post.bemcon.co.uk/index.php/mailster/3718/138a7c90e873f6905becd7f30d36cebe/aHR0cHM6Ly9wb3N0LmJlbWNvbi5jby51ay9tYWlsc3Rlci91bnN1YnNjcmliZS8xMzhhN2M5MGU4NzNmNjkwNWJlY2Q3ZjMwZDM2Y2ViZS8zNzE4Lw
301 Moved Permanently 0 B URL HTTP/1.1 post.bemcon.co.uk/index.php/mailster/3718/138a7c90e873f6905becd7f30d36cebe/aHR0cHM6Ly9wb3N0LmJlbWNvbi5jby51ay9tYWlsc3Rlci91bnN1YnNjcmliZS8xMzhhN2M5MGU4NzNmNjkwNWJlY2Q3ZjMwZDM2Y2ViZS8zNzE4Lw
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /index.php/mailster/3718/138a7c90e873f6905becd7f30d36cebe/aHR0cHM6Ly9wb3N0LmJlbWNvbi5jby51ay9tYWlsc3Rlci91bnN1YnNjcmliZS8xMzhhN2M5MGU4NzNmNjkwNWJlY2Q3ZjMwZDM2Y2ViZS8zNzE4Lw HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 27 Dec 2022 08:36:44 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 27 Dec 2022 09:36:44 GMT
Location: https://post.bemcon.co.uk/index.php/mailster/3718/138a7c90e873f6905becd7f30d36cebe/aHR0cHM6Ly9wb3N0LmJlbWNvbi5jby51ay9tYWlsc3Rlci91bnN1YnNjcmliZS8xMzhhN2M5MGU4NzNmNjkwNWJlY2Q3ZjMwZDM2Y2ViZS8zNzE4Lw
Server-Timing: cf-q-config;dur=7.0000023697503e-06
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CU8SlO9tDWHGmg1QTM7Woqc9j%2BA8%2B4hFslPT44rLzQOpsun6DlHPxyrlO0kTraoVj4WlQn%2FANmZ1HkZ0Iw6gEyf%2BAmPgOTH7%2Fnqe6rQIa%2FFNTzBFJb1XYndU8wVfzaplb0No%2Fg%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7800baf2eb1db4f9-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 96defe1601ba891731eee83f0830649d
ba500679fd337488c3f60543561740ff0dfc1898
d2a320a9feb1a874af3da921db2a8619513968724ef8eb0715c010291c4cf8d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2A320A9FEB1A874AF3DA921DB2A8619513968724EF8EB0715C010291C4CF8D9"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7997
Expires: Tue, 27 Dec 2022 10:50:01 GMT
Date: Tue, 27 Dec 2022 08:36:44 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 9cce060ddc316540d079e6816a1e7412
709a74969d1996d2b35ef0f7f34ae18455169f1e
6d58b895476c9ab451d8fc51df98809adca445bc6e9d720430e80a0c85242879
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6D58B895476C9AB451D8FC51DF98809ADCA445BC6E9D720430E80A0C85242879"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5050
Expires: Tue, 27 Dec 2022 10:00:54 GMT
Date: Tue, 27 Dec 2022 08:36:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 27 Dec 2022 07:46:38 GMT
content-type: application/json
age: 3006
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash b2d59bdbb1ca6324590988ec031cf1fc
bfd4e25af37dcde4bac38d9b178c5ac8e50f8834
cef2180120ef42ff09d54577229c058d41d2c569d485f5a6dcfadc74bf8aa647
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CEF2180120EF42FF09D54577229C058D41D2C569D485F5A6DCFADC74BF8AA647"
Last-Modified: Mon, 26 Dec 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9499
Expires: Tue, 27 Dec 2022 11:15:03 GMT
Date: Tue, 27 Dec 2022 08:36:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: SUoSSTZcCjHOtuhZyl6WjUchjUK7NJIm62qfU9wi8pPt8hOG+mqm+9BikDtNnMe8xhn/pHhf/uY=
x-amz-request-id: B740VRTNND2PWP1Q
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 27 Dec 2022 07:55:39 GMT
age: 2466
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Dec 2022 08:36:45 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, ETag, Pragma, Last-Modified, Expires, Alert, Content-Type, Retry-After, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 27 Dec 2022 08:08:07 GMT
age: 1718
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 68ee4e2891b5a52719997e4ef8cb7aab
ae2e49eff010551d7f3dcf005a51530ee2910480
2bae50a834a34f248f6a79cf6f191dcf709c24b884f2d3da7fa43985c6b2d48b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5005
Cache-Control: max-age=93208
Content-Type: application/ocsp-response
Date: Tue, 27 Dec 2022 08:36:45 GMT
Etag: "63a96428-1d7"
Expires: Wed, 28 Dec 2022 10:30:13 GMT
Last-Modified: Mon, 26 Dec 2022 09:06:48 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: D1tq3DfVBq/vdJlSEBDlGg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hS2sbtzHgsHrV/Snum1nX+eFrVo=
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 5d3978967108a479b633f820f75e3371
e8dba45f8d70fac26a8d3f4c05afce32231ca23d
29c90351aec95c22fbddc08ce6a1b8223186fc4215e2d522238bf4bff36f2d8a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Dec 2022 08:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-94998W1T93
200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-94998W1T93
IP
File type ASCII text, with no line terminators
Hash abb96bed873dc44de038cee586260921
2a4e5e16266ea59baa0bab76b330e83fe661baef
0441f6334d197e53b552da0cc800d5f821202a22b217b9a9df281a7fa426cef6
GET /gtag/js?id=G-94998W1T93 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Dec 2022 08:36:46 GMT
expires: Tue, 27 Dec 2022 08:36:46 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76247
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 1.1 kB IP
Hash 92c3e8d05e0a1914538b48f3e9f83110
d2a826a2ef4c4bc203d6995336f5ebb7c507ffe1
e8a98dc362eb5132eee04cf6ca571e35e0cff40888923e20afa3eef8f34246d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Dec 2022 08:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
post.bemcon.co.uk/index.php/mailster/3718/138a7c90e873f6905becd7f30d36cebe/aHR0cHM6Ly9wb3N0LmJlbWNvbi5jby51ay9tYWlsc3Rlci91bnN1YnNjcmliZS8xMzhhN2M5MGU4NzNmNjkwNWJlY2Q3ZjMwZDM2Y2ViZS8zNzE4Lw
307 Temporary Redirect 69 kB URL HTTP/2 post.bemcon.co.uk/index.php/mailster/3718/138a7c90e873f6905becd7f30d36cebe/aHR0cHM6Ly9wb3N0LmJlbWNvbi5jby51ay9tYWlsc3Rlci91bnN1YnNjcmliZS8xMzhhN2M5MGU4NzNmNjkwNWJlY2Q3ZjMwZDM2Y2ViZS8zNzE4Lw
IP
Hash 7d68004beeba680c2676450000f7f1db
a5e84abb0c2a116627753bb9805f418ee4644a24
f847f2879cf44ff45e049262fe0630a8f9da75e256302a9016d666746b95c062
Analyzer Verdict Alert fortinet Phishing
GET /index.php/mailster/3718/138a7c90e873f6905becd7f30d36cebe/aHR0cHM6Ly9wb3N0LmJlbWNvbi5jby51ay9tYWlsc3Rlci91bnN1YnNjcmliZS8xMzhhN2M5MGU4NzNmNjkwNWJlY2Q3ZjMwZDM2Y2ViZS8zNzE4Lw HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 307 Temporary Redirect
date: Tue, 27 Dec 2022 08:36:45 GMT
content-type: text/html; charset=UTF-8
location: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
x-dns-prefetch-control: on
x-redirect-by: Mailster
x-litespeed-cache: hit
vary: User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FmwOsNW4NYqE0xEId%2BXuz2VM%2B%2F1C5pKdsHwlCCdpl7fJAsdziH%2F%2FMKLR3Zg1JQZn35t8px4YJeGU7BLR%2FRwElpZuSMO46YzzEF%2Bg6H4W9zPRoO3hFisw7l5BzAAEtVm0LJ4X2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800baf51804b524-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff
200 OK 102 kB URL HTTP/2 post.bemcon.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff
IP
File type Web Open Font Format, TrueType, length 101652, version 331.-31261\012- data
Size 102 kB (101652 bytes)
Hash 9fe5a17c8ab036d20e6c5ba3fd2ac511
52751432ded489dfdf27fb1cf64c570c4c27a1d7
74edc18b67c487e32f181719fdb347e2e77020744651f446e9acd7bd6821e2e7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://post.bemcon.co.uk/wp-content/litespeed/css/77399cb5f6c20ddc71c82c991ec93720.css?ver=647e5
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:46 GMT
content-type: font/woff
content-length: 101652
cache-control: public, max-age=31557600
expires: Wed, 27 Dec 2023 14:36:46 GMT
last-modified: Sun, 25 Dec 2022 07:10:11 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ET3sC9ETRNeJ%2F27EWB9Yghibh%2BjTRnb3xJKOwswCxgocEWgB17ENzopYCPVk5cJSA%2FOASwu2xNaAvrYXPxJRib0Q%2B%2BjSfR9vo%2BQYf481dZuDvZp7mxcFlnvDcqnqh7IOYLkyQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bafdaab1b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ae893eec23998fe856d6ee3df2163a80
d98cb1a1c82c429c2f6fdbbfb7461713c790da7a
24167e8036371493799d6fe42f5e00a0ea2e4a5b7eb70636a269a9aa78d1f712
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Dec 2022 08:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.54.0
200 OK 5.4 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.54.0
IP
File type ASCII text, with very long lines (2134)
Hash 30ca3165d143baf2835023bfcf463450
62c662c0873b79a314c040fef28dcd29abb14480
4f405d00e8ced09d5826e3e070b7e4d3f3556f856ca790b0b4a2c2eaaf58d33b
GET /ajax/libs/webfont/1.6.26/webfont.js?ver=1.2.54.0 HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 5437
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Dec 2022 12:32:23 GMT
expires: Mon, 25 Dec 2023 12:32:23 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 158663
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash ae893eec23998fe856d6ee3df2163a80
d98cb1a1c82c429c2f6fdbbfb7461713c790da7a
24167e8036371493799d6fe42f5e00a0ea2e4a5b7eb70636a269a9aa78d1f712
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Dec 2022 08:36:46 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Tue, 27 Dec 2022 07:34:02 GMT
expires: Tue, 27 Dec 2022 09:34:02 GMT
cache-control: public, max-age=7200
age: 3764
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=UA-117111585-4
200 OK 45 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-117111585-4
IP
File type ASCII text, with very long lines (1921)
Hash 4671ce73346dba465f79e5818794a895
beb619c216f30f9ba0f19af4a0502e5d71aa2916
05c5b2a4d511f1e1e7dfe69014f63ecc2585d61808e470a56989eeb61ddbc4c3
GET /gtag/js?id=UA-117111585-4 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Dec 2022 08:36:47 GMT
expires: Tue, 27 Dec 2022 08:36:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44633
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-94998W1T93
200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-94998W1T93
IP
File type ASCII text, with very long lines (20080)
Hash 34773788073dc786c7190a54abb0eefc
db5da630993db22486d3c4cf3c3176fc7945090b
d0da535d64ada1592e4660ef7822846981b7afc6df165bab9d755c1965a7521b
GET /gtag/js?id=G-94998W1T93 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 27 Dec 2022 08:36:47 GMT
expires: Tue, 27 Dec 2022 08:36:47 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76247
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/ee25c82612046ca9a86540ae5bfcd1ac.css?ver=cd1ac
200 OK 1.0 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/ee25c82612046ca9a86540ae5bfcd1ac.css?ver=cd1ac
IP
File type ASCII text, with very long lines (2823), with no line terminators
Hash d50a103752120020fef451148ef76a63
77239ea2d049bb6360dfcf4c15b1757a3bb3e67f
23840970ab936eb87a8620708bdcc6bdcd14a73ac81ed7eb4428b701ee3c3b97
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/ee25c82612046ca9a86540ae5bfcd1ac.css?ver=cd1ac HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=2827
expires: Fri, 22 Dec 2023 13:55:28 GMT
last-modified: Thu, 22 Dec 2022 07:55:27 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fF1pZDx3Vd4mhNF1ngoXkwMDSTFIA4NKYjqauMcfAek7MRgV%2FOrc0aulFaQUgjGn5XRnSH6mSPU6FfL3mWW18xe72d9MPxUDEh1Mxrjm0Wm%2FoOEHa3vHM4roGPws%2BNOUaeR4gw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb023ee3b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
200 OK 6.7 kB URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP
Hash 05d052d20e005c09fa09f2213a2247ff
a1141bc530beaf5d67ac615c3cc5386f6f52d844
a968740d5b52b3be1c9a7be8364c64a9561612bcce1d3c229868fab4928d6574
