updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
99.81.241.47200 OK 13 kB URL HTTP/1.1 updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
IP 99.81.241.47:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (31070)
Hash bfe8bc3608821cf4e9f080238d1fc1e1
d4ef600ee63e0869e654966a13220eae6fffb141
1aedb10762396edb011c421b6e7effa24c200ef02827c63f77ce4360d8c58685
GET /0b54ef0ca78d1f08?l=13 HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:38 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
ETag: W/"d64979220d66b8508b1836e8e722000c"
Cache-Control: max-age=0, private, must-revalidate
Set-Cookie: EXFILGUID=54ef078d1f; path=/
link_clicked_54ef078d1f=1; path=/
X-Request-Id: fd8f2c1d-71e9-4b07-8406-33f8ed31f3d2
X-Runtime: 0.020577
X-Host-Info: lw-prod-eu-i-0d0ba1f1acab1612e, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 06:12:49 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xWq5q1rrxvSA0tL2munV4DYH9okP-dngQTyfEItJMJxj6SqXleVWWg==
Age: 349
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6415
Expires: Fri, 23 Sep 2022 08:05:33 GMT
Date: Fri, 23 Sep 2022 06:18:38 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 1NbffpcXs1CBGRp_qa5_8uzxf_bTGZaM6OcSQUXAxkoa3849r1k2jg==
age: 6204
X-Firefox-Spdy: h2
d2wy8f7a9ursnm.cloudfront.net/bugsnag-2.min.js
143.204.42.78200 OK 3.0 kB URL HTTP/1.1 d2wy8f7a9ursnm.cloudfront.net/bugsnag-2.min.js
IP 143.204.42.78:0
File type ASCII text, with very long lines (6636), with no line terminators
Hash 6103bb5e4ec6141e19e1100caafc780c
1396838ef637042cbf702f6b5fdcd0281d93feb9
ccba3500aa323de51765587835fcd4842d46e4e2384e5cfd067506d0b6fc8a78
GET /bugsnag-2.min.js HTTP/1.1
Host: d2wy8f7a9ursnm.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 2962
Connection: keep-alive
Last-Modified: Wed, 10 Aug 2016 00:30:49 GMT
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 19 Sep 2022 17:55:07 GMT
Cache-Control: public, max-age=604800
ETag: "6103bb5e4ec6141e19e1100caafc780c"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: uaPV_Brmk2IKJ1HcBrt-X2BKfvVZer3I4NxUm-Sza5biq3-do0_4Uw==
Age: 303813
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 06:18:38 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
updates.eservce.co.uk/assets/ajax/libs/jquery/1.9.1/jquery.min.js
99.81.241.47200 OK 33 kB URL HTTP/1.1 updates.eservce.co.uk/assets/ajax/libs/jquery/1.9.1/jquery.min.js
IP 99.81.241.47:0
File type ASCII text, with very long lines (32089)
Hash 1dca01c6231917aabe380a98f67dae36
c6c800587eadd27a45cd29ef6d05742182e1454c
47126bab74ac1fd0c429292dfde3face2f931752c30e527888763166088b451c
GET /assets/ajax/libs/jquery/1.9.1/jquery.min.js HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 25 Aug 2022 13:01:55 GMT
Vary: Accept-Encoding
Server: ThreatSim-Web-Server
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/assets/all.js?g=54ef078d1f
99.81.241.47200 OK 7.2 kB URL HTTP/1.1 updates.eservce.co.uk/assets/all.js?g=54ef078d1f
IP 99.81.241.47:0
Hash db7c58fc21f4bbb0900fed3889f61df2
24047c64e0dbdbcc8eef175a42dc1911f7f8a6aa
5a1dcea95a97b018b93cc58089502fd2069d508c02088c0c6a49533fef91afb7
GET /assets/all.js?g=54ef078d1f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: application/javascript
Content-Length: 7191
Connection: keep-alive
Last-Modified: Thu, 25 Aug 2022 13:01:55 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Server: ThreatSim-Web-Server
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000, public
Access-Control-Allow-Origin: *
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 72a527d51c5262e8ef8db222898257a5
519f6eb168764d9c7eff34d8b632e0ce93234cf0
9451d7617606a4e3ff0cff49140a5738e61168b8d196a9961da9a79df1b77f9d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 06:18:39 GMT
Last-Modified: Fri, 23 Sep 2022 05:44:39 GMT
