2d4adf3742b5e437fe1e74262f1f70
c156ac5fa69d56ee8d64ae91fcff3b209d11e98d28614b8b2c908a3981174af8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Mon, 26 Sep 2022 04:25:41 GMT
expires: Mon, 26 Sep 2022 04:25:41 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/sodar/sodar2/225/runner.html
142.250.74.33200 OK 5.0 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2/225/runner.html
IP 142.250.74.33:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2020)
Hash f530c16b248be97e10df228df6a41c24
ca3c3a38bbeef6906682b3e0b2a7be40c08b0925
f45287dcfd79a2411e79f98c834c6f7eff8a281a9b4fdba0124be9d204987786
GET /sodar/sodar2/225/runner.html HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 5046
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 13:42:03 GMT
expires: Mon, 25 Sep 2023 13:42:03 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 21 Jun 2021 20:47:05 GMT
content-type: text/html
age: 53018
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash bc7883d0a03d9c3559288a600fecc70a
b0e538996510ec8c861264cba4bf79fa73f6f7d6
c3bdc9bb12c7c951ca2d861c95156de2c724acc82386e882864c464132e07ac3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 04:25:42 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 513 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 4b2cc8b019be601212520e0d00abfe8b
0ff8be2ff6a486016647b1f256ca20ff50cc0851
82156ce42f7d7db0d64f8fb904c0271ab5d867a62d01f33f13604fc28a87d0c6
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Mon, 26 Sep 2022 04:25:42 GMT
date: Mon, 26 Sep 2022 04:25:42 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-u4N2hSvjdB4pmODu9Sc33g' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 513
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.didcomms.co.uk/arc-sw?propertyId=7DEbpruv&seeder=true
149.202.166.135200 OK 1.4 kB URL HTTP/2 www.didcomms.co.uk/arc-sw?propertyId=7DEbpruv&seeder=true
IP 149.202.166.135:0
File type ASCII text, with very long lines (3351), with no line terminators
Hash bd4728fd091146312db3659d9d72fabb
506e705786c99f15dad2598a3dcb6355440cbe9d
178e2994e65363f4498d2605abf14c75a43f5926af3f1f58b30f2d9933ec52cd
GET /arc-sw?propertyId=7DEbpruv&seeder=true HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: PHPSESSID=eh92irceuj2rbqq17fojp8fnkl; __atuvc=1%7C39; __atuvs=633129c1050cf2b7000; _fbp=fb.2.1664166338886.902293463; __gads=ID=13f68bf5f095096e-227b14672ece00a3:T=1664166340:RT=1664166340:S=ALNI_MYNDIijw7QlJyZAgiLnJZY3Zs7tWw; _ga=GA1.3.359749759.1664166339; _gid=GA1.3.1526244503.1664166339; _gat_gtag_UA_169366328_1=1
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Sat, 31 Jul 2021 01:05:06 GMT
If-None-Match: "6104a1c2-569-gzip"
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:42 GMT
content-type: application/javascript
content-length: 1385
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=3600, must-revalidate
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6fae8bd757404c66b9999cfeaff203bc.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR61-C1
x-amz-cf-id: OVeKdOGC8ESgPlbwFkxDIyaPPcA1HG4BRH4NiK595oF87SM-zX2NGg==
age: 3448
last-modified: Sat, 31 Jul 2021 01:05:06 GMT
etag: "6104a1c2-569-gzip"
content-encoding: gzip
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
www.didcomms.co.uk/sp-push-worker-fb.js
149.202.166.135200 OK 92 B URL HTTP/2 www.didcomms.co.uk/sp-push-worker-fb.js
IP 149.202.166.135:0
Hash 1902a3e2a076a7729233d182aad3b2e3
e059fc8edd8d29932537d6664f5baaeca8a0508e
16befdcfd3d3803a0502c90beb25df05329d6ac6ddab12b71cf46e7b46312a4d
Analyzer Verdict Alert fortinet Phishing
GET /sp-push-worker-fb.js HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: PHPSESSID=eh92irceuj2rbqq17fojp8fnkl; __atuvc=1%7C39; __atuvs=633129c1050cf2b7000; _fbp=fb.2.1664166338886.902293463; __gads=ID=13f68bf5f095096e-227b14672ece00a3:T=1664166340:RT=1664166340:S=ALNI_MYNDIijw7QlJyZAgiLnJZY3Zs7tWw; _ga=GA1.3.359749759.1664166339; _gid=GA1.3.1526244503.1664166339; _gat_gtag_UA_169366328_1=1