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://post.bemcon.co.uk
Connection: keep-alive
Referer: https://post.bemcon.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7800bb02de70b524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/8fc53b56672390b70951c0eb8244ed80.css?ver=4ed80
200 OK 3.2 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/8fc53b56672390b70951c0eb8244ed80.css?ver=4ed80
IP
File type ASCII text, with very long lines (18456), with no line terminators
Hash a79212eddf47c911cc7f31c272153bfa
7863032bf2029d3d3b89062aa959cceece725cd8
de06d117b8809d7afd04ac1c4ec8ba22c5ddea94d0c2acf3f9c2b8f77acb2624
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/8fc53b56672390b70951c0eb8244ed80.css?ver=4ed80 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=18468
expires: Thu, 21 Dec 2023 14:38:21 GMT
last-modified: Wed, 21 Dec 2022 08:38:20 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QPaF334bXwIWmIW70oBEq5pYSHz%2BG8Hr3Z%2B1akgWV6tM0vdCUSbFGU8F5l1CeOBwL2EVfG1ju4%2Fa8Pii%2BAzBXvqt2ygpY1gtqIsTIWSKoDFM40XsRBay3lprmGU2d3N6HewZbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb024ee8b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/22751959af562bd4e3e7c52467901958.js?ver=01958
200 OK 2.9 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/22751959af562bd4e3e7c52467901958.js?ver=01958
IP
File type ASCII text, with very long lines (5297), with no line terminators
Hash c73a3935415a7026841d0eb36e4215e3
789f6fc2315100795ee39ac4ef67eaf647121ecf
eaee5e45c81b50bbff71ba0321179be3b98c7cb5be3f7e9a90cf722a78e32a6f
GET /wp-content/litespeed/js/22751959af562bd4e3e7c52467901958.js?ver=01958 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=5301
expires: Thu, 21 Dec 2023 14:38:23 GMT
last-modified: Wed, 21 Dec 2022 08:38:20 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2jwn2stKMV2nk1Npags6rCa5zBPZoVmuZ8d4zhdI%2FVXx3jzN1eoOQ0BA51i%2FP5rL6YbA3yD5tfxaDsD9mYQvew0pijljgVgMKo%2FKwFhg7d%2FcrHUhZte8gN2jPNuOODvLAlK%2FSw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb029f58b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5b2790419bb1f19fd29300d548278b98
64671f1c88a1271e9bcda28ac13a01e330a2a07e
1ce1ca2a9d6783fa668b57c8764e8c3a17fde26812161af8ce8096b3691b9279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1CE1CA2A9D6783FA668B57C8764E8C3A17FDE26812161AF8CE8096B3691B9279"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11341
Expires: Tue, 27 Dec 2022 11:45:48 GMT
Date: Tue, 27 Dec 2022 08:36:47 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5b2790419bb1f19fd29300d548278b98
64671f1c88a1271e9bcda28ac13a01e330a2a07e
1ce1ca2a9d6783fa668b57c8764e8c3a17fde26812161af8ce8096b3691b9279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1CE1CA2A9D6783FA668B57C8764E8C3A17FDE26812161AF8CE8096B3691B9279"
Last-Modified: Sun, 25 Dec 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11341
Expires: Tue, 27 Dec 2022 11:45:48 GMT
Date: Tue, 27 Dec 2022 08:36:47 GMT
Connection: keep-alive
post.bemcon.co.uk/wp-content/litespeed/js/6676b27a63cb2a19b79982be5c6f6cbd.js?ver=f6cbd
200 OK 11 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/6676b27a63cb2a19b79982be5c6f6cbd.js?ver=f6cbd
IP
File type ASCII text, with very long lines (3721), with no line terminators
Hash 1082410965d4a00f14310506053b1860
b41724b8041cfa26494a0dc95b54b4543aae7484
d52762b12d0db973c360a0d84d80a5b6a77792d9810eb9d87f5c980692989c99
GET /wp-content/litespeed/js/6676b27a63cb2a19b79982be5c6f6cbd.js?ver=f6cbd HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=3722
expires: Fri, 22 Dec 2023 13:55:28 GMT
last-modified: Thu, 22 Dec 2022 07:55:27 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e58MiMq4n6Qm86BQD6X5uxyo1bSGh1SCfdFm1P5KOQnOlnph85%2BxQO3FLFB0anlydeyYStdlmXW1NprYdB8OOt31gJy7UDRmml2uHvakhRTfqQutuvug%2BDwQ3jYBec9YVuH39A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb02bf73b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/b89dfd376a5cdd6dad19b2ce3c8a2c4e.js?ver=a2c4e
200 OK 45 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/b89dfd376a5cdd6dad19b2ce3c8a2c4e.js?ver=a2c4e
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash c9e44a266fb4993f85afb4ee546dbeea
c2dd53971bab70f671da128504ee0a3e3e4be063
004342a69dcfcafe439b92608667f3f18124a5e57f4ddf351d0193159928cb18
GET /wp-content/litespeed/js/b89dfd376a5cdd6dad19b2ce3c8a2c4e.js?ver=a2c4e HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=143268
expires: Fri, 22 Dec 2023 13:55:28 GMT
last-modified: Thu, 22 Dec 2022 07:55:27 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PXc7A%2F4JoERj6rsUhrCALVDoRx8qihkEl06m7H%2FEUAwV2da0BAo4qrKLldPsQFNsUQVkqHFktvW3V06TG%2Bsj4OqUhJdyEJhPgBnIoqYUXP7fMi9Y42vVgATHEImLVncjZxg3kw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb02af66b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/c02407f3a53e2199915cf07dbb0b824c.js?ver=b824c
200 OK 18 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/c02407f3a53e2199915cf07dbb0b824c.js?ver=b824c
IP
File type ASCII text, with very long lines (21561), with no line terminators
Hash f18938f376b6b64b02feb09a99c65642
7ecccae82683d7b06bd7b72c7a385475009c5282
f66c981a3a2a2de09c3bcd89429c7fa16e9c8d32b6a08f4b8eb6291225d1ea8f
GET /wp-content/litespeed/js/c02407f3a53e2199915cf07dbb0b824c.js?ver=b824c HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=21565
expires: Thu, 21 Dec 2023 07:11:06 GMT
last-modified: Wed, 21 Dec 2022 01:11:04 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tGks4jLzJNpPD%2FTmrjUA85UvEoXGssGcXYt%2B3itZPW%2Fw1V4aB0mzgbnI9hr4rjM5Ht7CzfmGARIZwECPEV5MpBSqf1kTc%2FgjlxsQmvVqQbFWsSlKRUVlfyzWDx4T22MhBJnTQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb02af64b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/0f6f00892e74dd7386f724fe5603dad2.js?ver=3dad2
200 OK 11 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/0f6f00892e74dd7386f724fe5603dad2.js?ver=3dad2
IP
File type ASCII text, with very long lines (669), with no line terminators
Hash a5681559f515523765f14496ef0a80b7
c86484b7f5a5dd587630e1c6e2259eb5db0845d9
8bbb77d8a3e9b5b0ffc4f7f31e09732ae849f203685ff7e2a17c8d5006a55462
GET /wp-content/litespeed/js/0f6f00892e74dd7386f724fe5603dad2.js?ver=3dad2 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=670
expires: Sat, 16 Dec 2023 12:13:16 GMT
last-modified: Thu, 15 Dec 2022 16:44:40 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tXAC1LY8kCcX1zjTeQeq2%2FHJaXn4MZ8kuDE%2FbKXXCAXC9PKSsqgV6cNOHtr%2Ff%2FvYyL1vIcBGsG89sR6ezvhMdEkPUjIpEQZLvS2o2NWPPx8Wp0u5Rn2gN6Up7XEepkZJ3xJIRQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb029f56b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5a31e2c-cb31-40bd-b9b8-cb71f5df8e78.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5a31e2c-cb31-40bd-b9b8-cb71f5df8e78.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e5739dd2efa4395ff34d0f583eb9b63
3cd47e707d1fdf0e4c7a9d2a1fde0863f8c22563
d65a006dd8dac4ca209162fe70985aaad49435d2e74047c3b3c73053d7e1f5a3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5a31e2c-cb31-40bd-b9b8-cb71f5df8e78.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11470
x-amzn-requestid: 2fa32c30-fdea-409d-aafa-dda3daeff901
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dx7BmH2jIAMFwvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63aa3ed6-1c4909815b6c35250e610aa3;Sampled=0
x-amzn-remapped-date: Tue, 27 Dec 2022 00:39:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 49sf3ie2M7_VkzVvH82UoiQL0rhmapqtkSUgfq_Q1QRIGgdpUEnQbQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Dec 2022 01:08:30 GMT
etag: "3cd47e707d1fdf0e4c7a9d2a1fde0863f8c22563"
content-type: image/jpeg
age: 26897
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/2ce8fbe8ef02c5acbd0738fee37ec8c8.js?ver=ec8c8
200 OK 18 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/2ce8fbe8ef02c5acbd0738fee37ec8c8.js?ver=ec8c8
IP
File type Unicode text, UTF-8 text, with very long lines (17820), with no line terminators
Hash 73ff66437ada906572449465882d397e
c844cfd596403d22fad0fa5f18c6eeb0d6765e6d
3a845811d3d73ab20bc82354c5ca98622f422380c7f9883735ebe557e632de54
GET /wp-content/litespeed/js/2ce8fbe8ef02c5acbd0738fee37ec8c8.js?ver=ec8c8 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=17825
expires: Thu, 21 Dec 2023 14:38:23 GMT
last-modified: Wed, 21 Dec 2022 08:38:20 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FovF0x0VU4F0FStqKl9WIdD8%2BDJJ8KGL%2Fiww4aTZMWcNrxBTFVDrWgd4pIRlajjDfclO%2FQl0LWtnJEcs5U8cTtPcoAAf%2F08BtHMNETorKXui%2BW8Ueq0ng7dbA%2FeL9YtpDQuOtQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb029f5ab4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/fc477f2840af771586908952c0dcb389.js?ver=cb389
200 OK 2.1 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/fc477f2840af771586908952c0dcb389.js?ver=cb389
IP
File type ASCII text, with very long lines (4908), with no line terminators
Hash 0677f0eb4208811257913baac0c30666
5a4328fa7674aabdd4fe579bdb9760c2727482a1
a080e664e99712a2db7a6cb6edfe8a5f5c5e9ed7b840f41d5ba76188112f1789
GET /wp-content/litespeed/js/fc477f2840af771586908952c0dcb389.js?ver=cb389 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=4912
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
expires: Tue, 28 Nov 2023 20:09:24 GMT
last-modified: Mon, 28 Nov 2022 14:09:23 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ox8xtLrzbJnOe4ltsBfOlyj3n7WePVnGvoeFnAobP42FoSer19ZtcMJIBPCv%2FZsHBAUSFyHd2Cj7haDGjkbqM1Sgktz4joKuZ%2B6jKZHR77AJqdogwjfslK0ajXx5pclJorjo6w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb02af61b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/59409ef1165033ee8ad4c59191716f85.js?ver=16f85
200 OK 2.5 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/59409ef1165033ee8ad4c59191716f85.js?ver=16f85
IP
File type ASCII text, with very long lines (6476), with no line terminators
Hash 1dd896166f8ac3c65359d59635ffa284
648b01e1ca12549c63afc70c7fc7d1f5db952d57
ae2136dccec65721b20e390c9d985ee604e75c7de4d23e0557005c1a4f227f34
GET /wp-content/litespeed/js/59409ef1165033ee8ad4c59191716f85.js?ver=16f85 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=6477
expires: Fri, 22 Dec 2023 13:55:28 GMT
last-modified: Thu, 22 Dec 2022 07:55:27 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2DSEblqgfoF%2FIeD7yU%2BurwE%2FRXogcgR1Gx%2B0KEnnMjliz%2FnezWxQARDiJlt5qTkFeUzg18%2BaVFAUUZSIU3fRn%2BLWeNBJDkeL%2FXevOtOnWAMEWnvNmh9dq8hYUHYQDRzd1olp2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb029f59b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/plugins/mailster/assets/img/loading.gif
200 OK 4.2 kB URL HTTP/2 post.bemcon.co.uk/wp-content/plugins/mailster/assets/img/loading.gif
IP
File type GIF image data, version 89a, 20 x 20\012- data
Hash b0a3dde331637e27aa6476d476481871
1758cbd9fc8206a2c0fa093c97cc02af305c1c03
189d13d13190e962ee77c41a05836e977ef88368c24c70bf592b27f38094e530
GET /wp-content/plugins/mailster/assets/img/loading.gif HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: image/gif
content-length: 4162
cache-control: public, max-age=31557600
expires: Wed, 27 Dec 2023 12:58:20 GMT
last-modified: Fri, 09 Dec 2022 06:09:42 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 8