Server: ECS (nyb/1D1A)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qg-lj6BafYJYIpaFNEq2iPE6CE8HZ7UlocGQ9aSxBwuyVUlVZv9qMg==
Age: 2040
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 72a527d51c5262e8ef8db222898257a5
519f6eb168764d9c7eff34d8b632e0ce93234cf0
9451d7617606a4e3ff0cff49140a5738e61168b8d196a9961da9a79df1b77f9d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 06:18:39 GMT
Last-Modified: Fri, 23 Sep 2022 05:09:35 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: xT3yWEyO3ZEpK_zx1U2E8kKTIrjNi3Ukot33BC7LWVw2YpLhPov6KA==
Age: 4144
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 72a527d51c5262e8ef8db222898257a5
519f6eb168764d9c7eff34d8b632e0ce93234cf0
9451d7617606a4e3ff0cff49140a5738e61168b8d196a9961da9a79df1b77f9d
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 23 Sep 2022 06:18:39 GMT
Last-Modified: Fri, 23 Sep 2022 04:37:43 GMT
Server: ECS (nyb/1D15)
X-Cache: Miss from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: fgFZH2POYwM7_0z-73q64AniSDANAyub2JmQf_oA4ikEHrEkfeGqrA==
Age: 6056
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 23 Sep 2022 06:03:22 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 23 Sep 2022 06:24:37 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: gpoESqQ47RXR5TR-PsAaiYnefIht5W83NQHgj6EXDzFiZO-VtBmWpQ==
Age: 917
tslp.s3.amazonaws.com/assets/owa15/2175ac7081e0d4c266371d5ee316ddd2.css
54.231.192.65200 OK 11 kB URL HTTP/1.1 tslp.s3.amazonaws.com/assets/owa15/2175ac7081e0d4c266371d5ee316ddd2.css
IP 54.231.192.65:0
File type ASCII text, with CRLF line terminators
Hash b11023ad332a487aeb9d9f3b19588e0c
a5a2ba9b265de6091491bb52ece41d8bdbdaec7f
7e18e25ab4abaa0bce6977a2eb3a4e56d752eb550a35cda9ccbb431f8cfa42fc
GET /assets/owa15/2175ac7081e0d4c266371d5ee316ddd2.css HTTP/1.1
Host: tslp.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://updates.eservce.co.uk/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 4Wgyql1pFQ+/UhKbCgf8uGhifKf4d5aOfYydgQyDQlI4RIB0VGYrwgEttPibJs7qZ7oE2+zzB3U=
x-amz-request-id: RPJ39MBRNPR1X155
Date: Fri, 23 Sep 2022 06:18:40 GMT
Last-Modified: Thu, 21 Aug 2014 16:48:47 GMT
ETag: "b11023ad332a487aeb9d9f3b19588e0c"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 10778
tslp.s3.amazonaws.com/detect/plugin_detect.js?guid=54ef078d1f&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
54.231.192.65200 OK 50 kB URL HTTP/1.1 tslp.s3.amazonaws.com/detect/plugin_detect.js?guid=54ef078d1f&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 54.231.192.65:0
File type ASCII text, with very long lines (306)
Hash 00a513f07603df01e3b99be00f370754
f0c03b1c50f39c95075df687cd55f18861631526
4bab432979d731f8264bcd9d40422ca7dfcfcb0e0e703288db78bbfa555f853a
GET /detect/plugin_detect.js?guid=54ef078d1f&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: tslp.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://updates.eservce.co.uk/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: KkvYIz4fEhO1lcyTRDVm6rAHatY5bkJQW9Ei4aIURAGrBylOrpEnZQ1EdoZxrCx3pFEnnudqDvE=
x-amz-request-id: RPJ0RGFDVC0MWHJN
Date: Fri, 23 Sep 2022 06:18:40 GMT
Last-Modified: Wed, 15 Feb 2017 17:56:07 GMT
ETag: "00a513f07603df01e3b99be00f370754"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Content-Length: 50085
updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20sessionStorage%20%3D%20true&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20sessionStorage%20%3D%20true&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=BrowserDetect%20-%20sessionStorage%20%3D%20true&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: b2a3b643-ade6-4442-9b59-693dbfc5dded
X-Runtime: 0.002490
