franzcom.co.uk/
149.202.166.135301 Moved Permanently 162 B IP 149.202.166.135:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: franzcom.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Wed, 26 Oct 2022 01:24:54 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://franzcom.co.uk/
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e36c852b5e145f2f09fe73111fb162e1
e439c6a462f86a3003d6464a8b9999b1c4d1e210
52a721168d0c41cb0854ff8c730fce3b79db2e804b383238e95ff1401922bd74
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52A721168D0C41CB0854FF8C730FCE3B79DB2E804B383238E95FF1401922BD74"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5768
Expires: Wed, 26 Oct 2022 03:01:03 GMT
Date: Wed, 26 Oct 2022 01:24:55 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c2bba4cad162918b17858b60e909e4d9
d9a1d4f7fb7635ab233ebbf776e6de1a2857032b
3a1d27ec3d034d6326b32f6054b6be46079a86a33e75d5a2a3796a0c4c5eadab
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5890
Cache-Control: max-age=121466
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:55 GMT
Etag: "6357acdf-1d7"
Expires: Thu, 27 Oct 2022 11:09:21 GMT
Last-Modified: Tue, 25 Oct 2022 09:31:11 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8db408c487f7d35bba323046736e8d3a
01b91e2dce7c6d3de9adfe6ff4d38f9b24ab7db0
9aeafc72c1a969243e1fc96f68ce18888034a749ee70582208bf814bd40b61a5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9AEAFC72C1A969243E1FC96F68CE18888034A749EE70582208BF814BD40B61A5"
Last-Modified: Tue, 25 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8449
Expires: Wed, 26 Oct 2022 03:45:44 GMT
Date: Wed, 26 Oct 2022 01:24:55 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vpLm5OV4bEU3Vdxt/xnnK6K5lh52V7dc7tyK7FXmyiVW/0Ddzl3mxqOYlp90evwHnT4yYpFjG1Ks0wcwLP9Adw==
x-amz-request-id: PAYM4GH7PDR2QPPT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 26 Oct 2022 01:09:10 GMT
age: 945
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:55 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 80dc8774272562fc16fd15f2b2e0d86a
ae953449f54de5618267b68f5f3fbd821eb1cf87
3cce1e725a6610e4c99f8cef50fc9c13f273c9bd651109556827026292b3a20a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3CCE1E725A6610E4C99F8CEF50FC9C13F273C9BD651109556827026292B3A20A"
Last-Modified: Mon, 24 Oct 2022 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21500
Expires: Wed, 26 Oct 2022 07:23:15 GMT
Date: Wed, 26 Oct 2022 01:24:55 GMT
Connection: keep-alive
franzcom.co.uk/
149.202.166.135301 Moved Permanently 300 B IP 149.202.166.135:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 42f3dcaf78de35b64e88790eb558117b
f7353ee15170ec54948265ce58b827227399da24
4d2770afdc43e43f16f8ef197e297107ec9fb7bb2073e45e0c809434f967639b
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: franzcom.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: nginx
date: Wed, 26 Oct 2022 01:24:55 GMT
content-type: text/html; charset=iso-8859-1
content-length: 300
location: https://www.didcomms.co.uk/
x-powered-by: PleskLin
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cf8b9e4464eeb21a38da9f5134e63212
8a1edc2c9816bef9c26cc5d39994a321b597045c
71cdd2a668980d503a5c6b21f636dfb0691db76ef302702338e6950c258c04e6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "71CDD2A668980D503A5C6B21F636DFB0691DB76EF302702338E6950C258C04E6"
Last-Modified: Mon, 24 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 26 Oct 2022 07:24:55 GMT
Date: Wed, 26 Oct 2022 01:24:55 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 518ff04fd536958e285cf07aaf4a2786
fa5dad2391c2a9957340bd629f0462db4f412a5c
608c78964412d5dc7025e9cbfaef345d448a29eae0f11257c49a41f274917b9a
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4451
Cache-Control: max-age=114964
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:55 GMT
Etag: "63579918-1d7"
Expires: Thu, 27 Oct 2022 09:20:59 GMT
Last-Modified: Tue, 25 Oct 2022 08:06:48 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
www.didcomms.co.uk/
149.202.166.135200 OK 22 kB IP 149.202.166.135:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 89deaf168414c006e9a24d5de1b283a8
265628658e0316ce632271876c0fe4dbed5b07b2
616f9104706d6c87f62073fabd64e7148800a283006f96faba7c0f300577ec8f
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
Connection: keep-alive
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:55 GMT
content-type: text/html; charset=UTF-8
content-length: 22056
vary: Accept-Encoding,Cookie
cache-control: max-age=3, must-revalidate
content-encoding: gzip
last-modified: Wed, 26 Oct 2022 01:24:48 GMT
x-cache-status: BYPASS
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19132f29a8811a10f90eca2d81e5deb8
3b9e0bbf9f40f46b57dad5567b008e58b5770565
708aeab241760b108d60c1462b1979e59cf473242222e9270705ba70642b04f6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
didcomms.co.uk/wp-content/uploads/2017/02/economic-1050731_1920-150x150.jpg
149.202.166.135200 OK 7.0 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/economic-1050731_1920-150x150.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 53ecee6be52b3def07067ae472a6bfe1
9ee5235cf461319024940cb48d7df15abe6a9ccb
d5ac40d3e0a24af0d1bfe7f9deaf767ccfc269498a22dc85614ecd0cc14480ea
GET /wp-content/uploads/2017/02/economic-1050731_1920-150x150.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: image/jpeg
content-length: 7041
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-1b81"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/connecting-people-worldwide-150x150.jpg
149.202.166.135200 OK 11 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/connecting-people-worldwide-150x150.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash e2d7021a4d1943d115a57eeb154bb286
ff3bed1be399bc4c4bc163ba6880a92b96a7215a
d471367f2ffbb22d40fa3171a604da4ece7b92c4fba9770bcf818a3c1133c06f
GET /wp-content/uploads/2017/02/connecting-people-worldwide-150x150.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: image/jpeg
content-length: 10958
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-2ace"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2020/05/cropped-new-generic-logo-265x75-1-2.gif
149.202.166.135200 OK 2.7 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2020/05/cropped-new-generic-logo-265x75-1-2.gif
IP 149.202.166.135:0
File type GIF image data, version 87a, 265 x 75\012- data
Hash b8f000923cf6afadb0f7a1a40319fca5
0e2916b567ef303e25f2d3230e660e3f09bc17e0
a30aa4fceae89f1eb33972f87695a5e5cf8351e284875662320a165ab923d3a9
GET /wp-content/uploads/2020/05/cropped-new-generic-logo-265x75-1-2.gif HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: image/gif
content-length: 2733
last-modified: Sun, 14 Jun 2020 14:53:49 GMT
etag: "5ee639fd-aad"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/voice-fax-and-messaging-150x150.jpg
149.202.166.135200 OK 5.7 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/voice-fax-and-messaging-150x150.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 9dcf8d65c5e2efd998f7151be11ef934
0154dac0a1170dcc7d5ccb0951ec564436ea17ab
93979278701da357f3dde0b21ea5e294540267e97a616d27452cb9dea1c9ad1f
GET /wp-content/uploads/2017/02/voice-fax-and-messaging-150x150.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: image/jpeg
content-length: 5740
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-166c"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/excited-2-150x150.jpg
149.202.166.135200 OK 5.9 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/excited-2-150x150.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash df0447ddb11e35e34cdfa5facfd90670
493a2e1175ee34698cb1fae24e5e31084986b57b
6f7987b397991ef7e1bd161679a66744932c82bc7debe6f1137d3c75c566d610
GET /wp-content/uploads/2017/02/excited-2-150x150.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: image/jpeg
content-length: 5931
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-172b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/solutions-banner-1-150x150.jpg
149.202.166.135200 OK 3.4 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/solutions-banner-1-150x150.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 82", baseline, precision 8, 150x150, components 3\012- data
Hash 0e838c03281b5cf7a8cb02dc5a26048e
c489e1ccbb3f301bd868adc775c555eb7ce3e338
1f96d854de09e82fe81a463e221795bee01b7fcd3e4c98a4507fce1b76374509
GET /wp-content/uploads/2017/02/solutions-banner-1-150x150.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: image/jpeg
content-length: 3403
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-d4b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e7f1de4025eee44eed5a0ada1e998d6c
fd8bfad40b964ffd3534ac3aff68aaf31d38ba37
fba4107e5627b68a00dc9c31a657be714c85dc7c648b8e8e1c7373cc305f8228
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.didcomms.co.uk/wp-content/plugins/sendpress//img/ajax-loader.gif
149.202.166.135200 OK 673 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/sendpress//img/ajax-loader.gif
IP 149.202.166.135:0
File type GIF image data, version 89a, 16 x 16\012- data
Hash 73e57937304d89f251e7e540a24b095a
a3243ca6a628b77b3523a18aff6bafae85b45adc
43a526a07a078d736e5c9d67d8479dd54072b7e5c6ddd2cd466f86a086e49ef5
GET /wp-content/plugins/sendpress//img/ajax-loader.gif HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: image/gif
content-length: 673
last-modified: Thu, 31 Mar 2022 16:25:33 GMT
etag: "6245d5fd-2a1"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
s7.addthis.com/js/300/addthis_widget.js
23.38.200.123200 OK 116 kB URL HTTP/2 s7.addthis.com/js/300/addthis_widget.js
IP 23.38.200.123:0
File type ASCII text, with very long lines (54602)
Size 116 kB (116423 bytes)
Hash d5b9b7a3accd3b7b7de639c072ae3ee2
9583b5c046d78af5c6379d844219f828aa2222d0
648dad6716bb917c7d981e7772fca499d9583717fd83ffef47b0534cb9132b60
GET /js/300/addthis_widget.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.15.8
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: "5f971164-5834c"
cache-control: public, max-age=600
strict-transport-security: max-age=15724800; includeSubDomains
content-type: application/javascript
content-encoding: gzip
content-length: 116423
date: Wed, 26 Oct 2022 01:24:56 GMT
vary: Accept-Encoding
x-distribution: 99
x-host: s7.addthis.com
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.161.148.163101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.148.163:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: mm69b5bWadB9qILIOEe83Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nRqjjdrnMvp0c8O0J21ac13gzTg=
www.googletagmanager.com/gtag/js?id=UA-169366328-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-169366328-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1588)
Hash 1747382f2908e99bd53e37f025ab1e07
ce0128608106a612c902201c26971f4c11489bb4
a62e5cd9b7b6367a544b820516a5b5c29007b0d7a44e9745c175e2db459a9ccf
GET /gtag/js?id=UA-169366328-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 26 Oct 2022 01:24:56 GMT
expires: Wed, 26 Oct 2022 01:24:56 GMT
cache-control: private, max-age=900
last-modified: Wed, 26 Oct 2022 00:11:56 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43682
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/js/custom.js?ver=1.0
149.202.166.135200 OK 2.5 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/js/custom.js?ver=1.0
IP 149.202.166.135:0
Hash 89c5f930bee60d70bc62b82ba8b24daf
381c1a3897786c251f9f07be4f533d1e8f6ed423
6e8cffba76933aa541b5650f021b44f1c1eec0e2fc55eb3648cc0f3ca5dd977e
GET /wp-content/themes/accesspress-pro/js/custom.js?ver=1.0 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-1abe"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/site-reviews/assets/scripts/site-reviews.js?ver=6.1.2
149.202.166.135200 OK 11 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/site-reviews/assets/scripts/site-reviews.js?ver=6.1.2
IP 149.202.166.135:0
File type ASCII text, with very long lines (34453)
Hash fadc5a2af40e9cd28bf6ea32a48e1272
ab6e76c854b020ac27c073eb502e5370c114e098
aabbdc27e2dc7106136d0cb39b7a1b9df3577b41edad0ad4f02ea4d77977e724