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=J0XmZGQyxfA4bsvDcchfngG38ahycVtkWzg%2F0uFa91Rkkrs%2F718bugMBQN9yr8MHtbnkHBTIK9wNyMwBCTWDvN4I3z%2B6HbEYQ0nCimzkBT2MtWgGL3Uo3XmWOL2C5Ow%2FVLKpvQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb051997b4f1-OSL
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
200 OK 77 kB URL HTTP/2 post.bemcon.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Hash f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://post.bemcon.co.uk/wp-content/litespeed/css/78cafe03c4240fb94d45f5cfa70a6530.css?ver=a6530
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: font/woff2
content-length: 76764
cache-control: public, max-age=31557600
expires: Tue, 26 Dec 2023 19:55:04 GMT
last-modified: Sun, 25 Dec 2022 07:10:11 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5526
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6XNDQNa2aCkX5%2Bp1gQkVjTwLQFOw4%2Fl6ofBV18FEh6RbBGl1aBPWZw82gMfwqDhhy9gBiq8x%2F5UgKozkeXJTVysxdtMaXVPzszf1wrRWk9Z7wQ75ZlLkHqC5PWTOX6klzaopsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb0539abb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/plugins/bdthemes-element-pack/assets/fonts/element-pack.woff2?3t1x0w
200 OK 17 kB URL HTTP/2 post.bemcon.co.uk/wp-content/plugins/bdthemes-element-pack/assets/fonts/element-pack.woff2?3t1x0w
IP
File type Web Open Font Format (Version 2), TrueType, length 16952, version 3.0\012- data
Hash 9ae789b7af05ed21e28b27c06642e297
07e7958507f7c7e918c78bc6b9333ecc3e4fa521
9569f3d63b6ae0a0d7e180f65363133a8b27e183cc75a212844e0b249606ee19
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/bdthemes-element-pack/assets/fonts/element-pack.woff2?3t1x0w HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://post.bemcon.co.uk/wp-content/litespeed/css/155b56c34a921efc4bebe4b86eac66b9.css?ver=c66b9
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: font/woff2
content-length: 16952
cache-control: public, max-age=31557600
expires: Wed, 27 Dec 2023 13:04:41 GMT
last-modified: Mon, 26 Dec 2022 23:43:30 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5526
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VOSynAE2X2lNAngo3sMAOD68FT9wBTXTS9UYUeXAVntvTb36gQ6N7klQMW9mkEKvWvvjxKSLRXiWLQTe%2BHfZ6uJTbrTPitUV4GpbPXLoAtMwdtn8RXgTm%2BUmH4VUilZXYiEasw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb0539b3b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
200 OK 78 kB URL HTTP/2 post.bemcon.co.uk/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Hash e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://post.bemcon.co.uk/wp-content/litespeed/css/3e0032d99d6c167d3111bb352854e04a.css?ver=4e04a
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: font/woff2
content-length: 78196
cache-control: public, max-age=31557600
expires: Tue, 26 Dec 2023 19:55:04 GMT
last-modified: Sun, 25 Dec 2022 07:10:11 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5526
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fdzu43Jk0kQyihRt9ba2bYZ%2BPO0aWGTcOvDflE5QQEcLTtn7B3jOZPjbN1rOsf9zUE1Gd538t8ldCSrj%2BBxcfZTbagiGFN4ZEtjr2LvWXrBAEoYTV%2BWl5AjIN5FQ%2FayYqIqL2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb0559cab4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/d3225d11ed601e1bbf67db506b1c6a41.js?ver=c6a41
200 OK 4.4 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/d3225d11ed601e1bbf67db506b1c6a41.js?ver=c6a41
IP
Hash 7e3846aad79903710fe4d5fe31814aed
58007ee304f1df509aa030f123e7026fd42bcb3e
25eaf17219c4053d0d2810d7935a11fca2d72bd850018268c53d0ab03a89d2fc
GET /wp-content/litespeed/js/d3225d11ed601e1bbf67db506b1c6a41.js?ver=c6a41 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=10232
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
expires: Fri, 22 Dec 2023 13:55:28 GMT
last-modified: Thu, 22 Dec 2022 07:55:27 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FkOvXS2TAvj%2BefkAul2SwJ2e4tnzig1zIf28V%2FMFa5%2BNbkZiuLKeyPebnZ3BqDRrZ0CYoFpj7xfC1zh3fS%2BFb%2F3ArznbUwrgEbr73JhdRrs1GJiWzXSFy5EEW32Vpd15rNUrhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb02af63b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7f2ed0d8a18af500682ec994cd3a5e15
48032c29ccc60c09f0c003042d059e83ea493ecb
8c49d81420b293298bd75222f60fbc608c322b36944963d93b6a15b12bcb0e8b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Dec 2022 08:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://post.bemcon.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Dec 2022 07:08:09 GMT
expires: Sat, 23 Dec 2023 07:08:09 GMT
cache-control: public, max-age=31536000
age: 350918
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://post.bemcon.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Dec 2022 07:08:09 GMT
expires: Sat, 23 Dec 2023 07:08:09 GMT
cache-control: public, max-age=31536000
age: 350918
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
200 OK 46 kB URL HTTP/2 fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://post.bemcon.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Dec 2022 21:08:54 GMT
expires: Tue, 26 Dec 2023 21:08:54 GMT
cache-control: public, max-age=31536000
age: 41273
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/cfeb6882fa381b14d2a7813da0f97281.js?ver=97281
200 OK 8.0 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/cfeb6882fa381b14d2a7813da0f97281.js?ver=97281
IP
File type ASCII text, with very long lines (25115)
Hash 299634a792bda560907de631848d6487
051771145366f94165cd89d8a6697c83fcbcc804
d6ebc0687705520be623c62beeacf11e49fef30c76f97c7b40a31573f1e490c7
GET /wp-content/litespeed/js/cfeb6882fa381b14d2a7813da0f97281.js?ver=97281 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=25204
expires: Fri, 22 Dec 2023 13:55:28 GMT
last-modified: Thu, 22 Dec 2022 07:55:27 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7cvaEBt28gOm7Qccwyzj560EiQrhLWVxO9gNGzKM%2BrWDOi1egdX9iNb8WGMdtOyUd5Hjd4aZKStm1LkQWZfo6VSnqm0FyGryN6XvOIwMmlFmTViJfiOPyq12hYJqtWu4TC4zJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb025efdb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://post.bemcon.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Dec 2022 07:08:09 GMT
expires: Sat, 23 Dec 2023 07:08:09 GMT
cache-control: public, max-age=31536000
age: 350918
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2
200 OK 39 kB URL HTTP/2 fonts.gstatic.com/s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 39056, version 1.0\012- data
Hash ab20a3cbee44939ad33cb2d162484f23
f4df3e71cc8aebd85b6207d4ac35c76c602c2779
0a1dc89a4a29593bd35cc4811bfedd9765eeca4a9ef57323eec2cff14c9f9c5b
GET /s/lora/v26/0QIhMX1D_JOuMw_LIftL.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://post.bemcon.co.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 39056
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Dec 2022 19:31:06 GMT
expires: Tue, 26 Dec 2023 19:31:06 GMT
cache-control: public, max-age=31536000
age: 47141
last-modified: Mon, 15 Aug 2022 18:05:31 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7f2ed0d8a18af500682ec994cd3a5e15
48032c29ccc60c09f0c003042d059e83ea493ecb
8c49d81420b293298bd75222f60fbc608c322b36944963d93b6a15b12bcb0e8b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 27 Dec 2022 08:36:47 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
post.bemcon.co.uk/wp-content/uploads/2022/12/Project-Management-Professional-Header-300x300.jpg.webp
200 OK 20 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2022/12/Project-Management-Professional-Header-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a1f569aaeaffca22ff42fa6d38d4f4c1
71008a6904c9e5a7244855117dd603ea2ef080f9
6535ab28c4e668de8fcd05c1ebf872867350eb03b6f11910df7c996681573d9a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/12/Project-Management-Professional-Header-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: image/webp
content-length: 19606
cache-control: public, max-age=31557600
expires: Wed, 27 Dec 2023 11:59:53 GMT
last-modified: Tue, 27 Dec 2022 05:53:47 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=PiSN1Pz0gfyHOBMtHQ3oNjKX8Ai0orjPdgx2yMxdb8o%2F%2BXw6wLY%2FcRylp02FezvOvJf927Ep5mYF8Kr1WVDNXPe25uoug0%2BBeXaoKbcw4C6o6j0vIIB2uAcS4Hcpq0vwL0SB5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb064a89b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/64466d3cbbf967c1553e29b161b3fcfb.js?ver=3fcfb
200 OK 74 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/64466d3cbbf967c1553e29b161b3fcfb.js?ver=3fcfb
IP
File type ASCII text, with very long lines (60586)
Hash d73e6f9a0eeb93ae24a4bf486ae2ec7c
fc62dc0a09ba5b52cce3ecf41be9927705c6aa3e
b5ad5ed47e83c351ab3587e311a5daaa72567556e5df8d67e97fd35f2c510c35
GET /wp-content/litespeed/js/64466d3cbbf967c1553e29b161b3fcfb.js?ver=3fcfb HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=136350
expires: Thu, 21 Dec 2023 14:38:23 GMT
last-modified: Wed, 21 Dec 2022 08:38:20 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o5mZuJMaV1CcJ8arpGn2NMJBRiPHUeOclOCo5jFOk2rPozOs4anyxrwhXYW8QpcpjFKp%2FbsAYio6iXt1r5Kh%2BaxB0WMUL9O98wMNKlFmSCZwswLqnOQPSTouIFqGVugqoBlQTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb025f01b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2022/11/Food-Safety-Culture-Programs-300x300.jpg.webp
200 OK 24 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2022/11/Food-Safety-Culture-Programs-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9023c5a9788c89cc9d6887277a5d805e
8f6003376c45f202118ad8915dc6f66575f033c2
973d18f16f85201804561edea4843f8a3e724998f505a6654edf95781ab0ba78
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/11/Food-Safety-Culture-Programs-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: image/webp
content-length: 23530
cache-control: public, max-age=31557600
expires: Fri, 22 Dec 2023 17:56:59 GMT
last-modified: Mon, 28 Nov 2022 14:02:47 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=MXKvNwO3GAjN0Hm0tyy2s2%2Bc8jaD2zulhDAhPuItdCmjiRk%2B7DzMf9aZIgqatpcperu6DcDpNl1HHitAECh7RfPPzyAVDJHnkayri%2B4JpHimlCM3pN%2BEXZoorg248YPO8Y4xYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb065a94b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2022/12/Six-Sigma-Belts-Training-300x300.jpg.webp
200 OK 22 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2022/12/Six-Sigma-Belts-Training-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b0590fd0e640d6012625530eb6d67430
ac668c803b163cf22535547fd0f8d04abc610487
352d21c648708f78061e8c48b9d8a784bce8a58ec73131e7ed9e75e45a5eda4a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/12/Six-Sigma-Belts-Training-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: image/webp
content-length: 21800
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 14:38:23 GMT
last-modified: Sun, 18 Dec 2022 10:27:40 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hMeHmiHcHC30rQSM5Q2uMArtfmNzUZt3WMUjdHYBBNNzNKhsQoAyzzw2r8vSRBqpSHSLJnQPmQzXygA0SMxXl5sLS6VthTA9psSYB%2B63iGgovL2sgyzeAhJBexv4syPxgCE3Kg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb064a8bb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2018/03/Round-Logo-150x150.jpg