X-Host-Info: lw-prod-eu-i-0c8c60e3b9e5fc665, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20localStorage%20%3D%20true&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20localStorage%20%3D%20true&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=BrowserDetect%20-%20localStorage%20%3D%20true&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: ff71b0a8-5126-4981-9705-f8a934c2fe1d
X-Runtime: 0.002771
X-Host-Info: lw-prod-eu-i-0d0ba1f1acab1612e, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
tslp.s3.amazonaws.com/assets/owa15/Sign_in_arrow.png
54.231.192.65200 OK 1.4 kB URL HTTP/1.1 tslp.s3.amazonaws.com/assets/owa15/Sign_in_arrow.png
IP 54.231.192.65:0
File type PNG image data, 22 x 22, 8-bit/color RGBA, non-interlaced\012- data
Hash 2fc55ac36211fb6b5a051281cc4898ad
5e2b2882d0bdbe593429a43de72ee3c3652e62ce
07f38b8b8c1f96ed85ecd96988f0454a95d1f665427086a507c72e55ff3ce0e7
GET /assets/owa15/Sign_in_arrow.png HTTP/1.1
Host: tslp.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/
Connection: keep-alive
HTTP/1.1 200 OK
x-amz-id-2: OM7dDCc+KAGOig33umqZLF8/yBsyAZ7zxtrJZlRPjfqftoPVNJHSiyYI3/Lv36pEhK/j5mYya7A=
x-amz-request-id: RPJCFN9PMRQVXX9G
Date: Fri, 23 Sep 2022 06:18:40 GMT
Last-Modified: Thu, 21 Aug 2014 17:00:22 GMT
ETag: "2fc55ac36211fb6b5a051281cc4898ad"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1441
tslp.s3.amazonaws.com/training/production/655/envelope-f6c050.jpeg
54.231.192.65200 OK 7.2 kB URL HTTP/1.1 tslp.s3.amazonaws.com/training/production/655/envelope-f6c050.jpeg
IP 54.231.192.65:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 225x225, components 3\012- data
Hash 62e7415314388056bf8583a164c6d0ff
f9783b834eb8793704d1f30cdf5d4215fe372ab9
ce653ac9cb72b835bcde5a37d45235914e2446bdd7cb6af67589e974b649cb8c
GET /training/production/655/envelope-f6c050.jpeg HTTP/1.1
Host: tslp.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://updates.eservce.co.uk/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: jN4cq6GnEkSItyv7aJM5y627EHc76SjBVRXOsFrpRFGBqyfc985p2a7RCwRJ11qHDGsxGVYtVjw=
x-amz-request-id: RPJ00HN8DSZ746S1
Date: Fri, 23 Sep 2022 06:18:40 GMT
Last-Modified: Mon, 22 Aug 2016 04:36:06 GMT
ETag: "62e7415314388056bf8583a164c6d0ff"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 7227
tslp.s3.amazonaws.com/assets/owa15/a2670edfb568be55565d23de965f03aa.png
54.231.192.65200 OK 1.4 kB URL HTTP/1.1 tslp.s3.amazonaws.com/assets/owa15/a2670edfb568be55565d23de965f03aa.png
IP 54.231.192.65:0
File type PNG image data, 10 x 879, 8-bit/color RGBA, non-interlaced\012- data
Hash 700528c06d9ba83eebb320059f27443f
9c770679e153e060c880c26a7b4e833ed1502aa3
6710ee6e22d5e3e82f70554804806c37aac5789b110d944383ea393d93eb627a
GET /assets/owa15/a2670edfb568be55565d23de965f03aa.png HTTP/1.1
Host: tslp.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://updates.eservce.co.uk/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: vOFuKwcSg2C2nxZOLwEMDvhg9iCnUMdAlWh6mF1AKtxg2SF2e+58gxdfyo2yWN3caOux1PPBidc=
x-amz-request-id: RPJ1PSQTQ4TBBRWV
Date: Fri, 23 Sep 2022 06:18:40 GMT
Last-Modified: Thu, 21 Aug 2014 16:45:43 GMT
ETag: "700528c06d9ba83eebb320059f27443f"
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 1434
updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20hasCookies%20%3D%20true&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20hasCookies%20%3D%20true&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=BrowserDetect%20-%20hasCookies%20%3D%20true&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: 7b64d6a3-b9d9-4a76-95f5-3b4ba47d61a5
X-Runtime: 0.001932
X-Host-Info: lw-prod-eu-i-0c8c60e3b9e5fc665, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20browser%20%3D%20Firefox&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20browser%20%3D%20Firefox&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=BrowserDetect%20-%20browser%20%3D%20Firefox&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: 51868002-e2fd-4cde-a102-19be2573d9e5