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/site-reviews/assets/scripts/site-reviews.js?ver=6.1.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Sun, 16 Oct 2022 16:19:02 GMT
etag: W/"634c2ef6-8696"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/js/TimeCircles.js?ver=1.0
149.202.166.135200 OK 7.9 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/js/TimeCircles.js?ver=1.0
IP 149.202.166.135:0
File type ASCII text, with CRLF line terminators
Hash d932e814fb61f559d618fd4c0d54624a
e3478d932bbc27f5c476ce42f2c5ca8d3e7a8bd2
e7ac257940797fdb5fd97ac7dfaf18ea75536ad7243e4ce34614f6e0251226b7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/js/TimeCircles.js?ver=1.0 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-8708"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 130509513bc271340f20f1c556b2592a
6fd8b0623344d4c06ecf4e0708eb51a37d79ed9d
6a69bfbb5b21f5cfae366b21ab59426e78d51467926430c7bbf44d7f8ac704de
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.didcomms.co.uk/arc-widget
149.202.166.135200 OK 3.3 kB URL HTTP/2 www.didcomms.co.uk/arc-widget
IP 149.202.166.135:0
File type ASCII text, with very long lines (7592), with no line terminators
Hash eed73b321b218ae7c19c97c437fc74d8
ecd5d2113849139d1abc419eced574520a7321d5
35d08ca4cbce329051be2b48d68c383f68b764ffbb7af9d5bca1c2c26dec23f1
Analyzer Verdict Alert fortinet Phishing
GET /arc-widget HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
content-length: 3334
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=3600, stale-while-revalidate=864000
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fb6c3dd3817d7e9cad9e87d716e2024c.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: skxiChaSNioO0dIIkRgbak-ZXUcTa5Oe1bNDEcsNUr6vNsU_ZuqPcg==
age: 3092
set-cookie: PHPSESSID=c6e6ij79700vt5eja5k3fjtctg; path=/
last-modified: Tue, 18 Oct 2022 17:47:48 GMT
etag: "634ee6c4-d06-gzip"
content-encoding: gzip
x-cache-status: BYPASS
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/superfish.css?ver=6.0.3
149.202.166.135200 OK 1.3 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/superfish.css?ver=6.0.3
IP 149.202.166.135:0
Hash 56c9f5552e6ab030be16149793d51578
6322bb0174ffb4e8500d0988afe114566b19a79c
e98fe61917fcfc06f90082b463db69cfad6b4d951d75e62be1d471dbb995bbb7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/superfish.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-95a"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/style.css?ver=6.0.3
149.202.166.135200 OK 16 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/style.css?ver=6.0.3
IP 149.202.166.135:0
File type ASCII text, with very long lines (596)
Hash d5b7bf17d42a15cf0ff81b84396f47a6
a1327d08c4eee8d6afddc82a5ae1b3b0c302ff0f
f825242bc8b4b9521c82c28175158d208d269fcdb0d39e15d70aaa08105cb4bf
GET /wp-content/themes/accesspress-pro/style.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-151c6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/images/bgheader.jpg
149.202.166.135200 OK 173 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/images/bgheader.jpg
IP 149.202.166.135:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=55, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=8], baseline, precision 8, 8x55, components 3\012- data
Size 173 kB (173147 bytes)
Hash 0e35c3342cf1058222adf41a18739538
a2975d85d0c5211235a1aa2edfe61e48ebb7ebbb
7dc65aa448ec9880d46e658d8ad71dbd11dd61c230f1f8c59d0d2ba4eac5e8a2
GET /wp-content/themes/accesspress-pro/images/bgheader.jpg HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/wp-content/themes/accesspress-pro/style.css?ver=6.0.3
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660; PHPSESSID=rm2pghov7q7vqc6c2mu3ev68ot
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: image/jpeg
content-length: 173147
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-2a45b"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/connecting-people-worldwide.jpg
149.202.166.135200 OK 245 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/connecting-people-worldwide.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2017:02:16 01:11:43], baseline, precision 8, 1920x788, components 3\012- data
Size 245 kB (245304 bytes)
Hash 0105bae5289e4e8542776d465b5d8e78
ccebf03d275bdd88b68399efaf5d1c4018b96207
bb4a063a10157cd7ba5030111569152829a1ff6a0f0aabd1d5974c3237bca60f
GET /wp-content/uploads/2017/02/connecting-people-worldwide.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: image/jpeg
content-length: 245304
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-3be38"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/jquery.bxslider.css?ver=6.0.3
149.202.166.135200 OK 46 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/jquery.bxslider.css?ver=6.0.3
IP 149.202.166.135:0
Hash ad7bca43a95d12e8401807ae9798ab48
a4a5d227cf4a6e98f362da089693c3b90f625de2
650b657112a4e93bea828aef458267ea15374700bb23dcb7051d9c36da61d2ca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/jquery.bxslider.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-11d0"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/lite/public/css/email-subscribers-public.css?ver=4.8.3
149.202.166.135200 OK 1.1 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/lite/public/css/email-subscribers-public.css?ver=4.8.3
IP 149.202.166.135:0
Hash 1b668a8c7a5f6ad0914bbb6e0d8afeb7
d0e74464ca5e2201aef31a9e323beb7e6d64bf6b
9059f4925823b4e3ff0b3132c3a865a12c68cf3d05d357eeda5fa088bfac999e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/email-subscribers-premium/lite/public/css/email-subscribers-public.css?ver=4.8.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Wed, 29 Sep 2021 11:38:44 GMT
etag: W/"61545044-71e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/download-after-email/css/all.css?ver=6.0.3
149.202.166.135200 OK 64 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/download-after-email/css/all.css?ver=6.0.3
IP 149.202.166.135:0
Hash 6d98bc5fe0aa78ae9734af0bdea756d2
66dacee432bef5254dd0c29c473bb0c89633d1c6
56cf974afbbd3e735d42ad517f22a5213be166c261036ad39ea774eef3dd298e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/download-after-email/css/all.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Sun, 24 Jul 2022 15:10:49 GMT
etag: W/"62dd60f9-11345"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/starter/assets/css/starter-main.css?ver=4.8.3
149.202.166.135200 OK 15 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/starter/assets/css/starter-main.css?ver=4.8.3
IP 149.202.166.135:0
Hash 06eeec9cbf586a8d7bbb4a87539765ab
e8748a9bf903db5fe7f321ee922550f42c4a362d
edf93eef0a06bd37562692485c5e684f4a76313f37034f291ab07810feae0f72
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/email-subscribers-premium/starter/assets/css/starter-main.css?ver=4.8.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Wed, 29 Sep 2021 11:38:44 GMT
etag: W/"61545044-31f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/starter/assets/js/starter-main.js?ver=4.8.3
149.202.166.135200 OK 1.7 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/starter/assets/js/starter-main.js?ver=4.8.3
IP 149.202.166.135:0
Hash b3d840e98885992665ed19bfbd9d21b5
0dad4944bf90b9ae8a6d46b5ad677af86551197d
b4ab921da67cefbacd6afa3dffbafe4d01a77fdaec247d3bcfc48d99f4f8301f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/email-subscribers-premium/starter/assets/js/starter-main.js?ver=4.8.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Wed, 29 Sep 2021 11:38:44 GMT
etag: W/"61545044-69e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/economic-1050731_1920.jpg
149.202.166.135200 OK 370 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/economic-1050731_1920.jpg
IP 149.202.166.135:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1920x1280, components 3\012- data
Size 370 kB (370398 bytes)
Hash 92f359f2af7c8b6831178ee4b1206459
4bc5c109d5d9f35c9a192b3e719ae3c321b0e0ac
fb83ee64d1bccf3cbb1c0c42eea92705fd3f22bcec6fd7e26a82e067c3fe742e
GET /wp-content/uploads/2017/02/economic-1050731_1920.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: image/jpeg
content-length: 370398
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-5a6de"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15
149.202.166.135200 OK 75 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15
IP 149.202.166.135:0
Hash 9aae3012630172e2d099d3036e04cc3a
9a410107c7a17b577f78c642feb9f18ae7177e3e
094314fb4deadd696a521612a8f6fef28accb5ad45c077c290042ca6c24f82a1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Wed, 11 May 2022 15:10:52 GMT
etag: W/"627bd1fc-1f7d7"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4f7139b125683bac76c2b5638a1a643
2f84ea7104d659754e5962f88f504a7189f6f914
c9c550489201a92e8bbe162bca49d4aa6b21fa22b254a6a29502186423b3b579
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
didcomms.co.uk/wp-content/uploads/2017/02/solutions-banner-1.jpg
149.202.166.135200 OK 199 kB URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/solutions-banner-1.jpg
IP 149.202.166.135:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2015 (Windows), datetime=2017:02:20 12:22:33], baseline, precision 8, 1920x894, components 3\012- data
Size 199 kB (198910 bytes)
Hash 431fd9ecaa2e2a20498c71c8b029b087
5cecdf51fe3efecb6cf391ffab04275c57a7f0e0
911401860c1b8006ba2eff80fd8962da6a502ea00027fe428f90abbef1dff048
GET /wp-content/uploads/2017/02/solutions-banner-1.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: image/jpeg
content-length: 198910
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-308fe"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0aae865adfbb2f4084e3654fb695ed40
ded630a732aca19412210f2ce42fed4088f9b035
afb0871d5a7c14a0df136edd58e02f2e07ee3488d8c3a54aa073780552867596
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AFB0871D5A7C14A0DF136EDD58E02F2E07EE3488D8C3A54AA073780552867596"
Last-Modified: Mon, 24 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18966
Expires: Wed, 26 Oct 2022 06:41:02 GMT
Date: Wed, 26 Oct 2022 01:24:56 GMT
Connection: keep-alive
www.didcomms.co.uk/wp-content/plugins/sendpress/js/sendpress.signup.js?ver=1.22.3.31
149.202.166.135200 OK 1.8 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/sendpress/js/sendpress.signup.js?ver=1.22.3.31
IP 149.202.166.135:0
Hash 59aabd5e5f270afcf221e0fb89e258c3
ada8e62cba2e68157b145744ef5f46b46a0be638
762dd23e9db362dca7fcd23f4366f1b750ffc4bd6480a35b2b90561ffc1ba2f1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/sendpress/js/sendpress.signup.js?ver=1.22.3.31 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Thu, 31 Mar 2022 16:25:33 GMT
etag: W/"6245d5fd-168e"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
translate.googleapis.com/translate_static/css/translateelement.css
142.250.74.42200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP 142.250.74.42:0
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 01:00:11 GMT
expires: Wed, 26 Oct 2022 02:00:11 GMT
cache-control: public, max-age=3600
age: 1485
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15
149.202.166.135200 OK 78 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15
IP 149.202.166.135:0
Hash f1dfc66844cca7632bbabbb94af9abd5
3e9a7a430af631b6ae4787bf12b47015c959d760
311f057842dd23d9a4b4301cf2fd6f6343e69a267490f70d6524eafc818bf3d6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/google-language-translator/js/scripts.js?ver=6.0.15 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Wed, 11 May 2022 15:10:52 GMT
etag: W/"627bd1fc-35e5"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/addthis-all/frontend/build/addthis_wordpress_public.min.css?ver=6.0.3
149.202.166.135200 OK 1.2 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/addthis-all/frontend/build/addthis_wordpress_public.min.css?ver=6.0.3
IP 149.202.166.135:0
File type ASCII text, with very long lines (504)
Hash 951bc2808ffe17886b7ebfc207b8f1df
ca96cce886179c06f1d10a9e65a88aa39b4e4e12
961ac9caa2ff457232c43ac28c6a3f0f5e48af6392423e20caf091c6709fb4b6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/addthis-all/frontend/build/addthis_wordpress_public.min.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Mon, 30 May 2022 16:21:45 GMT