200 OK 8.7 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2018/03/Round-Logo-150x150.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 2c08ba0e05cb35444703f37018a94dec
487bfe824d9ab1efd0697a4bbf4cb84b9d526950
fc078772c54557e510d8d0205a35a63e1b71ed71fa483fb8d198bb4e09622122
GET /wp-content/uploads/2018/03/Round-Logo-150x150.jpg HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: image/jpeg
content-length: 8724
cache-control: public, max-age=31557600
expires: Sun, 24 Dec 2023 04:46:58 GMT
last-modified: Mon, 28 Nov 2022 21:48:04 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5526
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZjTqDv2l8pm1KdpBZWxUBWEXBmgrQ09J4feLNilBIZ1CyDUjP1822CQ%2FPi46EForSro0jDYMoTTIQjgPmpuNXqs2PcvHEehEH6aNxBfWAUguPsZhoJCAAc1zsF5h%2BswewYDDrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb069ad3b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2018/11/BEMCON-Logo-Resized-web.svg
200 OK 25 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2018/11/BEMCON-Logo-Resized-web.svg
IP
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (923), with CRLF line terminators
Hash 8b30792abea700d688513106e3c4ab70
f6a6defe5d7f9c78a618fa1cf74bdf725f39e06c
03c3ce54024b088136066fe464407a7cea53f8d1c65af897e5f4a7f8800241e5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2018/11/BEMCON-Logo-Resized-web.svg HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: image/svg+xml
cache-control: public, max-age=31557600
expires: Fri, 22 Dec 2023 16:46:15 GMT
last-modified: Tue, 06 Nov 2018 11:01:32 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5524
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cvynG75ckaa5IWOkqQ69kwu7bTxPYa%2Bf7fw%2B6%2BC9Xr2bfu7G04IELd5skmOy%2FKfy6pnUHcK4F%2FPpZKvqrislZ9j0HO3ueF%2BghPVz748u3CfHeT8z7Vs2L0P7%2FZaW8cbMAhkZew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb064a88b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2018/03/Round-Logo.jpg
200 OK 29 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2018/03/Round-Logo.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 300x300, components 3\012- data
Hash 51b871744e1dbcd7d87ba34473dd8dd9
ac74c6847b26e0f5e9d380da1d125839f1b3527d
b3aaaf33574f33993d8415b5630530c79f311f491908b9550a383421f8fd40f9
GET /wp-content/uploads/2018/03/Round-Logo.jpg HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: image/jpeg
content-length: 29108
cache-control: public, max-age=31557600
expires: Sat, 23 Dec 2023 00:24:37 GMT
last-modified: Mon, 28 Nov 2022 21:48:02 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5526
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nAvB%2BPjFxhfwZHIbaBrIM6EA5JNcfn30dHi0EOm9hbvqkWETzLTv3BtKy1f6ondWjE0VYCrWwCjPyyJJJxiOukYB0r6tuW5jssAjmJcGOdc5SWuJxVpz0IszoGmWDC6lLYOZtw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb069ad2b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/cdn-cgi/rum?
204 No Content 0 B URL HTTP/2 post.bemcon.co.uk/cdn-cgi/rum?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 1229
Origin: https://post.bemcon.co.uk
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Tue, 27 Dec 2022 08:36:47 GMT
access-control-allow-origin: https://post.bemcon.co.uk
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7800bb078bb2b4f1-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/08/IADT-Level-3-HABC-300x300.jpg.webp
200 OK 18 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/08/IADT-Level-3-HABC-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 2ebf8a22fd0796a63794eff51a3a0bf4
7d824f577e275c70dd25f126ebf244071665f097
f3f9fcf05bd56d68b275eba918a2773012f005ca71361036713f63d1fbf91a7c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/08/IADT-Level-3-HABC-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 18122
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 07:11:08 GMT
last-modified: Mon, 28 Nov 2022 16:12:14 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k%2BzGLMha0nz%2BB4dDKtUQAlBErL7kQDU1L4ny%2FcdhegTQRHYcIza3HmCNr119v%2FGuhfJPHB5R%2BeuqCRaIxQy1EdgWRP%2F0nhjzwydOC2adv6nWJBXEKY1saoCdGUtc2MkoRdwlYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb084c7ab4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/08/First-Aid-Level-3-OCT-2020-300x300.jpg.webp
200 OK 23 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/08/First-Aid-Level-3-OCT-2020-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b96e2e3cd87985b8ad3790f8956abe94
bfcfd491837ff8b9309961f7bdef6f447734efd7
34fc5db04ce0f825e4410bc65c2790fc3315f0dbc3551f9819b4b4e20577a70c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/08/First-Aid-Level-3-OCT-2020-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 22766
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 07:11:08 GMT
last-modified: Mon, 28 Nov 2022 16:15:22 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=o8zNyeM3aizCB5cCE0PPE0PSEH%2FDz4rMsOn6NL%2BXEyoLaYYIMOV43kQm0ohmP8tQ01Da8VlRTF%2BkfDcIsLZICwfpyGhkMdkesyW9M0j3iTMJaUxDJMR2lkF6114%2B2Eu78jLN2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb085c7eb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/065d2c341c17c2e9abd7f6484fed4ee9.css?ver=d4ee9
200 OK 66 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/065d2c341c17c2e9abd7f6484fed4ee9.css?ver=d4ee9
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash 39d2b916183bc6370c954f30b26c8bd7
f89a5182820abfb23c2753b41bb5dfc02e89b4be
2c1f3a177ec366ea1386aa557448f805e5cc86df418a6097e6e9fb846bbd631b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/065d2c341c17c2e9abd7f6484fed4ee9.css?ver=d4ee9 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=405706
expires: Thu, 21 Dec 2023 14:38:21 GMT
last-modified: Wed, 21 Dec 2022 08:38:20 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UyIHkOt6FEkj%2BHjJL7pjKAwpltnmntgJLVqJAiyWui2i%2BL0FT66j7JUHTzyJ36ikxsJaYaSgUEx3c1aeAJzjQFwbH7fgBWP6jqS0PqhQYMZqQhJDpoXPPvf7H%2FDMoEQ8yguamQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb01feb1b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/3e0032d99d6c167d3111bb352854e04a.css?ver=4e04a
200 OK 22 kB URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/3e0032d99d6c167d3111bb352854e04a.css?ver=4e04a
IP
File type ASCII text, with very long lines (915)
Hash 3c71aea4e152ef3db4a00ab885a9dc99
a712389c4aa0c7dbed2c68d8444fe61709804324
2fc0761f322b7cf479cabf8fdd0b8398534296da9c3ca6bf428ddd1c8c0ca358
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/3e0032d99d6c167d3111bb352854e04a.css?ver=4e04a HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=993
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
expires: Thu, 21 Dec 2023 07:11:04 GMT
last-modified: Wed, 21 Dec 2022 01:11:04 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yU%2B8C1t6sEe234kd3xveu2YQ9KdlhR%2BKi4Hzp7ii4crA4A9w469hQTmCpk5S8Gs0Sy8OAgzBYwPVyXN8ShA2FrWaKuBhB6Sdmzf5cLUi8yUK%2BjN0vm3G7j5Ttj2kgwRMZT5KXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb021ecdb4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-includes/js/jquery/jquery.min.js
200 OK 58 kB URL HTTP/2 post.bemcon.co.uk/wp-includes/js/jquery/jquery.min.js
IP
File type ASCII text, with very long lines (65447)
Hash a0a6a629c9f9e3d95603c88756b72524
858d717f9e28d1a6e4450f1b8be6f62b63a89c0d
965287ce7145c3af2a1cb7cb042c4e89020e2c7e4c6880b09a55c656b0992d43
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 07:11:04 GMT
last-modified: Mon, 19 Sep 2022 19:46:24 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5526
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=y4%2BmjHaVfbX%2B54xH%2BmGpkgcuLUjWuG6gxgJvE4EuOJmVXc5vU%2FjaubY4idq%2BuYOaKWUaZr5ZnK5l8tSXsskQmPlkOLg4uf0pe%2B%2FcN0QiPvUkTDhTSsNQZktwrZ3LLcCQMz254Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb021ed6b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLora%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
200 OK 32 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLora%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1
IP
Hash 214ad8247b989cced19cd8ecd67c444d
137a65ba5de6d352492bb453a7c8c33f7686c805
4aa93855f8b20bb2705820c887eaf9017c41d2350a904683c89669d0b1a80e5c
GET /css?family=Montserrat%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRaleway%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CLora%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.1.1 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 27 Dec 2022 08:36:47 GMT
date: Tue, 27 Dec 2022 08:36:47 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2021/09/Total-productive-Maintenance-TPM-300x300.jpg.webp
200 OK 24 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2021/09/Total-productive-Maintenance-TPM-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 63c333cfe72a7b79b5db43427a86a433
cc79b5b9f344238f464bd5bcc03142fdea6dc3c6
48c52469ff1cfec945142f7a5b97ec247237cd01070977ce94758c15b548af0d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/09/Total-productive-Maintenance-TPM-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 24064
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 07:11:07 GMT
last-modified: Mon, 28 Nov 2022 14:11:49 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cVT9YDjDPYwj5cV%2F36Ru7kcPX56RywfuMI%2BtkItV%2FV%2B0nVuwj77KeTHj6WDB4dCVmALt8OnDd4Ssp8ec0rw9ONSY3LvhRS0FDLqi2fvD4WbefW9kbQI4%2BxkN3CNiYEc%2FFH6Ukw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb087ca4b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2022/08/Food-Safety-Level-4-2022-300x294.jpg.webp
200 OK 28 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2022/08/Food-Safety-Level-4-2022-300x294.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x294, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ec513d3eae17643d1a426b56f197f8cb
b7e2bc93206eb88295bacbe7c4d3f03771b025e0
961a5c30673d04aa6b214f94bf30750e5da808c740cdd98b47d49001446d30a7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/08/Food-Safety-Level-4-2022-300x294.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 27528
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 07:11:07 GMT
last-modified: Mon, 28 Nov 2022 14:03:25 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ggHUEAaOMJBPNVgdBIxc0CGUQb1BUUfACORAU0Vd6%2BIU25OJbF%2Fgk4fycPWsbI6oA2zhGLEonTabATbIcpkq%2B6Yz%2FTVfi%2BEtn4dwCe88WGp2wrcX%2BuCG9yGBaOFAKWc7rFCwPA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb087c98b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2021/11/ISO-17025-2017-Qualification-Prospectus-274x300.jpg.webp
200 OK 23 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2021/11/ISO-17025-2017-Qualification-Prospectus-274x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 274x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 529396572e76c202f885a099af8fc32e
32570592e17acb5a0ab5cb3af006dbebed7ede32
edc7a19901b8a3cc3a795b11b7f65f980ef2011e07b822e50121f2f2abaaa041
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/11/ISO-17025-2017-Qualification-Prospectus-274x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 22768
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 07:11:07 GMT