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Sun, 14 Jun 2020 14:53:48 GMT
If-None-Match: "49-5a80c7a4d7635-gzip"
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:42 GMT
content-type: application/javascript
content-length: 92
x-accel-version: 0.01
last-modified: Sun, 14 Jun 2020 14:53:48 GMT
etag: "49-5a80c7a4d7635-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
x-powered-by: PleskLin
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 1.1 kB IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
File type gzip compressed data, max compression\012- data
Hash 5abcca81ecb53cb63397355a71847993
b7191d772cee4b355a97e06bb880228c1670bfd2
ef1ed1260b060b5f239d7e402f70eddb3838f7e47d57c65172d95a387efdf2cf
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3EEA1684E4AFF0E033F62502072999A7A9C4A1FAA7B0D88F2BB190711D163831"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=166
Expires: Mon, 26 Sep 2022 04:28:28 GMT
Date: Mon, 26 Sep 2022 04:25:42 GMT
Connection: keep-alive
warden.arc.io/mailbox/nodes/Hmv9thEkqipBRKpHfLcjZP
18.223.141.84204 No Content 0 B URL HTTP/2 warden.arc.io/mailbox/nodes/Hmv9thEkqipBRKpHfLcjZP
IP 18.223.141.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mailbox/nodes/Hmv9thEkqipBRKpHfLcjZP HTTP/1.1
Host: warden.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 284
Origin: https://www.didcomms.co.uk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
HTTP/2 204 No Content
date: Mon, 26 Sep 2022 04:25:42 GMT
access-control-allow-origin: *
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
static.arc.io/widget/js/widget-sc-client.js?197dbd2e
194.242.11.186200 OK 29 kB URL HTTP/2 static.arc.io/widget/js/widget-sc-client.js?197dbd2e
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (3151), with no line terminators
Hash 53d18fee2e1dd718e1f20be73b6cde38
d132c85dc8c00b137ca213db383b4dd02787dbf5
4a55029924607af04a6b0baf94e70e2528e9b22d61acf2327d6ec0e329c3abea
GET /widget/js/widget-sc-client.js?197dbd2e HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-09-26T04:25:38.656Z%22%2C%22dismissedAt%22:null}
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:42 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"14884d9e881791d580471ec30f89f22a"
last-modified: Mon, 08 Aug 2022 22:09:02 GMT
x-amz-id-2: URaeHor7BKsSAtcnqISpEn6E3w+xeceiV+yk3tYl1MHAPfIYu6QUy/mqJlWlIX9KQaPnVYygXzU=
x-amz-request-id: ZEX3NT5QY6GPK09Y
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/09/2022 11:22:23
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 3f0a1ab49d1c3381a184d31e09d4c8ed
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/chunk-2d2088b3.js?d30d6684
194.242.11.186200 OK 2.2 kB URL HTTP/2 static.arc.io/widget/js/chunk-2d2088b3.js?d30d6684
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (4675), with no line terminators
Hash 78b0d839da61af474c6a7272ea033885
2e9e62c445b3bc41acb3501c9b5256069b125426
82ed009166565b72dfb030bcaba2747744d68aa467ed343f258c3af0ea74045d
GET /widget/js/chunk-2d2088b3.js?d30d6684 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-09-26T04:25:38.656Z%22%2C%22dismissedAt%22:null}
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:43 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"1f90bbb44edb15ac7845ec1d159b1fd7"
last-modified: Fri, 23 Sep 2022 19:23:05 GMT
x-amz-id-2: 4bK+FvmG7AzCGNJktQeHAGPUMM4p13A902M9c81Zf/9EoW270FIE3bWhI9Fx4nXm11uDMC0ZkAc=
x-amz-request-id: GRZ2RGZBGNPT7HA3
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/23/2022 19:27:28
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 36e46ea14744f2ac6b9da961c43625f6
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/chunk-2d0cf2b3.js?35eb088d
194.242.11.186200 OK 313 kB URL HTTP/2 static.arc.io/widget/js/chunk-2d0cf2b3.js?35eb088d
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (65536), with no line terminators
Size 313 kB (313057 bytes)
Hash 0fff8483696466b9efe328124c9cc473