etag: W/"6294ef19-24b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
23.38.200.123200 OK 26 kB URL HTTP/2 s7.addthis.com/static/sh.f48a1a04fe8dbf021b4cda1d.html
IP 23.38.200.123:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (63757)
Hash 707317ccaabe08d32d1bd781754e6871
bb82dcd3e044c960e0861c2ce878f5504e628f78
d0a164ece41c61aec26517fb645646f5ba91f72ea5448eff1ee6c393b7c53051
GET /static/sh.f48a1a04fe8dbf021b4cda1d.html HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: text/html
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-11adc"
timing-allow-origin: *
cache-control: public, max-age=86313600
p3p: CP="NON ADM OUR DEV IND COM STA"
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 26421
date: Wed, 26 Oct 2022 01:24:57 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/style.php?ver=6.0.3
149.202.166.135200 OK 96 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/style.php?ver=6.0.3
IP 149.202.166.135:0
File type CSV text\012- assembler source, ASCII text
Hash b442207efb790d6cce8d24d06fbc59f1
3392aaa9e18b868025be261d50d294cd23d31e70
882114a70bf726256b972e7a82de52f4135841439220e0090d5112659d445de1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/style.php?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css;charset=UTF-8
set-cookie: PHPSESSID=rm2pghov7q7vqc6c2mu3ev68ot; path=/
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
vary: Accept-Encoding, Cookie
x-cache-status: BYPASS
x-powered-by: PHP/7.4.16, PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash d68830f33c12f2aa839ecd5c96146bb2
c4eca00dde1d737943bc2980b58a7288c06f808c
0b8dd5b33360dae55b75de1bb81fc9404103824c8d987372d1c44f425052f0d7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.didcomms.co.uk/wp-content/plugins/site-reviews/assets/styles/default.css?ver=6.1.2
149.202.166.135200 OK 34 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/site-reviews/assets/styles/default.css?ver=6.1.2
IP 149.202.166.135:0
File type Unicode text, UTF-8 text, with very long lines (23927)
Hash 6c00f5cd7ba3f88c7e4db8096cf51579
bfa1e46f644ad86cfc638012d38172e9e2bc6187
ebd2c80bf81481cf4a43949b64f49f1f25b148c42fe3409ece3a7427cc9579e2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/site-reviews/assets/styles/default.css?ver=6.1.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Sun, 16 Oct 2022 16:19:02 GMT
etag: W/"634c2ef6-5d7c"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e51b6855c0480724d286847fa91528fe
ee6a114e7bc79b1aa1f07b31cb90674c2ba77bbc
174e93f5d04840d025c9807d0c752ad4b96a4350ab968025b0856c5e59599d47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2734
Cache-Control: max-age=148508
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:57 GMT
Etag: "635822d7-1d7"
Expires: Thu, 27 Oct 2022 18:40:05 GMT
Last-Modified: Tue, 25 Oct 2022 17:54:31 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e51b6855c0480724d286847fa91528fe
ee6a114e7bc79b1aa1f07b31cb90674c2ba77bbc
174e93f5d04840d025c9807d0c752ad4b96a4350ab968025b0856c5e59599d47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2734
Cache-Control: max-age=148508
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:57 GMT
Etag: "635822d7-1d7"
Expires: Thu, 27 Oct 2022 18:40:05 GMT
Last-Modified: Tue, 25 Oct 2022 17:54:31 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.2
149.202.166.135200 OK 1.8 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.2
IP 149.202.166.135:0
Hash ccee0ae40225036e9caa5086ffd0824f
ba028554b4a3de984920dc3c9b4deb208ccdf86c
5143b8839b450b2c32600394ab7ae7681dd528fb932b98291932594b133f8723
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-whatsapp/assets/js/whatsapp-button.js?ver=3.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 15:11:09 GMT
etag: W/"62cee08d-378"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js
157.240.221.16200 OK 1.7 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js
IP 157.240.221.16:0
File type ASCII text, with very long lines (1961)
Hash 648415e0a0bd8f4c668e74b941aab1fd
4f621df40cba35fd4411685c7fb22670d5abead4
0100af2dfab09b8f432eff0db5f37bcee763d1e4653b441f378e4c4b632b41df
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 428a9d05b7426d9fb63d524db8d4d586
etag: "99b6671480531d09145d12b3ada5fa4d"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Wed, 26 Oct 2022 01:37:32 GMT
cache-control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: ZIQV4KC9j0xmjnS5Qaqx/Q==
x-fb-debug: AvY0paTfi8LqF4kDg8UNFqfsqTnNE6YrVZxIJewlFnCkpIHeHp0WF9tgXOND6B6JLDoqbh6WcOFNAiZVJzvKkg==
priority: u=3,i
content-length: 1686
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 01:24:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/js/plugins.js?ver=1.0
149.202.166.135200 OK 56 kB URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/js/plugins.js?ver=1.0
IP 149.202.166.135:0
File type ASCII text, with very long lines (2776)
Hash e7c1a88f098bb35bf858886bed1a5e3b
44c0d92c93ce005eae95f77d236f6d1b00113892
bbebc6c78373a9e9918e187f6c62f1dc2c47c9815ec2680ea501e34611034682
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/js/plugins.js?ver=1.0 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-17c63"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
v1.addthisedge.com/live/boost/ra-536530f652c04fc6/_ate.track.config_resp
23.38.200.123200 OK 828 B URL HTTP/2 v1.addthisedge.com/live/boost/ra-536530f652c04fc6/_ate.track.config_resp
IP 23.38.200.123:0
File type ASCII text, with very long lines (3062), with no line terminators
Hash ba94fade66020915f1a3ce11e9783996
79494cd664dadd75d13c6f360fa6baf4c28b1634
cdbc91041e44222df9fae4547d7a69a521793dec4678636a8094eaabcc63aa4b
GET /live/boost/ra-536530f652c04fc6/_ate.track.config_resp HTTP/1.1
Host: v1.addthisedge.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 828
etag: -435331386--gzip
content-disposition: attachment; filename=1.txt
content-encoding: gzip
cache-control: public, max-age=44, s-maxage=86400
date: Wed, 26 Oct 2022 01:24:57 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
static.arc.io/widget/css/widget.css?6361f6a
194.242.11.186200 OK 9.1 kB URL HTTP/2 static.arc.io/widget/css/widget.css?6361f6a
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (13367)
Hash 2b9c0480f4685dacc7ef27fa6c1cca32
79a4b42a8b63574c4fe94c8da613a48ce79a5651
d9bf6574df6b4ea624a95a63325b6456874849c205bc9a2d63b8fd7ecb97fc93
GET /widget/css/widget.css?6361f6a HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-06-02T13:47:39.564Z%22%2C%22dismissedAt%22:null}
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:24:57 GMT
content-type: text/css
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-allow-methods: GET, HEAD
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"ce66dd39d9339eebd65264a9ecc334be"
last-modified: Tue, 18 Oct 2022 17:48:06 GMT
x-amz-id-2: zud6WmkDxwO4NRZHhdY6TnpWemuJRco8jCmBnXsMdtPpvP8zzcPFn5Z+jX4Y6m0jmYBknc8hl1Q=
x-amz-request-id: DR2ECPV8K4S9CPCM
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/18/2022 18:01:19
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 636e86596314d02e65d2c21fa60ba6dc
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e51b6855c0480724d286847fa91528fe
ee6a114e7bc79b1aa1f07b31cb90674c2ba77bbc
174e93f5d04840d025c9807d0c752ad4b96a4350ab968025b0856c5e59599d47
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2734
Cache-Control: max-age=148508
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:57 GMT
Etag: "635822d7-1d7"
Expires: Thu, 27 Oct 2022 18:40:05 GMT
Last-Modified: Tue, 25 Oct 2022 17:54:31 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
www.gstatic.com/images/branding/product/1x/translate_24dp.png
142.250.74.163200 OK 846 B URL HTTP/2 www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP 142.250.74.163:0
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 25 Oct 2022 20:12:01 GMT
expires: Wed, 25 Oct 2023 20:12:01 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 18776
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/2x/translate_24dp.png
142.250.74.163200 OK 1.8 kB URL HTTP/2 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP 142.250.74.163:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 26 Oct 2022 01:17:26 GMT
expires: Thu, 26 Oct 2023 01:17:26 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 451
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
m.addthis.com/live/red_lojson/300lo.json?si=63588c654a3a2328&bkl=0&bl=5&pdt=1182&sid=63588c654a3a2328&pub=ra-536530f652c04fc6&rev=v8.28.8-wp&ln=en&pc=wpwt&cb=0&ab=-&dp=www.didcomms.co.uk&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=1&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1666747494210&wpv=wpwt-3.2.7&addthis_plugin_info=%7B%22info_status%22%3A%22enabled%22%2C%22cms_name%22%3A%22WordPress%22%2C%22plugin_name%22%3A%22Website%20Tools%20by%20AddThis%22%2C%22plugin_version%22%3A%223.2.7%22%2C%22plugin_mode%22%3A%22AddThis%22%2C%22anonymous_profile_id%22%3A%22wp-55b742b6230b7a471dfc2e2fbad70abc%22%2C%22page_info%22%3A%7B%22template%22%3A%22home%22%2C%22post_type%22%3A%22%22%7D%2C%22sharing_enabled_on_post_via_metabox%22%3Afalse%7D&jsl=1&uvs=63588c6587781f48000&skipb=1&callback=addthis.cbs.jsonp__85391621789479720
23.38.200.123200 OK 89 B URL HTTP/2 m.addthis.com/live/red_lojson/300lo.json?si=63588c654a3a2328&bkl=0&bl=5&pdt=1182&sid=63588c654a3a2328&pub=ra-536530f652c04fc6&rev=v8.28.8-wp&ln=en&pc=wpwt&cb=0&ab=-&dp=www.didcomms.co.uk&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=1&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1666747494210&wpv=wpwt-3.2.7&addthis_plugin_info=%7B%22info_status%22%3A%22enabled%22%2C%22cms_name%22%3A%22WordPress%22%2C%22plugin_name%22%3A%22Website%20Tools%20by%20AddThis%22%2C%22plugin_version%22%3A%223.2.7%22%2C%22plugin_mode%22%3A%22AddThis%22%2C%22anonymous_profile_id%22%3A%22wp-55b742b6230b7a471dfc2e2fbad70abc%22%2C%22page_info%22%3A%7B%22template%22%3A%22home%22%2C%22post_type%22%3A%22%22%7D%2C%22sharing_enabled_on_post_via_metabox%22%3Afalse%7D&jsl=1&uvs=63588c6587781f48000&skipb=1&callback=addthis.cbs.jsonp__85391621789479720
IP 23.38.200.123:0
File type ASCII text, with no line terminators
Hash 19da693b65ab8bb03a597b5cea4480de
02cc6738abe51df0081d4405a44ea75af408878a
6d57df54fbd53d7e0ebe0eb0663782e16249a5bb2250290e00757172d0dcf098
GET /live/red_lojson/300lo.json?si=63588c654a3a2328&bkl=0&bl=5&pdt=1182&sid=63588c654a3a2328&pub=ra-536530f652c04fc6&rev=v8.28.8-wp&ln=en&pc=wpwt&cb=0&ab=-&dp=www.didcomms.co.uk&fp=&fr=&of=0&pd=0&irt=0&vcl=0&md=0&ct=1&tct=0&abt=1&cdn=0&pi=1&rb=0&gen=100&chr=UTF-8&colc=1666747494210&wpv=wpwt-3.2.7&addthis_plugin_info=%7B%22info_status%22%3A%22enabled%22%2C%22cms_name%22%3A%22WordPress%22%2C%22plugin_name%22%3A%22Website%20Tools%20by%20AddThis%22%2C%22plugin_version%22%3A%223.2.7%22%2C%22plugin_mode%22%3A%22AddThis%22%2C%22anonymous_profile_id%22%3A%22wp-55b742b6230b7a471dfc2e2fbad70abc%22%2C%22page_info%22%3A%7B%22template%22%3A%22home%22%2C%22post_type%22%3A%22%22%7D%2C%22sharing_enabled_on_post_via_metabox%22%3Afalse%7D&jsl=1&uvs=63588c6587781f48000&skipb=1&callback=addthis.cbs.jsonp__85391621789479720 HTTP/1.1
Host: m.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript;charset=utf-8
content-length: 89
cache-control: max-age=0, no-cache, no-store, no-transform
pragma: no-cache
content-disposition: attachment; filename=1.txt
date: Wed, 26 Oct 2022 01:24:57 GMT
X-Firefox-Spdy: h2
static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
194.242.11.186200 OK 35 kB URL HTTP/2 static.arc.io/widget/js/vendors~widget-ui.js?c9b0de53
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (63194)
Hash f6e20d728bfc42f2d6234697cb0603ec
cdc2196c694f86e18b1bd49867d2997d2ad3676f
aeac5b650936d5bf84502c4aea3e876f3ad1f2e7c358dfc1904da77f008a4c93
GET /widget/js/vendors~widget-ui.js?c9b0de53 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-06-02T13:47:39.564Z%22%2C%22dismissedAt%22:null}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:24:57 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"5f5181a44cab6b9ccdc03f0d9f46e177"