last-modified: Mon, 28 Nov 2022 14:10:56 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pdd8bjEX8Z8BeWvnXxzoo5ux1tyOYZghuPSTswpCj9Vhxooy9%2F%2B0G0OW%2BuRYMHEZeBIdSHe%2FFo2KGPLVBDgC4tgSLyv8b6G2fKlEvc9bBb%2Bz8OsOfj1FRk7ykzF8zI%2B83old7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb087ca2b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2021/09/Truly-Nolen-Food-Safety-L4-2021-300x300.jpg.webp
200 OK 22 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2021/09/Truly-Nolen-Food-Safety-L4-2021-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 81b30d347f65d02d3f10571ce627a54b
91995d6aa7d6830ba2d71afce49198e55f48457c
7f6044367d8689c1b9ef8731be1dec4071dc6afae669236ade6313000f1b5bab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2021/09/Truly-Nolen-Food-Safety-L4-2021-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 22328
cache-control: public, max-age=31557600
expires: Fri, 22 Dec 2023 17:56:59 GMT
last-modified: Mon, 28 Nov 2022 14:15:20 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=B8h6%2BsP9TiSxYT%2FF%2BC4FWTV%2BtAwNp1rWCuo0%2FtRv2UsdfSFs%2BHMGsInaRWoHrbKsQs%2B0zyAx186q2XuQLszVnEn6P7ccb1eZgdKOLs8tRR7sjyo949TGW76SuM%2FYWFrGFcz5Mw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb088cafb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/07/Food-Safety-Level-3-SFDA-Dec-2020-300x300.png.webp
200 OK 31 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/07/Food-Safety-Level-3-SFDA-Dec-2020-300x300.png.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ed1cf9be6942815cde239b103da60352
bcb087d18ee20fff3a59810c70ce2adfecf6b4b4
ab5c4175fa307a1808fdde0a1c55b4f36dc5fefe7df2409b9a68eaf1d9a809c5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/07/Food-Safety-Level-3-SFDA-Dec-2020-300x300.png.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 30686
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 07:11:07 GMT
last-modified: Mon, 28 Nov 2022 15:01:50 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HgbJFt2autN80j5kglYcRfo9iltWHT1wmC4xJye4s6WOVaqIkHAjEyhIHy5a9Ro%2FC0f11XDGWFlHicoJUqOIu%2F%2BAvVPo5R2cQJetjC1eYwl%2BMq%2BpjF40T3NpZ2IHGmnFij9mbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb088cb0b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/07/BRCS-header-1-300x300.jpg.webp
200 OK 16 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/07/BRCS-header-1-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0fb5afd47d296d96ba83d8b6ff0993c2
737c10b3d6375c5d73b4ce790d45b69fef712073
24b1307b0616e03d3a833e565fcd44424c3633162e129bbc641cb2ab93fa0189
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/07/BRCS-header-1-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 16326
cache-control: public, max-age=31557600
expires: Fri, 22 Dec 2023 13:57:47 GMT
last-modified: Mon, 28 Nov 2022 16:40:22 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BA%2BvQn11mryZHizskN%2BUJxEUpnXnN%2FVgki0atMhOxu81IuMIp1VsbVu%2BbnFo1V00mHYTUmEtDomTyNmGfUXN7JS1h04cGs8TE%2Bydl7wrqosyP0TlkSi%2FVm00w3c%2F%2FXwMBtvXxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb089cb2b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/10/IFS-Food-Safety-Version-7-Mail-1-300x300.png.webp
200 OK 22 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/10/IFS-Food-Safety-Version-7-Mail-1-300x300.png.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 9af92f22bf26b096f92ac5233fe3b881
371d469b51f1d14fd3455b98937497073c53c789
9e9e48c98e4bda2060c47accb82560804ccc839d8f78ea9b8595103ebb7c18c8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/IFS-Food-Safety-Version-7-Mail-1-300x300.png.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 22010
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 07:11:07 GMT
last-modified: Mon, 28 Nov 2022 15:02:12 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=64vSxNEgbXrI5SuW2jFaQ%2BeNB1eyKuepWbKWpozS%2FJRQlOtO%2FJW7z2tlBGUWUdB9rvOz%2B8cJHUhPaV63XyL%2BH%2FXvgn8L6xLfdmwllVgwutHe9ZibhlKGme%2F9epGCHcDIEyujGA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb08accbb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/10/Level-6-Award-in-First-Aid-at-Work-300x300.png.webp
200 OK 23 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/10/Level-6-Award-in-First-Aid-at-Work-300x300.png.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 65099fa00fe97a423f72ee03b6b8e3c5
666c0afe70e85e53bba7fb93d47c75e4b7f5f7b0
d71c51898826679c8e0200f70d9162964371113ef516a2818e2c4aa0849251c5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/Level-6-Award-in-First-Aid-at-Work-300x300.png.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 22796
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 07:11:07 GMT
last-modified: Mon, 28 Nov 2022 15:05:57 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dM1f99PaYIUCxLFNg2TqGvbY%2F%2FqqUF577bxk37xxJ1U%2BvW%2FUGit9q4FlgyQ6ZFq%2FF2GniSCEpp%2BhVxgqI75mvDaS%2FvAdjsS1IA%2Ft4Tkx1H0j5PJ1jL7FEO5%2FI1JBV4OJ0mPqpw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb08acccb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/10/Level-2-Award-in-Fire-Safety-Principles-300x300.png.webp
200 OK 31 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/10/Level-2-Award-in-Fire-Safety-Principles-300x300.png.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ac472b9fca7fe98edd077bebd5ebbc41
15f952431637e7d950058c4cad975cb6d5f7237e
e70872efa285d6f6e26edb920f767faeb425767c2c461fb5bc547f9cd1a25086
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/10/Level-2-Award-in-Fire-Safety-Principles-300x300.png.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 30894
cache-control: public, max-age=31557600
expires: Fri, 22 Dec 2023 13:57:47 GMT
last-modified: Mon, 28 Nov 2022 15:06:15 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=TI%2Bhl8FQK9gEyZ59QSIkiMDwsehQlnudcRAlX9NrMhnPxq%2BcQbIXHw1qJCSyHRqAXQ2JSkY%2FuV%2BiE4YkTJ%2FbHOpwaHOLy3TQxnUZXcgL04w%2B8qeTFyNnhxbrE6uv%2F5bAFzdGRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb08acceb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/09/ISO-14001-2015-EMS-45001-2018-OHSMS-Oct-2020-Mail-300x300.png.webp
200 OK 25 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/09/ISO-14001-2015-EMS-45001-2018-OHSMS-Oct-2020-Mail-300x300.png.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash cb3cddbab5b1d57142daf4f91cdb2e3e
1d961c38cc00562c00410e38958eb98f68dbdf75
f2593f70fc27232b1d5f08000292b0417570ff434bc05775c87fbf7e7976d39c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/09/ISO-14001-2015-EMS-45001-2018-OHSMS-Oct-2020-Mail-300x300.png.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 24966
cache-control: public, max-age=31557600
expires: Fri, 22 Dec 2023 13:57:47 GMT
last-modified: Mon, 28 Nov 2022 15:06:34 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G19xf37su8oc3a%2FyCpQF1d4vuk7ivSENip%2F5hPqGhE9t9PldRhOr0cKRNj2pvYYpMNqn%2BRUWNCYAu4v6br1%2FGdZfuUqArKCgKiPu8Aw8uoRmj0eu6HdJn4rIpqQiqW4NqeSCEw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb08accfb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/09/Health-Safety-Accomodations-Mail-300x300.png.webp
200 OK 27 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/09/Health-Safety-Accomodations-Mail-300x300.png.webp
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 729c13ae885c021207d6fe662793f9da
e1c8f2ad7e1126ac04f6970168d8fdab2a1bdafc
27dd56f4ceb1c5238fcf2befb725444baeabf01ee3c8edf2ee4f18bcee1e6298
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/09/Health-Safety-Accomodations-Mail-300x300.png.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 27014
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 07:11:07 GMT
last-modified: Mon, 28 Nov 2022 15:09:55 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ePpxDs7UMSSNi3LGqsRHCzlCJZkgEGd9F8V2i9EOso5D42jlQ4HIcjQBreWN1bn0LZMdCIlVAueMXluH1EYlHjkJWQrDgCCHLKvjUCFKiQlQ1YSwvpgAkDzI%2F5ITJB1vzkiHeg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb08acd3b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/09/ISO-55001-2014-Asset-Management-Dec-2020-300x300.jpg.webp
200 OK 23 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/09/ISO-55001-2014-Asset-Management-Dec-2020-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash b6d72fd74a9dfcb6c7f37adcb4e1442b
a6eebd81867b9627e30ed42025190508ed7d074e
819c047e9db83e01985df7829603d15dd6b2243b16273bd25fe81fe10cad8055
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/09/ISO-55001-2014-Asset-Management-Dec-2020-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 23266
cache-control: public, max-age=31557600
expires: Fri, 22 Dec 2023 13:57:47 GMT
last-modified: Mon, 28 Nov 2022 16:04:35 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7GBZ6s7VKMJ6VQiuSLerzFViXvw9cxEJD6N85oRlCIRVtvxWNBGzR8DpOs3WXQEdGIKbQgdBG4ajnIxH31bfSvvU7%2FTBaEnq49x1NngdW0UOuqzWw7JIRIFof2%2B4Vuj8u0bs0g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb08bcd8b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/09/ISO-22301-2019-Business-Continuity-Manager-Dec-2020-300x300.jpg.webp
200 OK 27 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/09/ISO-22301-2019-Business-Continuity-Manager-Dec-2020-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 0e1bf31ed06afc171ef5dbc8b8e2ebe0
9a8cd884a751d648760a5d624a297041ec6889ea
2bf7386950acdc093d7bcf85d14c2bf6d8cc4dc1e607c51b33d627d6c901bcbf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/09/ISO-22301-2019-Business-Continuity-Manager-Dec-2020-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 26712
cache-control: public, max-age=31557600
expires: Sun, 17 Dec 2023 20:29:13 GMT
last-modified: Mon, 28 Nov 2022 16:01:25 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=b7b7MrfEyoVIVqGuosB5VZ6xocCKuy%2FBL0FIlRIdf0y2q3roqQOqa%2BkcAmyJ%2FYSVxI98%2FpIyvUSG9SAoY96a%2FyYrdO%2FMkRc1v9twujpedYE8Xd%2F1%2B5sFVDRshDJL1NDj2k9IyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb08bcd7b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/09/ISO-41001-2018-Facilites-Management-Nov-2020-259x300.jpg.webp
200 OK 15 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/09/ISO-41001-2018-Facilites-Management-Nov-2020-259x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 259x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 8090830b6ad1f4205872c091b0e5527c
dd549135f6090f3880d6a7607c852ea726ddfcb6
abb63743310261d47fb35c1d3a0914e4a3a5a8e6c8b80a8636af3ce39df3b7b8
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/09/ISO-41001-2018-Facilites-Management-Nov-2020-259x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 15400
cache-control: public, max-age=31557600
expires: Fri, 22 Dec 2023 10:52:20 GMT
last-modified: Mon, 28 Nov 2022 16:04:47 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qf0w%2Bwhets0VtipU1B2YL4ZwK5eEkfUAAdamAXp2mBXRPuSm7lE0fXzEOuzU3M9wlLyJJXkyT8ag5Lv01FSBMcW0oTBgr5iIy921gpN3hPp%2BxVQq2NcUjAvp2c3Wz4vDhMyX%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb08bcdbb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/08/ISO-50001-Energy-Management-Systems-Jan-2021-300x300.jpg.webp
200 OK 27 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/08/ISO-50001-Energy-Management-Systems-Jan-2021-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash af1661fd4a602e021357356f1c59b0a5
d7fa2617b7b2cd29b2afa91456270d02d6336f21