d22db7e40da21c0d8dd20303a65c97cec85b0124
d6eea875e20881c6093d8e7dbf5ea3c96c19d78ef945fd39ff0e08b73797cb35
GET /widget/js/chunk-2d0cf2b3.js?35eb088d HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-09-26T04:25:38.656Z%22%2C%22dismissedAt%22:null}
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:43 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"8de13fe370805671caef6a9e591a1733"
last-modified: Fri, 16 Sep 2022 20:28:02 GMT
x-amz-id-2: Ss/RbYgirtbTJjx15WKvo8HILFZrccBbyAk0mwYTwZCWgginYrI86YQPsh6Zs5M93PCJzHYkrG0=
x-amz-request-id: A1E02B7TBKG8HKDW
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/16/2022 20:57:00
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 785acf7b2ce8765650d8e3dfefcaeb3f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash ab98b22bc44ca9a22da26f45fc89518f
95579c82c9be7eed9155c0e2b7c47b6a9a5bc599
968595ccd4bb8e609c737809109ae430406d920faeb9a27ad8e685b3386c8c5f
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 26 Sep 2022 04:25:46 GMT
Last-Modified: Mon, 26 Sep 2022 02:40:03 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Vqy9OtkrB4YIPrZ7X2ckV8hb0sewUqMXCZs3a6COkbxjtJIRzpBzpg==
Age: 6343
core.arc.io/broker.html?d715632
194.242.11.186200 OK 0 B URL HTTP/2 core.arc.io/broker.html?d715632
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /broker.html?d715632 HTTP/1.1
Host: core.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-NO-830
cdn-pullzone: 786568
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
etag: W/"61e89f9d-612"
expires: Sun, 23 Oct 2022 20:01:32 GMT
last-modified: Wed, 19 Jan 2022 23:32:45 GMT
strict-transport-security: max-age=15724800; includeSubDomains
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/23/2022 20:01:32
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 08ab5403fb7e3726c7728a9656f30316
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/nivo-lightbox.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/nivo-lightbox.css?ver=6.0.2
IP 149.202.166.135:0
GET /wp-content/themes/accesspress-pro/css/nivo-lightbox.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-202b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/js/jquery/jquery-migrate.js?ver=3.3.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-includes/js/jquery/jquery-migrate.js?ver=3.3.2
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.js?ver=3.3.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: application/javascript
last-modified: Wed, 09 Dec 2020 13:36:07 GMT
etag: W/"5fd0d2c7-62d4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
web.webpushs.com/js/push/71be86e99ce47b44ecc258fb25ca629a_1.js
185.76.9.26200 OK 0 B URL HTTP/2 web.webpushs.com/js/push/71be86e99ce47b44ecc258fb25ca629a_1.js
IP 185.76.9.26:0
ASN #60068 Datacamp Limited
GET /js/push/71be86e99ce47b44ecc258fb25ca629a_1.js HTTP/1.1
Host: web.webpushs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: application/javascript
last-modified: Thu, 25 Feb 2021 20:11:00 GMT
etag: W/"1cc20-5bc2ec0182d63"
vary: Accept-Encoding, Accept-Encoding,User-Agent
access-control-allow-origin: *
x-sp-ma: sp-ma-2
content-security-policy: default-src wss://* blob: data: sendpulse.com *.sendpulse.com *.sendpulse.com:4434 data.sendpulse.com *.pulse-stat.com *.stat-pulse.com *.pulse-stat.com:8080 *.stat-pulse.com:8080 http://*.sendpulse.com:4434 wss://ws.binotel.com:9002 http://*.pulse-stat.com http://*.stat-pulse.com http://*.pulse-stat.com:8080 http://*.stat-pulse.com:8080 *.sendpulse.ua *.sendpulse.by *.sendpulse.kz *.sendpulse.cl *.sendpulse.com.tr *.sendpulse.ng sendpul.se *.sendpul.se *.loginsrc.com *.routee.net *.routee.net:444 *.bizml.ru *.jquery.com *.youtube.com *.ytimg.com *.vimeo.com *.vimeocdn.com *.tinymce.com *.ampproject.org *.hotjar.com *.hotjar.io *.ipinfo.io *.highcharts.com *.appspot.com *.doubleclick.net *.facebook.com *.facebook.net *.fbcdn.net *.fbsbx.com *.rawgit.com *.cloudflare.com *.jsdelivr.net *.kissmetrics.com *.bitrix24.com *.quantserve.com *.quantcount.com *.twitter.com *.offershub.ru *.stripe.com *.braintreegateway.com *.mlstatic.com *.cloudpayments.ru *.woopra.com *.jivosite.com *.google.com *.google.com.ua *.googleadservices.com *.google-analytics.com *.googleapis.com *.googletagmanager.com *.gstatic.com *.online-metrix.net *.retently.com *.maxmind.com *.revisionme.com *.yandex.ru *.ymetrica.ru *.mmapiws.com *.bootstrapcdn.com *.kaptcha.com *.paypal.com *.paypalobjects.com *.mercadopago.com.br *.mercadopago.com *.braintree-api.com vk.com api.telegram.org *.webformscr.com *.yandex.net *.cardinalcommerce.com *.mercadolibre.com *.supportsrc.com *.instagram.com s3.eu-central-1.amazonaws.com *.googleoptimize.com *.privatbank.ua *.cardinalcommerce.com 'self' 'unsafe-eval' 'unsafe-inline'; img-src blob: data: *; font-src data: *; style-src * 'unsafe-inline';, frame-ancestors 'self';
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
expires: Mon, 03 Oct 2022 04:25:39 GMT
cache-control: max-age=604800
x-sp-pr: lpr7
x-accel-expires: @1664771139
server: CDN77-Turbo
x-77-nzt: AblMCRQw9s2h
x-77-nzt-ray: Ly6lf0mYddk
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/css/dashicons.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-includes/css/dashicons.css?ver=6.0.2
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Wed, 09 Dec 2020 13:36:08 GMT
etag: W/"5fd0d2c8-f399"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=6.0.2
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 15:11:09 GMT
etag: W/"62cee08d-a5d1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/style.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/style.css?ver=6.0.2
IP 149.202.166.135:0
GET /wp-content/themes/accesspress-pro/style.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-151c6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C400italic%2C300%2C700%7COpen+Sans+Condensed%3A300%2C300italic%2C700&ver=6.0.2
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%2C400italic%2C300%2C700%7COpen+Sans+Condensed%3A300%2C300italic%2C700&ver=6.0.2
IP 142.250.74.10:0
GET /css?family=Open+Sans%3A400%2C400italic%2C300%2C700%7COpen+Sans+Condensed%3A300%2C300italic%2C700&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 04:25:39 GMT
date: Mon, 26 Sep 2022 04:25:39 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /widget/js/vendors~widget-ui.js?c9b0de53 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:40 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"5f5181a44cab6b9ccdc03f0d9f46e177"
last-modified: Mon, 08 Aug 2022 22:09:02 GMT
x-amz-id-2: A9pqjKPrqIQflyxmXrVwzuzToR7cxaWclWx6NjnAerAt8ogrYlvolAtqoGvvdIsvqEeqAzY1AX0=
x-amz-request-id: 6ACY3P80RJNPZB5G
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/14/2022 14:32:19
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: fc68600f17721fb75cf0d3a7f095ecfc
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/broker/js/lazy-iwc.9b430e25.js
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/broker/js/lazy-iwc.9b430e25.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /broker/js/lazy-iwc.9b430e25.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:40 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"7fd8734437dbdc553c3513d10d0c0a97"
last-modified: Wed, 19 Jan 2022 23:33:03 GMT
x-amz-id-2: 0pqtvhmktNzG/kuXS+f70yU/1nrs8NiaC5jbPx0Ogn1zHjS1MBw3Ld9u+2vBvs1RgznasANnNaM=
x-amz-request-id: P7W24ZM6DAWWT664
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/30/2022 16:48:02
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 7fc64f1280f088bb12a01a4961c87199
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/sequence-slider.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/sequence-slider.css?ver=6.0.2
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/sequence-slider.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-2459"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/font-awesome.min.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/font-awesome.min.css?ver=6.0.2