last-modified: Mon, 08 Aug 2022 22:09:02 GMT
x-amz-id-2: A9pqjKPrqIQflyxmXrVwzuzToR7cxaWclWx6NjnAerAt8ogrYlvolAtqoGvvdIsvqEeqAzY1AX0=
x-amz-request-id: 6ACY3P80RJNPZB5G
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/14/2022 14:32:19
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 32ffb93305fa9f94e9496a8213f4f220
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
23.38.200.123200 OK 78 kB URL HTTP/2 s7.addthis.com/static/layers.fa6cd1947ce26e890d3d.js
IP 23.38.200.123:0
File type Unicode text, UTF-8 text, with very long lines (65533), with no line terminators
Hash 9a77dff666eebb6cf4bbc4c67c7b563b
9e98d7824a7b4e34665c2690d6f52caddad1fe4b
6cdf8e597f3cbe759531153fd926d51aeaebd836a1c9bc1436e079645bfd3ad7
GET /static/layers.fa6cd1947ce26e890d3d.js HTTP/1.1
Host: s7.addthis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.15.8
content-type: application/javascript
last-modified: Mon, 26 Oct 2020 18:11:48 GMT
etag: W/"5f971164-41cf5"
timing-allow-origin: *
cache-control: public, max-age=86313600
strict-transport-security: max-age=15724800; includeSubDomains
content-encoding: gzip
content-length: 77672
date: Wed, 26 Oct 2022 01:24:57 GMT
vary: Accept-Encoding
x-host: s7.addthis.com
X-Firefox-Spdy: h2
platform.twitter.com/widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=https%3A%2F%2Fwww.didcomms.co.uk
93.184.220.66200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=https%3A%2F%2Fwww.didcomms.co.uk
IP 93.184.220.66:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 800140747b9eaa618eb76779a72b8653
9b01fddea24a63b76d645398229523baae849fae
b4bc244dee0f2df26990afae0ccd9297f203e9757bc0a18445793ef4bb678dd2
GET /widgets/widget_iframe.7dae38096d06923d683a2a807172322a.html?origin=https%3A%2F%2Fwww.didcomms.co.uk HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 484861
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Wed, 26 Oct 2022 01:24:57 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 28 Sep 2022 20:04:27 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F704)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
static.arc.io/broker/js/chunk-vendors.5e1d8045.js
194.242.11.186200 OK 24 kB URL HTTP/2 static.arc.io/broker/js/chunk-vendors.5e1d8045.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type Unicode text, UTF-8 text, with very long lines (36366)
Hash 53b89886bc023678207ee8cda215f5d4
dcd0b1aa5b2dc664ddaa6b98adbdd39d4b4bf4d5
29f4acce14aa1c4e090a0f4ecc5a59e22334c419131487afffc3c9abf4393e01
GET /broker/js/chunk-vendors.5e1d8045.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:24:57 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"7baaa27cb0e1201fe90ecc5efca8fbcf"
last-modified: Wed, 19 Jan 2022 23:33:03 GMT
x-amz-id-2: Lg09pm0SMLA2gDpgvbsYLOJ6t8VM7iye6bHwugpdkzqKL5tqPfuDc6xQsPbM2BumjX36g9SpKpc=
x-amz-request-id: K2YYHZ7GZXR992N5
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 06/29/2022 22:31:25
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 30e8da18aec90448e21332ef20386ed5
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/broker/js/broker.b281d075.js
194.242.11.186200 OK 128 kB URL HTTP/2 static.arc.io/broker/js/broker.b281d075.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (24373), with no line terminators
Size 128 kB (128336 bytes)
Hash f5252a0479ae527fcd33efb5340961ba
07c0eedb0bde89a8fe0dcf60f42219e189157573
5a0b7c1775ef6f8b9431b339871ace950a19f9c51f9245d160f3194ec896f9af
GET /broker/js/broker.b281d075.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://core.arc.io
Connection: keep-alive
Referer: https://core.arc.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:24:57 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"8c5f6da1d62d33cc4c32a8ce63be2bf6"
last-modified: Wed, 19 Jan 2022 23:33:03 GMT
x-amz-id-2: 15mXd8XH2lx2CE03B29NPUH0DZY/LOqIKeKzeLqmQNgXs1snFjVDp9XICA09Vhudm/HuQ+kRbm0=
x-amz-request-id: 1BTZ9YPB4J9E9E0X
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/14/2022 14:32:18
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: b9280154dada1cbbb6e6424e89d910c4
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
browser.sentry-cdn.com/6.2.2/bundle.min.js
151.101.130.217200 OK 21 kB URL HTTP/2 browser.sentry-cdn.com/6.2.2/bundle.min.js
IP 151.101.130.217:0
File type ASCII text, with very long lines (65448)
Hash a948fc086ec14683f3f2270913c7f702
945e9d1a6a70d4e3f87dbd1058879bcddcb40a1d
0bb5309b61da0b307549c7c9edd6a61766a86d3dd317d093525fddeebeb212e9
GET /6.2.2/bundle.min.js HTTP/1.1
Host: browser.sentry-cdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: public, max-age=31536000
expires: Fri, 17 Mar 2023 07:22:09 GMT
last-modified: Thu, 11 Mar 2021 09:25:54 GMT
etag: "a948fc086ec14683f3f2270913c7f702"
content-type: application/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
date: Wed, 26 Oct 2022 01:24:57 GMT
age: 19245766
vary: Accept-Encoding
access-control-allow-origin: *
server: Fastly
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 20633
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13209
Expires: Wed, 26 Oct 2022 05:05:06 GMT
Date: Wed, 26 Oct 2022 01:24:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13209
Expires: Wed, 26 Oct 2022 05:05:06 GMT
Date: Wed, 26 Oct 2022 01:24:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13209
Expires: Wed, 26 Oct 2022 05:05:06 GMT
Date: Wed, 26 Oct 2022 01:24:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 358ecd0ec047d700042e2a62f9847199
7bf4c552f47536fe451dc6ccfb0930c592084ef9
e14317aace5d64e9901867578379dd4dd4252b059070d37722f82ebb2e649d27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E14317AACE5D64E9901867578379DD4DD4252B059070D37722F82EBB2E649D27"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13209
Expires: Wed, 26 Oct 2022 05:05:06 GMT
Date: Wed, 26 Oct 2022 01:24:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b946c4f2f177828cf7b76c5764e97157
c3856686b98e1883133aa1824c496d34512769a0
be818a015fc9c745ea561a0b9c2aca6ba25ade24acd696fa651163d47b195371
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc635673e-499c-4d9c-8bc5-a713fb19e221.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13796
x-amzn-requestid: 90b1e032-78c6-499d-b564-f25c15e20304
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2OG0SoAMFx-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358568e-599d0f526fc6a01f77b67dcf;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sVS9nFgRyVconkkFTOrCO2zA0cICFNQFB2E1q7SQcVQm5_Dm6khvrA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:48:40 GMT
age: 12977
etag: "c3856686b98e1883133aa1824c496d34512769a0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc71e44d1-f914-4275-89fb-d23dd55d6827.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc71e44d1-f914-4275-89fb-d23dd55d6827.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 31b4aeea1b2ae94ffa8c30670ae59c76
4fa5babe829c0a1d1666bea9962ab15898fdee06
4bf0180c987d1387746c0feebf244f3599a1e92e7e785bf50139158297956ac8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc71e44d1-f914-4275-89fb-d23dd55d6827.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9452
x-amzn-requestid: 6919dfeb-fcaa-4a8c-8314-1c1f5ea02d6b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ajLO3FAeIAMFbtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63578bf8-0364907e17f894504adf64bf;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 07:10:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: hZGmB292tOf4lbQrgbhvTDNwJ9WpARYAzgqhCXARnokV12I4OdR3tQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 07:16:47 GMT
age: 65290
etag: "4fa5babe829c0a1d1666bea9962ab15898fdee06"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5da11cdb-c8be-46f4-95b0-792c49d930a7.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5da11cdb-c8be-46f4-95b0-792c49d930a7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5987bcd44ab0db5313aa4f409a8a212f
691a36cde98a9fe1660745dd811e0be2ae67036c
e47ce3587c647b52669f675dc7e84e21555f82138091fb04febc951b4c06ba30
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5da11cdb-c8be-46f4-95b0-792c49d930a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8553
x-amzn-requestid: 69931a9c-027e-428e-a88d-61c5fac64daa
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ2iEnzoAMFZAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585690-12c78c5157fb3fa41a13548c;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: zfjAcNokC0aMpSY3juYAi_Wo1MMRskGGJ0y9jb7x3Ps9R6wfiUg-IQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:57:47 GMT
age: 12430
etag: "691a36cde98a9fe1660745dd811e0be2ae67036c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48cd6d0a-5e38-4eda-b349-0efb558678c9.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48cd6d0a-5e38-4eda-b349-0efb558678c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9d4241ae7c2236e38cb6df2a3ecb5c8d
a19ff057587a29f7193f4b2c9755a4f216cc6c59
59aece251cdd8887c545e84bb5113f41b3a6b6af14f60161398b1bf2a5771484
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48cd6d0a-5e38-4eda-b349-0efb558678c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7042
x-amzn-requestid: 5bd3ed8d-4c84-4b38-8d9d-c6b8943956ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alK9KGJGIAMFV6w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585854-5f1fccfb501455bc2834940d;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:42:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: B4hZ_viGTb-KtRKr0L8_vTeQ6k9MHq0rbxxG1ewC2hriy3ERxvhj6w==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:49:13 GMT
age: 12944
etag: "a19ff057587a29f7193f4b2c9755a4f216cc6c59"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac38eda-2bed-4703-8560-7d07ad90dabc.webp
34.120.237.76200 OK 3.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac38eda-2bed-4703-8560-7d07ad90dabc.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 494a826ce7609ee5cc8157ea5de5f4f7
3d28f2daeef33f37c91bd26cb527793288635103
09f702f40e29e6b0c27abc5c7bb4605e504453b543c92805ba4045bd3d65c4d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feac38eda-2bed-4703-8560-7d07ad90dabc.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3337
x-amzn-requestid: 5a06b710-2b88-435e-8863-3e0e58742e6d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ21FjooAMFp8Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585691-2adc1ac2375e087b20ad0e32;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:13 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 02nWxjGUWnLOfCCH-_N91bhvwj9nD2aqZr757DDchdNlHitK7bih4Q==
via: 1.1 a8e5d5aeee6eacca5c379e5059b1f68c.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 22:12:48 GMT
age: 11529
etag: "3d28f2daeef33f37c91bd26cb527793288635103"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
34.120.237.76200 OK 4.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91ee720c15dc69de45080d0c951353af
5292b31a99d90bcb7071f327b93d52034bdf9dcb
7fbe9f0f6db08fd539f2e8d4ac22e3b4d5ca14f7cde69f8424cce8b361d026e6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fadc5382d-fbb1-4d8e-8ee0-d7dcda16508e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4524
x-amzn-requestid: a493efe7-11c7-4032-b36b-7f838f8180bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aljicH_6IAMFqpQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63587fa9-0f15eae7680ea7b15e5e47ec;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 00:30:33 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: NQJHFIbLMzw0aGwCkVGIEIHOMHprTpvLkLQRKgrGeVj35sk7sW4IUg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 26 Oct 2022 00:36:34 GMT
age: 2903
etag: "5292b31a99d90bcb7071f327b93d52034bdf9dcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7bd18d9f36c1699164becc136e455d11
3dfae5f9db30c099a1b9bfbc242158fd25f7ec24
54a4406f9cdf584411a3bcc64e63bde1371cd75727c23f853d3718be3fc35478
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=www.didcomms.co.uk
142.250.74.130200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=www.didcomms.co.uk