X-Runtime: 0.002810
X-Host-Info: lw-prod-eu-i-061cc655cca80585c, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20os_version%20%3D%20&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20os_version%20%3D%20&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=BrowserDetect%20-%20os_version%20%3D%20&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: 1a7aa82f-ce0a-469c-b977-a641ad1dc2c1
X-Runtime: 0.002420
X-Host-Info: lw-prod-eu-i-0d0ba1f1acab1612e, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20browser_version%20%3D%2096&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20browser_version%20%3D%2096&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=BrowserDetect%20-%20browser_version%20%3D%2096&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: 2f5e5819-3f8e-4a16-bb17-2b4488598b68
X-Runtime: 0.003646
X-Host-Info: lw-prod-eu-i-07015552f8eaef43c, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20os%20%3D%20Linux&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20os%20%3D%20Linux&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=BrowserDetect%20-%20os%20%3D%20Linux&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: 7e3b0dbe-5e96-4c68-ae7d-dc1a561a34ab
X-Runtime: 0.002883
X-Host-Info: lw-prod-eu-i-061cc655cca80585c, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/secure/browser_post
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/secure/browser_post
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
POST /secure/browser_post HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
X-NewRelic-ID: XQ4GVVFACQAAU1VQDwQHUw==
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6Ijk4MTQ3IiwiYXAiOiIxMzA3NDMyMDQwIiwiaWQiOiI5MjFiMmZiOGY3ZDFiNGNmIiwidHIiOiI5YTc3NWQwNTc2ZjIxNmFhMjUxNjYwNTRhMzk0NDhiZSIsInRpIjoxNjYzOTEzOTE4OTkwLCJ0ayI6IjE1MDY5MjQifX0=
traceparent: 00-9a775d0576f216aa25166054a39448be-921b2fb8f7d1b4cf-01
tracestate: 1506924@nr=0-1-98147-1307432040-921b2fb8f7d1b4cf----1663913918990
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 1079
Origin: http://updates.eservce.co.uk
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: image/gif; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Vary: Accept-Encoding, Accept
Cache-Control: no-cache
X-Request-Id: 4644d26a-946e-466c-a2a2-ca6bab7fb368
X-Runtime: 0.008820
X-Host-Info: lw-prod-eu-i-07015552f8eaef43c, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20language%20%3D%20en-US&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20language%20%3D%20en-US&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=BrowserDetect%20-%20language%20%3D%20en-US&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: cfd94ac4-b5ff-4d29-b0bc-3924aeac176e
X-Runtime: 0.002436
X-Host-Info: lw-prod-eu-i-0c8c60e3b9e5fc665, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20colorDepth%20%3D%2024&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20colorDepth%20%3D%2024&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=BrowserDetect%20-%20colorDepth%20%3D%2024&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: 98d76b51-58bf-4196-b7b2-54085c39a000
X-Runtime: 0.001790
X-Host-Info: lw-prod-eu-i-061cc655cca80585c, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20width%20%3D%201280&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20width%20%3D%201280&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=BrowserDetect%20-%20width%20%3D%201280&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: de272815-4abb-4797-b2fb-dee35eee8e9b
X-Runtime: 0.002415
X-Host-Info: lw-prod-eu-i-0d0ba1f1acab1612e, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=Skipping%20flash%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=Skipping%20flash%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=Skipping%20flash%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: fa03ed19-c009-419f-8cf4-f0540645056b