IP 149.202.166.135:0
GET /wp-content/themes/accesspress-pro/css/font-awesome.min.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-6b38"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/js/jquery/jquery.js?ver=3.6.0
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-includes/js/jquery/jquery.js?ver=3.6.0
IP 149.202.166.135:0
GET /wp-includes/js/jquery/jquery.js?ver=3.6.0 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: application/javascript
last-modified: Wed, 21 Jul 2021 15:03:07 GMT
etag: W/"60f8372b-46758"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
gateway.arc.io/cdnConfig/7DEbpruv
194.242.11.186200 OK 0 B URL HTTP/2 gateway.arc.io/cdnConfig/7DEbpruv
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /cdnConfig/7DEbpruv HTTP/1.1
Host: gateway.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.didcomms.co.uk/
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:40 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
server: BunnyCDN-NO-830
cdn-pullzone: 786568
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=1800, stale-while-revalidate=604800
etag: W/"2a1-BI0nX6DnZUMIVhXLkp0BrHSiQW0"
timing-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/26/2022 04:25:40
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c949fd0504f4a452e806e96111d69cea
cdn-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/TimeCircles.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/TimeCircles.css?ver=6.0.2
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/TimeCircles.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-5c1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/lite/public/js/email-subscribers-public.js?ver=4.8.3
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/lite/public/js/email-subscribers-public.js?ver=4.8.3
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/email-subscribers-premium/lite/public/js/email-subscribers-public.js?ver=4.8.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: application/javascript
last-modified: Wed, 29 Sep 2021 11:38:43 GMT
etag: W/"61545043-e46"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/search-in-place/js/codepeople_shearch_in_place.min.js?ver=1.0.103
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/search-in-place/js/codepeople_shearch_in_place.min.js?ver=1.0.103
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/search-in-place/js/codepeople_shearch_in_place.min.js?ver=1.0.103 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: application/javascript
last-modified: Wed, 07 Sep 2022 16:18:36 GMT
etag: W/"6318c45c-32bc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15
IP 149.202.166.135:0
GET /wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Wed, 11 May 2022 15:10:52 GMT
etag: W/"627bd1fc-1664"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/broker/js/broker.b281d075.js
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/broker/js/broker.b281d075.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /broker/js/broker.b281d075.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:40 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"8c5f6da1d62d33cc4c32a8ce63be2bf6"
last-modified: Wed, 19 Jan 2022 23:33:03 GMT
x-amz-id-2: 15mXd8XH2lx2CE03B29NPUH0DZY/LOqIKeKzeLqmQNgXs1snFjVDp9XICA09Vhudm/HuQ+kRbm0=
x-amz-request-id: 1BTZ9YPB4J9E9E0X
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/14/2022 14:32:18
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 38572b826539c9494ca039e43495d755
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/js/twemoji.js?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-includes/js/twemoji.js?ver=6.0.2
IP 149.202.166.135:0
GET /wp-includes/js/twemoji.js?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: application/javascript
last-modified: Wed, 25 May 2022 15:10:46 GMT