IP 142.250.74.130:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.didcomms.co.uk HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 26 Oct 2022 01:24:57 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19c5719e45cfb53e9fdd342d81c046e0
d588591f72e278a8936e6fcaab8297f6c65b4904
b75e541f0f1468d70b4845424348e052fdde69d5334d88317c47414e18dbec2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=www.didcomms.co.uk&callback=_gfp_s_&client=ca-pub-2896365872506862&cookie=ID%3D4fc969454d5093da-227344d2a3cd0024%3AT%3D1654177660%3ART%3D1654177660%3AS%3DALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A&gpid_exp=1
172.217.21.162200 OK 187 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=www.didcomms.co.uk&callback=_gfp_s_&client=ca-pub-2896365872506862&cookie=ID%3D4fc969454d5093da-227344d2a3cd0024%3AT%3D1654177660%3ART%3D1654177660%3AS%3DALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A&gpid_exp=1
IP 172.217.21.162:0
File type ASCII text, with no line terminators
Hash e724ea799193ca159e5fa6e0e7e077fa
b63c9f4368c9d80befbcb4f40158185da50aa7c2
5e53160811f4a110a15344431887de96c3989708d1629fe26d13d54c216b8e50
GET /gampad/cookie.js?domain=www.didcomms.co.uk&callback=_gfp_s_&client=ca-pub-2896365872506862&cookie=ID%3D4fc969454d5093da-227344d2a3cd0024%3AT%3D1654177660%3ART%3D1654177660%3AS%3DALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 26 Oct 2022 01:24:57 GMT
server: cafe
cache-control: private
content-length: 187
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=www.didcomms.co.uk
142.250.74.98200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=www.didcomms.co.uk
IP 142.250.74.98:0
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=www.didcomms.co.uk HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Wed, 26 Oct 2022 01:24:57 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
arc.io/arc-sw-core.js
54.230.111.49200 OK 68 kB IP 54.230.111.49:0
File type ASCII text, with very long lines (22448)
Hash b62d64ef6acb7d9e69619926d12987fd
d17547ac81a5b9ec9d3cfaa7fbecd563233af351
e82a5776a21790a3b2855755cb37d2aea37274b04b5b4e4ee48c318e8127d7e2
GET /arc-sw-core.js HTTP/1.1
Host: arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
content-length: 67725
last-modified: Sat, 31 Jul 2021 01:05:06 GMT
content-encoding: br
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
date: Wed, 26 Oct 2022 00:40:17 GMT
cache-control: public, max-age=3600, must-revalidate
etag: "6104a1c2-1088d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9J7J0S2FbMZ5EHAmhtVtIcPynpaDHBjgTX6G51U6m8sP0ZRhbX_YIg==
age: 2711
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bf10f95d50c50dee2deaab1de5624867
d072afd2950f83002ca53588feed8a88fd2321ac
f639babdd513b2f0dd70687271d9a7ff827d334f67383cfa48bd2608ae9a3548
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 19c5719e45cfb53e9fdd342d81c046e0
d588591f72e278a8936e6fcaab8297f6c65b4904
b75e541f0f1468d70b4845424348e052fdde69d5334d88317c47414e18dbec2b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:57 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 314 B IP 93.184.220.29:0
Hash f7d5a805746e2bc18d72a296102e8339
9387d72aa7f0b3e510efe8cc219081159885ec4e
747fc06e0d5f6233852c9c4b68f1679966ac7c86211b285db4c3b5d18bd036b4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3176
Cache-Control: max-age=99264
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:57 GMT
Etag: "635760c1-13a"
Expires: Thu, 27 Oct 2022 04:59:21 GMT
Last-Modified: Tue, 25 Oct 2022 04:06:25 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 314
www.google-analytics.com/analytics.js
142.250.74.174200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20039
date: Wed, 26 Oct 2022 00:41:09 GMT
expires: Wed, 26 Oct 2022 02:41:09 GMT
cache-control: public, max-age=7200
age: 2628
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.arc.io/broker/js/lazy-modules.a169b1ec.js
194.242.11.186200 OK 16 kB URL HTTP/2 static.arc.io/broker/js/lazy-modules.a169b1ec.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (25027)
Hash b4254945247ec70b1ccf086ede3866d2
c304aef12402cad1ebd2442e9275f675742b0436
0618b9edc60a4e7e82c0d5ef7d0899ea4fe2037181794987f675b7b481490895
GET /broker/js/lazy-modules.a169b1ec.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://core.arc.io/
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-06-02T13:47:39.564Z%22%2C%22dismissedAt%22:null}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:24:57 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"32ab6174f553ec44ff554a5a2406b76d"
last-modified: Wed, 19 Jan 2022 23:33:03 GMT
x-amz-id-2: 1HPOvli1UWDpUZXFWu6CwdlYyQUcdV4wPGgPy4nfB7B6fDlC7Q604ob7CUR3XzVeynp2AAE8mww=
x-amz-request-id: ST1DTDBD2C8CBP39
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/16/2022 07:43:24
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4b2617b74dc664724e817a3e51e15029
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9591a4099a0be9da7dedc61a4aa6132f
b554a8906be5a2b149638ce9f26d4623d90ddd65
d0ecabca4aee0672daf8df6b0f4423f882b3ea8f82c046baef7cb04a989b19da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D0ECABCA4AEE0672DAF8DF6B0F4423F882B3EA8F82C046BAEF7CB04A989B19DA"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2138
Expires: Wed, 26 Oct 2022 02:00:35 GMT
Date: Wed, 26 Oct 2022 01:24:57 GMT
Connection: keep-alive
www.didcomms.co.uk/wp-content/plugins/google-language-translator/images/flags.png
149.202.166.135200 OK 55 kB URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/google-language-translator/images/flags.png
IP 149.202.166.135:0
File type PNG image data, 169 x 520, 8-bit/color RGBA, non-interlaced\012- data
Hash 89c95031b56b90591fd4ef80558f8c25
9599f52c93b38f3e68686f299b3184be0a9de63a
d64c12a76a61096f3a14aa795d12c3fc0de8e5781ef2e1af3b66517e65d7f00e
GET /wp-content/plugins/google-language-translator/images/flags.png HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/style.css?ver=6.0.15
Cookie: __atuvc=0%7C39%2C0%7C40%2C0%7C41%2C0%7C42%2C1%7C43; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660; PHPSESSID=c6e6ij79700vt5eja5k3fjtctg; __atuvs=63588c6587781f48000; _fbp=fb.2.1666747494909.318725004; __gpi=UID=00000b7870c7954f:T=1666747497:RT=1666747497:S=ALNI_MaAyesDOkgHfL2u_k0eXnSxrqv47A; _ga_EVXT8X8VXE=GS1.1.1666747495.1.0.1666747495.0.0.0; _gid=GA1.3.2014760670.1666747495; _gat_gtag_UA_169366328_1=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:57 GMT
content-type: image/png
content-length: 54996
last-modified: Wed, 11 May 2022 15:10:52 GMT
etag: "627bd1fc-d6d4"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
syndication.twitter.com/settings?session_id=527498037246383e1c290a2a81660135b2c3cdd3
104.244.42.8200 OK 355 B URL HTTP/2 syndication.twitter.com/settings?session_id=527498037246383e1c290a2a81660135b2c3cdd3
IP 104.244.42.8:0
File type JSON data\012- , ASCII text, with very long lines (851), with no line terminators
Hash 7cac009f8121486bc6c44991cf606190
ddae6074c908031f09b586d38a022e0e4add23b5
7825444c58d1293285c059256fb6e04dcd4bf7dff5a6a65972f65d55286b1e89
GET /settings?session_id=527498037246383e1c290a2a81660135b2c3cdd3 HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:24:57 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Wed, 26 Oct 2022 01:24:57 GMT
content-length: 355
content-encoding: gzip
x-transaction-id: 2797d0cce4c8dcce
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 105
x-connection-hash: 5dc52d7ee915ea83c293d7189242a9263108d7b7a4a364d13c7b9c5df226d9b7
X-Firefox-Spdy: h2
gateway.arc.io/cdnConfig/7DEbpruv
194.242.11.186200 OK 260 B URL HTTP/2 gateway.arc.io/cdnConfig/7DEbpruv
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type JSON data\012- , ASCII text, with very long lines (673), with no line terminators
Hash 10d20b71fb71a86667b3c897e8b04065
f18f57d97358b9a03c74e8eb9c5ea03e8dd15c3b
25d73135eaa4131dca52f8dc1401720f960c55a516c1adb3af33e1538099b889
GET /cdnConfig/7DEbpruv HTTP/1.1
Host: gateway.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.didcomms.co.uk/
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:24:58 GMT
content-type: application/json; charset=utf-8
vary: Accept-Encoding
server: BunnyCDN-NO-830
cdn-pullzone: 786568
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=1800, stale-while-revalidate=604800
etag: W/"2a1-cyqlWJx246xDfmOaD1SeYSWPuSU"
timing-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/26/2022 01:24:58
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 27b28c7911ac179795890a0a5d569b75
cdn-cache: EXPIRED
content-encoding: br
X-Firefox-Spdy: h2
arc.io/arc-sw-core.js
54.230.111.49200 OK 68 kB IP 54.230.111.49:0
File type ASCII text, with very long lines (22448)
Hash b62d64ef6acb7d9e69619926d12987fd
d17547ac81a5b9ec9d3cfaa7fbecd563233af351
e82a5776a21790a3b2855755cb37d2aea37274b04b5b4e4ee48c318e8127d7e2
GET /arc-sw-core.js HTTP/1.1
Host: arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 67725
last-modified: Sat, 31 Jul 2021 01:05:06 GMT
content-encoding: br
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
date: Wed, 26 Oct 2022 00:40:17 GMT
cache-control: public, max-age=3600, must-revalidate
etag: "6104a1c2-1088d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 1qsPF3z8aCWV6iyMgP-5mrBb2F64efjTrx4r_MLK3xHX6jfLV1lWoA==
age: 2713
X-Firefox-Spdy: h2
www.didcomms.co.uk/arc-sw?propertyId=7DEbpruv&seeder=true
149.202.166.135200 OK 1.4 kB URL HTTP/2 www.didcomms.co.uk/arc-sw?propertyId=7DEbpruv&seeder=true
IP 149.202.166.135:0
File type ASCII text, with very long lines (3351), with no line terminators
Hash bd4728fd091146312db3659d9d72fabb
506e705786c99f15dad2598a3dcb6355440cbe9d
178e2994e65363f4498d2605abf14c75a43f5926af3f1f58b30f2d9933ec52cd
GET /arc-sw?propertyId=7DEbpruv&seeder=true HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: __atuvc=0%7C39%2C0%7C40%2C0%7C41%2C0%7C42%2C1%7C43; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660; PHPSESSID=c6e6ij79700vt5eja5k3fjtctg; __atuvs=63588c6587781f48000; _fbp=fb.2.1666747494909.318725004; __gpi=UID=00000b7870c7954f:T=1666747497:RT=1666747497:S=ALNI_MaAyesDOkgHfL2u_k0eXnSxrqv47A; _ga_EVXT8X8VXE=GS1.1.1666747495.1.0.1666747495.0.0.0; _gid=GA1.3.2014760670.1666747495; _gat_gtag_UA_169366328_1=1
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Sat, 31 Jul 2021 01:05:06 GMT
If-None-Match: "6104a1c2-569-gzip"
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:59 GMT
content-type: application/javascript
content-length: 1385
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=3600, must-revalidate
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fd4c476aa3616f643565cbbf3a891a78.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: 8j-wksxsRuPrAMKjCvY-Y4IvEyf9ew1BUfDE4zMXnaC6x2YWEekq7w==
age: 751
last-modified: Sat, 31 Jul 2021 01:05:06 GMT
etag: "6104a1c2-569-gzip"
content-encoding: gzip
x-cache-status: BYPASS
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
www.didcomms.co.uk/sp-push-worker-fb.js
149.202.166.135200 OK 169 B URL HTTP/2 www.didcomms.co.uk/sp-push-worker-fb.js
IP 149.202.166.135:0
Hash 25ef678aa6e87919914fff043d0da4f3
691d8aab593c5766dc39692703ae8cc4a7e84364
b0ef4eba1c31905c04f41c48a2b10d120d884509ca38348f5944420cd1ddbfde
Analyzer Verdict Alert fortinet Phishing
GET /sp-push-worker-fb.js HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Cookie: __atuvc=0%7C39%2C0%7C40%2C0%7C41%2C0%7C42%2C1%7C43; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660; PHPSESSID=c6e6ij79700vt5eja5k3fjtctg; __atuvs=63588c6587781f48000; _fbp=fb.2.1666747494909.318725004; __gpi=UID=00000b7870c7954f:T=1666747497:RT=1666747497:S=ALNI_MaAyesDOkgHfL2u_k0eXnSxrqv47A; _ga_EVXT8X8VXE=GS1.1.1666747495.1.0.1666747495.0.0.0; _gid=GA1.3.2014760670.1666747495; _gat_gtag_UA_169366328_1=1
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:59 GMT
content-type: application/javascript
last-modified: Sun, 14 Jun 2020 14:53:48 GMT
etag: W/"5ee639fc-49"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 65510aedd1a67f63a74f0de49818efd4
565e20c6757bfedfb32091dad5842a26e1de3d71
db85f5a4a38880cf98a0bdae8b7ed47840716a63a2e10397191a10463b6d93be
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3370
Cache-Control: max-age=154571