X-Runtime: 0.001827
X-Host-Info: lw-prod-eu-i-0c8c60e3b9e5fc665, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20height%20%3D%201024&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=BrowserDetect%20-%20height%20%3D%201024&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=BrowserDetect%20-%20height%20%3D%201024&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: ff63c338-6b2f-4f52-b542-74f0fb76e1b8
X-Runtime: 0.001691
X-Host-Info: lw-prod-eu-i-061cc655cca80585c, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=Skipping%20java%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=Skipping%20java%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=Skipping%20java%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: 211e22d0-4be5-495e-811a-f930f305dcf6
X-Runtime: 0.001830
X-Host-Info: lw-prod-eu-i-0d0ba1f1acab1612e, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 86624f45fb3b7126dbe002f69c94dd86
30bcf274db5037122f989fb25dbf1e72c9ec417b
2cc9600578cf057dc499835773fb495caa60ac154c4945f0fc1f2b31d43f5502
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4442
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 06:18:39 GMT
Last-Modified: Fri, 23 Sep 2022 05:04:37 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
updates.eservce.co.uk/trace?id=54ef078d1f&msg=Skipping%20pdf%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=Skipping%20pdf%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=Skipping%20pdf%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: 45191826-4d42-44cf-8e0e-2be779013c6a
X-Runtime: 0.002012
X-Host-Info: lw-prod-eu-i-0c8c60e3b9e5fc665, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=Skipping%20quicktime%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=Skipping%20quicktime%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=Skipping%20quicktime%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: 9ddce5de-5330-459f-adfc-5da5ea9c5e5f
X-Runtime: 0.002271
X-Host-Info: lw-prod-eu-i-07015552f8eaef43c, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=Skipping%20Silverlight%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=Skipping%20Silverlight%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=Skipping%20Silverlight%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: e9f0d86d-e987-4e50-b490-d001d71d23c3
X-Runtime: 0.002064
X-Host-Info: lw-prod-eu-i-061cc655cca80585c, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=Skipping%20RealPlayer%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=Skipping%20RealPlayer%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=Skipping%20RealPlayer%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: 0263d174-8ff7-4d48-8bbc-e713c2066029
X-Runtime: 0.002834
X-Host-Info: lw-prod-eu-i-0d0ba1f1acab1612e, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=Skipping%20WindowsMediaPlayer%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=Skipping%20WindowsMediaPlayer%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=Skipping%20WindowsMediaPlayer%20detection&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: 3b6613a1-7acd-4298-8589-0e1005b65f50
X-Runtime: 0.001794
X-Host-Info: lw-prod-eu-i-07015552f8eaef43c, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=redirect_url%20is%20undefined&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=redirect_url%20is%20undefined&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=redirect_url%20is%20undefined&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: 82b7815b-4115-4a58-bf81-ffdbe8c293ab
X-Runtime: 0.002394
X-Host-Info: lw-prod-eu-i-061cc655cca80585c, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