60ffb40073cec133186c556a0dc483d27271b7666b84893e701474b88d40345e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/08/ISO-50001-Energy-Management-Systems-Jan-2021-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 27314
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 07:11:08 GMT
last-modified: Mon, 28 Nov 2022 16:05:23 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OYZixV5rY97rKwOugPqwoNqTjTWeHiPIQjoHtx6n2ukv3goGDUIzllhz59hXs0PGkRsHEts7x9GYUwWd0VPUiF7JqX%2BEwh2i%2BREfV05%2BtmBKd9UeglXCPeCiYZhhUZb7K29mXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb08bcdeb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/08/Health-Safety-Level-3-HABC-Nov-2020-300x300.jpg.webp
200 OK 17 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/08/Health-Safety-Level-3-HABC-Nov-2020-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a2e98c28dd538561443765ea2a9302a0
cb736497b247c6ae6a7ac34323b0b7f294907f01
5a0192a6f86bd6b509d244b1a8c80af7a51384d39ddbc6477178b25573113e49
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/08/Health-Safety-Level-3-HABC-Nov-2020-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 16874
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 14:38:24 GMT
last-modified: Mon, 28 Nov 2022 16:04:59 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GCYtdfqh5z7IVRQHzYUqJwadM%2Bv4IP1oeDJDAg%2BF6S9EsjOEXE1Lb%2FrXPzjuMjAQw3KCwLu%2BtlD5Syl%2BbFRwdD8RjF%2FXDy%2FF%2B5YRWEXS%2Bm5ZvgJKFPJ95MPI%2B9GMGQNYuhsg9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb08bcdcb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/08/ISO-28000-2007-Supply-Chain-Security-Manager-Nov-2020-1-300x300.jpg.webp
200 OK 31 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/08/ISO-28000-2007-Supply-Chain-Security-Manager-Nov-2020-1-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a971943552483f7bcf4fae247c518d36
6fb82bf20c39936d6a528233a39b13f8a95fc2ce
2289b5bf4834509f92343a447e6143bb82679de28c3883cec16359754fec0e5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/08/ISO-28000-2007-Supply-Chain-Security-Manager-Nov-2020-1-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 31340
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 07:11:08 GMT
last-modified: Mon, 28 Nov 2022 16:11:24 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LvbLSEJi4nHDi%2BuDZl8qi%2F4NXR%2FXxH2PSZjxusEiZRSYL%2FlCR2zA4uW0gmy92HaUWXnPdmGWXJ7VYYpZtCp%2BflXVSes5CCKffeYEoHjvw9KcWQqTpKjqOwXP4D1WxIHnhXFBJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb08bce1b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/08/ISO-37001-Anti-Bribery-Mangement-Mail-Header-300x300.jpg.webp
200 OK 25 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/08/ISO-37001-Anti-Bribery-Mangement-Mail-Header-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash ee5726ca7ee6035fdc1bf42bdcc330f0
3ef17a2dbca3ce04cd7b57997ac4bd325277586c
9c4da6a7ba89c24d94e05c211ae1f142091c245c81df5e415f7414d67e53669f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/08/ISO-37001-Anti-Bribery-Mangement-Mail-Header-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 25026
cache-control: public, max-age=31557600
expires: Fri, 22 Dec 2023 13:57:47 GMT
last-modified: Mon, 28 Nov 2022 16:11:37 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Z%2BIbpLzJv0oSdrEXIXEvBJdvGIG%2BVLjeRt1Ec4gBHOapqDfWMOgmYGI%2BVvwbeDKgyIFROBufkgVrKo%2B3D9ZQ4uylpky33JHwd%2F8El4NExgZDQ4imiZIbq4j3r6T35EQMjpXZzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb08bce2b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/08/STRATEGIC-Thinking-BEMCON-Jan-2021-300x300.jpg.webp
200 OK 24 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/08/STRATEGIC-Thinking-BEMCON-Jan-2021-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 52841cd791f4f4f693ad64217666b636
135c498125d476286fccf408dc94c7f8c180b006
80030c47d604fff9783d1faf7318250238422524e2829ea8d9b06fd82c05c516
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/08/STRATEGIC-Thinking-BEMCON-Jan-2021-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 24418
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 14:38:24 GMT
last-modified: Mon, 28 Nov 2022 16:11:50 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9T1SU2CSePe67m7g1mr%2FGBVcnsDfTDyA98nZHST2tiBjMIEnCi2zp0otPH5vZSR5u7R7X8IWB46GPnnLEjo5hPeSrTnLfi6gC3YhJtXeFyX1nQJrpKcM4jv5HMk588K18fY8Og%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb08ccecb4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads/2020/08/FMEA-Risk-Management-BEMCON-300x300.jpg.webp
200 OK 17 kB URL HTTP/2 post.bemcon.co.uk/wp-content/uploads/2020/08/FMEA-Risk-Management-BEMCON-300x300.jpg.webp
IP
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 300x300, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 36530b5668603e70d54dd596f155808c
f346c683a49826b7cb1db988dc92610fe5c720a5
e09702f7444d240cbb596e8712da096d8ecc17b197f74950019f819a4ace1261
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2020/08/FMEA-Risk-Management-BEMCON-300x300.jpg.webp HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:48 GMT
content-type: image/webp
content-length: 17346
cache-control: public, max-age=31557600
expires: Thu, 21 Dec 2023 07:11:08 GMT
last-modified: Mon, 28 Nov 2022 16:12:02 GMT
vary: User-Agent,User-Agent, Accept-Encoding
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hKFNhW9Fr4jJmi7ftm4Cx4fHgTikWNKWBoHocmoPWBoGmbZCxdAEScX0BDo4KOHuwErMRSI2X2%2BhLkzwiTq4bYN5N7UjLzLiFVsiuSeAjBOgkEBR%2BR4mQmx8zVx8jcmiWhb1BQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb08ccf4b4f1-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google Sans MediumRegularGoogle;GoogleSans-Medium\012- data
Hash 48d399faaa696e710b9d841b934461e2
8b867014ac0ae0a2b81a55f171deede8336a496f
c905a4d23caf1f95d96c244084f15336fba5f65b74de870ec5c2be878410625d
GET /s/googlesans/v14/4UabrENHsxJlGDuGo1OIlLU94YtzCwM.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27431
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Dec 2022 17:49:32 GMT
expires: Sat, 23 Dec 2023 17:49:32 GMT
cache-control: public, max-age=31536000
age: 312436
last-modified: Mon, 22 Apr 2019 23:43:31 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf
IP
File type TrueType Font data, 17 tables, 1st "GDEF", 7 names, Microsoft, language 0x409, Copyright 2015 Google LLC. All Rights Reserved.Google SansRegularGoogle;GoogleSans-RegularGoogle\012- data
Hash 097c4b560f821fb05c628abb70fab199
4650bf1244b6cba45b222aa269c96ad8ea95ab42
a9bd7cfb72481bd844fa2e3cd4019c8b2ab2a232b50cabe62f8d9483e284f672
GET /s/googlesans/v14/4UaGrENHsxJlGDuGo1OIlL3Owps.ttf HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://accounts.google.com
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27191
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 23 Dec 2022 17:49:31 GMT
expires: Sat, 23 Dec 2023 17:49:31 GMT
cache-control: public, max-age=31536000
age: 312437
last-modified: Mon, 22 Apr 2019 23:42:54 GMT
content-type: font/ttf
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
post.bemcon.co.uk/cdn-cgi/rum?
204 No Content 0 B URL HTTP/2 post.bemcon.co.uk/cdn-cgi/rum?
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /cdn-cgi/rum? HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 753
Origin: https://post.bemcon.co.uk
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.3.792276388.1672130203; _gid=GA1.3.1806651346.1672130204; _gat_gtag_UA_117111585_4=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 204 No Content
date: Tue, 27 Dec 2022 08:36:53 GMT
access-control-allow-origin: https://post.bemcon.co.uk
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 7800bb2ca81ab4f1-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/b9549e7bb230bc4262351808373f6321.css?ver=f6321
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/b9549e7bb230bc4262351808373f6321.css?ver=f6321
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/b9549e7bb230bc4262351808373f6321.css?ver=f6321 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=38303
expires: Thu, 21 Dec 2023 14:38:21 GMT
last-modified: Wed, 21 Dec 2022 08:38:20 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cBksw%2BELCV8sFboH5sxDWaGwsXDzkuZpCIhJXT9T9mCAGdQ1pBSFlhdcOIubivPUDdkGQPhTobaZ4iF4Ih5g1UTuUWY3dTE%2Bb0GI0Zyr235dSoK696IKGHsQTE1zj16%2B2R6wAw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb01de86b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/bed4ccfeb902bdc4846627ca869b3375.css?ver=b3375
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/bed4ccfeb902bdc4846627ca869b3375.css?ver=b3375
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/bed4ccfeb902bdc4846627ca869b3375.css?ver=b3375 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=6051
expires: Tue, 28 Nov 2023 19:44:17 GMT
last-modified: Mon, 28 Nov 2022 13:44:09 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HUv%2Bjr9cWAeWmS81vPHhWYtA5eYuTTZrxrZ%2FnO1Rdua0MlQWBficVbKBWoGBJ1wvkE0A9LwC3GfOqicBWLZJQSPgMXZRVMqWqGOsR9retsAjLNIEDcvNa9vMOmSxjvaaE6pPJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb01ee9bb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/3e625414636dcaa3b2462ab3755cd87a.css?ver=cd87a
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/3e625414636dcaa3b2462ab3755cd87a.css?ver=cd87a
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/3e625414636dcaa3b2462ab3755cd87a.css?ver=cd87a HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=8202
expires: Fri, 22 Dec 2023 13:55:28 GMT
last-modified: Thu, 22 Dec 2022 07:55:27 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Kb5npK8PD7n4icd8sGRGmxHmGGzUdqm8N%2FxbOhIv9prCqH5s%2FdB%2BgGE5jmQKsSor%2FCpY9wnTwU0Y9Ivxi89RHLJQ%2BwU835XN1fGFJqNsvj7xuARJY6tdeNZsu%2F3benAPmQYkoQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb020ebcb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/e85d957a2d1befcd3bbc2215e1b61407.js?ver=61407
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/e85d957a2d1befcd3bbc2215e1b61407.js?ver=61407
IP
GET /wp-content/litespeed/js/e85d957a2d1befcd3bbc2215e1b61407.js?ver=61407 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=8340
expires: Thu, 21 Dec 2023 07:11:06 GMT
last-modified: Wed, 21 Dec 2022 01:11:04 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=S%2Foqo8I98OER3YjO%2B8LkoR0SeWzd%2ByAAQr1ITPtSgwlLX5v%2FdyhMek4DiT9PEYVdfKgwJUnVhpFbo5h58oImp6h0XfqZf21c%2FR%2F5KTlqOwUDVw%2Fhz5HDwZFuugAzxrOqX%2F98ig%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb022eddb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
IP
Analyzer Verdict Alert fortinet Phishing
GET /newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/ HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:46 GMT
content-type: text/html; charset=UTF-8
x-dns-prefetch-control: on
link: <https://post.bemcon.co.uk/wp-json/>; rel="https://api.w.org/", <https://post.bemcon.co.uk/wp-json/wp/v2/pages/6>; rel="alternate"; type="application/json", <https://post.bemcon.co.uk/?p=6>; rel=shortlink
x-litespeed-cache: hit
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZUiPohOscMr5PHm10de3Kdc8ppdWqa8DnpEsh2TmdwWG70IkjGB5OZ%2F078htXOvg8C6zvBYr3bwlxvINoa8zG2m6ox9N4oABtiO%2BpG%2FGgBFjxmtNX8EjWWs541CDJjJUj7fDqA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bafdaab0b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