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:59 GMT
Etag: "6358380c-116"
Expires: Thu, 27 Oct 2022 20:21:10 GMT
Last-Modified: Tue, 25 Oct 2022 19:25:00 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 278
cdnjs.cloudflare.com/ajax/libs/normalize/8.0.0/normalize.min.css
104.17.25.14200 OK 631 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/normalize/8.0.0/normalize.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (1796)
Hash c27520fe60c6f5f7cba22d6912e04494
59bdd4f097d44825326bfa7fdf075669deabaa09
bfbb841e763e8cd7a378b0a6bb83b08251eb3ee0afd7bfcb6d55dae63f6f514d
GET /ajax/libs/normalize/8.0.0/normalize.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Connection: keep-alive
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:24:59 GMT
content-type: text/css; charset=utf-8
content-length: 631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03f2b-732"
last-modified: Mon, 04 May 2020 16:13:31 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 548503
expires: Mon, 16 Oct 2023 01:24:59 GMT
accept-ranges: bytes
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 75ff65414ed81c12-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.didcomms.co.uk/sp-push-worker-fb.js
149.202.166.135304 Not Modified 0 B URL HTTP/2 www.didcomms.co.uk/sp-push-worker-fb.js
IP 149.202.166.135:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /sp-push-worker-fb.js HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: __atuvc=0%7C39%2C0%7C40%2C0%7C41%2C0%7C42%2C1%7C43; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660; PHPSESSID=c6e6ij79700vt5eja5k3fjtctg; __atuvs=63588c6587781f48000; _fbp=fb.2.1666747494909.318725004; __gpi=UID=00000b7870c7954f:T=1666747497:RT=1666747497:S=ALNI_MaAyesDOkgHfL2u_k0eXnSxrqv47A; _ga_EVXT8X8VXE=GS1.1.1666747495.1.0.1666747495.0.0.0; _gid=GA1.3.2014760670.1666747495; _gat_gtag_UA_169366328_1=1
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Sun, 14 Jun 2020 14:53:48 GMT
If-None-Match: W/"5ee639fc-49"
Cache-Control: max-age=0
TE: trailers
HTTP/2 304 Not Modified
server: nginx
date: Wed, 26 Oct 2022 01:24:59 GMT
last-modified: Sun, 14 Jun 2020 14:53:48 GMT
etag: "5ee639fc-49"
x-powered-by: PleskLin
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 65510aedd1a67f63a74f0de49818efd4
565e20c6757bfedfb32091dad5842a26e1de3d71
db85f5a4a38880cf98a0bdae8b7ed47840716a63a2e10397191a10463b6d93be
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3370
Cache-Control: max-age=154571
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:59 GMT
Etag: "6358380c-116"
Expires: Thu, 27 Oct 2022 20:21:10 GMT
Last-Modified: Tue, 25 Oct 2022 19:25:00 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 278
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 0f86bf1e2fc0e53635d6dbd436afffda
c38c19618afd2c203b53f07c71d07a31fc397353
5cba005b31289d4df7c6bfa9e0bdd27ce43ff8b7e6d91ea95ce24f690426fdc7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:24:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
142.250.74.33200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Wed, 26 Oct 2022 01:24:59 GMT
expires: Wed, 26 Oct 2022 01:24:59 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20221020/r20110914/abg_lite_fy2021.js
142.250.74.33200 OK 9.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221020/r20110914/abg_lite_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1631)
Hash d5da7be99728c9aa968df635d13f08a5
2bfb1d759b9173b1d75746c0ead2fa6d9a41af94
f2852df148e8717747899d7d5a3620fb0522614d89802b17e8fca3b31b4c7e80
GET /pagead/js/r20221020/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 9571
x-xss-protection: 0
date: Tue, 25 Oct 2022 14:23:40 GMT
expires: Tue, 08 Nov 2022 14:23:40 GMT
cache-control: public, max-age=1209600
age: 39679
etag: 15799940544776262544
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20221020/r20110914/client/qs_click_protection_fy2021.js
142.250.74.33200 OK 7.6 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221020/r20110914/client/qs_click_protection_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1501)
Hash 918896f2228425540a85b9a11b788c5c
422c286ef76bc1196921dd7f2b59d961654aefea
8552705788eeff8c59f6aad7f7ad5003127a628fe16464ef0070b86ee9981744
GET /pagead/js/r20221020/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 7569
x-xss-protection: 0
date: Tue, 25 Oct 2022 14:20:19 GMT
expires: Tue, 08 Nov 2022 14:20:19 GMT
cache-control: public, max-age=1209600
age: 39880
etag: 4237063375490391177
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20221020/r20110914/elements/html/interstitial_ad_frame_fy2021.js
142.250.74.33200 OK 8.2 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20221020/r20110914/elements/html/interstitial_ad_frame_fy2021.js
IP 142.250.74.33:0
File type ASCII text, with very long lines (1831)
Hash 44412fea0bf42ffc9e950ffaf8867fa0
cef93516700eab9d1ca32e7c22e1b9ac77a076c2
a71f448362cb54528afe1eb480502b1c8f1aa4a95b4595085b31f20652903f35
GET /pagead/js/r20221020/r20110914/elements/html/interstitial_ad_frame_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
server: cafe
content-length: 8235
x-xss-protection: 0
date: Tue, 25 Oct 2022 17:36:14 GMT
expires: Tue, 08 Nov 2022 17:36:14 GMT
cache-control: public, max-age=1209600
age: 28125
etag: 7715946797152839796
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
142.250.74.66200 OK 48 kB URL HTTP/2 www.googletagservices.com/activeview/js/current/rx_lidar.js?cache=r20110914
IP 142.250.74.66:0
File type ASCII text, with very long lines (3502)
Hash 6e25d9c494f1c9f05f1492754baa6daa
e261b3358c233768d36cede1358d47a7f92e8530
f5f9eed7999890b15537f7019d4e73e3a7d2df33d59229b6cad3cb0fcd19cbd9
GET /activeview/js/current/rx_lidar.js?cache=r20110914 HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/active-view-scs-read-write-acl
cross-origin-opener-policy: same-origin; report-to="active-view-scs-read-write-acl"
report-to: {"group":"active-view-scs-read-write-acl","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/active-view-scs-read-write-acl"}]}
content-length: 47514
date: Wed, 26 Oct 2022 01:24:59 GMT
expires: Wed, 26 Oct 2022 01:24:59 GMT
cache-control: private, max-age=3000
etag: "1666611803224388"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 77b5da0f60755df91da1b98333c6d33c
0c36c5f1063e2ef41d02e26ddf9ed1e0a490e6b4
085b499d52d53965301db8affc692e09876290e5d67bf09c83178cc54384999f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 26 Oct 2022 01:25:00 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api2/aframe
142.250.74.164200 OK 514 B URL HTTP/2 www.google.com/recaptcha/api2/aframe
IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (783), with no line terminators
Hash 46161f547364ac6187f12d96200842fe
9a815f91de844322927bb1ac691a73dd9a64fc1f
ee2b96c1ef51153ac78eddc7eff0c48a237425b7d426fae3babb376abb272487
GET /recaptcha/api2/aframe HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy: require-corp
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
expires: Wed, 26 Oct 2022 01:25:00 GMT
date: Wed, 26 Oct 2022 01:25:00 GMT
cache-control: private, max-age=300
content-type: text/html; charset=utf-8
content-security-policy: script-src 'nonce-XYPoehIU6DPO-qLIJ91g5Q' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri https://csp.withgoogle.com/csp/recaptcha/1
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 514
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a242a4ac5b05c3fd0a51f8a1df153889
63bd752011d8b28864262287b197b512fafbde35
de0352c7c3269bd2cbb835ee18d38a371c3397f2253501fcb07966b92d585feb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DE0352C7C3269BD2CBB835EE18D38A371C3397F2253501FCB07966B92D585FEB"
Last-Modified: Mon, 24 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=827
Expires: Wed, 26 Oct 2022 01:38:47 GMT
Date: Wed, 26 Oct 2022 01:25:00 GMT
Connection: keep-alive
arc.io/arc-sw-core.js
54.230.111.49304 Not Modified 0 B IP 54.230.111.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /arc-sw-core.js HTTP/1.1
Host: arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Sat, 31 Jul 2021 01:05:06 GMT
If-None-Match: "6104a1c2-1088d"
Cache-Control: max-age=0
TE: trailers
HTTP/2 304 Not Modified
last-modified: Sat, 31 Jul 2021 01:05:06 GMT
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
date: Wed, 26 Oct 2022 00:40:17 GMT
cache-control: public, max-age=3600, must-revalidate
etag: "6104a1c2-1088d"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: R8u_7XvfEVDHBE0K_3ctpeXV5CjMb1yC2QfL9h2D7Ceo6WevEiTHmg==
age: 2714
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/css/dist/block-library/style.css?ver=6.0.3
149.202.166.135200 OK 14 kB URL HTTP/2 www.didcomms.co.uk/wp-includes/css/dist/block-library/style.css?ver=6.0.3
IP 149.202.166.135:0
Hash 7c2e13718233e89ecfdb1329f9411e33
ce32a5655ac50ab3caf4a1bf640c23d4a04960af
8675d1cd5be88db072ee2aab063802143738c7b12854c9c48cd556487753dd2f
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 15:11:16 GMT
etag: W/"62cee094-193c1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
warden.arc.io/mailbox/nodes/Mm29TGByQPw2FiUsTkvRyx
18.223.141.84204 No Content 0 B URL HTTP/2 warden.arc.io/mailbox/nodes/Mm29TGByQPw2FiUsTkvRyx
IP 18.223.141.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /mailbox/nodes/Mm29TGByQPw2FiUsTkvRyx HTTP/1.1
Host: warden.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 284
Origin: https://www.didcomms.co.uk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
HTTP/2 204 No Content
date: Wed, 26 Oct 2022 01:25:00 GMT
access-control-allow-origin: *
etag: W/"a-bAsFyilMr4Ra1hIU5PyoyFRunpI"
strict-transport-security: max-age=15724800; includeSubDomains
X-Firefox-Spdy: h2
static.arc.io/widget/js/core.js?6361f6a
194.242.11.186200 OK 139 kB URL HTTP/2 static.arc.io/widget/js/core.js?6361f6a
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Size 139 kB (138734 bytes)
Hash 2a0a1ff06f98a420a41b20a5b9810c8d
4a2d85ab6a5a38000c15497dc62b92102e8a3655
620bf3392f6faff2571859d47cd83eb977480abcd0e62fc93381daf4fbd8c8c8
GET /widget/js/core.js?6361f6a HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.didcomms.co.uk
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"97aa8c4ff801027b552e4876b9aa7aca"
last-modified: Tue, 18 Oct 2022 17:48:06 GMT
x-amz-id-2: JN4XCMMNC2xRF5XoVljXcOvZiHtFhBYUveEfPnPq7yhraM6SqTh4sSFih7R+JJyAL6sjgjf1Xf8=
x-amz-request-id: 4FVWNSJF5R5AZNC6
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/18/2022 18:01:18
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 65c6ddfbba66e7a05cb8b2ad14636054
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/arc-sw?propertyId=7DEbpruv&seeder=true
149.202.166.135200 OK 1.4 kB URL HTTP/2 www.didcomms.co.uk/arc-sw?propertyId=7DEbpruv&seeder=true
IP 149.202.166.135:0
File type ASCII text, with very long lines (3351), with no line terminators
Hash bd4728fd091146312db3659d9d72fabb
506e705786c99f15dad2598a3dcb6355440cbe9d
178e2994e65363f4498d2605abf14c75a43f5926af3f1f58b30f2d9933ec52cd
GET /arc-sw?propertyId=7DEbpruv&seeder=true HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: __atuvc=0%7C39%2C0%7C40%2C0%7C41%2C0%7C42%2C1%7C43; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660; PHPSESSID=c6e6ij79700vt5eja5k3fjtctg; __atuvs=63588c6587781f48000; _fbp=fb.2.1666747494909.318725004; __gpi=UID=00000b7870c7954f:T=1666747497:RT=1666747497:S=ALNI_MaAyesDOkgHfL2u_k0eXnSxrqv47A; _ga_EVXT8X8VXE=GS1.1.1666747495.1.0.1666747495.0.0.0; _gid=GA1.3.2014760670.1666747495; _gat_gtag_UA_169366328_1=1
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
If-Modified-Since: Sat, 31 Jul 2021 01:05:06 GMT
If-None-Match: "6104a1c2-569-gzip"
Cache-Control: max-age=0
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:25:00 GMT
content-type: application/javascript
content-length: 1385
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
access-control-allow-origin: *
strict-transport-security: max-age=15724800; includeSubDomains
cache-control: public, max-age=3600, must-revalidate
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fd4c476aa3616f643565cbbf3a891a78.cloudfront.net (CloudFront)
x-amz-cf-pop: AMS50-C1