updates.eservce.co.uk/trace?id=54ef078d1f&msg=browser_post_successful&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
99.81.241.47200 OK 20 B URL HTTP/1.1 updates.eservce.co.uk/trace?id=54ef078d1f&msg=browser_post_successful&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f
IP 99.81.241.47:0
Hash 4a4dd3598707603b3f76a2378a4504aa
a0fddd5458378c1bf3c10dd2f5c060d1347741ed
f61f27bd17de546264aa58f40f3aafaac7021e0ef69c17f6b1b4cd7664a037ec
GET /trace?id=54ef078d1f&msg=browser_post_successful&correlation_id=d91dc3a6-b855-4f4d-b570-99dea7c6120f HTTP/1.1
Host: updates.eservce.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://updates.eservce.co.uk/0b54ef0ca78d1f08?l=13
Connection: keep-alive
Cookie: EXFILGUID=54ef078d1f; link_clicked_54ef078d1f=1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 06:18:39 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
Referrer-Policy: strict-origin-when-cross-origin
Cache-Control: no-cache
X-Request-Id: 81b59159-5d39-4f09-a325-cf5c60de81b9
X-Runtime: 0.002017
X-Host-Info: lw-prod-eu-i-0c8c60e3b9e5fc665, ; cb7b0591eac108ad07b079b0fa686194fe64ff8b
Server: ThreatSim-Web-Server
Access-Control-Allow-Origin: *
Content-Encoding: gzip
push.services.mozilla.com/
35.161.6.128101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.6.128:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DlMhI25rfX1tUnG5DbmfBQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XLd4WSWUvVGelLRinSjkL0aj5Ug=
tslp.s3.amazonaws.com/assets/owa15/9452e0fae8e6e985ee2a90b5a9c9edbd.ttf
54.231.192.65200 OK 42 kB URL HTTP/1.1 tslp.s3.amazonaws.com/assets/owa15/9452e0fae8e6e985ee2a90b5a9c9edbd.ttf
IP 54.231.192.65:0
File type TrueType Font data, 16 tables, 1st "OS/2", 11 names, Microsoft, language 0x409, \251 2010 Microsoft Corporation. All Rights Reserved.RegularSegoe UI SemilightVersion 1.00 build\012- data
Hash 6c26c24aabe31040657665b1e0d9505c
b3bdc48643752665e3e5798a192b27432a87d234
2d508a6e8979bba74b6fdf804c01a09a620c781e0fea73a8eefda904f5bcab25
GET /assets/owa15/9452e0fae8e6e985ee2a90b5a9c9edbd.ttf HTTP/1.1
Host: tslp.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://updates.eservce.co.uk
Connection: keep-alive
Referer: https://tslp.s3.amazonaws.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: PDdWJz5apWRXHRznAYs4A06WFfYbQOYgBk4Or3SR8LX+Ae1V4DJkKWnAayl6Botq61Y3VOLH4es=
x-amz-request-id: RPJCKXAPRVFK5W1A
Date: Fri, 23 Sep 2022 06:18:40 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 3000
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Thu, 21 Aug 2014 16:45:42 GMT
ETag: "6c26c24aabe31040657665b1e0d9505c"
Cache-Control: max-age=86400
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: binary/octet-stream
Server: AmazonS3
Content-Length: 41560
tslp.s3.amazonaws.com/assets/owa15/0c867cdde480e06472325e177d40a9c6.ttf
54.231.192.65200 OK 57 kB URL HTTP/1.1 tslp.s3.amazonaws.com/assets/owa15/0c867cdde480e06472325e177d40a9c6.ttf
IP 54.231.192.65:0
File type TrueType Font data, 18 tables, 1st "LTSH", 11 names, Microsoft, language 0x409, \251 2010 Microsoft Corporation. All Rights Reserved.RegularSegoe UI RegularVersion 0.81 Build 1\012- data
Hash 8af990b6ad3ba192c2dd6a193890bf5f
4db5bf117ff8f1392fab3b438216d7cff4ae4976
c147c2ec76a8ab8bd5082f1f4d3f80a43c689165cb164cdd812e44048fe38708
GET /assets/owa15/0c867cdde480e06472325e177d40a9c6.ttf HTTP/1.1
Host: tslp.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://updates.eservce.co.uk
Connection: keep-alive
Referer: https://tslp.s3.amazonaws.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: x9PIz8pFz9AuKzHJ82yU495ZKcvsz6M4KYiJxvxH3i8IMii4Jh2pDI6lfdGFtnAZHJKaQGlTFSA=
x-amz-request-id: RPJ74FX0TTJ8MWM4
Date: Fri, 23 Sep 2022 06:18:40 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET
Access-Control-Max-Age: 3000
Vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method
Last-Modified: Thu, 21 Aug 2014 16:45:43 GMT
ETag: "8af990b6ad3ba192c2dd6a193890bf5f"
Cache-Control: max-age=86400
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: binary/octet-stream
Server: AmazonS3
Content-Length: 56760
tslp.s3.amazonaws.com/assets/owa15/favicon.ico
54.231.192.65200 OK 7.9 kB URL HTTP/1.1 tslp.s3.amazonaws.com/assets/owa15/favicon.ico
IP 54.231.192.65:0
File type MS Windows icon resource - 3 icons, 32x32, 32 bits/pixel, 24x24, 32 bits/pixel\012- data
Hash 759fade9033aa298629e4b000dcd6dde
34a1adf5c7326d7bde5b5735471b5d81e611c189
cf0808a61ec571e0c4975663903b288009d55502ac0445d9948983b339a5cf6e
Analyzer Verdict Alert urlquery Phishing - Microsoft Services
GET /assets/owa15/favicon.ico HTTP/1.1
Host: tslp.s3.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://updates.eservce.co.uk/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: YLCtPwmk5sYI6s/SMg6FoOUXSFJSx0RAkWCd0v/3P6uaRlUOUZGA3mxHaldetxdBs7iR+qsRSnc=
x-amz-request-id: DBNRSKRYSX4508HV
Date: Fri, 23 Sep 2022 06:18:41 GMT
Last-Modified: Thu, 21 Aug 2014 16:51:00 GMT
ETag: "759fade9033aa298629e4b000dcd6dde"
Cache-Control: max-age=86400
x-amz-version-id: null
Accept-Ranges: bytes
Content-Type: image/vnd.microsoft.icon
Server: AmazonS3
Content-Length: 7886
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9820
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 06:18:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9820
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 06:18:41 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9820
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 06:18:41 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9444e811-e2d5-4901-a86d-9e9269a6f846.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9444e811-e2d5-4901-a86d-9e9269a6f846.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b6b51846ec2b7d856b7dc12e4d720f4
5a69190a9a778a6979e11fafedd43e1031caf8e2
a497c04d1c9d0be88aa9c288423346e83c6a7b296295387b3b7b855c550492a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9444e811-e2d5-4901-a86d-9e9269a6f846.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10927
x-amzn-requestid: ae562f19-3dd9-42b1-bb98-ab026140506e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YsqHOHguIAMFS7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632823c7-6d4bcabf6879463427e68a50;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 08:09:43 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: u4DgvdhOG7agsl8-aoovMcR029kbfcAk9eoiUiHb-PZuq3RbbFg9Mw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:48:51 GMT
age: 30590
etag: "5a69190a9a778a6979e11fafedd43e1031caf8e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ec986e3-2bce-4ded-85eb-e88df9893a30.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ec986e3-2bce-4ded-85eb-e88df9893a30.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ff021fa15adb0d3a24158bc00cf0980a
265d3e98bcbf5f14f214102279a7911d6fd64048
211d709fb1851a62f856a78e3b115ef816f78ab9a28f870d48fa3d1912eac16a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ec986e3-2bce-4ded-85eb-e88df9893a30.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6505
x-amzn-requestid: bc9cc556-8897-4484-ac07-f18e4f5250ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YvrfiFl4oAMF_Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63295930-7a627b7d7683919e41ca599b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 06:09:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UNlx91pOuttpN-IrQs_g-PRI8C_NmZDKdnOpfayCJ719fa6FwnOIGg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:51 GMT
age: 29210