X-Firefox-Early-Data: accepted
post.bemcon.co.uk/wp-content/litespeed/css/8816ce3c297776cb8f3b0d45edcaf33b.css?ver=af33b
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/8816ce3c297776cb8f3b0d45edcaf33b.css?ver=af33b
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/8816ce3c297776cb8f3b0d45edcaf33b.css?ver=af33b HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
expires: Sun, 10 Dec 2023 10:44:53 GMT
last-modified: Sat, 10 Dec 2022 04:44:52 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qy13MB1A95Oqu%2BZtqSs%2BXAXQEPTZgvb3T5kmzauEEJ%2F1B8zgfzPFKqcj1YDtA%2F0IcanMJtT5U2yvu%2BR%2B59PpIOVM5NdACo5QjocuNa%2FymPrbA1PmCJxDh%2FSAfIdKiJ6hQKVm4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb020eb4b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/78cafe03c4240fb94d45f5cfa70a6530.css?ver=a6530
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/78cafe03c4240fb94d45f5cfa70a6530.css?ver=a6530
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/78cafe03c4240fb94d45f5cfa70a6530.css?ver=a6530 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=999
expires: Thu, 21 Dec 2023 07:11:04 GMT
last-modified: Wed, 21 Dec 2022 01:11:04 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Js3k49MCmuyDiQZfjvURy8c3T0OyoKiD2%2B33GMxof3V8B%2FluZgA2iuObbiz8rH0RY8xxYoqPSLBolS8HBxftbJwWYjAm%2BlgQq%2FCklddSe18W2NzsYlncSEIt6Y4wCqek2mqZOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb021ed2b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads//2020/05/Food-Safety-Courses-.svg
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/uploads//2020/05/Food-Safety-Courses-.svg
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads//2020/05/Food-Safety-Courses-.svg HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: image/svg+xml
cache-control: public, max-age=31557600
expires: Fri, 22 Dec 2023 16:46:15 GMT
last-modified: Sat, 08 Aug 2020 14:48:38 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5524
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4OaGKEqNbrBQ9PQRgqSL%2FqUnSiyqPnaV0LVVN9LbjtZohCPxPKfPYb4VC4wiPNdhUtqJV7MffFgb%2BlWcuTnjA8bbN4AIf7VwKfFCE0qS8ZG%2FMVew91BT%2FZczhEHaR8Up%2FbjjUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb066aa7b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/d0b668a25dd51b8cd24fa34a00b74f78.js?ver=74f78
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/d0b668a25dd51b8cd24fa34a00b74f78.js?ver=74f78
IP
GET /wp-content/litespeed/js/d0b668a25dd51b8cd24fa34a00b74f78.js?ver=74f78 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=784
expires: Thu, 21 Dec 2023 07:11:06 GMT
last-modified: Wed, 21 Dec 2022 01:11:04 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0g2aezCVAsCQzHgufo2exSeeRmFtA5VvzJ5lOK7ywhkv7kJQDXUyfOCbwZgZ3sgOQ9y4HR861F2qQQSrHKO4Vu56Y3LTnSO3FVtGUD59TqQ%2B3G3ytIZ02j6Jgl7GcXHT%2Bq7iiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb029f45b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/6e331470c4db945b9c338d3b0363b4f0.css?ver=3b4f0
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/6e331470c4db945b9c338d3b0363b4f0.css?ver=3b4f0
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/6e331470c4db945b9c338d3b0363b4f0.css?ver=3b4f0 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=94872
expires: Thu, 21 Dec 2023 14:38:21 GMT
last-modified: Wed, 21 Dec 2022 08:38:20 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=cpHzs9nrHV6OOC3KikYlcTiAy7kW0pGqDpLVXHWl05MOSGbLiNiy1e%2F%2FJBTOKMm%2BLhi5mgbdcoq5xuiWUAfz87S1J8%2FdaQ9LwiLebq4nni3majzGt2attaH%2B5daScDFJ7Lh55Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb01de90b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/1ce8614741870fe63962e5ef9305f484.css?ver=5f484
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/1ce8614741870fe63962e5ef9305f484.css?ver=5f484
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/1ce8614741870fe63962e5ef9305f484.css?ver=5f484 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=15672
expires: Thu, 21 Dec 2023 07:11:05 GMT
last-modified: Wed, 21 Dec 2022 01:11:04 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fwydyQr7EBPgu%2BSiOHorCcyf1bgcosncINkwB0FR6GLkrFA0lIwlR2PNMJIBc%2B6Dsqg8QtJKel2QEFM%2BROVbS%2FEdbdkcJfMMMcx1NpPy9WkZrEsYdnyf8tgy9WSMikykeVAreg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb01ee9eb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/4909338963a670627dfbca0bfdd7c0ee.css?ver=7c0ee
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/4909338963a670627dfbca0bfdd7c0ee.css?ver=7c0ee
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/4909338963a670627dfbca0bfdd7c0ee.css?ver=7c0ee HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=9934
expires: Fri, 22 Dec 2023 13:55:28 GMT
last-modified: Thu, 22 Dec 2022 07:55:27 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OlF0LA6Gidh61hpTOTq%2FmEqzhLT%2FXrceu3SZUPUPK5FS%2BDI8Zmt%2B4SjV7DCqeH9BBJOrAxK0z9HOiWCnegAANT09VAiH%2FC5vwX%2FqrOAdx9OluLa7cQVxf1bGNUTaI1D3IVpt8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb01fea5b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/d525ea9e26e73dfbfb5636782e35b9c1.css?ver=5b9c1
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/d525ea9e26e73dfbfb5636782e35b9c1.css?ver=5b9c1
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/d525ea9e26e73dfbfb5636782e35b9c1.css?ver=5b9c1 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=57912
expires: Fri, 22 Dec 2023 13:55:28 GMT
last-modified: Thu, 22 Dec 2022 07:55:27 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=F%2BIfZ19CWcg%2FGHEXSA2Wiw%2FrEDnQUVGb19xrfQZ6JH2lq5B3bO%2FNIm9%2BuQ2Z8KPTqYxcBoY0EeCBC97HEbXeo9%2BTX4oSl%2FKci24lycEFQDfWqYY8A2%2FbBTWH2ZYvvrMVCicGvg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb020ecab4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/uploads//2020/05/hot-selling-sessions.svg
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/uploads//2020/05/hot-selling-sessions.svg
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads//2020/05/hot-selling-sessions.svg HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.1.1672130203.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: image/svg+xml
cache-control: public, max-age=31557600
expires: Fri, 22 Dec 2023 17:56:59 GMT
last-modified: Sat, 08 Aug 2020 14:48:40 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 5524
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5ZBN3MKDJCNNef%2BHctwdw4pCJ0emC%2BI%2FjjI2tk92chwSJREhw4Q8Gfv3TPLaOv%2Fuy8hUKP0caSjj34OmYorxCE8%2B0mtMeL09%2FQ0Yx7DRG3NvNY8rER915KPtc2Doen17X0aILA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb065a96b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
200 OK 0 B URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP
GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://post.bemcon.co.uk
Connection: keep-alive
Referer: https://post.bemcon.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:45 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 7800baf95c68b50f-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/7e7ffcbe1c3692857feb7cdc88e0084c.js?ver=0084c
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/7e7ffcbe1c3692857feb7cdc88e0084c.js?ver=0084c
IP
GET /wp-content/litespeed/js/7e7ffcbe1c3692857feb7cdc88e0084c.js?ver=0084c HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=2423
expires: Wed, 27 Dec 2023 13:07:14 GMT
last-modified: Tue, 27 Dec 2022 07:07:14 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 6
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UwJF14eDl7IDJvxd%2BhHo3w1od0k0ozgYHNj6CSQ1Edygl5T3caIVoMq0EwDhAg4SRXFMpSJOJdo1BMi0c3fXP9JJbAZD8RhGEbBEqBpPNJTeTdM9jZaoOvv68BVQHWiDiLXg8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb022edeb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/155b56c34a921efc4bebe4b86eac66b9.css?ver=c66b9
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/155b56c34a921efc4bebe4b86eac66b9.css?ver=c66b9
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/155b56c34a921efc4bebe4b86eac66b9.css?ver=c66b9 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=8555
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
expires: Thu, 21 Dec 2023 07:11:04 GMT
last-modified: Wed, 21 Dec 2022 01:11:04 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RMBHu2o5x8BVVKwrYv8jDidtWQ2mCwI59vdDMoyKqT8SwIFBaBCpPhORWdxHofx4WtHU0POzF7%2BuffTzl5sx7Rty6jt3LSClkLO7U6RChzeIvc%2F%2Bcvtb%2BzAaWDNtJDhMk%2BKUmA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb023ee4b4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/52189adb7969e29c9e8d07516d37ec71.js?ver=7ec71
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/52189adb7969e29c9e8d07516d37ec71.js?ver=7ec71
IP
GET /wp-content/litespeed/js/52189adb7969e29c9e8d07516d37ec71.js?ver=7ec71 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=2622
expires: Thu, 21 Dec 2023 14:38:23 GMT
last-modified: Wed, 21 Dec 2022 08:38:20 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k4W2LXrswRXvWZ8a8M9qV8fqZDBPHidjj%2BmvAFpEXYNd8lGEAkJUYqy8TFKBbQzMmGJR2%2BcpLeJ%2FhNtM0gF6zb5AFm83iZj88edztpTFH1sNmk%2FPnpOK9RT05MQCnMu0rBqD9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb027f2bb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/8e6b0d3fd10eb987f97773fd0c9acc8e.js?ver=acc8e
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/8e6b0d3fd10eb987f97773fd0c9acc8e.js?ver=acc8e
IP
GET /wp-content/litespeed/js/8e6b0d3fd10eb987f97773fd0c9acc8e.js?ver=acc8e HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=11225
expires: Fri, 22 Dec 2023 10:52:17 GMT
last-modified: Thu, 22 Dec 2022 04:52:16 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=abNX3nnisLdQgdBNZY6HNyIqCObZF1AWoNJg5kDtBrFOS5RuVzzcVhGvZEC2HtfbZnGZq3NOSt9SCGA6KAdZTZDSCxT9BcjsAejX9uCj4Wol%2Fx4pIEaHnRtvu4ScI0F0LGeJJw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb021ed8b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/3a3078582f0bb387c4481a1fbcdd088e.css?ver=d088e
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/3a3078582f0bb387c4481a1fbcdd088e.css?ver=d088e
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/3a3078582f0bb387c4481a1fbcdd088e.css?ver=d088e HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=43830
expires: Wed, 27 Dec 2023 11:54:44 GMT
last-modified: Tue, 27 Dec 2022 02:19:04 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZXzWjaHXCz%2BhTVfc9y9br6IevmwvM4UGf2bXxRxQyI63ERWgHYZdDZsQ5y2VY0pBNKwBb3qTJ7TtFSF56RyqpLgZkGchEQVNj8HclTYqaxEMNn%2FJZotZo5IKutzcwlYiK3nqiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb01ee97b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/f4a8f79ca2147599cdf000bf1066e50f.js?ver=6e50f
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/f4a8f79ca2147599cdf000bf1066e50f.js?ver=6e50f
IP
GET /wp-content/litespeed/js/f4a8f79ca2147599cdf000bf1066e50f.js?ver=6e50f HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=1676
expires: Thu, 21 Dec 2023 07:11:05 GMT