x-amz-cf-id: 8j-wksxsRuPrAMKjCvY-Y4IvEyf9ew1BUfDE4zMXnaC6x2YWEekq7w==
age: 751
last-modified: Sat, 31 Jul 2021 01:05:06 GMT
etag: "6104a1c2-569-gzip"
content-encoding: gzip
x-cache-status: BYPASS
x-powered-by: PHP/7.4.16, PleskLin
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
216.58.207.195200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Hash 53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 19 Oct 2022 15:21:36 GMT
expires: Thu, 19 Oct 2023 15:21:36 GMT
cache-control: public, max-age=31536000
age: 554604
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
static.arc.io/widget/js/chunk-2d2088b3.js?6c1d7778
194.242.11.186200 OK 2.2 kB URL HTTP/2 static.arc.io/widget/js/chunk-2d2088b3.js?6c1d7778
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (4850), with no line terminators
Hash dcb6ad7ca658a0689df187375ebb43bd
d438aca542ff74a813fbcacc8e337e883ccb976e
35a9a1be2fe677d236643bc2d7c03a3406d649930e0b9c80334f6036e32220c3
GET /widget/js/chunk-2d2088b3.js?6c1d7778 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-06-02T13:47:39.564Z%22%2C%22dismissedAt%22:null}
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:25:00 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"7384177c3c74dc6974a5853a99b983a2"
last-modified: Tue, 18 Oct 2022 17:48:06 GMT
x-amz-id-2: LY6ZTDWODuQWFfEv93uWSET8rfgKlEB7Io+HSE9fIFGqJeILBFfH6ixKHNz7s8IvV8HtyLFjre0=
x-amz-request-id: W784WV1AM5Z6XF1V
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/18/2022 18:03:37
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1ab0594b0df7b68da7bf29ae63af1468
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/vendors~widget-sc-client.js?35fccb86
194.242.11.186200 OK 16 kB URL HTTP/2 static.arc.io/widget/js/vendors~widget-sc-client.js?35fccb86
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (34291)
Hash a16fad874a3221dc0a59f4cd3c8af3bc
2e61a99b8eb69fe61e3d1cc93db19d0206afa482
1c75d9006b4c88aee9381fd779d1c03a21c1423b74f2766832f08d2d8a56b893
GET /widget/js/vendors~widget-sc-client.js?35fccb86 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-06-02T13:47:39.564Z%22%2C%22dismissedAt%22:null}
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:25:00 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"fa12476f8ee3c92b8369e0c9d3b915f9"
last-modified: Fri, 22 Jul 2022 23:08:54 GMT
x-amz-id-2: gO56M4SIXfLCyIfgDnIkEYznO/aSxbiWzPzBnkEFGYql1RoX90Evh/ZoIMm/6C+bN1XQIlxZGrE=
x-amz-request-id: HMFZR25VHVX61V98
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/25/2022 16:03:54
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0346adad9122791e43db90f943dd63bd
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/chunk-2d0cf2b3.js?35eb088d
194.242.11.186200 OK 312 kB URL HTTP/2 static.arc.io/widget/js/chunk-2d0cf2b3.js?35eb088d
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (65536), with no line terminators
Size 312 kB (312531 bytes)
Hash 054cb72c801c79b361b6925cf10ed314
1b03b6bf13a7daa5f1c58b2c506a0918016487a1
92757236301c7c194d967d245e7686bc975422a8e44f659ea54a72e4802f2381
GET /widget/js/chunk-2d0cf2b3.js?35eb088d HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-06-02T13:47:39.564Z%22%2C%22dismissedAt%22:null}
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:25:01 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"8de13fe370805671caef6a9e591a1733"
last-modified: Fri, 16 Sep 2022 20:28:02 GMT
x-amz-id-2: Ss/RbYgirtbTJjx15WKvo8HILFZrccBbyAk0mwYTwZCWgginYrI86YQPsh6Zs5M93PCJzHYkrG0=
x-amz-request-id: A1E02B7TBKG8HKDW
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/16/2022 20:57:00
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 2e38a344d5ca4958bd685ed77643361f
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
strn.pl/ipfs/QmbckUBGzGgZy6zaR221nQR4FbuRi7my7DEK4ZQMS5q2At?format=car&clientId=c66ad918-ad06-4bfb-ae3f-cf20a6818e6d
37.19.222.215200 OK 13 kB URL HTTP/2 strn.pl/ipfs/QmbckUBGzGgZy6zaR221nQR4FbuRi7my7DEK4ZQMS5q2At?format=car&clientId=c66ad918-ad06-4bfb-ae3f-cf20a6818e6d
IP 37.19.222.215:0
ASN #60068 Datacamp Limited
Hash 8d2467dc195d589c0889d8a777c65027
efd1198156dca5df048fd2a44dec34b36f60964b
7d481fd52acc0e365c4926d4bb9b29722af8f4e82279c2d0a93907f1f67adc75
GET /ipfs/QmbckUBGzGgZy6zaR221nQR4FbuRi7my7DEK4ZQMS5q2At?format=car&clientId=c66ad918-ad06-4bfb-ae3f-cf20a6818e6d HTTP/1.1
Host: strn.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.didcomms.co.uk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:25:02 GMT
content-type: application/vnd.ipld.car; version=1
cache-control: public, max-age=29030400, immutable
saturn-node-id: e44da331-851c-4786-b630-8e600f8ac2f3
saturn-node-version: 446_9eefffb
content-disposition: attachment; filename="QmbckUBGzGgZy6zaR221nQR4FbuRi7my7DEK4ZQMS5q2At.car"; filename*=UTF-8''QmbckUBGzGgZy6zaR221nQR4FbuRi7my7DEK4ZQMS5q2At.car
etag: W/"QmbckUBGzGgZy6zaR221nQR4FbuRi7my7DEK4ZQMS5q2At.car"
x-ipfs-path: /ipfs/QmbckUBGzGgZy6zaR221nQR4FbuRi7my7DEK4ZQMS5q2At
x-ipfs-roots: QmbckUBGzGgZy6zaR221nQR4FbuRi7my7DEK4ZQMS5q2At
x-content-type-options: nosniff
saturn-cache-status: HIT
saturn-transfer-id: 67b597eceb1d1c1c8a35d83f4f8d2588
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
strn.pl/ipfs/QmSuv1o7BWDdTZGbXVqxNf81mZb56smYGGqrdrmFCuh5SU?clientId=c66ad918-ad06-4bfb-ae3f-cf20a6818e6d
37.19.222.215504 Gateway Timeout 15 B URL HTTP/2 strn.pl/ipfs/QmSuv1o7BWDdTZGbXVqxNf81mZb56smYGGqrdrmFCuh5SU?clientId=c66ad918-ad06-4bfb-ae3f-cf20a6818e6d
IP 37.19.222.215:0
ASN #60068 Datacamp Limited
File type ASCII text, with no line terminators
Hash 05b3fd843c1e82352953e9dc2606a286
3dd6102d68d29c4004ec685eee40a45e72f3db04
d2c6262a999d448de3f6b22fc8785acf126e0e93324f95970029428e58ac1547
GET /ipfs/QmSuv1o7BWDdTZGbXVqxNf81mZb56smYGGqrdrmFCuh5SU?clientId=c66ad918-ad06-4bfb-ae3f-cf20a6818e6d HTTP/1.1
Host: strn.pl
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.didcomms.co.uk
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 504 Gateway Timeout
server: nginx
date: Wed, 26 Oct 2022 01:25:03 GMT
content-type: text/plain; charset=utf-8
content-length: 15
cache-control: public, max-age=29030400, immutable
saturn-node-id: e44da331-851c-4786-b630-8e600f8ac2f3
saturn-node-version: 446_9eefffb
etag: W/"f-PdYQLWjSnEAE7Ghe7kCkXnLz2wQ"
saturn-cache-status: HIT
saturn-transfer-id: 10f2c545705198b170c9a924e12a485b
timing-allow-origin: *
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: *
strict-transport-security: max-age=63072000; includeSubDomains; preload
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb59802-0d15-47b0-9824-34102fa77aeb.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb59802-0d15-47b0-9824-34102fa77aeb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ffefed59982fc01dd8df2f14cea499ca
abab3e94679d0c3e2cbecbda2e9a789a7fe17873
0c9e876f3f638aa4148aecdd77722e5091a2bb47ac30e4367505a1ebe39535d2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffdb59802-0d15-47b0-9824-34102fa77aeb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9355
x-amzn-requestid: eb558ca7-8a59-4135-85c8-f0fd5afd30fe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: alJ35EV2oAMF_4g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63585698-0ea5ca6a1f03dd6174ac208c;Sampled=0
x-amzn-remapped-date: Tue, 25 Oct 2022 21:35:20 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ffqlvVBIZ_66jDf_4KtvieiOvJVgrlGqOY6VRWwf9iOi_KgcxbP5FA==
via: 1.1 6a63e853422f3197776fb098fab5a416.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Tue, 25 Oct 2022 21:53:43 GMT
age: 12681
etag: "abab3e94679d0c3e2cbecbda2e9a789a7fe17873"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
didcomms.co.uk/wp-content/uploads/2017/02/excited-2.jpg
149.202.166.135200 OK 0 B URL HTTP/2 didcomms.co.uk/wp-content/uploads/2017/02/excited-2.jpg
IP 149.202.166.135:0
GET /wp-content/uploads/2017/02/excited-2.jpg HTTP/1.1
Host: didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: image/jpeg
content-length: 380816
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: "5ee639ff-5cf90"
x-powered-by: PleskLin
accept-ranges: bytes
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/sendpress/css/front-end.css?ver=6.0.3
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/sendpress/css/front-end.css?ver=6.0.3
IP 149.202.166.135:0
GET /wp-content/plugins/sendpress/css/front-end.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Thu, 31 Mar 2022 16:25:33 GMT
etag: W/"6245d5fd-3d3"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/broker/js/lazy-iwc.9b430e25.js
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/broker/js/lazy-iwc.9b430e25.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /broker/js/lazy-iwc.9b430e25.js HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://core.arc.io/
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-06-02T13:47:39.564Z%22%2C%22dismissedAt%22:null}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:24:57 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000
etag: W/"7fd8734437dbdc553c3513d10d0c0a97"
last-modified: Wed, 19 Jan 2022 23:33:03 GMT
x-amz-id-2: 0pqtvhmktNzG/kuXS+f70yU/1nrs8NiaC5jbPx0Ogn1zHjS1MBw3Ld9u+2vBvs1RgznasANnNaM=
x-amz-request-id: P7W24ZM6DAWWT664
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 07/30/2022 16:48:02
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: a9dae360bdc1c3f82c213a700b227e45
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/download-after-email/css/download.css?ver=1658675449
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/download-after-email/css/download.css?ver=1658675449
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/download-after-email/css/download.css?ver=1658675449 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Sun, 24 Jul 2022 15:10:49 GMT
etag: W/"62dd60f9-23ac"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/sequence-slider.css?ver=6.0.3
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/sequence-slider.css?ver=6.0.3
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/sequence-slider.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-2459"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/js/wp-emoji.js?ver=6.0.3
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-includes/js/wp-emoji.js?ver=6.0.3
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji.js?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Sun, 14 Jun 2020 14:53:55 GMT
etag: W/"5ee63a03-231d"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/download-after-email/js/download.js?ver=1658675449
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/download-after-email/js/download.js?ver=1658675449
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/download-after-email/js/download.js?ver=1658675449 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Sun, 24 Jul 2022 15:10:49 GMT
etag: W/"62dd60f9-7d6"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/search-in-place/js/codepeople_shearch_in_place.min.js?ver=1.0.105
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/search-in-place/js/codepeople_shearch_in_place.min.js?ver=1.0.105
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/search-in-place/js/codepeople_shearch_in_place.min.js?ver=1.0.105 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Fri, 21 Oct 2022 16:18:56 GMT
etag: W/"6352c670-32ba"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/widget-sc-client.js?197dbd2e
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/widget/js/widget-sc-client.js?197dbd2e
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /widget/js/widget-sc-client.js?197dbd2e HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://www.didcomms.co.uk/
Connection: keep-alive
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-06-02T13:47:39.564Z%22%2C%22dismissedAt%22:null}
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:25:00 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"14884d9e881791d580471ec30f89f22a"
last-modified: Mon, 08 Aug 2022 22:09:02 GMT
x-amz-id-2: URaeHor7BKsSAtcnqISpEn6E3w+xeceiV+yk3tYl1MHAPfIYu6QUy/mqJlWlIX9KQaPnVYygXzU=
x-amz-request-id: ZEX3NT5QY6GPK09Y
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 08/09/2022 11:22:23