etag: "265d3e98bcbf5f14f214102279a7911d6fd64048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948809a9-98f3-49af-9568-833cc0cfb149.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948809a9-98f3-49af-9568-833cc0cfb149.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2644bb64610b60b23b7dff21736f7b4d
e95d1909750d36a9e426c170778985310cbfc4e4
e668fe1815310914cee8c5853fbcb3d0e48f6f0f8c2d07f7463e627f97153212
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F948809a9-98f3-49af-9568-833cc0cfb149.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5533
x-amzn-requestid: af64386b-45ae-47bb-a6fd-f80e306495df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCkMGVEIAMFfhg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e1a-7e417f28422324ed2ddc85da;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:14 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fyCuR7eISu5Of0AcZBH5FOtHKRe-Nepnt52kqZtQm0tj1L7lAtGc8A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 03:45:46 GMT
age: 9175
etag: "e95d1909750d36a9e426c170778985310cbfc4e4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 948abf9bedd1bd67010284080ba06d01
dd94d525ad264856a0fdcb7a4b1faa2d68c3f68b
236639cc2279c6f269dd521796a087a40b43b252cb55faf3e4214cbdc8369a62
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10822
x-amzn-requestid: 308978c4-679f-4bb6-bfd7-a81dc00ec3db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YoKcMG-kIAMFZKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63265781-03f94c0a385ed28408de81c8;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 23:25:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9fh_DJXLHRaerYmgTGoVX3LRsMIgzf46bn48yzXp8Xdp8WippJExcg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 11:05:21 GMT
age: 69200
etag: "dd94d525ad264856a0fdcb7a4b1faa2d68c3f68b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b30784-fdab-4361-be4c-cde3457de8cc.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b30784-fdab-4361-be4c-cde3457de8cc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 31f182a35c2946cfc0286689b7124c36
9dc2210a6c1d7025080692690f8cf1b064e7af9b
33fbee038d8988be37a223f1b7f3716dcb2473512161cc4dd8d5229d2868c47e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff6b30784-fdab-4361-be4c-cde3457de8cc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9571
x-amzn-requestid: a6825487-dc32-4129-ae63-2aad2bc90833
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4ZDRHVDIAMFoNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd547-0669874227a8c7c60b4fb4e3;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:36:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: GDOiSF2tQYYM1g-HzrOGYRdZhi97vmzrVEGKtwAKVsrd_NtmOUMDFA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:01:51 GMT
age: 29810
etag: "9dc2210a6c1d7025080692690f8cf1b064e7af9b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F155952bd-256a-4103-9017-437efcfb03bf.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F155952bd-256a-4103-9017-437efcfb03bf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1985a957e6bc0c15d8489fa731e7f14e
4584bff61bf4d5c9b8fd3b97c048a8e6975e4323
9f3e1fd6e18d85d4f6645d077da643a3bc2cca611d5e85f534ba798102dca243
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F155952bd-256a-4103-9017-437efcfb03bf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7005
x-amzn-requestid: c805d882-7a00-4abd-a239-d8313d7df0c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4aBwEaMIAMF09A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd6d7-6d6a417f10c9628a16d438e1;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:42:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7edV0FJytVSpHH-WkCiYzhW1JP4L6i6bpPCq9MTxPdhwFQTryf06BQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:53:16 GMT
age: 30325
etag: "4584bff61bf4d5c9b8fd3b97c048a8e6975e4323"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2