etag: W/"628e46f6-7e90"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/core.js?d715632
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/widget/js/core.js?d715632
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /widget/js/core.js?d715632 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"886ea6e8b586e0cc8bbd2c6f07970b74"
last-modified: Fri, 23 Sep 2022 19:23:05 GMT
x-amz-id-2: 3z61/bb+Iv99WeOu1kFaz9mvV5Vx7w5UIbBZJYr9GRNmnhXDjDC3k67R91rH5Xh8Bi0la51HH/o=
x-amz-request-id: H924M91QQ96WQWQ5
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/23/2022 20:01:32
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: d399e035206e8870d8b27ef1d933835e
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/vendors~widget-sc-client.js?35fccb86
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/widget/js/vendors~widget-sc-client.js?35fccb86
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /widget/js/vendors~widget-sc-client.js?35fccb86 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-09-26T04:25:38.656Z%22%2C%22dismissedAt%22:null}
TE: trailers
HTTP/2 200 OK
date: Mon, 26 Sep 2022 04:25:42 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"fa12476f8ee3c92b8369e0c9d3b915f9"
last-modified: Fri, 22 Jul 2022 23:08:54 GMT
x-amz-id-2: gO56M4SIXfLCyIfgDnIkEYznO/aSxbiWzPzBnkEFGYql1RoX90Evh/ZoIMm/6C+bN1XQIlxZGrE=
x-amz-request-id: HMFZR25VHVX61V98
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/25/2022 16:03:54
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1754e95216f949061f753e5b9cfaa965
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
strn.pl/ipfs/QmWcJ8VES3S9AezL49zDKUmxDePimxd9poh1eb2KXDWLnX?format=car&clientId=e8519735-f6f8-4863-9381-f5041d686722
37.19.222.215200 OK 0 B URL HTTP/2 strn.pl/ipfs/QmWcJ8VES3S9AezL49zDKUmxDePimxd9poh1eb2KXDWLnX?format=car&clientId=e8519735-f6f8-4863-9381-f5041d686722
IP 37.19.222.215:0
ASN #60068 Datacamp Limited
GET /ipfs/QmWcJ8VES3S9AezL49zDKUmxDePimxd9poh1eb2KXDWLnX?format=car&clientId=e8519735-f6f8-4863-9381-f5041d686722 HTTP/1.1
Host: strn.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.didcomms.co.uk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:45 GMT
content-type: application/vnd.ipld.car; version=1
cache-control: public, max-age=29030400, immutable
saturn-node-id: e44da331-851c-4786-b630-8e600f8ac2f3
saturn-node-version: 349_519270e
content-disposition: attachment; filename="QmWcJ8VES3S9AezL49zDKUmxDePimxd9poh1eb2KXDWLnX.car"; filename*=UTF-8''QmWcJ8VES3S9AezL49zDKUmxDePimxd9poh1eb2KXDWLnX.car
etag: W/"QmWcJ8VES3S9AezL49zDKUmxDePimxd9poh1eb2KXDWLnX.car"
x-ipfs-path: /ipfs/QmWcJ8VES3S9AezL49zDKUmxDePimxd9poh1eb2KXDWLnX
x-ipfs-roots: QmWcJ8VES3S9AezL49zDKUmxDePimxd9poh1eb2KXDWLnX
x-content-type-options: nosniff
saturn-cache-status: HIT
saturn-transfer-id: fe61d66aa7bf57859e20e88e53cd8477
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
alt-svc: h3-27=":443"; ma=86400, h3-28=":443"; ma=86400, h3-29=":443"; ma=86400, h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: application/javascript
last-modified: Wed, 11 May 2022 15:10:52 GMT
etag: W/"627bd1fc-35e5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/fonts.css?ver=6.0.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/fonts.css?ver=6.0.2
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/fonts.css?ver=6.0.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:38 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-4d27"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/site-reviews/assets/styles/default.css?ver=6.0.6
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/site-reviews/assets/styles/default.css?ver=6.0.6
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/site-reviews/assets/styles/default.css?ver=6.0.6 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 04:25:39 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 00:09:41 GMT
etag: W/"6330edc5-5d74"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2