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: a19fa91fb0830c956427746c4df2c9a8
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/search-in-place/css/codepeople_shearch_in_place.min.css?ver=1.0.105
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/search-in-place/css/codepeople_shearch_in_place.min.css?ver=1.0.105
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/search-in-place/css/codepeople_shearch_in_place.min.css?ver=1.0.105 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Fri, 21 Oct 2022 16:18:56 GMT
etag: W/"6352c670-add"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/css/dashicons.css?ver=6.0.3
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-includes/css/dashicons.css?ver=6.0.3
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dashicons.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Wed, 09 Dec 2020 13:36:08 GMT
etag: W/"5fd0d2c8-f399"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
core.arc.io/broker.html?6361f6a
194.242.11.186200 OK 0 B URL HTTP/2 core.arc.io/broker.html?6361f6a
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /broker.html?6361f6a HTTP/1.1
Host: core.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: _immortal|Arc_nodeId=Mt4bbnyEN68WRZ6xxAndxn; widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-06-02T13:47:39.564Z%22%2C%22dismissedAt%22:null}
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/html
vary: Accept-Encoding
server: BunnyCDN-NO-830
cdn-pullzone: 786568
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
access-control-allow-origin: *
cache-control: public, max-age=2592000
etag: W/"61e89f9d-612"
expires: Thu, 17 Nov 2022 18:00:28 GMT
last-modified: Wed, 19 Jan 2022 23:32:45 GMT
strict-transport-security: max-age=15724800; includeSubDomains
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 10/18/2022 18:00:28
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 42408f066858f5a306e46fe37f70eff8
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/js/jquery/jquery-migrate.js?ver=3.3.2
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-includes/js/jquery/jquery-migrate.js?ver=3.3.2
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.js?ver=3.3.2 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Wed, 09 Dec 2020 13:36:07 GMT
etag: W/"5fd0d2c7-62d4"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/nivo-lightbox.css?ver=6.0.3
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/nivo-lightbox.css?ver=6.0.3
IP 149.202.166.135:0
GET /wp-content/themes/accesspress-pro/css/nivo-lightbox.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-202b"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-includes/js/jquery/jquery.js?ver=3.6.0
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-includes/js/jquery/jquery.js?ver=3.6.0
IP 149.202.166.135:0
GET /wp-includes/js/jquery/jquery.js?ver=3.6.0 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Wed, 21 Jul 2021 15:03:07 GMT
etag: W/"60f8372b-46758"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/lite/public/js/email-subscribers-public.js?ver=4.8.3
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/email-subscribers-premium/lite/public/js/email-subscribers-public.js?ver=4.8.3
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/email-subscribers-premium/lite/public/js/email-subscribers-public.js?ver=4.8.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Wed, 29 Sep 2021 11:38:43 GMT
etag: W/"61545043-e46"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=6.0.3
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=6.0.3
IP 149.202.166.135:0
GET /wp-content/plugins/wp-whatsapp/assets/js/whatsapp-popup.js?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Wed, 13 Jul 2022 15:11:09 GMT
etag: W/"62cee08d-21f"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
web.webpushs.com/js/push/71be86e99ce47b44ecc258fb25ca629a_1.js
185.76.9.24200 OK 0 B URL HTTP/2 web.webpushs.com/js/push/71be86e99ce47b44ecc258fb25ca629a_1.js
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
GET /js/push/71be86e99ce47b44ecc258fb25ca629a_1.js HTTP/1.1
Host: web.webpushs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Thu, 25 Feb 2021 20:11:00 GMT
etag: W/"1cc20-5bc2ec0182d63"
vary: Accept-Encoding, Accept-Encoding,User-Agent
access-control-allow-origin: *
x-sp-ma: sp-ma-2
content-security-policy: default-src wss://* blob: data: sendpulse.com *.sendpulse.com *.sendpulse.com:4434 data.sendpulse.com *.pulse-stat.com *.stat-pulse.com *.pulse-stat.com:8080 *.stat-pulse.com:8080 http://*.sendpulse.com:4434 wss://ws.binotel.com:9002 http://*.pulse-stat.com http://*.stat-pulse.com http://*.pulse-stat.com:8080 http://*.stat-pulse.com:8080 *.sendpulse.ua *.sendpulse.by *.sendpulse.kz *.sendpulse.cl *.sendpulse.com.tr *.sendpulse.ng sendpul.se *.sendpul.se trckln.com *.loginsrc.com *.routee.net *.routee.net:444 *.bizml.ru *.jquery.com *.youtube.com *.ytimg.com *.vimeo.com *.vimeocdn.com *.tinymce.com *.ampproject.org *.hotjar.com *.hotjar.io *.ipinfo.io *.highcharts.com *.appspot.com *.doubleclick.net *.facebook.com *.facebook.net *.fbcdn.net *.fbsbx.com *.rawgit.com *.cloudflare.com *.jsdelivr.net *.kissmetrics.com *.bitrix24.com *.quantserve.com *.quantcount.com *.twitter.com *.offershub.ru *.stripe.com *.braintreegateway.com *.mlstatic.com *.cloudpayments.ru *.woopra.com *.jivosite.com *.google.com *.google.com.ua *.googleadservices.com *.google-analytics.com *.googleapis.com *.googletagmanager.com *.gstatic.com *.online-metrix.net *.retently.com *.maxmind.com *.revisionme.com revisionme.pages.dev *.yandex.ru *.ymetrica.ru *.mmapiws.com *.bootstrapcdn.com *.kaptcha.com *.paypal.com *.paypalobjects.com *.mercadopago.com.br *.mercadopago.com *.braintree-api.com vk.com api.telegram.org *.webformscr.com *.yandex.net *.cardinalcommerce.com *.mercadolibre.com *.supportsrc.com *.instagram.com s3.eu-central-1.amazonaws.com *.googleoptimize.com *.privatbank.ua *.cardinalcommerce.com 'self' 'unsafe-eval' 'unsafe-inline'; img-src blob: data: *; font-src data: *; style-src * 'unsafe-inline';, frame-ancestors 'self';
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
expires: Wed, 02 Nov 2022 01:24:56 GMT
cache-control: max-age=604800
x-sp-pr: lpr9
x-accel-expires: @1667352296
server: CDN77-Turbo
x-77-nzt: AblMCRT04pLB
x-77-nzt-ray: ffffffff02b77ba5688c5863b249aa10
x-cache: MISS
x-77-pop: stockholmSE
x-77-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15
IP 149.202.166.135:0
GET /wp-content/plugins/google-language-translator/css/toolbar.css?ver=6.0.15 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Wed, 11 May 2022 15:10:52 GMT
etag: W/"627bd1fc-1664"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/fonts.css?ver=6.0.3
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/fonts.css?ver=6.0.3
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/fonts.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-4d27"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
s.w.org/images/core/emoji/14.0.0/svg/1f942.svg
192.0.77.48200 OK 0 B URL HTTP/2 s.w.org/images/core/emoji/14.0.0/svg/1f942.svg
IP 192.0.77.48:0
GET /images/core/emoji/14.0.0/svg/1f942.svg HTTP/1.1
Host: s.w.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:57 GMT
content-type: image/svg+xml
vary: Accept-Encoding
last-modified: Tue, 12 Apr 2022 03:47:26 GMT
x-frame-options: SAMEORIGIN
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
content-encoding: gzip
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn 1
x-content-type-options: nosniff
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/TimeCircles.css?ver=6.0.3
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/TimeCircles.css?ver=6.0.3
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/accesspress-pro/css/TimeCircles.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-5c1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans%3A400%2C400italic%2C300%2C700%7COpen+Sans+Condensed%3A300%2C300italic%2C700&ver=6.0.3
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400%2C400italic%2C300%2C700%7COpen+Sans+Condensed%3A300%2C300italic%2C700&ver=6.0.3
IP 142.250.74.10:0
GET /css?family=Open+Sans%3A400%2C400italic%2C300%2C700%7COpen+Sans+Condensed%3A300%2C300italic%2C700&ver=6.0.3 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 26 Oct 2022 01:24:56 GMT
date: Wed, 26 Oct 2022 01:24:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=6.0.3
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=6.0.3
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-whatsapp/assets/dist/css/style.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Wed, 13 Jul 2022 15:11:09 GMT
etag: W/"62cee08d-a5d1"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/font-awesome.min.css?ver=6.0.3
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/font-awesome.min.css?ver=6.0.3
IP 149.202.166.135:0
GET /wp-content/themes/accesspress-pro/css/font-awesome.min.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-6b38"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
connect.facebook.net/en_US/fbevents.js
157.240.221.16200 OK 0 B URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 157.240.221.16:0
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: DS69HBSczZJeVTMLQZvEcSsjJoGjBZeqh02Zn7fyzUmpSByPLFMmGaDXK2QZ4cXPqvje6s3bs8OgAzpbNaiHgg==
priority: u=3,i
content-length: 27045
x-fb-trip-id: 1679558926
date: Wed, 26 Oct 2022 01:24:57 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/responsive.css?ver=6.0.3
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/themes/accesspress-pro/css/responsive.css?ver=6.0.3
IP 149.202.166.135:0
GET /wp-content/themes/accesspress-pro/css/responsive.css?ver=6.0.3 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: text/css
last-modified: Sun, 14 Jun 2020 14:53:51 GMT
etag: W/"5ee639ff-3418"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
www.didcomms.co.uk/wp-content/plugins/download-after-email/js/media-query.js?ver=1658675449
149.202.166.135200 OK 0 B URL HTTP/2 www.didcomms.co.uk/wp-content/plugins/download-after-email/js/media-query.js?ver=1658675449
IP 149.202.166.135:0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/download-after-email/js/media-query.js?ver=1658675449 HTTP/1.1
Host: www.didcomms.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: __atuvc=1%7C22%2C1%7C23; __gads=ID=4fc969454d5093da-227344d2a3cd0024:T=1654177660:RT=1654177660:S=ALNI_MYI8RNmzn4gPEOQ3StcILst8zDc0A; _ga=GA1.3.2054097338.1654177660
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Wed, 26 Oct 2022 01:24:56 GMT
content-type: application/javascript
last-modified: Sun, 24 Jul 2022 15:10:49 GMT
etag: W/"62dd60f9-2fc"
x-powered-by: PleskLin
content-encoding: br
X-Firefox-Spdy: h2
static.arc.io/widget/js/widget-ui.js?784632c0
194.242.11.186200 OK 0 B URL HTTP/2 static.arc.io/widget/js/widget-ui.js?784632c0
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /widget/js/widget-ui.js?784632c0 HTTP/1.1
Host: static.arc.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.didcomms.co.uk/
Cookie: widgetOptState={%22state%22:%22UNDECIDED%22%2C%22date%22:%222022-06-02T13:47:39.564Z%22%2C%22dismissedAt%22:null}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 26 Oct 2022 01:24:57 GMT
content-type: application/javascript
server: BunnyCDN-NO-830
cdn-pullzone: 786569
cdn-uid: 1756f224-b505-436a-b48a-b92ddf4fdbea
cdn-requestcountrycode: NO
vary: Accept-Encoding, Accept-Encoding
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Content-MD5, ETag
access-control-max-age: 86400
cache-control: public, max-age=2592000, stale-while-revalidate=864000
etag: W/"7b9dc001ae1d02594045f630c0c9760a"
last-modified: Thu, 01 Sep 2022 19:21:28 GMT
x-amz-id-2: sso+CjRy526e+aJLRNdKq8RjhZ6KoGwR6Y604T67KYRlvAXyQ4xEXLctgzgvzzy4W5PmUrRFebM=
x-amz-request-id: 0RKQT4A1JEK82HB5
cdn-proxyver: 1.02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 09/01/2022 19:27:00
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 16312731b74c9b3624805bf9fb15ccda
cdn-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2