last-modified: Wed, 21 Dec 2022 01:11:04 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hnj32Hwgb%2BAkldKsdaRvP8fNF9Di7d7yt%2Fv8Qx2%2F%2BY6fR6zL1DXH5qH35ozqKOOoO4AwmWvq3qCnkU1E%2BfWtHNc8%2FWCk07CrvO9j2QeKQ%2FyQmFnQQsEjzhZpNGZshh2OgMUj7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb022edab4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/bac35c078609d3a951fc531bf7ecdd7a.css?ver=cdd7a
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/bac35c078609d3a951fc531bf7ecdd7a.css?ver=cdd7a
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/bac35c078609d3a951fc531bf7ecdd7a.css?ver=cdd7a HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=3810
expires: Tue, 28 Nov 2023 19:44:17 GMT
last-modified: Mon, 28 Nov 2022 13:44:09 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CDrYmjkNkVBsuvlVdkYYK1GzGyTGDOTXzsNQjCB%2BUbFoO%2BZqSAzdLDxGsu65CnKNCYFNOG3LCJdN5%2FGn8j0v%2FgYR9%2FXOxz9vJ2NABpVWfmkOQ0E9FUZ%2BRRaVv4g2S5qfVjeYbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb024ee6b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/47d0396436e2cc0fa3f60d0198175d82.js?ver=75d82
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/47d0396436e2cc0fa3f60d0198175d82.js?ver=75d82
IP
GET /wp-content/litespeed/js/47d0396436e2cc0fa3f60d0198175d82.js?ver=75d82 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=40698
expires: Fri, 08 Dec 2023 13:11:54 GMT
last-modified: Thu, 08 Dec 2022 07:11:46 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ez%2Fgy1Otrc9fLivyInKWDq4ahUYcQeSTlqUmPc0p%2FWHyuFbbJEwl9S0%2F1l5fpecsmM6lvBR2FXCiKkpPKiN%2Fwq%2BqWJBWLfYO6b0WMdjQdJCdNmvPVGCeAMUi2I1K1ddJxIOBQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb028f37b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/3516176d20aa6b1db543fb10ef348a7f.js?ver=48a7f
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/3516176d20aa6b1db543fb10ef348a7f.js?ver=48a7f
IP
GET /wp-content/litespeed/js/3516176d20aa6b1db543fb10ef348a7f.js?ver=48a7f HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=5631
expires: Fri, 22 Dec 2023 13:55:28 GMT
last-modified: Thu, 22 Dec 2022 07:55:27 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=am6fr89tDayYwwe8wGW536xyYaRQLevfbeI8caXQTcPaA2o7ZrQ1%2F5YN%2BwXW2oVaZl3JyUoho%2BPIfOjotkw8wK%2FTaufUsCCDEt7C6U9r3u2uaKdtHACh9fZm0dVA8t6yd00ksA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb028f3db4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/9361c35b8a36d4ced8e8a6539043ac71.js?ver=3ac71
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/9361c35b8a36d4ced8e8a6539043ac71.js?ver=3ac71
IP
GET /wp-content/litespeed/js/9361c35b8a36d4ced8e8a6539043ac71.js?ver=3ac71 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=139154
expires: Thu, 21 Dec 2023 14:38:23 GMT
last-modified: Wed, 21 Dec 2022 08:38:20 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tb6nc6SPPf4nUbxo%2F6oAgaCjQahmwRB5fvQT8ZZrFAOsdGciAjUEQZMDqub7g%2BmxbNNN6TzPgJwz%2B3DahYYl0ey1v5MJfD7fdNNF7yfiC17Vp%2BmKZQTAHAFdMRf%2FMbN2u7%2Fq1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb027f29b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/6ac4f84452bda369dbb2a21ab0441010.css?ver=41010
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/6ac4f84452bda369dbb2a21ab0441010.css?ver=41010
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/6ac4f84452bda369dbb2a21ab0441010.css?ver=41010 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=94154
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
expires: Thu, 21 Dec 2023 07:11:04 GMT
last-modified: Wed, 21 Dec 2022 01:11:03 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zuGv91XycADSczKFEiEzyWNUZKwAk%2Fj1UgrM6654ETeIgmpA1WCYpPghvzhkaRY9i7OHygW7gvznVddVXrtJ8AKSCNot%2FBtqKzAHeUzm91KCmhhNtKDTUUWZ0T2tnmBk1H7ZIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb01ce7db4f1-OSL
content-encoding: br
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/824e22c6742edf19741c2baf5f990b58.css?ver=90b58
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/824e22c6742edf19741c2baf5f990b58.css?ver=90b58
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/824e22c6742edf19741c2baf5f990b58.css?ver=90b58 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=8815
expires: Fri, 22 Dec 2023 13:55:28 GMT
last-modified: Thu, 22 Dec 2022 07:55:27 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vlIcJI8pMWG3C3DQpOGyKXjjFpSVCPcQbo%2B0abfJLvB%2FXWyTpou0uyoz6X3v0Nk0z8%2FyvM4CetZAEuesepJgEOnW158qdUf3GonMk8ih6NIoXRx8Q7CRYeRRcLG2%2B4%2BKi9X1lA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb020ec4b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/52b9061467ea839c18eac5c92d70810e.js?ver=0810e
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/52b9061467ea839c18eac5c92d70810e.js?ver=0810e
IP
GET /wp-content/litespeed/js/52b9061467ea839c18eac5c92d70810e.js?ver=0810e HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=43114
expires: Fri, 22 Dec 2023 13:55:28 GMT
last-modified: Thu, 22 Dec 2022 07:55:27 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Mqv8XSiF2fCZ%2FEiHdR1N8EIAe296fK1YXnVf%2FnhLgXVXEGrD9d4ln0MY%2FV4K2odhvKAHR8l07ism4Xay2zsU1SUZ%2FJKHotCWR3QOGodHe6o2IVE7Sd%2F7L7T9wz5IafghKoYY8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb02bf6eb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/f9f97c349036eccb65cd2356304ea415.css?ver=ea415
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/f9f97c349036eccb65cd2356304ea415.css?ver=ea415
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/f9f97c349036eccb65cd2356304ea415.css?ver=ea415 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=19567
expires: Fri, 22 Dec 2023 13:55:28 GMT
last-modified: Thu, 22 Dec 2022 07:55:27 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jw3oYRidm19FktjgAkindttEbArPXi6Wygt0XQlk8jOJj3GK%2FBZhe%2Bn2y%2BieO33skZqAi7IMT6bVdmq3Dtz31xwER8Q8rMrwF0Xv2NVIiYOuEdScPakgT5I9XVDwKLbjeQtpQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb01eea4b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/35e6ba9a4fc68709f41df2ebc67dda77.css?ver=dda77
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/35e6ba9a4fc68709f41df2ebc67dda77.css?ver=dda77
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/35e6ba9a4fc68709f41df2ebc67dda77.css?ver=dda77 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
expires: Thu, 21 Dec 2023 07:11:04 GMT
last-modified: Wed, 21 Dec 2022 01:11:04 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dH3X8d0VnjMK3J7ze4mQsfQ6S6wGidIQkI6VXAiINEVMl5UtIbIFukPiEGkA9qxPREy0LOh0%2FEfsLY2Y4OzTY2Gj4Z9Llrucm%2Frhc1XQDovyHGY76wVL7EuWM7cy%2Bjon57BWNg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb01fea9b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/48dacf856126aebc7aa3c111b6fc993f.js?ver=c993f
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/48dacf856126aebc7aa3c111b6fc993f.js?ver=c993f
IP
GET /wp-content/litespeed/js/48dacf856126aebc7aa3c111b6fc993f.js?ver=c993f HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=46788
expires: Fri, 22 Dec 2023 13:55:28 GMT
last-modified: Thu, 22 Dec 2022 07:55:27 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j8%2BpdN5BTxWhJJwcBUqme3p92hT4BdYijNAqoez12hp7KoHW%2B%2F5XfqgkYpd9rCsQ367V5IyxxvUDByRPaXqOcOfiTRMaZzGW%2FOEVRxjaRJtn9PpShJ7zJRpOmUz78eEgszvRBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb025ef6b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/js/080bd9055596882272b34089c957bed7.js?ver=7bed7
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/js/080bd9055596882272b34089c957bed7.js?ver=7bed7
IP
GET /wp-content/litespeed/js/080bd9055596882272b34089c957bed7.js?ver=7bed7 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: application/javascript
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=536
expires: Thu, 21 Dec 2023 14:38:23 GMT
last-modified: Wed, 21 Dec 2022 08:38:20 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9EKlq%2Boc38O4Ls6YLJgfgz%2FBJzkX3scQqvgDwUtDJ9zsLN9aUQfSPy7A6e4llM%2BOUVjnofoWkyR7kLTIT0QUTNZqBteUD6bpN38Bg9Bje4RFvy4wWrLBxAPAfGQJoU%2BIGIvU7g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb028f3bb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
accounts.google.com/gsi/client?ver=6.1.1
200 OK 0 B URL HTTP/2 accounts.google.com/gsi/client?ver=6.1.1
IP
GET /gsi/client?ver=6.1.1 HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
expires: Tue, 27 Dec 2022 08:36:47 GMT
date: Tue, 27 Dec 2022 08:36:47 GMT
cache-control: private, max-age=1800
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="coop_dd7de8473bddc59c6b748810a67a39b1"
content-security-policy: script-src 'nonce-I7xmsVYKEVUg0E5b2yibVA' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http, require-trusted-types-for 'script';report-uri https://csp.withgoogle.com/csp/identity-sign-in-google-http
report-to: {"group":"coop_dd7de8473bddc59c6b748810a67a39b1","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/dd7de8473bddc59c6b748810a67a39b1"}]}
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/3729ab327e496e5367324bdbe0528493.css?ver=28493
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/3729ab327e496e5367324bdbe0528493.css?ver=28493
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/3729ab327e496e5367324bdbe0528493.css?ver=28493 HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
cf-polished: origSize=217
expires: Thu, 21 Dec 2023 14:38:21 GMT
last-modified: Wed, 21 Dec 2022 08:38:20 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ge9WZheJ4xUCrgmBouX4hv2B0sm29%2Bpq0kyK%2B8SIXP4WDTFqKMkddxiyzNGCedBM3UiqK1QcSzPXzW1qb5itKuNAOwbmbqXLvX7ArIzPHTg7Lcy62H7wQpchqSxLfrvSfcqKRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb01ee94b4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
post.bemcon.co.uk/wp-content/litespeed/css/0caaa3aa3b0f7af259b0aa3fa90a4c7b.css?ver=a4c7b
200 OK 0 B URL HTTP/2 post.bemcon.co.uk/wp-content/litespeed/css/0caaa3aa3b0f7af259b0aa3fa90a4c7b.css?ver=a4c7b
IP
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/litespeed/css/0caaa3aa3b0f7af259b0aa3fa90a4c7b.css?ver=a4c7b HTTP/1.1
Host: post.bemcon.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://post.bemcon.co.uk/newsletter-signup/unsubscribe/138a7c90e873f6905becd7f30d36cebe/3718/
Cookie: _lscache_vary=0ecd605272207d647f0e0abe9c8f5436; __cf_bm=MlYwGE7zi8Hrf6jRaXyIEYSobByoDBZdGctmAtzSphQ-1672130206-0-AWHXBlpzrN6pmbVEnUgNTl10TJR7bXvx0XWhBfx4L1vBGxUIQW+DlouYRs4IuFm4zXhUzRrLataVOyhpgXZN3wuDRqdnSc91xNcsk+8+TDKubzkzkNPiF+7zW6welc9KpM2Pfvd00MKGttLNWCjyEHc=; _ga_94998W1T93=GS1.1.1672130202.1.0.1672130202.0.0.0; _ga=GA1.1.792276388.1672130203
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 27 Dec 2022 08:36:47 GMT
content-type: text/css
cache-control: public, max-age=31557600
cf-bgj: minify
expires: Thu, 21 Dec 2023 07:11:04 GMT
last-modified: Wed, 21 Dec 2022 01:11:04 GMT
vary: Accept-Encoding,User-Agent,User-Agent
x-content-type-options: nosniff
x-turbo-charged-by: LiteSpeed
cf-cache-status: HIT
age: 7
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e4rEmREzc6Idur%2BjGqkqiFkR3G93xlpBdglzjVBNT8AblxARe6GMtcSmTVEbjRP3E%2BkW%2Bg6wV2YaI1L9o2svXqVebxBraAjtCzUPqkCJiRRpc%2B%2BThlgG64xu%2B03uSUkQs5OezA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7800bb01feacb4f1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
172.67.199.110
104.16.57.101
23.36.76.226
93.184.220.29